问题
I am using authorization code flow with PKCE, and would like to deny access to Authorization Server if the client is using an embedded user agent. I am using IdentityServer 4 for authorization server, and Asp.net core 2.2 for the API, both running on IIS 8.
I have search for solutions on how to deny embedded user agents on native application to access Authorization server, but I cant find any steps on how to implement/configure this. Is there anyone that could provide steps on how to deny access from these kind of applications?
Thanks in advance
来源:https://stackoverflow.com/questions/59138227/how-to-deny-embedded-user-agents-accessing-authorization-server