Congratulations on your deployment!
From: William Denniss [mailto:wdenn...@google.com]
Sent: Monday, February 1, 2016 12:25 PM
To: Mike Jones
Cc: John Bradley ; Nat Sakimura ;
oauth@ietf.org
Subject: Re: [OAUTH-WG] Advertise PKCE support in OAuth 2.0 Discovery
(draft-jones-oauth-discovery-00)
We are now live with this change:
https://accounts.google.com/.well-known/openid-configuration
I'm glad we all reached a consensus on how this param should work, and what
it should be called, and thank you Mike for revising the draft! My ask now
is that we don't revisit this decision, unless for
Hi
Access tokens (particularly JWT-based) may have a not before property
set - for example, a token introspection response may report an 'nbf'
property.
How can a client react to the error related to using the access token
too early ?
Typically a client would attempt to refresh a token if
