Hey, I was hoping someone might be able to clear up something for me with regards to an OAuth scenario.
Let's say a user has granted access for a consumer to use a service, and then, in the consumer application, revokes the access. The user then tries to regain access by going through the request token -> authorize -> access token process, but is presented with an error because the service thinks they already have access. What's the correct behavior in this situation? Should the service provider always start the process over if a new request token is requested even if they've previously authorized the consumer to utilize the service? Thanks in advance! Garrison --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/oauth?hl=en -~----------~----~----~----~------~----~------~--~---
