Overview#

OAuth state parameter is a OAuth 2.0 parameter used to prevent Cross-site request forgery and Best Practices would be use a CSRF Token

Some folks recommend this be a Digital Signature and stored within the browser cookie

Encoding claims in the OAuth 2 state parameter using a JWT points out some recommendation on use of OAuth state parameter

More Information#

There might be more information for this subject on one of the following:

Add new attachment

Only authorized users are allowed to upload new attachments.
« This page (revision-6) was last changed on 19-Jul-2017 08:38 by jim