Thanks, that's a good explanation.
From: Eran Hammer
To: "oauth@ietf.org"
Sent: Wednesday, January 25, 2012 10:12 AM
Subject: [OAUTH-WG] WWW-Authenticate Header (Bearer etc.)
People seems confused about the issue raised by Julian. It i
People seems confused about the issue raised by Julian. It is pretty simple.
The HTTP WWW-Authenticate header definition allows each header parameter to
have a quoted string or token value. Token values are very restrictive and not
suitable for scope (no spaces, etc.). Quoted strings allow a wid
