Aaron Parecki

Adding Support for BlueSky to IndieLogin.com

Today I just launched support for BlueSky as a new authentication option in IndieLogin.com!
continue reading...

73 likes 15 reposts 9 replies

Sat, Oct 11, 2025 9:49am -07:00 #oauth #bluesky #atproto #indieweb
Client ID Metadata Document Adopted by the OAuth Working Group

The IETF OAuth Working Group has adopted the Client ID Metadata Document specification!
continue reading...

1 mention

Wed, Oct 8, 2025 12:14pm -07:00 #oauth #ietf #cimd
Enterprise-Ready MCP

I've seen a lot of complaints about how MCP isn't ready for the enterprise.
continue reading...

2 likes

Mon, May 12, 2025 10:01pm -07:00 #mcp #oauth
Let's fix OAuth in MCP

Update: The changes described in this blog post have been incorporated into the 2025-06-18 version of the MCP spec!
continue reading...

Thu, Apr 3, 2025 4:39pm -07:00 #oauth #mcp #modelcontextprotocol #ai #llm
My IETF 121 Agenda

Here's where you can find me at IETF 121 in Dublin!
continue reading...

1 like

Mon, Nov 4, 2024 9:18am +00:00 #ietf #ietf121 #oauth
OAuth Oh Yeah!

The first law of OAuth states that
continue reading...

1 like

Thu, Aug 29, 2024 12:59pm -07:00 #oauth #ai #music
My IETF 120 Agenda

The sessions I will be attending and presenting at during IETF 120 in Vancouver
continue reading...

Sun, Jul 21, 2024 12:54pm -07:00 #ietf #oauth #scim
FedCM for IndieAuth

IndieWebCamp Düsseldorf took place this weekend, and I was inspired to work on a quick hack for demo day to show off a new feature I've been working on for IndieAuth.
continue reading...

13 likes 2 reposts 2 replies 1 mention

Sun, May 12, 2024 7:39am -07:00 #fedcm #indieauth #oauth
OAuth for Browser-Based Apps Working Group Last Call!

The draft specification OAuth for Browser-Based Applications has just entered Working Group Last Call!
continue reading...

3 likes 1 mention

Thu, May 2, 2024 3:06pm -07:00 #oauth #ietf
OAuth: "grant" vs "flow" vs "grant type"

Is it called an OAuth "grant" or a "flow"? What about "grant type"?
continue reading...

1 like 5 reposts

Fri, Mar 29, 2024 8:15am -07:00 #oauth #terminology
OAuth WG

OAuth for Browser-Based Apps Draft 15

After a lot of discussion on the mailing list over the last few months, and after some excellent discussions at the OAuth Security Workshop, we've been working on revising the draft to provide clearer guidance and clearer discussion of the threats and consequences of the various architectural patterns in the draft.
continue reading...

1 mention

Mon, Oct 23, 2023 9:12am -07:00 #oauth #ietf
OAuth Support in Bluesky and AT Protocol

Bluesky, a new social media platform and AT Protocol, is unsurprisingly running up against the same challenges and limitations that Flickr, Twitter and many other social media platforms faced in the 2000s: passwords!
continue reading...

12 likes 1 repost 10 replies 2 mentions

Thu, Mar 9, 2023 5:09pm -08:00 #oauth #indieauth #bluesky #atproto #indieweb #indieauth
OAuth WG

OAuth for Browser-Based Apps Draft 12

I just published a revised version of OAuth for Browser-Based Apps based on the feedback and discussion at IETF 115 London!
continue reading...

Tue, Dec 6, 2022 4:20pm -08:00 #oauth #ietf
The Laws of OAuth

The first law of OAuth states that the total number of authorized access tokens must remain constant in an isolated system.
continue reading...

2 replies

Fri, Dec 2, 2022 3:00pm -08:00 #chatgpt #openai #oauth
OAuth WG

New Draft of OAuth for Browser-Based Apps (Draft -11)

With the help of a few kind folks, we've made some updates to the OAuth 2.0 for Browser-Based Apps draft as discussed during the last IETF meeting in Philadelphia.
continue reading...

Thu, Sep 15, 2022 6:04pm -07:00 #oauth #oauth2
How to Sign Users In with IndieAuth

This post will show you step by step how you can let people log in to your website with their own IndieAuth website so you don't need to worry about user accounts or passwords.
continue reading...

3 likes 3 bookmarks 1 reply 4 mentions

Tue, Apr 13, 2021 9:15pm -07:00 #indieauth #indieweb #oauth
Learn OAuth over the winter break!

Over the last year, I've helped thousands of software developers learn about OAuth by hosting live and virtual workshops, and all this knowledge is now available as an on-demand video course!
continue reading...

1 reply

Tue, Dec 22, 2020 2:17pm -08:00 #oauth #workshop #course #udemy
IndieAuth Spec Updates 2020

This year, the IndieWeb community has been making progress on iterating and evolving the IndieAuth protocol. IndieAuth is an extension of OAuth 2.0 that enables it to work with personal websites and in a decentralized environment.
continue reading...

3 likes 4 bookmarks 5 replies 9 mentions

Thu, Dec 3, 2020 6:55pm -08:00 #indieauth #indieweb #oauth
The Real Cause of the Sign In with Apple Zero-Day

The zero-day bug in Sign In with Apple actually had nothing to do with the OAuth or OpenID Connect part of the Sign In with Apple exchange, and very little to do even with JWTs. Let's take a closer look to see what actually happened.
continue reading...

37 likes 19 reposts 1 bookmark 9 replies 25 mentions

Sun, May 31, 2020 1:49pm -07:00 #oauth #oidc #apple #siwa #security #zeroday
OAuth WG

First Draft of OAuth 2.1

I'm happy to share that Dick and Torsten and I have published a first draft of OAuth 2.1. We've taken the feedback from the discussions on the list and incorporated that into the draft.
continue reading...

61 likes 27 reposts 2 replies 4 mentions

Wed, Mar 11, 2020 5:22pm -07:00 #oauth #oauth2 #ietf #oauth21

older

2025-10-11	Adding Support for BlueSky to IndieLogin.com
2025-10-08	Client ID Metadata Document Adopted by the OAuth Working Group
2025-05-12	Enterprise-Ready MCP
2025-04-03	Let's fix OAuth in MCP
2024-11-04	My IETF 121 Agenda
2024-08-29	OAuth Oh Yeah!
2024-07-21	My IETF 120 Agenda
2024-05-12	FedCM for IndieAuth
2024-05-02	OAuth for Browser-Based Apps Working Group Last Call!
2024-03-29	OAuth: "grant" vs "flow" vs "grant type"
2023-10-23	OAuth for Browser-Based Apps Draft 15
2023-03-09	OAuth Support in Bluesky and AT Protocol
2022-12-06	OAuth for Browser-Based Apps Draft 12
2022-12-02	The Laws of OAuth
2022-09-15	New Draft of OAuth for Browser-Based Apps (Draft -11)
2021-04-13	How to Sign Users In with IndieAuth
2020-12-22	Learn OAuth over the winter break!
2020-12-03	IndieAuth Spec Updates 2020
2020-05-31	The Real Cause of the Sign In with Apple Zero-Day
2020-03-11	First Draft of OAuth 2.1
	← older

Articles tagged #oauth