[oauth] Re: How should the be notified if a request for authorization is denied?

2009-07-14 Thread Manish Pandit
On Jul 13, 4:48 pm, Richard Wallace wrote: > The OAuth spec section 6.2.3 states that "If the User denies access, > the Consumer MAY be notified that the Request Token has been revoked." >  At first I was thinking that I would just flag the request token as > being denied on the service provide

[oauth] Re: How should the be notified if a request for authorization is denied?

2009-07-14 Thread Richard Wallace
On Tue, Jul 14, 2009 at 10:45 AM, Manish Pandit wrote: > > > > On Jul 13, 4:48 pm, Richard Wallace > wrote: >> The OAuth spec section 6.2.3 states that "If the User denies access, >> the Consumer MAY be notified that the Request Token has been revoked." >>  At first I was thinking that I would ju

[oauth] Re: How should the be notified if a request for authorization is denied?

2009-07-16 Thread John Kristian
I would pass a verifier, perhaps oauth_verifier=placeholder. I imagine a careless consumer might behave badly if the verifier is absent. On Jul 13, 4:48 pm, Richard Wallace wrote: > The OAuth spec section 6.2.3 states that "If the User denies access, > the Consumer MAY be notified that the Requ