Overview#What is missing in OAuth 2.0
- No Discovery Mechanism
- Mandatory Authentication of the Resource Owner
- No Authentication Assurance Level
- No information on the Resource Owner
- No Logout Process (Well since we did not Authenticate why Logout Process)
- Some folks imply that there is a Authentication Double-Hop issue.
More Information#There might be more information for this subject on one of the following:
Add new attachment
Only authorized users are allowed to upload new attachments.