>> 1.3/1.4/1.5: Consider switching order to Authorization Grant, Access Token, >> Refresh Token
>Not sure. What do others think? I put access token first because it is a more >important term to get out of the >way. I would rather consider to change order to Access Token, Refresh Token, Authorization Grant since the first two are the core OAuth concepts developers must become familiar with. Authorization grants are "just" an mean to an end to get the token for certain client types. Moreover, I expect the number of authorization grants to increase over time. >> 2.3: Should "... cannot be used alone" be made into a normative, as "... >> MUST NOT be used alone"? >I'm ok with that. Anyone else? +1 regards, Torsten. _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
