Hi all, I'm now translating OAuth 2.0 Core & Bearer specs into Japanese with my friends. I have one question on section 10.3 in Core spec.
"To prevent this form of attack, native applications SHOULD use external browsers instead of embedding browsers in an iframe when requesting end-user authorization." Here, what do you mean for "in an iframe"? I thought it means "embedded browser is in an iframe", but I can't imagine it can be.. Thanks in advance -- nov matake _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
