A year ago, I was surprised to run into Safari ITP. It thwarted my plan to use cookie-based authentication across domains. I appreciate your deep dive into alternatives and the associated mitigations needed to secure them. Thank you for this excellent blog post!
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Is the 'SPA + API' tutorial outdated? | 4 | 3351 | April 18, 2020 | |
| What is future of the implicit grant? | 2 | 4197 | March 2, 2018 | |
| SPA with Authorization Code Grant | 6 | 12098 | August 30, 2019 | |
| Auth0 + Implicit grant - does this work with Lock? | 4 | 4496 | March 2, 2018 | |
| A Practical Guide to leverage OAuth2 Authorization Flows | 3 | 3824 | January 30, 2020 |