011 10:33 AM
> To: oauth@ietf.org
> Subject: [OAUTH-WG] Implicit Grant Client Authentication
>
> I'm sure this has been gone over before, so apologies for that, but I haven't
> found a clear answer (is there a better way than just Google to search the
> mailing list archi
Hi Craig,
I've been puzzling over this text in 4.2: "... the authentication of
the client is based on the user-agent's same-origin policy."
I consider this a a relict from the original User-Agent Flow
description. This flow was dedicated to JavaScript apps running
embedded in a webpage.
I'm sure this has been gone over before, so apologies for that, but I haven't
found a clear answer (is there a better way than just Google to search the
mailing list archive, by the way?)
I've been puzzling over this text in 4.2: "... the authentication of the client
is based on the user-agent'
