[OPENAM-10443] Add doc for PKCE (RFC 7636) support once it is implemented - ForgeRock JIRA

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 13.5.3, 14.0.1, 14.5.1, 6.0.0, 14.1.2, 5.5.2
Component/s: documentation
Labels:
- AME
- PM-PASS
- SHAKESPEARE

Target Version/s:

13.5.2, 14.0.0, 14.1.0, 6.0.0, 5.5.2
Rank:
1|hzqyen:

Support Ticket IDs:

Description

https://backstage.forgerock.com/#!/docs/openam/13.5/reference

Does not directly mention PKCE that I could find but a customer noted:

"PKCE is refenced in this page, you have to search "Code Verifier Parameter Required"."

An internal note states:

"Is the ask whether we support at all (ie the draft which is shipped in 13.5) or we support the final spec https://tools.ietf.org/html/rfc7636 ? The draft is implemented in 13.5 and should work and is supported. OAuth2 client authentication modules however are not PKCE enabled."

We should amend documentation to detail the level of support of PKCE in OpenAM 13.5 and future versions.

Attachments

Activity

People

Assignee:

Unassigned

Reporter:

Sam Fraser

Votes:

0 Vote for this issue

Watchers:

4 Start watching this issue

Dates

Created:

20/Jan/17 5:16 PM

Updated:

18/Mar/19 5:35 PM

Resolved:

30/Apr/18 11:11 AM