Re: [OAUTH-WG] Quick survey: fragment vs. query

Oleg Gryb <oleg_gryb@yahoo.com> Tue, 10 August 2010 16:34 UTC

DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=b0l3Oybl9eR9CTdCw3+69YML33eAR+SMJv49XjXrX8jMH4FDLyt2IRiE6texUCo+RwCruAOdML+FGbTmcwdFnDvGdZBhuXnX+TbTfDNuaI53PV8ZHU1VVT/sgydCbANRvjODhVVUjJHIkL/L8b//3UeqWj4cBjvZElB1Tmb6jO4=;
Message-ID: <837544.77407.qm@web37602.mail.mud.yahoo.com>
References: <C862F736.37253%eran@hueniverse.com> <AANLkTil_MQ1-JxNC-5S3bLDo6-WhG0GMBHVXQvvN-jdv@mail.gmail.com> <AANLkTi=A+ztAH8vbR-O8vYUxiE2cGjn-KHCpM05NE3fL@mail.gmail.com> <8F6F3A55-274C-4F38-84C8-C956D74504AE@lodderstedt.net>
Date: Tue, 10 Aug 2010 09:35:05 -0700
From: Oleg Gryb <oleg_gryb@yahoo.com>
To: Torsten Lodderstedt <torsten@lodderstedt.net>, David Recordon <recordond@gmail.com>
In-Reply-To: <8F6F3A55-274C-4F38-84C8-C956D74504AE@lodderstedt.net>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="0-1592294065-1281458105=:77407"
Cc: Naitik Shah <naitik@facebook.com>, OAuth WG <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Quick survey: fragment vs. query
Precedence: list
Reply-To: Oleg Gryb <oleg@gryb.info>

I was trying to understand that too (see "Is user agent profile secure" thread). 
The answers that I've got were:


1. It's already coded this way.
2. It's the most efficient way of doing that, because that relay.html page is 
static and can be cached by a browser.

None of the answers above looks very convincing to me, but that's where UA is 
now. 


From: Torsten Lodderstedt <torsten@lodderstedt.net>

Can someone pls. explain why code and token should both be returned in the 
fragment?
>
>
>
>regards,
>Torsten.
>

[OAUTH-WG] Quick survey: fragment vs. query Eran Hammer-Lahav
Re: [OAUTH-WG] Quick survey: fragment vs. query Brian Eaton
Re: [OAUTH-WG] Quick survey: fragment vs. query David Recordon
Re: [OAUTH-WG] Quick survey: fragment vs. query Naitik Shah
Re: [OAUTH-WG] Quick survey: fragment vs. query Torsten Lodderstedt
Re: [OAUTH-WG] Quick survey: fragment vs. query Brian Eaton
Re: [OAUTH-WG] Quick survey: fragment vs. query Torsten Lodderstedt
Re: [OAUTH-WG] Quick survey: fragment vs. query Brian Eaton
Re: [OAUTH-WG] Quick survey: fragment vs. query Torsten Lodderstedt
Re: [OAUTH-WG] Quick survey: fragment vs. query Zeltsan, Zachary (Zachary)
Re: [OAUTH-WG] Quick survey: fragment vs. query Eran Hammer-Lahav
Re: [OAUTH-WG] Quick survey: fragment vs. query Eran Hammer-Lahav
Re: [OAUTH-WG] Quick survey: fragment vs. query Brian Eaton
Re: [OAUTH-WG] Quick survey: fragment vs. query Torsten Lodderstedt
Re: [OAUTH-WG] Quick survey: fragment vs. query Torsten Lodderstedt
Re: [OAUTH-WG] Quick survey: fragment vs. query Brian Eaton
Re: [OAUTH-WG] Quick survey: fragment vs. query Torsten Lodderstedt
Re: [OAUTH-WG] Quick survey: fragment vs. query Luke Shepard
Re: [OAUTH-WG] Quick survey: fragment vs. query David Recordon
Re: [OAUTH-WG] Quick survey: fragment vs. query Naitik Shah
Re: [OAUTH-WG] Quick survey: fragment vs. query Torsten Lodderstedt
Re: [OAUTH-WG] Quick survey: fragment vs. query Oleg Gryb
Re: [OAUTH-WG] Quick survey: fragment vs. query Luke Shepard
Re: [OAUTH-WG] Quick survey: fragment vs. query Torsten Lodderstedt
Re: [OAUTH-WG] Quick survey: fragment vs. query Torsten Lodderstedt
Re: [OAUTH-WG] Quick survey: fragment vs. query Oleg Gryb
Re: [OAUTH-WG] Quick survey: fragment vs. query David Recordon
Re: [OAUTH-WG] Quick survey: fragment vs. query Gryb, Oleg
Re: [OAUTH-WG] Quick survey: fragment vs. query Torsten Lodderstedt
Re: [OAUTH-WG] Quick survey: fragment vs. query Brian Eaton
Re: [OAUTH-WG] Quick survey: fragment vs. query Oleg Gryb
Re: [OAUTH-WG] Quick survey: fragment vs. query Brian Eaton
Re: [OAUTH-WG] Quick survey: fragment vs. query Eran Hammer-Lahav