• #dev 2021-06-16
  • Prev
    Next
  • #indieweb
  • #dev
  • #wordpress
  • #meta
  • #stream
  • #microformats
  • #known
  • #events
#dev ≡
  • ←
  • →
2021-06-16 UTC
# 22:20
aaronpk There's still a few different concerns with stealing refresh tokens, so adding the code verifier wouldn't solve any attacks where the attacker would also be able to steal that out of the app at the same time as stealing the refresh token