Bitcoin Forum
September 26, 2018, 04:05:00 AM *
News: ♦♦ New info! Bitcoin Core users absolutely must upgrade to previously-announced 0.16.3 [Torrent]. All Bitcoin users should temporarily trust confirmations slightly less. More info.
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: OAuth 2 for Bitcoin Wallets: best practices  (Read 177 times)
dragons_are_secure
Newbie
*
Offline Offline

Activity: 42
Merit: 0


View Profile
October 28, 2017, 04:00:28 PM
 #1

 IETF recently came out with recommendations for best practices for Native Apps using OAuth 2.  It got me wondering whether the protocols for those using Native Apps for Bitcoin Wallets should be improved.

 Here's the IETF:
  https://www.rfc-editor.org/rfc/rfc8252.txt

The short summary is that they recommend adopting a PKCE like exchange.  My understanding is that this is not currently in most Wallet API flows:
  (e.g. : https://developers.coinbase.com/docs/wallet/coinbase-connect)
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!