On 2011-04-19, at 10:51 AM, David Recordon wrote: > I think requests like this and the following discussions have scared > away many of the original voices behind OAuth 2.0. As Eran said, the > goal was never to create a new framework but standardize interoperable > best practices that the industry was adopting. Under-defined extension > points don't make this specification easier to adopt in a pragmatic > fashion.
I disagree David. While the original IETF WG charter was to standardize OAuth 1.0, we are now working on OAuth 2.0. The feature described was in OAuth-WRAP which was a basis for OAuth 2.0. -- Dick _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth