Relative doesn't require clock sync. It works well if there isn't a significant 
delay in receiving the reply.

EHL


On 4/12/10 12:10 PM, "Torsten Lodderstedt" <tors...@lodderstedt.net> wrote:

What is the reason for using a relativ token lifetime specification?
SAML2 uses an absolute specification in datetime format (NotOnOrAfter)

Am 07.04.2010 07:33, schrieb Brian Eaton:
> On Tue, Apr 6, 2010 at 8:24 AM, Luke Shepard<lshep...@facebook.com>  wrote:
>
>> Just curious, where did "duration" come from?
>> I hate to be picky, but I feel like "expires_in" is more clear than
>> "duration" ... if only because other protocols (OAuth 1.0a, OpenID, Facebook
>> auth) use "expires".
>>
> "duration" is pretty vague.  "expires" or "expires_in" are both fine by me.
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth
>


_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

Reply via email to