Hey Josh, Sorry I lost your message in the long thread.
On Thu, Apr 23, 2009 at 11:04 PM, Josh Fraser <joshf...@gmail.com> wrote: > > Leah, > > > * > > 2. No callback request parameter > > * > > What if we make the callback optional? Consumers can either: > > a) leave it out altogether in which case the registered callback will > be used, or > b) include it, in which case it must be included in the signature > Either one of these would work well. Already certain providers (like Yahoo! which you mentioned earlier) are already doing a). I also think b) is a good idea for service providers who expect that consumers will need to be able specify a callback URL on the fly. Sounds good to me. Leah --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to oauth@googlegroups.com To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/oauth?hl=en -~----------~----~----~----~------~----~------~--~---