On Thu, Apr 30, 2009 at 6:54 PM, Mike Malone <mjmal...@gmail.com> wrote: > > This would break the web flow for 1.0 (non Rev. A) consumers.
I think that's the desired behaviour, though? So long as service providers continue to support 1.0 non Rev. A consumers, the vulnerability persists. b. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to oauth@googlegroups.com To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/oauth?hl=en -~----------~----~----~----~------~----~------~--~---