Re: [OAUTH-WG] Why OAuth it self is not an authentication framework ?

Paul Madsen Tue, 05 Feb 2013 13:12:18 -0800

why pigeonhole it?

OAuth can be deployed with no authz semantics at all (or at least aslittle as any authn mechanism), e.g client creds grant type with no scopes


I agree that OAuth is not an *SSO* protocol.

On 2/5/13 3:36 PM, John Bradley wrote:

OAuth is an Authorization protocol as many of us have pointed out.

The post is largely correct and based on one of mine.

John B.

On 2013-02-05, at 12:52 PM, Prabath Siriwardena <prab...@wso2.com<mailto:prab...@wso2.com>> wrote:

FYI and for your comments..

http://blog.facilelogin.com/2013/02/why-oauth-it-self-is-not-authentication.html
Thanks & Regards,
Prabath

Mobile : +94 71 809 6732

http://blog.facilelogin.com <http://blog.facilelogin.com/>
http://RampartFAQ.com <http://rampartfaq.com/>
_______________________________________________
OAuth mailing list
OAuth@ietf.org <mailto:OAuth@ietf.org>
https://www.ietf.org/mailman/listinfo/oauth




_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

Re: [OAUTH-WG] Why OAuth it self is not an authentication framework ?

Reply via email to