Conversation
Collaborator
|
更新后,Microsoft Auth Server 是如何验证 client 是 HMCL?我看请求参数内只传递 client_id,不再传递 client_secret 了。 |
Contributor
Author
是。 本地应用不能安全保存 这里目的不是用来证明 client 就是 HMCL,而是用来证明当前换 token 的 client 是最初发起请求的 client ,目的是解决 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
resolves #5566
https://learn.microsoft.com/zh-cn/entra/identity-platform/v2-oauth2-auth-code-flow
需要黄鱼在 entra 进行一些配置