In the case of section 5, because this is a direct interaction with the client, the server should issue a 5xx response instead.
EHL From: Antonio Sanso [mailto:asa...@adobe.com] Sent: Thursday, January 19, 2012 9:06 AM To: Eran Hammer Cc: OAuth WG Subject: Re: Error code for access token request Hi Eran, thanks a lot for your response. As long as I understood from [1] though the error parameter is mandatory error REQUIRED. A single error code from the following: Which one is appropriate in case of server error? I cannot see any that would suite... Thanks in advance Antonio [1] http://tools.ietf.org/html/draft-ietf-oauth-v2-22#section-5.2 On Jan 9, 2012, at 5:11 PM, Eran Hammer wrote: Just return HTTP 5xx. We needed the special error code because of the redirection flow. EHL From: oauth-boun...@ietf.org<mailto:oauth-boun...@ietf.org> [mailto:oauth-boun...@ietf.org]<mailto:[mailto:oauth-boun...@ietf.org]> On Behalf Of Antonio Sanso Sent: Friday, December 30, 2011 10:22 AM To: OAuth WG Subject: [OAUTH-WG] Error code for access token request Hi *, Error response for Authorization Request defines some kind of server error code response: server_error The authorization server encountered an unexpected condition which prevented it from fulfilling the request. as in [0]. I was wondering if would be possible/useful having same for error code for access token request [1] WDYT? Regards Antonio [0] http://tools.ietf.org/html/draft-ietf-oauth-v2-22#section-4.1.2.1 [1] http://tools.ietf.org/html/draft-ietf-oauth-v2-22#section-5.2
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
