Re: [OAUTH-WG] Draft -07 (major rewrite)

Fri, 11 Jun 2010 14:34:32 -0700 

The comment was about the token endpoint which used to include a 'type' 
parameter (indicating the flow being used). All the flows share the same token 
endpoint.

EHL


On 6/11/10 2:24 PM, "Christian Scholz" <c...@comlounge.net> wrote:

Hi!

Am 11.06.10 22:47, schrieb Marius Scurtescu:
> On Fri, Jun 11, 2010 at 1:11 PM, Eran Hammer-Lahav <e...@hueniverse.com> 
> wrote:
>> Draft -07 represents a major rearrangement of the document. I still have a 
>> lot of work to do but wanted to share my progress and get some general 
>> feedback. The draft includes a few normative language changes but the main 
>> focus is on the document structure and how the architecture is explained.
>>
>> Changes include:
>>
>>   o  Removed device profile.
>>   o  Added verification code support to user-agent flow.
>>   o  Removed multiple formats support, leaving JSON as the only format.
>>   o  Changed assertion "assertion_format" parameter to "assertion_type".
>>   o  Removed "type" parameter from token endpoint.
>
> It would be really useful if each request had a unique type, now we
> are back to guessing what is requested, like in WRAP.

I am just wondering why having a separate endpoint for this isn't
enough. I would rather map another library call to another endpoint
instead of relying on guessing on the contents. That's why we have
separate endpoints, I guess.

(I might be missing something though)

-- Christian


--
Christian Scholz                          Homepage: http://comlounge.net
COM.lounge GmbH                              blog: http://mrtopf.de/blog
Hanbrucher Str. 33                                       Skype: HerrTopf
52064 Aachen                             Video Blog: http://comlounge.tv
Tel: +49 241 400 730 0                           E-Mail c...@comlounge.net
Fax: +49 241 979 00 850                               IRC: MrTopf, Tao_T

Podcasts:
Der OpenWeb-Podcast (http://openwebpodcast.de)
Data Without Borders (http://datawithoutborders.net)
Politisches: http://politfunk.de/
Technical: http://comlounge.tv/

_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth


_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

Reply via email to