retooted IFIN - The Independent Federated Intelligence Network
Device Code authorization in OAuth 2.0 was intended for input-constrained devices like Smart TVs. It probably shouldn't be used for anything else, especially since attackers are using it effectively for phishing.
https://discourse.ifin.network/t/the-dangers-of-device-code-flow/642