The following errata report has been rejected for RFC6749, "The OAuth 2.0 Authorization Framework".
-------------------------------------- You may review the report below and at: http://www.rfc-editor.org/errata_search.php?rfc=6749&eid=3880 -------------------------------------- Status: Rejected Type: Technical Reported by: Eriksen Costa <[email protected]> Date Reported: 2014-02-04 Rejected by: Kathleen Moriarty (IESG) Section: 10.16 Original Text ------------- For public clients using implicit flows, this specification does not provide any method for the client to determine what client an access token was issued to. Corrected Text -------------- For public clients using implicit flows, this specification does not provide any method for the authorization server to determine what client an access token was issued to. Notes ----- A client can only know about tokens issued to it and not for other clients. >From the WG: https://www.ietf.org/mail-archive/web/oauth/current/msg12391.html --VERIFIER NOTES-- The current text is correct, see https://www.ietf.org/mail-archive/web/oauth/current/msg12391.html -------------------------------------- RFC6749 (draft-ietf-oauth-v2-31) -------------------------------------- Title : The OAuth 2.0 Authorization Framework Publication Date : October 2012 Author(s) : D. Hardt, Ed. Category : PROPOSED STANDARD Source : Web Authorization Protocol Area : Security Stream : IETF Verifying Party : IESG _______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
