You should ignore them so that you do not fail when a client is using an extension you do not understand but could successfully authenticate anyway.
EHL > -----Original Message----- > From: [email protected] [mailto:[email protected]] On Behalf > Of Keith Grennan > Sent: Thursday, June 25, 2009 9:57 AM > To: OAuth > Subject: [oauth] Best practice of how should implementations treat > unknown oauth_* parameters? > > > Hi everyone, > > I'm wondering how other implementations deal with unknown parameters, > which begin with 'oauth_', appearing in an OAuth message. > > Do you silently ignore them or throw an exception? Net::OAuth (Perl > implementation) throws an exception. > > Not sure if this topic is covered by the spec. > > Thanks, > Keith > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/oauth?hl=en -~----------~----~----~----~------~----~------~--~---
