How could/should this inter-operate with the signed request concept?
java.util.logging trace in the org.apache.shindig.gadgets.oauth2, org.apache.shindig.gadgets.oauth2.handler and org.apache.shindig.gadgets.oauth2.persistence classes (no trace is sample packages)
Ongoing upkeep and reaction to changes until the OAuth 2.0 spec is published to its final state