Descriptionoauth: add Authorization header to exchange token requests
According to http://tools.ietf.org/html/rfc6749 authorization servers MUST
support receiving client_id:client_secret encoded in the Authorization
header. However, receiving the id and secret urlencoded inside the body is
only something the server MAY support.
To increase compatibility, this commit change exchange token requests to
always include id and secret both encoded in the body and in the
Authorization header.
Patch Set 1 #Patch Set 2 : diff -r d4571a95014f https://code.google.com/p/goauth2/ #Patch Set 3 : diff -r d4571a95014f https://code.google.com/p/goauth2/ #
MessagesTotal messages: 10
|