Re: [OAUTH-WG] Option to not prompt the user for authorization

2010-04-12 Thread Evan Gilbert
On Fri, Apr 9, 2010 at 10:08 PM, Eran Hammer-Lahav wrote: > > > > On 4/9/10 1:58 PM, "Evan Gilbert" wrote: > > > > > > > On Fri, Apr 9, 2010 at 11:02 AM, Eran Hammer-Lahav > > wrote: > >> > >> > >> > >> On 4/9/10 8:29 AM, "Evan Gilbert" wrote: > >> > >>> > >>> > >>> On Thu, Apr 8, 2010 at 11:50

Re: [OAUTH-WG] Option to not prompt the user for authorization

2010-04-09 Thread Eran Hammer-Lahav
On 4/9/10 1:58 PM, "Evan Gilbert" wrote: > > > On Fri, Apr 9, 2010 at 11:02 AM, Eran Hammer-Lahav > wrote: >> >> >> >> On 4/9/10 8:29 AM, "Evan Gilbert" wrote: >> >>> >>> >>> On Thu, Apr 8, 2010 at 11:50 PM, Eran Hammer-Lahav >>> wrote: On 4/8/10 9:17 PM, "Eva

Re: [OAUTH-WG] Option to not prompt the user for authorization

2010-04-09 Thread Evan Gilbert
On Fri, Apr 9, 2010 at 11:02 AM, Eran Hammer-Lahav wrote: > > > > On 4/9/10 8:29 AM, "Evan Gilbert" wrote: > > > > > > > On Thu, Apr 8, 2010 at 11:50 PM, Eran Hammer-Lahav > > wrote: > >> > >> > >> > >> On 4/8/10 9:17 PM, "Evan Gilbert" wrote: > >> > >>> > >>> > >>> On Thu, Apr 8, 2010 at 12:22

Re: [OAUTH-WG] Option to not prompt the user for authorization

2010-04-09 Thread Eran Hammer-Lahav
On 4/9/10 8:29 AM, "Evan Gilbert" wrote: > > > On Thu, Apr 8, 2010 at 11:50 PM, Eran Hammer-Lahav > wrote: >> >> >> >> On 4/8/10 9:17 PM, "Evan Gilbert" wrote: >> >>> >>> >>> On Thu, Apr 8, 2010 at 12:22 AM, Eran Hammer-Lahav >>> wrote: On 4/7/10 9:20 PM, "Eva

Re: [OAUTH-WG] Option to not prompt the user for authorization

2010-04-09 Thread Evan Gilbert
On Thu, Apr 8, 2010 at 11:50 PM, Eran Hammer-Lahav wrote: > > > > On 4/8/10 9:17 PM, "Evan Gilbert" wrote: > > > > > > > On Thu, Apr 8, 2010 at 12:22 AM, Eran Hammer-Lahav > > wrote: > >> > >> > >> > >> On 4/7/10 9:20 PM, "Evan Gilbert" wrote: > >> > >>> Authorization servers in the OAuth Web C

Re: [OAUTH-WG] Option to not prompt the user for authorization

2010-04-08 Thread Eran Hammer-Lahav
On 4/8/10 9:17 PM, "Evan Gilbert" wrote: > > > On Thu, Apr 8, 2010 at 12:22 AM, Eran Hammer-Lahav > wrote: >> >> >> >> On 4/7/10 9:20 PM, "Evan Gilbert" wrote: >> >>> Authorization servers in the OAuth Web Callback flow and the User Agent flow >>> should have the option to redirect bac

Re: [OAUTH-WG] Option to not prompt the user for authorization

2010-04-08 Thread Evan Gilbert
On Thu, Apr 8, 2010 at 12:22 AM, Eran Hammer-Lahav wrote: > > > > On 4/7/10 9:20 PM, "Evan Gilbert" wrote: > > > Authorization servers in the OAuth Web Callback flow and the User Agent > flow > > should have the option to redirect back with access/refresh tokens > without > > prompting the user,

Re: [OAUTH-WG] Option to not prompt the user for authorization

2010-04-08 Thread Eran Hammer-Lahav
On 4/7/10 9:20 PM, "Evan Gilbert" wrote: > Authorization servers in the OAuth Web Callback flow and the User Agent flow > should have the option to redirect back with access/refresh tokens without > prompting the user, if the client has already been granted access to the > protected resource.