In drafting OAuth 2.0 I removed a lot of the error codes throughout the flows and in this draft encouraged people to use HTTP status codes (like 1.0a does). I've heard the feedback from multiple people that they'd like more specific error codes than what can be expressed in HTTP. I'd like to use this thread – or ideally a wiki page that someone creates – to build consensus around the error codes needed throughout protocol responses.
Is someone willing to take the lead on this? http://wiki.oauth.net/ should be easy enough to create a new page on. Thanks, --David _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
