There are two requests that have type=web_server (but they are directed to different endpoints): - 2.5.1. Client Requests Authorization - 2.5.2. Client Requests Access Token
The is the only case when a type is used for more than one request. While the spec can work perfectly fine like this, if each request message had a unique type that would simplify parsing and validation in a generic library a lot. Can we change in 2.5.2 the type to something else? web_token? Thanks, Marius _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
