The main problem of OAuth is not really the specs: it is tendency of us engineers to implement something different - even though there is no need to reinvent the wheel.
Meaning, why does not a new service X model their implementation as Facebook - or maybe Twitter?
But no - every new service starts from scratch and tries to reinvent the wheel. Even wrapper libraries cannot keep up with all these "understanding" of the protocol.
Meaning, why does not a new service X model their implementation as Facebook - or maybe Twitter?
But no - every new service starts from scratch and tries to reinvent the wheel. Even wrapper libraries cannot keep up with all these "understanding" of the protocol.
(This rant is valid for APIs in general)