I'd love to see OAuth 2.0 forked into a version that takes into account Eran's comments. It's be nice if the forked version explicitly mention that it will not make any compromises to support the enterprise and that the burden is on the enterprise to support the ways the internet works.
If the enterprise world wants a standard, let them make their own.
If the enterprise world wants a standard, let them make their own.