for example, when calling "createAccount", a RESTful does not redirect to another page. Redirecting is MVC behavior; but there are clients (AngularJS) that perform their own MVC architecture, so the auth-flows should support that hence identify REST calls (different URL?) and not redirect, but only return value.
for example, when calling "createAccount", a RESTful does not redirect to another page. Redirecting is MVC behavior; but there are clients (AngularJS) that perform their own MVC architecture, so the auth-flows should support that hence identify REST calls (different URL?) and not redirect, but only return value.