What triggers this flow? If you are using the authorization endpoint with a different response_type, it would be helpful if you shared that with the wg as currently, that's simply not allowed (the values are not extensible). I am going to change that in -17, but based on the requirement presented by Paul Tarjan. Additional use cases would be extremely helpful.
Also, I'd hate to see Google being the first to violate the protocol in that scale. EHL From: oauth-boun...@ietf.org [mailto:oauth-boun...@ietf.org] On Behalf Of Brian Eaton Sent: Wednesday, July 06, 2011 1:42 PM - give out authorization codes via the user-agent flow. We've implemented a variation of this based on HTML5 and window.postMessage.
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth