It's not that explicit. I'll fix it.
EHL
> -Original Message-
> From: Subbu Allamaraju [mailto:su...@subbu.org]
> Sent: Monday, November 29, 2010 12:44 PM
> To: Eran Hammer-Lahav
> Cc: Anton Panasenko; oauth@ietf.org
> Subject: Re: [OAUTH-WG] OAuth 2.0 se
the access token call can only reduce the already
> approved scope.
>
> EHL
>
> From: oauth-boun...@ietf.org [mailto:oauth-boun...@ietf.org] On Behalf Of
> Anton Panasenko
> Sent: Friday, November 26, 2010 10:54 AM
> To: oauth@ietf.org
> Subject: [OAUTH-WG] OAut
#2. Asking for scope on the access token call can only reduce the already
approved scope.
EHL
From: oauth-boun...@ietf.org [mailto:oauth-boun...@ietf.org] On Behalf Of Anton
Panasenko
Sent: Friday, November 26, 2010 10:54 AM
To: oauth@ietf.org
Subject: [OAUTH-WG] OAuth 2.0 server behavior
Hi
Hi,
What behavior is expected from the server, if in the query on access_token
without "scope"
(grant_type=authorization_code&client_id=s6BhdRkqt3&client_secret=gX1fBat3bV&code=i1WsRn1uB1&redirect_uri=https%3A%2F%2Fclient%2Eexample%2Ecom%2Fc)?
1. The server must generate access_token for an emp