Re: #334: recipient behavior for new auth parameters

ons 2012-02-29 klockan 23:51 +0100 skrev Julian Reschke:

> "Should we state the default behavior for extension auth-params? Is it 
> "must-ignore"?

Yes. If not the scheme can not be extended in future while keeping
compatibility with existing clients.

> Should we recommend that new schemes establish procedures for defining 
> new parameters?"

Yes, or alternatively we might want to define a auth-param namespace for
mandatory parameters.

Regards
Henrik

Received on Wednesday, 29 February 2012 23:12:26 UTC