Notes from reading The Little Book of OAuth 2.0 RFCs


I didn’t read the two documents of security recommendations. I started reading the first one and realised that in order to understand the attacks being described, I needed a better grasp of:

So that’s something I’ll come back to.

Other things