Hey,
I have a question about a paragraph in the RFC. On Section 2.1 (http://tools.ietf.org/html/rfc6749#section-2.1), it says: The client type designation is based on the authorization server's > definition of secure authentication and its acceptable exposure levels of client credentials. The authorization > server SHOULD NOT make assumptions about the client type. I'm not sure what that mean. Specially, the second sentence. Can someone clarify this for me? Thanks! -- You received this message because you are subscribed to the Google Groups "OAuth" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
