RFC Errata
RFC 6749, "The OAuth 2.0 Authorization Framework", October 2012
Note: This RFC has been updated by RFC 8252, RFC 8996
Source of RFC: oauth (sec)
Errata ID: 6615
Status: Reported
Type: Editorial
Publication Format(s) : TEXT
Reported By: Daniel Barclay
Date Reported: 2021-06-17
Throughout the document, when it says:
Condition descriptions like "The authorization server ... validates the authorization grant, and if valid, issues an access token."
It should say:
Adjusted descriptions like "The authorization server ... validates the authorization grant, and if it is valid, issues an access token."
Notes:
The wording pattern "A validates B, and if valid, does X" means "A validates B, and if A is valid, does X" and is confusing.
Those descriptions' wording should be adjusted, probably to the pattern "A validates B, and if it is valid, does X" (or whatever else actually says what was meant to be specified).
There are many occurrences with literally "and if valid"; it looks (from a quick search) like most, but not all, need adjustment. There are also several cases of "and if" followed by something other than "valid"--some seem correct, but a few might need adjustment.