On Thu, Apr 1, 2010 at 3:38 PM, Chuck Mortimore <[email protected]> wrote: > Flexibility. If we lock Oauth2 down to one specific specific Assertion, it > becomes unusable for other assertion formats. Those assertion formats will > evolve anyways.
Yep. The SAML Web SSO profiles are living proof that something can be underspecified (e.g. assertion details are vague), yet still widely implemented and very useful. _______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
