On Tue, Nov 15, 2011 at 3:26 PM, Dan Taflin <dan.taf...@gettyimages.com>wrote:
> it’s a great solution for someone like, say, Facebook or Twitter to be > able to hand out a blob of javascript and say, “Here, put this on your web > page to enable users to like/tweet/post on their account.” The 3rd-party > web site doesn’t have to write a lick of oauth code to manage the > authorization process – the access token just magically becomes available > in the javascript code. Ah ha! It all makes sense now. I even know the mechanics of Facebook in that case but didn't make the connection. I wonder how the description in the spec could be tweaked a bit to maybe explain this better.
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
