Aaron Parecki

Drummond Reed https://twitter.com/drummondreed

Biggest laugh at #IIW so far: when @justin__richer in his session on “Is #selfsovereignidentity really possible” turned to Dave Crocker and said that we can all blame him for the Internet not having #security built in from the start.

San Jose, California • 49°F

Thu, May 2, 2019 6:03pm +00:00 (liked on Thu, May 2, 2019 4:18pm -07:00) #IIW #selfsovereignidentity #security
Drummond Reed https://twitter.com/drummondreed

At #IIW session on “Is #selfsovereignidentity really possible”, @xmlgrrl Eve Maler offers perhaps the most concise definition of of #privacy I’ve ever heard: “Privacy is context-controlled choice and respect.” Beautiful. And I believe actually possible with #SSI.

San Jose, California • 49°F

Thu, May 2, 2019 6:07pm +00:00 (liked on Thu, May 2, 2019 4:18pm -07:00) #IIW #selfsovereignidentity #privacy #SSI
Eve Maler https://twitter.com/xmlgrrl

In @justin__richer’s #IIW “DIDn’t” session: Once more with feeling: Privacy is not secrecy; privacy is not encryption; privacy is context, control, choice, and respect.

San Jose, California • 49°F

Thu, May 2, 2019 6:10pm +00:00 (liked on Thu, May 2, 2019 4:18pm -07:00) #IIW
at The Club at SJC

San Jose, California • Thu, May 2, 2019 3:57pm

37.368421 -121.928393

San Jose, CA, United States

8 Coins

Thu, May 2, 2019 3:57pm -07:00
at TSA Pre-Check Terminal B

San Jose, California • Thu, May 2, 2019 3:48pm

37.365179 -121.924013

San Jose, CA, United States • 49°F

4 Coins

Thu, May 2, 2019 3:48pm -07:00
at Norman Y. Mineta San José International Airport (SJC)

San Jose, California • Thu, May 2, 2019 3:43pm

37.368438 -121.929042

San Jose, CA, United States

10 Coins

Thu, May 2, 2019 3:43pm -07:00
Nico Kaiser https://twitter.com/nicokaiser • May 2
What is your opinion on refresh tokens in client-side apps? The PKCE Auth Code flow allows issuing refresh tokens, so SPAs can refresh their tokens without relying on web_message (possibly cross-domain) iframes. ...

Totally depends on your risk tolerance. Browsers are always a more risky environment, so that's something to keep in mind with refresh tokens.

If you are going to issue refresh tokens to JS, definitely rotate them after every use.

Sunnyvale, California • 49°F

1 like

Thu, May 2, 2019 3:32pm -07:00
Eve Maler https://twitter.com/xmlgrrl

#IIW today is obv going to start with a bang. @justin__richer

Mountain View, California • 49°F

Thu, May 2, 2019 4:06pm +00:00 (liked on Thu, May 2, 2019 10:14am -07:00) #IIW
Chris https://twitter.com/gonji96

PKCE is on my list to implement when no one is watching

Mountain View, California • 49°F

Thu, May 2, 2019 3:54pm +00:00 (liked on Thu, May 2, 2019 9:04am -07:00)
Browser APIs have gotten so much better lately! Way easier to do @oauth_2 PKCE in a browser now:

✅ good random number generators
✅ secure hashing functions

Just missing a good base64 encoding function. (Check out the ugly hack in the post.)

https://developer.okta.com/blog/2019/05/01/is-the-oauth-implicit-flow-dead#begin-the-pkce-request

Mountain View, California, USA • 49°F

5 likes 1 repost 5 replies

Thu, May 2, 2019 8:25am -07:00 #oauth #javascript #pkce
at Computer History Museum

Mountain View, California • Thu, May 2, 2019 7:54am

37.414456 -122.0775

Mountain View, CA, United States

1 Coin

Thu, May 2, 2019 7:54am -07:00
at Hotel Vue

Mountain View, California • Thu, May 2, 2019 7:29am

37.381403 -122.074277

Mountain View, CA, United States • 49°F

10 Coins

Thu, May 2, 2019 7:29am -07:00
current status: wrapped up the web standards meeting for the day, and now watching the recording of yesterday's Planning and Sustainability Commission meeting in Portland, a different kind of standards meeting.

what? I don't have too many projects *you* have too many projects

Mountain View, California, USA • 49°F

12 likes 1 repost 1 reply

Wed, May 1, 2019 9:17pm -07:00 #pdx #portland
at Hotel Vue

Mountain View, California • Wed, May 1, 2019 8:42pm

37.381403 -122.074277

Mountain View, CA, United States • 49°F

34 Coins

Wed, May 1, 2019 8:42pm -07:00
Randall Degges https://twitter.com/rdegges • May 2
Just in case you were wondering, there is, in fact, a blockchain magazine for Australians.

ohno

Mountain View, California • 49°F

Wed, May 1, 2019 7:38pm -07:00
Eve Maler https://twitter.com/xmlgrrl

Hear, hear. Really incisive analysis from @gffletch on how relying parties look at the SSI proposition and some of the challenges in solving the last mile(s?). #iiw

Mountain View, California • 49°F

Wed, May 1, 2019 11:27pm +00:00 (liked on Wed, May 1, 2019 4:39pm -07:00) #iiw
at Computer History Museum

Mountain View, California • Wed, May 1, 2019 3:34pm

37.414456 -122.0775

Mountain View, CA, United States • 49°F

1 like 5 Coins

Wed, May 1, 2019 3:34pm -07:00
at Cloud Café

Mountain View, California • Wed, May 1, 2019 1:30pm

37.414486 -122.077605

Mountain View, CA, United States • 49°F

7 Coins

Wed, May 1, 2019 1:30pm -07:00
Nico Kaiser https://twitter.com/nicokaiser • May 1
From what I understand, the Auth Code flow (even with PKCE) needs some kind of backend in the app (i.e., no static HTML-only cross-domain SPA), or am I missing something?

If you read the post I talk about exactly that issue and provide sample code for doing auth code + PKCE entirely in JavaScript

Mountain View, California, USA • 49°F

1 reply

Wed, May 1, 2019 9:58am -07:00
Justin Richer https://twitter.com/justin__richer

Going to be discussing https://oauth.xyz today at #iiw

Mountain View, California • 49°F

Wed, May 1, 2019 4:25pm +00:00 (liked on Wed, May 1, 2019 9:56am -07:00) #iiw

older