October 23, 2018
Hot Topics:

Lead Developer Leaves OAuth 2.0 Project

  • July 31, 2012
  • By Developer.com Staff

For three years, Eran Hammer has been the lead author and editor of the OAuth 2.0 authentication specification, but no longer. Hammer said the spec is “a bad protocol… bad enough that I no longer want to be associated with it.” He added that it is “more complex, less interoperable, less useful, more incomplete, and most importantly, less secure” than OAuth 1.0, primarily because "enterprise" participants in the project are making the standard unnecessarily complicated.

What should developers do? Hammer advised, “If you are currently using 1.0 successfully, ignore 2.0. It offers no real value over 1.0.”

Despite Hammer's departure, the Internet Engineering Task Force (IETF) will continue to oversee the development of OAuth 2.0.

View article

View Article

Comment and Contribute


(Maximum characters: 1200). You have characters left.



Enterprise Development Update

Don't miss an article. Subscribe to our newsletter below.

By submitting your information, you agree that developer.com may send you developer offers via email, phone and text message, as well as email offers about other products and services that developer believes may be of interest to you. developer will process your information in accordance with the Quinstreet Privacy Policy.


Thanks for your registration, follow us on our social networks to keep up-to-date