[Openid-specs-native-apps] Asymmetry between native & web apps?
Paul Madsen
paul.madsen at gmail.com
Mon Jul 7 12:19:17 UTC 2014
The current model is that the TA uses its refresh token to obtain access
tokens for native apps, but obtains the web_init_sso URL for a web
application in the AppInfo returned JSON
Is there value in making the model symmetrical for the two application
types, ie the TA uses its refresh token to obtain a web_init_sso 'token'
Without this sort of explicit request to enable web apps, what would the
TA do when the web session expired?
paul
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-native-apps/attachments/20140707/874c52f5/attachment.html>
More information about the Openid-specs-native-apps
mailing list