PKCEutvidelsen
PKCEutvidelsen refers to an extension or enhancement related to Public Key Cryptography, specifically within the context of authorization flows. It is a security mechanism designed to mitigate the authorization code interception attack in OAuth 2.0, particularly for public clients like mobile applications and single-page web applications. The acronym PKCE stands for Proof Key for Code Exchange.
The core idea behind PKCE is to dynamically create a secret for each authorization request. The client
When the client receives the authorization code back from the server, it also sends the original `code_verifier`