Let's discuss building OAuth applications in the browser-based app environment, and what are the particular considerations that need mentioning.
Specifically, we'll collect feedback on the parts of the OAuth 2.0 for Browser-Based Apps draft that still need work. We'll discuss the architecture where the OAuth flow is performed in a Web Worker, isolating the tokens from the main browser window scope.