Added support for public clients and App/OAuth Client wildcard redirect urls. * Login will fail if you have a public client and no redirect url configured * For confidential clients you can now use basic auth or form based authentication based on OAuth 2 spec. -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com