Relative doesn't require clock sync. It works well if there isn't a significant delay in receiving the reply.
EHL On 4/12/10 12:10 PM, "Torsten Lodderstedt" <tors...@lodderstedt.net> wrote: What is the reason for using a relativ token lifetime specification? SAML2 uses an absolute specification in datetime format (NotOnOrAfter) Am 07.04.2010 07:33, schrieb Brian Eaton: > On Tue, Apr 6, 2010 at 8:24 AM, Luke Shepard<lshep...@facebook.com> wrote: > >> Just curious, where did "duration" come from? >> I hate to be picky, but I feel like "expires_in" is more clear than >> "duration" ... if only because other protocols (OAuth 1.0a, OpenID, Facebook >> auth) use "expires". >> > "duration" is pretty vague. "expires" or "expires_in" are both fine by me. > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth > _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth