On 2012-07-17 18:10, Mike Jones wrote:
FYI, the b64 token definition is identical to the one in draft-ietf-httpbis-p7-auth-20. If it works there, it should work for OAuth Bearer. ...
+1; not every constraint needs to be expressed in the ABNF. "b64token" is here so recipients can parse the header field; it's up to the auth scheme to state what the addition constraints are; and that can happen in prose.
Best regards, Julian _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
