Hi all, While reading the OAuth Core 1.0 spec, one question arises about section 6.2.1 'Consumer Directs the User to the Service Provider'. The description about the oauth_token parameter says the Request Token is optional and when the accept requests to the User Authorization URL does not contain the token, service provider will prompt the User to enter it manually.
My question is what is the reason behind for the Request Token to be optional? If the user has to enter it manually, where does the user get this token? Any suggestion is appreciated. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to oauth@googlegroups.com To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/oauth?hl=en -~----------~----~----~----~------~----~------~--~---
