Android

Space shortcuts

Page tree

Versions Compared

Old Version 4

changes.mady.by.user Unknown User (lflynn)

Saved on

compared with

New Version Current

changes.mady.by.user Unknown User (lflynn)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

 To request OAuth user permission for information from a service provider, present a dialogue box to the user that identifies the relying party's information and the scope of its permissions. 

Noncompliant Code Example

This noncompliant code example shows an application that

Code Block
bgColor#FFCCCC
TBD

 

Compliant Solution

In this compliant solution the application

Code Block
bgColor#CCCCFF
TBD

Risk Assessment

 

Rule

Severity

Likelihood

Remediation Cost

Priority

Level

DRD25-J

Medium

Probable

Medium

 

 

Automated Detection

 

Bibliography

[Chen 14]OAuth Demystified for Mobile Application Developers
 [IETF OAuth1.0a]

Internet Engineering Task Force (IETF). OAuth core 1.0 revision a. http://oauth.net/core/1.0a/.

 [IETF OAuth2.0] Internet Engineering Task Force (IETF). The OAuth 2.0 authorization framework. http://tools.ietf.org/html/rfc6749.

...