IETF Logo Mail Archive

Re: [OAUTH-WG] Issue: prefixing parameters with oauth_

Peter Saint-Andre <stpeter@stpeter.im> Tue, 20 April 2010 04:47 UTC

Return-Path: <stpeter@stpeter.im>
X-Original-To: oauth@core3.amsl.com
Delivered-To: oauth@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9AB033A6A1B for <oauth@core3.amsl.com>; Mon, 19 Apr 2010 21:47:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.32
X-Spam-Level:
X-Spam-Status: No, score=-2.32 tagged_above=-999 required=5 tests=[AWL=0.279, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uHRHrS9z9y8U for <oauth@core3.amsl.com>; Mon, 19 Apr 2010 21:47:22 -0700 (PDT)
Received: from stpeter.im (stpeter.im [207.210.219.233]) by core3.amsl.com (Postfix) with ESMTP id A9E0B3A6A17 for <oauth@ietf.org>; Mon, 19 Apr 2010 21:47:17 -0700 (PDT)
Received: from squire.local (dsl-240-138.dynamic-dsl.frii.net [216.17.240.138]) (Authenticated sender: stpeter) by stpeter.im (Postfix) with ESMTPSA id 332E340E15; Mon, 19 Apr 2010 22:47:08 -0600 (MDT)
Message-ID: <4BCD31BF.5090701@stpeter.im>
Date: Mon, 19 Apr 2010 22:46:55 -0600
From: Peter Saint-Andre <stpeter@stpeter.im>
User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.5; en-US; rv:1.9.1.9) Gecko/20100317 Thunderbird/3.0.4
MIME-Version: 1.0
To: Dick Hardt <dick.hardt@gmail.com>
References: <14411661-A227-4DCA-86B3-A9C5FB8055D7@gmail.com>
In-Reply-To: <14411661-A227-4DCA-86B3-A9C5FB8055D7@gmail.com>
X-Enigmail-Version: 1.0.1
OpenPGP: url=http://www.saint-andre.com/me/stpeter.asc
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha1"; boundary="------------ms060803010406060307070200"
Cc: Marius Scurtescu <marius.scurtescu@gmail.com>, OAuth WG <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Issue: prefixing parameters with oauth_
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Apr 2010 04:47:23 -0000

On 4/18/10 6:46 PM, Dick Hardt wrote:

> Given the practice that the authorization endpoint and the redirect_uri
> can contain URI query parameters, then differentiating between
> application specific query parameters and OAuth protocol parameters by
> prefixing the OAuth parameters with oauth_ would seem a useful way to
> minimize conflicts.

Can't application developers avoid conflicts by giving their parameters
names other than those already used in OAuth?

Peter

-- 
Peter Saint-Andre
https://stpeter.im/

v2.23.0 | Report a Bug | By Email