OAuth - AuthCode with PKCE (without secret)

Question

OAuth - AuthCode with PKCE (without secret)

m-mohr opened this issue 3 years ago · 2 comments

We are using the OAuth 2.0 functionality. It seems that httr is only supporting the AuthCode flow without PKCE (i.e. you need to provide a client secret). Is there a way to use AuthCode (or Device Code) with PKCE and thus without a client secret? If not, are there any plans to implement this?

Answer 1 · 2021-10-07T15:20:56.000Z

I think you should look at httr2:

https://httr2.r-lib.org

Answer 2 · 2021-10-07T15:26:43.000Z

Thanks, that will probably work!