I have used the OAuth2 extension to build a Restlet-based and plain Java clients for my API (Restlet/GAE). These both use OAuth's "authorization flow" which is supported by the OAuth2 extension. Now I wanted to build a JavaScript client. JavaScript clients seem to require a different flow (variously named user agent or implicit grant or client side). My question is does the OAuth2 extension support this flow?
Looking at the source I see that in addition to the authorization flow there is also a "password" flow and a "none" flow - but I can't tell if those are meant to work with JavaScript clients. Thanks in advance for any advice, RB ------------------------------------------------------ http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=3041709
