At the time of producing the RadioTAG Draft 5 specification the OAuth2 specification was yet to be finalised.
Now this process is complete it might be worthwhile reviewing the final document to see if it would be possible to fully align RadioTAG to an OAuth2 model.
Failing that, is there anything we can learn or more closely follow to ease understanding? For example changing the RadioTAG-Auth-X style HTTP headers to WWW-Authenticate/Authorization headers.
This feels like a worthwhile piece of work, but I would appreciate other peoples thoughts. We may ultimately end up parking this as an objective depending on the outcome of a wider discussion on which auth model to use, but if we can capture thoughts here it can guide our desire to have OAuth2 compliance in whichever auth model we adopt in the future.