Sounds good. The oauth_version is optional, but the other parameters are important. b.
On Thu, Aug 7, 2008 at 1:52 PM, Peter Saint-Andre <[EMAIL PROTECTED]>wrote: > Corrected version. > > > -------- Original Message -------- > From: XMPP Extensions Editor <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Date: Thu, 07 Aug 2008 15:47:31 -0500 > Subject: [Standards] UPDATED: XEP-0235 (OAuth Over XMPP) > > Version 0.5 of XEP-0235 (OAuth Over XMPP) has been released. > > Abstract: This specification defines an XMPP extension for delegating > access to protected resources over XMPP, using the OAuth protocol. In the > language of OAuth, a User can authorize a Consumer to access a Protected > Resource that is hosted by a Service Provider; this authorization is > encapsulated in a token that the User requests from the Service Provider, > that the User shares with the Consumer, and that the Consumer then presents > to the Service Provider in an access request. This specification assumes > that OAuth tokens will be acquired via HTTP as defined in the core OAuth > specification, then presented over XMPP to a Service Provider. The Protected > Resources accessible over XMPP might include groupchat rooms, data feeds > hosted at publish-subscribe nodes, media relays, communication gateways, and > other items of interest. > > Changelog: More clearly specified access request format; corrected examples > to incorporate nonce, timestamp, and version; modified request URL syntax to > follow XML canonicalization order; changed HMAC-SHA1 from MUST to SHOULD. > (psa) > > Diff: http://is.gd/1iLl > > > URL: http://www.xmpp.org/extensions/xep-0235.html > >
