In no place in the OAuth 2.0 Bearer Token Specification does it actually say what the token_type parameter value should be in the access token response. The only way anyone is able to pick this up is gleaning it from the example in the OAuth 2.0 specification itself. And the only way a reader can do that is by assuming the different font used in the html version for "bearer" means that that is the value to be used for the token_type parameter. _______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
