Thanks, Leah.
And how about for a non-matching Verifier? Should it be:
401 Invalid Verifier
I only brought this up because it seems that other specific invalid
objects (keys, tokens, signatures, nonces) have explicit strings in
the spec but that didn't seem to be the case for timestamps and
verifiers. Something to add the the spec in the next draft or update.
...doug
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"OAuth" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [email protected]
For more options, visit this group at http://groups.google.com/group/oauth?hl=en
-~----------~----~----~----~------~----~------~--~---
