We had a great discussion in TXAuth BoF today at #IETF106 I propose and believe that the time has come to start work on OAuth 3. Not because OAuth 2 is dead or dying, but we can and should do better.
3
28
46
Isn't that OAuth 4? OIDC being OAuth 3 ;-)
1
2
That's more like 2.1...
1
1
Could be, but request object etc. are quite a big departure while keeping the backward compatibility.
1
Kindof, but keeping backwards compatibility is a hallmark of a minor revision, while introducing new features and concepts. Breaking compatibility is the hallmark of a major revision.
1
1
You mean, Windows 7 to 8 to 10 are minor version up?
1
Microsoft shouldn't be seen as an example for good numbering. Leaving off the non numeric versions you get: 1, 2, 3, 3.1, 3.11, 95, 98, 2000, 7, 8, 8.1, 10...
1
1
I never realized it before but that explains how they jumped to 7... 95 = 4 98 = 5 2000 = 6
1
Except that that ignores ME and XP and Vista....
2
Replying to @justin__richer @_nat
welp there goes that theory

Nov 25, 2019 · 3:29 AM UTC

1
1
Replying to @aaronpk @justin__richer
2000 should not be in that progression. That's on the Windows NT line that goes 3, 3.1, 3.5, 4, 2000. So, treating XP = 6 goes pretty well. ME was a minor upgrade to 98, so that's 5.5.
1