Behalf Of
Torsten Lodderstedt
Sent: Monday, June 11, 2012 11:07 PM
To: Phil Hunt
Cc: oauth@ietf.org
Subject: Re: [OAUTH-WG] Cache-Control headers for Bearer URI Query Parameter
method
thanks a lot
Am 12.06.2012 01:03, schrieb Phil Hunt:
Thanks. That makes sense.
Phil
On 2012-06-11, at 15:39
-WG] Cache-Control headers for Bearer URI Query Parameter
method
thanks a lot
Am 12.06.2012 01:03, schrieb Phil Hunt:
> Thanks. That makes sense.
>
> Phil
>
> On 2012-06-11, at 15:39, Amos Jeffries wrote:
>
>> On 12.06.2012 07:23, Phil Hunt wrote:
>>> Private
thanks a lot
Am 12.06.2012 01:03, schrieb Phil Hunt:
Thanks. That makes sense.
Phil
On 2012-06-11, at 15:39, Amos Jeffries wrote:
On 12.06.2012 07:23, Phil Hunt wrote:
Private also seems inappropriate since no operation should be cached
for oauth as even when the same requestor.
Phil
Th
Thanks. That makes sense.
Phil
On 2012-06-11, at 15:39, Amos Jeffries wrote:
> On 12.06.2012 07:23, Phil Hunt wrote:
>> Private also seems inappropriate since no operation should be cached
>> for oauth as even when the same requestor.
>>
>> Phil
>>
>
> There is a difference in HTTP use-case
On 12.06.2012 07:23, Phil Hunt wrote:
Private also seems inappropriate since no operation should be cached
for oauth as even when the same requestor.
Phil
There is a difference in HTTP use-case between what the Bearer and core
specs are covering.
The core spec appears to be covering the re
Private also seems inappropriate since no operation should be cached for oauth
as even when the same requestor.
Phil
On 2012-06-11, at 12:17, Torsten Lodderstedt wrote:
> Hi all,
>
> I noticed a difference in usage of cache control headers between bearer and
> core spec.
>
> core -27 stat
Hi all,
I noticed a difference in usage of cache control headers between bearer
and core spec.
core -27 states:
" The authorization server MUST include the HTTP "Cache-Control"
response header field [RFC2616] with a value of "no-store" in any
response containing tokens, credentials, o
Hi Amos,
The OAuth Bearer specification now includes the Cache-Control language we'd
discussed.
See the fifth paragraph of
http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-20#section-2.3.
Thanks again,
That works.
>
> From: Mike Jones
>To: "oauth@ietf.org"
>Sent: Thursday, May 17, 2012 3:12 PM
>Subject: [OAUTH-WG] Cache-Control headers for Bearer URI Query Parameter method
>
>
>
>Dear working group members:
>
>I'm going through the remaining open issues t
