On 09/06/2011 06:08 PM, Peter Saint-Andre wrote:
Put me in the "may not have been avoided" camp. We can't legislate common sense (which, sadly, is all too uncommon).
Can somebody show me in the archives where this has been discussed before? Specifically about oauth clients that also have control of the web UA? In any case, you site this as common sense. It's not. You are close to the problem. Nobody else is. Mike _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
