{
  "draft": "draft-ietf-oauth-native-apps-12",
  "doc_id": "RFC8252",
  "title": "OAuth 2.0 for Native Apps",
  "authors": [
    "W. Denniss",
    "J. Bradley"
  ],
  "format": [
    "TEXT",
    "HTML"
  ],
  "page_count": "21",
  "pub_status": "BEST CURRENT PRACTICE",
  "status": "BEST CURRENT PRACTICE",
  "source": "Web Authorization Protocol",
  "abstract": "OAuth 2.0 authorization requests from native apps should only be made through external user-agents, primarily the user's browser.  This specification details the security and usability reasons why this is the case and how native apps and authorization servers can implement this best practice.",
  "pub_date": "October 2017",
  "keywords": [],
  "obsoletes": [],
  "obsoleted_by": [],
  "updates": [
    "RFC6749"
  ],
  "updated_by": [],
  "see_also": [],
  "doi": "10.17487/RFC8252",
  "errata_url": "https://www.rfc-editor.org/errata/rfc8252"
}