+1
Additionally, RFC 6749 states it SHOULD only be passed in the body as a last resort and only if using the HTTP Authorization header is NOT possible. Best regards, Don Donald F. Coffin Founder/CTO REMI Networks 2335 Dunwoody Xing #E Dunwoody, GA 30338-8221 Phone: (949) 636-8571 Email: donald.cof...@reminetworks.com <mailto:donald.cof...@reminetworks.com> From: OAuth [mailto:oauth-boun...@ietf.org] On Behalf Of oauth-requ...@ietf.org Sent: January 29, 2018 04:39 PM To: oauth@ietf.org Subject: OAuth Digest, Vol 111, Issue 36 Send OAuth mailing list submissions to oauth@ietf.org <mailto:oauth@ietf.org> To subscribe or unsubscribe via the World Wide Web, visit https://www.ietf.org/mailman/listinfo/oauth or, via email, send a message with subject or body 'help' to oauth-requ...@ietf.org <mailto:oauth-requ...@ietf.org> You can reach the person managing the list at oauth-ow...@ietf.org <mailto:oauth-ow...@ietf.org> When replying, please edit your Subject line so it is more specific than "Re: Contents of OAuth digest..."
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
