On Tue, Aug 03, 2021 at 12:55:45PM +0000, Gregory Heytings wrote:

> >From what I've read, the 'applicaiton key', was never supposed to
> >be secret - this was apparently an oversight in the initial oauth
> >specs
> >
> 
> It is indeed "security through obscurity".  But it is (a kind of)
> security nonetheless [...]

I can't help it. To me it smells of some semi-hidden variant of
"market control".

But I might be wrong.

Cheers
 - t