Funny thing, I went to remove it from our implementation, and we were already ignoring it completely.

Also, our implementation was just pushed to the master branch and will be in the next release: https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server/

 -- Justin


On 3/15/2017 7:18 PM, William Denniss wrote:
Yes, I think this bled over from the original spec.

Google's Device endpoint doesn't use a response_type param.

It's removed in -05.

On Wed, Mar 15, 2017 at 4:15 PM, John Bradley <[email protected] <mailto:[email protected]>> wrote:

    I think response mode is only needed if you are overloading a
    existing authorization endpoint.

    URI are cheep so I don’t see the value.



    On Mar 13, 2017, at 8:47 AM, Brian Campbell
    <[email protected] <mailto:[email protected]>>
    wrote:



    On Sat, Mar 11, 2017 at 1:54 PM, William Denniss
    <[email protected] <mailto:[email protected]>> wrote:


        On Sat, Mar 11, 2017 at 12:40 PM, Justin Richer
        <[email protected] <mailto:[email protected]>> wrote:



                Secondly, I had a question about the “response_type”
                parameter to the device endpoint. This parameter is
                required and it has a single, required value, with
                no registry or other possibility of extension.
                What’s the point? If it’s for “parallelism”, I’ll
                note that this is *not* the authorization endpoint
                (as the user is not present) and such constraints
                need not apply here.


            Good points here. At a guess, it bled in from the OAuth
            spec. If it's not needed, we should remove it.


            I’d vote for removal, I don’t see the point.


    +1 on removal of the “response_type” parameter from the Device
    Authorization Request


    _______________________________________________
    OAuth mailing list
    [email protected] <mailto:[email protected]>
    https://www.ietf.org/mailman/listinfo/oauth
    <https://www.ietf.org/mailman/listinfo/oauth>




_______________________________________________
OAuth mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/oauth

_______________________________________________
OAuth mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/oauth

Reply via email to