People just can't agree on things. Google and Facebook are doing the best, with OAuth 2.0 (and following the standards pretty well). Here is a list of various common OAuth providers that I've worked with... and found some little problems with.
user_denied
instead ofaccess_denied
This is an email I got concerning this issue.