http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-03
the doc's stated purpose is to describe "how to use bearer tokens when accessing OAuth 2.0 protected resources".
but then in section 2 and 2.1, it describes how clients make "authenticated token requests"; which can be read as an authenticated request for a (e.g., access) token, where, imv, what is being described is the use of a (bearer) token to access a protected resource.
Ron _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
