Just a thought. Considering the growing importance of security in everything we do that’s web based, and that uses client’s personal information or utilizes their accounts, is there a reason you still haven’t updated User-Based authorization to OAuth 2.0?
If there’s one thing I’m sure of, it’s that sticking with older security protocols drastically increases the risk of unauthorized access to that data (also known as hacking).
This actually just raised an important question in my mind. If someone utilizing our applications was hacked by someone taking advantage of the older OAuth 1.0a, would the app developers be liable if the user decided to take legal action?
