-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 2011-06-28 18:05, Brian Campbell wrote: > invalid_grant seems like the appropriate error as the username and > password are the grant in the context of the Resource Owner Password > Credentials flow/grant type.
What should the HTTP status code be? The spec seems to indicate 400, but I would think 401 would be appropriate? Cheers, Marcus -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk4K9zkACgkQXjXn6TzcAQmI7gCg8nKkTbb2rKFAXTEMm6WMaPL0 o3EAoKYHWKhCmqcFTZHDCcGpw65Leukz =ocuC -----END PGP SIGNATURE----- _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth