Warren, > On Nov 17, 2025, at 4:36 PM, Warren Parad <[email protected]> > wrote: > > For sure, it's just the connection from the client to the AS page, that is at > least weird for me. > > Users absolutely want to find this page. I just don't think non-first party > clients should be providing that way to make it happen though. Which brings > me back to the problem of when would it ever get usage. If we think about all > the clients of ATProto being first party apps though, then this makes a lot > more sense.
So as a "generic OAuth client" implementor (specifically for CUPS, but anyone can use the C API), I am 100% in favor of providing metadata that allows my client software to provide "first party" security capabilities/functionality for whatever OAuth provider they choose. I also don't think adding one line to the IANA metadata registry is a big deal, with or without people lining up to support it, but for the record I'd support it in CUPS. ________________________ Michael Sweet _______________________________________________ OAuth mailing list -- [email protected] To unsubscribe send an email to [email protected]
