On 2010-09-27, at 8:14 AM, Eran Hammer-Lahav wrote: > That goes without saying.
No it does not. We are talking about normative specifications. > Yes. Does this satisfy your concerns? Depends on the quality of the extension mechanism. Many of the people wanting signing want something stronger or more flexible than the OAuth 1.0A mechanism, so I remain concerned that this approach will satisfy them. Interested to see what the signing proponents say. -- Dick
_______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
