IETF Logo Mail Archive

Re: [Ace] New doc: draft-maler-ace-oauth-uma-00

Thomas Hardjono <hardjono@mit.edu> Wed, 25 March 2015 16:15 UTC

Return-Path: <hardjono@mit.edu>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC0A91A8894 for <ace@ietfa.amsl.com>; Wed, 25 Mar 2015 09:15:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.211
X-Spam-Level:
X-Spam-Status: No, score=-4.211 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id G9lHRhKlEkru for <ace@ietfa.amsl.com>; Wed, 25 Mar 2015 09:15:12 -0700 (PDT)
Received: from dmz-mailsec-scanner-3.mit.edu (dmz-mailsec-scanner-3.mit.edu [18.9.25.14]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9F9991B2A7B for <ace@ietf.org>; Wed, 25 Mar 2015 09:14:57 -0700 (PDT)
X-AuditID: 1209190e-f79a76d000000d1b-11-5512df006d4d
Received: from mailhub-auth-4.mit.edu ( [18.7.62.39]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-3.mit.edu (Symantec Messaging Gateway) with SMTP id 0B.BD.03355.00FD2155; Wed, 25 Mar 2015 12:14:56 -0400 (EDT)
Received: from outgoing-exchange-1.mit.edu (outgoing-exchange-1.mit.edu [18.9.28.15]) by mailhub-auth-4.mit.edu (8.13.8/8.9.2) with ESMTP id t2PGEslr022109; Wed, 25 Mar 2015 12:14:55 -0400
Received: from W92EXEDGE6.EXCHANGE.MIT.EDU (w92exedge6.exchange.mit.edu [18.7.73.28]) by outgoing-exchange-1.mit.edu (8.13.8/8.12.4) with ESMTP id t2PGEYkk007059; Wed, 25 Mar 2015 12:14:54 -0400
Received: from W92EXHUB11.exchange.mit.edu (18.7.73.20) by W92EXEDGE6.EXCHANGE.MIT.EDU (18.7.73.28) with Microsoft SMTP Server (TLS) id 14.3.158.1; Wed, 25 Mar 2015 12:13:54 -0400
Received: from OC11EXPO24.exchange.mit.edu ([169.254.1.184]) by W92EXHUB11.exchange.mit.edu ([18.7.73.20]) with mapi id 14.03.0158.001; Wed, 25 Mar 2015 12:14:37 -0400
From: Thomas Hardjono <hardjono@mit.edu>
To: Olaf Bergmann <bergmann@tzi.org>
Thread-Topic: [Ace] New doc: draft-maler-ace-oauth-uma-00
Thread-Index: AQHQZuQD9/2bq6MAyUqCPahRYFita50tX8pM
Date: Wed, 25 Mar 2015 16:14:35 +0000
Message-ID: <E91E6B50-4FAD-4F11-8C99-0BBEBBEC4DDD@mit.edu>
References: <59F1C792-B108-4DEC-8B5F-94CA8DC19BF8@xmlgrrl.com>, <87vbhpv13k.fsf@tzi.org>
In-Reply-To: <87vbhpv13k.fsf@tzi.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrIKsWRmVeSWpSXmKPExsUixG6nrstwXyjU4PUOOYvv33qYLZoWNzJZ vLuwlNGB2WPJkp9MHtMWZXrsa7nKFsAcxWWTkpqTWZZapG+XwJXxcu4qloInHBX/l/5namDs Y+9i5OSQEDCRePhkKyuELSZx4d56NhBbSGAxk8S1vZxdjFxA9gFGidn7djJDJI4xSmx9kwOR 2M4o0Tr1ESuEs5pR4urvpWBVbAIaEm0/esFWiAioSGzofsYEYjML2EnsunIAqIGDQ1jAQuLO qgCIEkuJ129WQJUbSXw6uxTsIhYBVYmeZXvALuIVsJJY03+YCeKIcIkrX1+C2ZxANTd+bwer ZwT64PupNVCrxCVuPZnPBPGZoMSi2XuYYb78t+shG0SNjsSC3Z+gbG2JZQtfM0PsEpQ4OfMJ ywRGiVlIRs1C0jILScssJC0LGFlWMcqm5Fbp5iZm5hSnJusWJyfm5aUW6Rrr5WaW6KWmlG5i BMUkpyTfDsavB5UOMQpwMCrx8P6QEAoVYk0sK67MPcQoycGkJMq7/wxQiC8pP6UyI7E4I76o NCe1+BCjBAezkgjvzk1AOd6UxMqq1KJ8mJQ0B4uSOO+mH3whQgLpiSWp2ampBalFMFkZDg4l Cd6eu0CNgkWp6akVaZk5JQhpJg5OkOE8QMO3gNTwFhck5hZnpkPkTzEqSonzbgBJCIAkMkrz 4HphKfMVozjQK8K8b0GqeIDpFq77FdBgJqDB5/L5QAaXJCKkpBoYw6PvTN13tpeP8br2izYj /mfJq+cKFK4Lrp4RdJRFwJ9LZMlFgfSP9WJyiZ9cts75u8k/RVa5Xct+csKxkwdCr95dXer7 f9nOFY/EP4s7KrLPOv/bJP9uj9lbhds9R3Rvn97qc+DTyapvBjW8ygXWizQ+aqVsKvzvcn/X tBP75imXa3Y2tLqaK7EUZyQaajEXFScCAMXebCh0AwAA
Archived-At: <http://mailarchive.ietf.org/arch/msg/ace/DwTUdU_6cbZXsF2qJYi6JzrXyAU>
Cc: Eve Maler <eve@xmlgrrl.com>, "ace@ietf.org" <ace@ietf.org>
Subject: Re: [Ace] New doc: draft-maler-ace-oauth-uma-00
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Mar 2015 16:15:14 -0000

Hi Olaf,

In order to use UMA in a given IoT scenario, you will need to create a profile of UMA that defines the "missing parts", such as the contents of the permission ticket. This is what the HEART WG is doing in the OIF. 


/thomas/




> On Mar 25, 2015, at 06:11, Olaf Bergmann <bergmann@tzi.org> wrote:
> 
> Eve,
> 
> Eve Maler <eve@xmlgrrl.com> writes:
> 
>> http://tools.ietf.org/html/draft-maler-ace-oauth-uma-00
> 
> Thanks for sharing this.
> 
> One question: draft-hardjono-oauth-umacore-12 specifies that when a
> client attempts to access a protected resource, the resource server must
> register a requested permission with its authorization server to get an
> RPT that the client must present to the authorization server. From
> reading Section 5 of draft-maler-ace-oauth-uma, it is unclear to me
> whether or not this step is required in this profile. Can you clarify
> how this is supposed to work?
> 
> Thanks
> Olaf
> 
> _______________________________________________
> Ace mailing list
> Ace@ietf.org
> https://www.ietf.org/mailman/listinfo/ace

v2.23.0 | Report a Bug | By Email