On Thu, May 11, 2017 at 2:34 AM, Georg Lukas <ge...@op-co.de> wrote: > Sam, could you imagine elaborating a bit more of your potential business > use case and how you see it conflict with HMAC-tokens?
I'm not sure that there's much more to say; I don't have a specific use case in mind other than I think lots of people would be more comfortable if the server enforced handing out tokens and there was an option for limited-use tokens. I do like the idea of clients being able to upload a key and sign their own tokens too though; it just seems like it's more complicated. —Sam _______________________________________________ Standards mailing list Info: https://mail.jabber.org/mailman/listinfo/standards Unsubscribe: standards-unsubscr...@xmpp.org _______________________________________________
