Since these issues are covered in the security section, I think it is enough to simply stress the importance of using TLS for the redirection endpoint and leave the more detailed analysis for later in the document.
But if you want to propose new text, I'm open to it. EHL > -----Original Message----- > From: Torsten Lodderstedt [mailto:tors...@lodderstedt.net] > Sent: Monday, July 25, 2011 10:27 AM > To: Eran Hammer-Lahav > Cc: OAuth WG > Subject: Re: [OAUTH-WG] Issue 16, revised Redirection URI section (3.1.2) > > Hi Eran, > > >> Regarding this particular section: I think the two different issues > >> (transport security and endpoint authenticity) should be presented > separately. > > Which section? > > 3.1.2.1. > > regards, > Torsten. > > > EHL _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
