Return-Path: <buhake@googlemail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix)
 with ESMTP id 1223C21F86D8 for <oauth@ietfa.amsl.com>;
 Tue, 21 Feb 2012 07:16:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.534
X-Spam-Level: 
X-Spam-Status: No, score=-2.534 tagged_above=-999 required=5 tests=[AWL=0.442,
 BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001,
 RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com
 [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WhW80G6yIMhn for
 <oauth@ietfa.amsl.com>; Tue, 21 Feb 2012 07:16:48 -0800 (PST)
Received: from mail-tul01m020-f172.google.com (mail-tul01m020-f172.google.com
 [209.85.214.172]) by ietfa.amsl.com (Postfix) with ESMTP id 8959D21F8732 for
 <oauth@ietf.org>; Tue, 21 Feb 2012 07:16:43 -0800 (PST)
Received: by obbwd15 with SMTP id wd15so10002888obb.31 for <oauth@ietf.org>;
 Tue, 21 Feb 2012 07:16:43 -0800 (PST)
Received-SPF: pass (google.com: domain of buhake@googlemail.com designates
 10.182.14.97 as permitted sender) client-ip=10.182.14.97; 
Authentication-Results: mr.google.com;
 spf=pass (google.com: domain of buhake@googlemail.com
 designates 10.182.14.97 as permitted sender) smtp.mail=buhake@googlemail.com;
 dkim=pass header.i=buhake@googlemail.com
Received: from mr.google.com ([10.182.14.97]) by 10.182.14.97 with SMTP id
 o1mr15729377obc.57.1329837403228 (num_hops = 1);
 Tue, 21 Feb 2012 07:16:43 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=gamma;
 h=mime-version:in-reply-to:references:from:date:message-id:subject:to
 :cc:content-type; bh=2kliwslBChk4kSrU7/L6AgYbJjAzVGypEeyicCjAtiw=;
 b=u3WNgczApC50QmT3TvkkAQYCEAceS+1I6qYBhyE+ZCjmhpY+C9PijSgteojS+WH3eV
 /oqHx6OfBJsXr3OABQ/BFuePrjRJJ/+Is336JIqODw0ceP5ke5iwoPbXkQZ8FhGL5dDL
 AbTTrqC93xjVo5wU/fKOk3CEJKo6Mns1IEM0M=
Received: by 10.182.14.97 with SMTP id o1mr13393219obc.57.1329837403179;
 Tue, 21 Feb 2012 07:16:43 -0800 (PST)
MIME-Version: 1.0
Received: by 10.182.62.231 with HTTP; Tue, 21 Feb 2012 07:16:23 -0800 (PST)
In-Reply-To: <CAOqH_VV4uCjyz-UP9AhNoQPuesv6Z0Wbi7Zt=tz-B4qXh0efgw@mail.gmail.com>
References: <CAOqH_VV4uCjyz-UP9AhNoQPuesv6Z0Wbi7Zt=tz-B4qXh0efgw@mail.gmail.com>
From: Buhake Sindi <buhake@googlemail.com>
Date: Tue, 21 Feb 2012 17:16:23 +0200
Message-ID: <CABUp4f6TdFcPXHPYS2B7kZK_=qZ3RESWswO=rDfo_tZvYUrjQg@mail.gmail.com>
To: Peter Brindisi <peter.brindisi@gmail.com>
Content-Type: multipart/alternative; boundary=14dae93996cd068bb804b97ae653
X-Mailman-Approved-At: Tue, 21 Feb 2012 07:25:46 -0800
Cc: oauth@ietf.org
Subject: Re: [OAUTH-WG] error response for invalid refresh token
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>,
 <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>,
 <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Feb 2012 15:16:52 -0000

--14dae93996cd068bb804b97ae653
Content-Type: text/plain; charset=UTF-8

Hi

invalid_grant
>

>
The provided authorization grant (e.g. authorization code,
> resource owner credentials) is invalid, expired, revoked, does
> not match the redirection URI used
>

I would think that the refresh_token is an authorization code that needs
refreshing, so this would be valid.



On 21 February 2012 15:33, Peter Brindisi <peter.brindisi@gmail.com> wrote:

> Hi all,
>
> I am currently implementing version 23 of the oauth2 spec, and I came
> across a bit of ambiguity. What is the appropriate error code for an
> invalid refresh token? I am unsure whether it should be 'invalid_grant' or
> 'invalid_request'. Neither seems 100% clear.
>
> Thanks in advance!
>
> Best,
> Peter
>
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth
>
>

--14dae93996cd068bb804b97ae653
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

Hi<br><br><blockquote style=3D"margin:0pt 0pt 0pt 0.8ex;border-left:1px sol=
id rgb(204,204,204);padding-left:1ex" class=3D"gmail_quote">invalid_grant<b=
r></blockquote><blockquote style=3D"margin:0pt 0pt 0pt 0.8ex;border-left:1p=
x solid rgb(204,204,204);padding-left:1ex" class=3D"gmail_quote">

<div>=C2=A0</div></blockquote><blockquote style=3D"margin:0pt 0pt 0pt 0.8ex=
;border-left:1px solid rgb(204,204,204);padding-left:1ex" class=3D"gmail_qu=
ote">The provided authorization grant (e.g. authorization code,<br>resource=
 owner credentials) is invalid, expired, revoked, does<br>

not match the redirection URI used<br></blockquote><br>I would think that t=
he refresh_token is an authorization code that needs refreshing, so this wo=
uld be valid.<br><br><br><br><div class=3D"gmail_quote">On 21 February 2012=
 15:33, Peter Brindisi <span dir=3D"ltr">&lt;<a href=3D"mailto:peter.brindi=
si@gmail.com">peter.brindisi@gmail.com</a>&gt;</span> wrote:<br>

<blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1p=
x #ccc solid;padding-left:1ex">Hi all,<div><br></div><div>I am currently im=
plementing version 23 of the oauth2 spec, and I came across a bit of ambigu=
ity. What is the appropriate error code for an invalid refresh token? I am =
unsure whether it should be &#39;invalid_grant&#39; or &#39;invalid_request=
&#39;. Neither seems 100% clear.</div>



<div><br></div><div>Thanks in advance!</div><div><br></div><div>Best,</div>=
<div>Peter</div>
<br>_______________________________________________<br>
OAuth mailing list<br>
<a href=3D"mailto:OAuth@ietf.org">OAuth@ietf.org</a><br>
<a href=3D"https://www.ietf.org/mailman/listinfo/oauth" target=3D"_blank">h=
ttps://www.ietf.org/mailman/listinfo/oauth</a><br>
<br></blockquote></div><br><br>

--14dae93996cd068bb804b97ae653--