Re: [OAUTH-WG] Native Client Extension
Skylar Woodward <skylar@kiva.org> Thu, 27 January 2011 10:57 UTC
Return-Path: <skylar@kiva.org>
X-Original-To: oauth@core3.amsl.com
Delivered-To: oauth@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2FB8A28C125 for <oauth@core3.amsl.com>; Thu, 27 Jan 2011 02:57:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.619
X-Spam-Level:
X-Spam-Status: No, score=-2.619 tagged_above=-999 required=5 tests=[AWL=0.020, BAYES_00=-2.599, GB_I_LETTER=-2, RCVD_IN_BL_SPAMCOP_NET=1.96]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ufA5E01NA0Ka for <oauth@core3.amsl.com>; Thu, 27 Jan 2011 02:57:17 -0800 (PST)
Received: from na3sys010aog110.obsmtp.com (na3sys010aog110.obsmtp.com [74.125.245.88]) by core3.amsl.com (Postfix) with SMTP id 134FF28C131 for <oauth@ietf.org>; Thu, 27 Jan 2011 02:57:16 -0800 (PST)
Received: from source ([209.85.161.49]) (using TLSv1) by na3sys010aob110.postini.com ([74.125.244.12]) with SMTP ID DSNKTUFQQyLCgNPgiSWQ9EGkRcX0/JC7Dt14@postini.com; Thu, 27 Jan 2011 03:00:20 PST
Received: by fxm19 with SMTP id 19so2336613fxm.36 for <oauth@ietf.org>; Thu, 27 Jan 2011 03:00:18 -0800 (PST)
Received: by 10.223.74.143 with SMTP id u15mr761339faj.27.1296126018598; Thu, 27 Jan 2011 03:00:18 -0800 (PST)
Received: from [10.0.1.4] (dan75-7-88-166-184-189.fbx.proxad.net [88.166.184.189]) by mx.google.com with ESMTPS id n1sm5909650fam.16.2011.01.27.03.00.16 (version=TLSv1/SSLv3 cipher=RC4-MD5); Thu, 27 Jan 2011 03:00:17 -0800 (PST)
Mime-Version: 1.0 (Apple Message framework v1082)
Content-Type: text/plain; charset="us-ascii"
From: Skylar Woodward <skylar@kiva.org>
In-Reply-To: <AANLkTi=RAS5X0jUjxFzf6k1_r+79NFSFjmZs2bw2Lg3o@mail.gmail.com>
Date: Thu, 27 Jan 2011 12:00:14 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <3C83928E-56D5-4386-A075-9ECF1F3A469C@kiva.org>
References: <AANLkTi=YWLHV1Yi0bdKTaDaBw3X5D6Y_kk3xt7EvJHe_@mail.gmail.com> <4D239DCF.4030501@lodderstedt.net> <AANLkTi=RAS5X0jUjxFzf6k1_r+79NFSFjmZs2bw2Lg3o@mail.gmail.com>
To: Marius Scurtescu <mscurtescu@google.com>
X-Mailer: Apple Mail (2.1082)
Cc: OAuth WG <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Native Client Extension
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Jan 2011 10:57:18 -0000
Marius, I support the extension (as per my previous letter, as I missed this thread over the holidays) and Kiva is/was planning to support this as well. Given the unpredictable technology environments of many of our customers, this flow is essential for our implementation. However, now reviewing language in draft-12, I wonder if it isn't more clear to define the extension as using a different response_type (eg, oob_code). In the past, the use of "oob" has been more of hack to work with existing specs. In truth, it is a unique flow of its own compared to Implict and Auth Code as they are currently defined. Such a flow would not accept a redirect_url and could use "oob_code" for both response_type and grant_type. skylar On Jan 4, 2011, at 11:58 PM, Marius Scurtescu wrote: > On Tue, Jan 4, 2011 at 2:23 PM, Torsten Lodderstedt > <torsten@lodderstedt.net> wrote: >> +1 >> >> I have asked myself all the time why "oob" disappeared in OAuth 2.0? Does >> Google use this feature? > > Yes, we are planning to support this, exactly as described in the extension. > > Marius > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth
- [OAUTH-WG] Native Client Extension Marius Scurtescu
- Re: [OAUTH-WG] Native Client Extension Torsten Lodderstedt
- Re: [OAUTH-WG] Native Client Extension Marius Scurtescu
- Re: [OAUTH-WG] Native Client Extension Richer, Justin P.
- Re: [OAUTH-WG] Native Client Extension Skylar Woodward
- Re: [OAUTH-WG] Native Client Extension Eran Hammer-Lahav
- Re: [OAUTH-WG] Native Client Extension Marius Scurtescu
- Re: [OAUTH-WG] Native Client Extension Skylar Woodward
- Re: [OAUTH-WG] Native Client Extension Eran Hammer-Lahav
- Re: [OAUTH-WG] Native Client Extension Marius Scurtescu
- Re: [OAUTH-WG] Native Client Extension Eran Hammer-Lahav
- Re: [OAUTH-WG] Native Client Extension Marius Scurtescu
- Re: [OAUTH-WG] Native Client Extension Eran Hammer-Lahav
- Re: [OAUTH-WG] Native Client Extension Skylar Woodward
- Re: [OAUTH-WG] Native Client Extension Skylar Woodward
- Re: [OAUTH-WG] Native Client Extension Skylar Woodward
- Re: [OAUTH-WG] Native Client Extension Marius Scurtescu