Skip to content

Commit

Permalink
update changelog
Browse files Browse the repository at this point in the history
  • Loading branch information
@aaronpk
aaronpk committed Feb 28, 2024
1 parent 7cd74c4 commit 741f882
Showing 1 changed file with 8 additions and 2 deletions.
10 changes: 8 additions & 2 deletions draft-ietf-oauth-browser-based-apps.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1462,13 +1462,19 @@ Document History

[[ To be removed from the final specification ]]

-17

* Added a section on anti-forgery/double-submit cookies as another form of CSRF protection
* Updated CORS terminology
* Moved new section on in-browser flows as not applicable to BFF or TM patterns
* Fixed usage of some browser technology terminology
* Editorial improvements

-16

* Applied editorial changes from Filip Skokan and Louis Jannett
* Clarified when cookie encryption applies
* Added a section with security considerations on the use of postMessage
* Added a section on anti-forgery/double-submit cookies as another form of CSRF protection
* Updated CORS terminology

-15

Expand Down

0 comments on commit 741f882

Please sign in to comment.