[cap-talk] OAuth vs. CapDoc contrast
Ben Laurie
benl at google.com
Sun Sep 30 07:49:25 EDT 2007
On 9/30/07, Jed Donnelley <capability at webstart.com> wrote:
> >No, but once OAuth is baked, I do plan to work on a delegation
> >standard. Are you interested in helping?
>
> The above seems to suggest that a fully authorized token
> can only be used from a single what, consumer key?
>
> If a consumer was to share it's key along with a fully
> authorized token, would that suffice?
Of course, but that is not delegation.
More information about the cap-talk
mailing list