> I am working on -09 which I hope will be the last major revision of > the specification. If you were planning on submitting any feedback on > draft -08 or the simplification proposal from David and me, please do > so by tomorrow to be included in the next draft.
I am mostly looking for the extension mechanisms to be laid out. There are four features that I'd like to see covered by OAuth as a whole: * Token Revocation * Redelegation * Client instance information (update of xoauth_display_name) * Handling of unregistered and dynamically-registered clients Each of these could be handled by an extension and/or guideline doc, and I'm willing to try my hand at writing some of these out. Any takers for input into solutions for any of these problems? I'm also interested to see what happens with the signing proposals, because we still have use cases for the signed-fetch portion of OAuth 1 (both 2-legged and 3-legged). But I'll freely admit that I am not the one to write this. :) -- Justin _______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
