domain | aaronparecki.com |
summary | The MCP spec's latest update (as of June 18th) introduces significant changes in authorization processes and compatibility with existing security standards:
- Separation from servers: Authorization Server is now distinct for handling user authentication instead of the previously responsible MCP Servers. - Dynamic discovery, enhanced metadata protection are enabled through RFC9728 Protected Resource Metadata.
- Additional mandatory resource indicators as per RFC8707 to enhance security measures.
A huge shout-out goes out to contributors such as David Soria Parra and others who have assisted in updating this section of the spec.
Furthermore,
The completion by the OAuth working group has resulted in a new Best Current Practice for OAuth 2.0 Security (RFC9700), which is an essential component moving forward towards OAuth 2.1.
|
title | Aaron Parecki |
description | Aaron Parecki |
keywords | portland, oregon, likes, vegas, replies, authorization, security, more, will, servers, nevada, states, coins, https, aaron, identity, working |
upstreams |
microformats.org, adactio.com, oauth2simplified.com |
downstreams |
indieweb.org, oauth.net, aaronpk.tv, youtube.com, okta.com, openid.net, oauth2simplified.com, anomalily.world, swarmapp.com, micro.blog, github.com, linkedin.com, instagram.com, flickr.com, speakerdeck.com, slideshare.net, last.fm, kit.co, w3.org, wikipedia.org, wechat.com, bsky.app, venmo.com, webmention.net, creativecommons.org, microformats.org, xn--sr8hvo.ws |
nslookup | A 45.79.83.22 |
created | 2024-02-25 |
updated | 2025-07-17 |
summarized | 2025-07-17 |
|
|