Thanks for the clarity Eran and I understand.
-Original Message-
From: Eran Hammer-Lahav [mailto:e...@hueniverse.com]
Sent: Sunday, May 09, 2010 1:57 PM
To: Foiles, Doug; OAuth WG
Subject: RE: [OAUTH-WG] Autonomous clients and resource owners (editorial)
> -Original Mess
onger than recommended authorization
grant lifetimes ... which ultimately should be avoided. Is this the point?
Thanks.
Doug
-Original Message-
From: Eran Hammer-Lahav [mailto:e...@hueniverse.com]
Sent: Sunday, May 09, 2010 10:26 AM
To: Foiles, Doug; OAuth WG
Subject: RE: [OAU
I would expect our OAuth 1.0 services to have support for OAuth 1.0 and 2.0 for
some period. I don't think we could expect all our clients to move to OAuth
2.0 at once. This is an interesting idea that allows clients to be able to cut
over to OAuth 2.0 without users having to re-authenticate/a
oun...@ietf.org] On Behalf
Of Chuck Mortimore
Sent: Tuesday, April 27, 2010 9:06 AM
To: Torsten Lodderstedt; Brian Eaton
Cc: Foiles, Doug; OAuth WG
Subject: Re: [OAUTH-WG] Autonomous clients and resource owners
(editorial)
Same here - we don't intend to issue
I have a bit of confusion on the Autonomous Client Flows … and specifically
related to Eve’s comment below that suggests to me that the autonomous client
is NOT ALWAYS the resource owner.
Can the Autonomous Client Flows support clients that ARE NOT the actual
resource owner? For example for
