to a client.
>
> -adam
>
> *From:* William Mills [mailto:wmills_92...@yahoo.com]
> *Sent:* Tuesday, February 05, 2013 6:49 PM
> *To:* Lewis Adam-CAL022; Tim Bray
> *Cc:* "WG "@il06exr02.mot.com
> *Subject:* Re: [OAUTH-WG] Why OAuth it self is not an authe
ut of the password consumption business). I am not at all
> advocating OAuth for authentication to a client.
>
> -adam
>
> From: William Mills [mailto:wmills_92...@yahoo.com]
> Sent: Tuesday, February 05, 2013 6:49 PM
> To: Lewis Adam-CAL022; Tim Bray
> Cc: "
[mailto:wmills_92...@yahoo.com]
Sent: Tuesday, February 05, 2013 6:49 PM
To: Lewis Adam-CAL022; Tim Bray
Cc: "WG "@il06exr02.mot.com
Subject: Re: [OAUTH-WG] Why OAuth it self is not an authentication framework ?
Why use OAuth when OpenID does everything that OAuth can do as an
authentication method
user info, sure, but why rebuild OpenID when OpenID exists?
-bill
From: Lewis Adam-CAL022
To: Tim Bray ; William Mills
Cc: "oauth@ietf.org WG"
Sent: Tuesday, February 5, 2013 2:27 PM
Subject: RE: [OAUTH-WG] Why OAuth it self is not an authenti
ed it “OAuth” and
> not “OAuthR” J
>
> -adam
>
> From: oauth-boun...@ietf.org [mailto:oauth-boun...@ietf.org] On Behalf Of Tim
> Bray
> Sent: Tuesday, February 05, 2013 3:28 PM
> To: William Mills
> Cc: oauth@ietf.org WG
> Subject: Re: [OAUTH-WG] Why OAuth it self is not a
...@ve7jtb.com>>
Cc: "oauth@ietf.org<mailto:oauth@ietf.org> WG"
mailto:oauth@ietf.org>>
Sent: Tuesday, February 5, 2013 1:12 PM
Subject: Re: [OAUTH-WG] Why OAuth it self is not an authentication framework ?
why pigeonhole it?
OAuth can be deployed with no authz semantics at a
uary 5, 2013 1:12 PM
> *Subject:* Re: [OAUTH-WG] Why OAuth it self is not an authentication
> framework ?
>
> why pigeonhole it?
>
> OAuth can be deployed with no authz semantics at all (or at least as
> little as any authn mechanism), e.g client creds grant type with no sc
Paul Madsen
To: John Bradley
Cc: "oauth@ietf.org WG"
Sent: Tuesday, February 5, 2013 1:12 PM
Subject: Re: [OAUTH-WG] Why OAuth it self is not an authentication framework ?
why pigeonhole it?
OAuth can be deployed with no authz semantics at all (or at least
as little as any aut
why pigeonhole it?
OAuth can be deployed with no authz semantics at all (or at least as
little as any authn mechanism), e.g client creds grant type with no scopes
I agree that OAuth is not an *SSO* protocol.
On 2/5/13 3:36 PM, John Bradley wrote:
OAuth is an Authorization protocol as many of
Another very good writeup of this was published recently as well:
http://blogs.msdn.com/b/vbertocci/archive/2013/01/02/oauth-2-0-and-sign-in.aspx
This confusion seems to be a major sticking point among developers.
-- Justin
On 02/05/2013 02:52 PM, Prabath Siriwardena wrote:
FYI and for your
OAuth is an Authorization protocol as many of us have pointed out.
The post is largely correct and based on one of mine.
John B.
On 2013-02-05, at 12:52 PM, Prabath Siriwardena wrote:
> FYI and for your comments..
>
> http://blog.facilelogin.com/2013/02/why-oauth-it-self-is-not-authentication
FYI and for your comments..
http://blog.facilelogin.com/2013/02/why-oauth-it-self-is-not-authentication.html
Thanks & Regards,
Prabath
Mobile : +94 71 809 6732
http://blog.facilelogin.com
http://RampartFAQ.com
___
OAuth mailing list
OAuth@ietf.org
htt
12 matches
Mail list logo
