Just my 2.cents but - I would recommend 400 Bad Request in the event that you receive plaintext over HTTP 406 Not Acceptable in the event that you receive something unexpected in the /version/ field.
-- Lee Hambley Twitter: @leehambley | @capistranorb Please consider the environment before printing this email Join the campaign at http://thinkBeforePrinting.org On 17 March 2010 22:39, Mike Moore <blowm...@gmail.com> wrote: > Hey all, we're implementing OAuth and we have a differing of opinions > on what the expected behavior is in a couple of instances. What is the > proper HTTP status code to return for the following cases? > > 1) When a client uses the PLAINTEXT signature method over HTTP > > 2) When a client sends a value for the oauth_version parameter that is > not "1.0" > > Thanks much! > ~MIke > > -- > You received this message because you are subscribed to the Google Groups > "OAuth" group. > To post to this group, send email to oa...@googlegroups.com. > To unsubscribe from this group, send email to > oauth+unsubscr...@googlegroups.com <oauth%2bunsubscr...@googlegroups.com>. > For more options, visit this group at > http://groups.google.com/group/oauth?hl=en. > > -- You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
