On Sat, Jul 10, 2010 at 10:41 PM, Andrew Arnott <andrewarn...@gmail.com> wrote: > Eran, > Is the draft 10 spec going to outline what characters are allowed in the > access token? And if not (or if all characters are allowed), is it going to > include details about (or a reference to a doc about) how to properly escape > the access token when specifying it in the HTTP Authorization header?
Just sent a proposal to the list to drop the Authorization header name="value" syntax completely. We can copy what Basic/NTLM/Negotiate have been doing instead. _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
