@divy.zone on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

devin ivy 🐋

divy.zone

did:plc:l3rouwludahu3ui3bt66mfvj

first, the oauth authorization code flow is truly wild from a security standpoint: three-legged, user interaction, dynamic redirects, the browser security model in the mix. and in atproto the client and auth server have _no_ prior relationship with each other. it's no wonder oauth can be... a lot.

2025-06-13T04:15:24.473Z