I have a Native Application (Public Client) which can't store safely a secret to authenticate to the Authorization Server and assertions seem to be the only "official" way to do that without trusted Client Credentials. Are Assertions supported? Any other ideas?

Assertions: http://tools.ietf.org/html/draft-iet...-assertions-10

In the forum I found only this old thread http://forum.springsource.org/showth...assertion-flow
and I'm not able to find a document listing all the features of this oauth framework.

Thanks