Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Showing content from https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/issues/2809 below:

[Feature Request] Add experimental POP support with special TS nonce · Issue #2809 · AzureAD/microsoft-authentication-library-for-dotnet · GitHub

API governance doc: https://identitydivision.visualstudio.com/DevEx/_git/AuthLibrariesApiReview/pullrequest/2614?_a=files&path=%2F[Xplat]%20AT-PoP%20Client%20Side%2Fserver_nonce%2Fclient_handling.md

****: To increase the overall security posture of RPs using PoP tokens, it has been proposed that RPs not trust the client-supplied ts (timestamp) claim in Signed HTTP Request (SHR) and instead require that MSAL clients embed an RP-provided server nonce value in the resulting SHR.

This work item tracks the ability to inject a nonce in the Signed Http Request.

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4