Gaston Dombiak wrote:
Hey Peter,I’m fine with not having those flows explained in the next version of the XEP. However, are we going to explain that tokens need to be validated and that more flows with other Oauth servers will be needed? My knowledge of OAuth went from 0% to 1% in the last weeks so I guess that adding some basic explanation of how things work is going to be useful for implementors that are no OAuth expert.
Yes there will be more examples and flows added to XEP-0235. :)AFAICS, the basic idea is that your (say) pubsub service would act as an OAuth "Service Provider" -- you could ask it for OAuth Request Tokens, ask it to verify OAuth Access Tokens, etc.
Or so it seems to me... /psa
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ JDev mailing list FAQ: http://www.jabber.org/discussion-lists/jdev-faq Forum: http://www.jabberforum.org/forumdisplay.php?f=20 Info: http://mail.jabber.org/mailman/listinfo/jdev Unsubscribe: [EMAIL PROTECTED] _______________________________________________
