Y
Hacker News
new
|
ask
|
show
|
jobs
by
krooj
973 days ago
This article is not as impressive as one might imagine - the exploit appears to use the implicit grant flow, which is officially deprecated and should be replaced by the authorization_code + PKCE flow.