[RFC2104] is a normative reference but isn't referred to in draft-ietf-oauth-v2-10 and all the hmac stuff seems to be gone from OAuth2 since 06 - so should the [RFC2104] reference be removed?
Bill _______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
