Towards a standard for bearer token URLs – Neil Madden

In XSS doesn't have to be Game Over, and earlier when discussing Can you ever (safely) include credentials in a URL?, I raised the possibility of standardising a new URL scheme that safely allows encoding a bearer token into a URL. This makes it more convenient to use lots of very fine-grained tokens rather than one…

Neil Madden – Page 2 – Neil Madden

When and Why Would I use Oauth2?

Healthy Living Magazine 2024 by USA Top Docs - Issuu

Extraction and analysis of signatures from the Gene Expression Omnibus by the crowd

Security Patterns in Practice: Designing Secure Architectures Using Software Patterns (Wiley Software Patterns Series) 1, Fernandez-Buglioni, Eduardo, eBook

OAuth client authentication - more than just client secrets

The WiKID Strong Authentication Systems Overview

API Tokens: A Tedious Survey · The Fly Blog

Jason yammer api

API Tokens: A Tedious Survey · The Fly Blog

Can you ever (safely) include credentials in a URL? – Neil Madden

Capability-Based Security and Macaroons, by Manning Publications, The Startup

APIdays INTERFACE 2021] The Evolution of API Security for Client-side Applications