Closed stouset closed 11 years ago
No. We don't see any compelling semantic reasons to do the migration work, considering that it will most likely break compatibility with clients relying on the current implementation. We have incorporated security advice from later drafts into this library but we don't think that moving the protocol details to the RFC will provider significantly improved semantics or any interoperability benefits.
:thumbsup:
OAuth 2.0 seems to have been finalized into RFC 6749. Is there any current effort to adapt this project from draft 10 to the published standard?