Just my 2.cents but - I would recommend 400 Bad Request in the event that you receive plaintext over HTTP 406 Not Acceptable in the event that you receive something unexpected in the /version/ field.
-- Lee Hambley Twitter: @leehambley | @capistranorb Please consider the environment before printing this email Join the campaign at http://thinkBeforePrinting.org On 17 March 2010 22:39, Mike Moore <[email protected]> wrote: > Hey all, we're implementing OAuth and we have a differing of opinions > on what the expected behavior is in a couple of instances. What is the > proper HTTP status code to return for the following cases? > > 1) When a client uses the PLAINTEXT signature method over HTTP > > 2) When a client sends a value for the oauth_version parameter that is > not "1.0" > > Thanks much! > ~MIke > > -- > You received this message because you are subscribed to the Google Groups > "OAuth" group. > To post to this group, send email to [email protected]. > To unsubscribe from this group, send email to > [email protected] <oauth%[email protected]>. > For more options, visit this group at > http://groups.google.com/group/oauth?hl=en. > > -- You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
