#Oauth2

OAuth 2.0 Security: The \"Sign in with Google\" Mistakes That Will Haunt You 👻🔑

You added 'Sign in with Google' in 10 minutes and felt like a genius. But did you validate the state parameter? Check the token audience? Secure your redirect URIs? Didn't think so. Let's fix that.