[OAUTH-WG] Secdir last call review of draft-ietf-oauth-iss-auth-resp-02

Reviewer: Yoav Nir Review result: Ready I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors a

Re: [OAUTH-WG] Is User Agent Profile Secure in OAuth 2.0?

e: > Yoav - > > You can take a look at this as a starting point: > > http://trac.tools.ietf.org/wg/oauth/trac/raw-attachment/wiki/SecurityConsiderations/OAuthWRAP2.0SecurityConsiderations.pdf > > On Tue, Aug 3, 2010 at 1:38 PM, Marius Scurtescu > wrote: >> On Tue,

Re: [OAUTH-WG] Is User Agent Profile Secure in OAuth 2.0?

On Aug 3, 2010, at 11:18 PM, Marius Scurtescu wrote: > On Tue, Aug 3, 2010 at 12:44 PM, Yoav Nir wrote: >> >> On Aug 3, 2010, at 8:32 PM, Brian Eaton wrote: >> >> Please provide an example of code that you would put to thirdparty.com and >> that >

Re: [OAUTH-WG] Is User Agent Profile Secure in OAuth 2.0?

On Aug 3, 2010, at 8:32 PM, Brian Eaton wrote: Please provide an example of code that you would put to thirdparty.com and that would not break the use cases. Take a look at the facebook APIs, in particular the cross-domain communication schemes: http://wiki.developers.fa

Re: [OAUTH-WG] PlantUML

Any chance of postings the sources for today's diagrams (now that we can render them ourselves) On Jul 30, 2010, at 10:45 AM, Peter Saint-Andre wrote: > As referred to in the tutorial just now: > > http://plantuml.sourceforge.net/ > > Peter > > -- > Peter Saint-Andre > https://stpeter.im/ >