On Sep 11, 2012, at 7:52 AM, William Mills wrote: >> It could even, theoretically, be included in the Access Token! > > It certainly could, this is the simplest form of holder of key in fact.
The IETF has certainly lots of experience with that approach. _______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
