OpenID Connect Implicit Flow - How can THAT be secure?
21 April 2016
The Implicit Flow of OpenID Connect is useful for performing delegated access to resources when the client is not controlled - for example, a javascript-based Single Page App (SPA). A very basic and naive explanation of how this flow works: User loads the SPA User tries to access a protected... continue reading