IETF Logo Mail Archive

Re: [Ace] Requested review for IANA registration in draft-ietf-ace-oauth-params

Benjamin Kaduk <kaduk@mit.edu> Tue, 31 December 2019 21:55 UTC

Return-Path: <kaduk@mit.edu>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8329E120052; Tue, 31 Dec 2019 13:55:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.199
X-Spam-Level:
X-Spam-Status: No, score=-4.199 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 56gnJjpmLNKc; Tue, 31 Dec 2019 13:55:58 -0800 (PST)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D96C2120013; Tue, 31 Dec 2019 13:55:57 -0800 (PST)
Received: from kduck.mit.edu ([24.16.140.251]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id xBVLtO9h031154 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 31 Dec 2019 16:55:26 -0500
Date: Tue, 31 Dec 2019 13:55:23 -0800
From: Benjamin Kaduk <kaduk@mit.edu>
To: Brian Campbell <bcampbell@pingidentity.com>
Cc: Ludwig Seitz <ludwig_seitz@gmx.de>, oauth-ext-review@ietf.org, Roman Danyliw <rdd@cert.org>, Daniel Migault <daniel.migault@ericsson.com>, Jim Schaad <ietf@augustcellars.com>, "ace@ietf.org" <ace@ietf.org>, drafts-lastcall@iana.org
Message-ID: <20191231215523.GY35479@kduck.mit.edu>
References: <4a5177af-a442-f109-f620-0ae91953eb63@gmx.de> <CA+k3eCSG3m8=DTnNX-xa2ydaKzHU5WUC5JaWH9vbcMN2XcPnZw@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CA+k3eCSG3m8=DTnNX-xa2ydaKzHU5WUC5JaWH9vbcMN2XcPnZw@mail.gmail.com>
User-Agent: Mutt/1.12.1 (2019-06-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/dm2RSIYgqDRxYg2AN0-M4F9spE4>
Subject: Re: [Ace] Requested review for IANA registration in draft-ietf-ace-oauth-params
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 Dec 2019 21:56:00 -0000

On Mon, Dec 23, 2019 at 02:32:15PM -0700, Brian Campbell wrote:
> The OAuth Token Introspection Response registry
> <https://www.iana.org/assignments/oauth-parameters/oauth-parameters.xhtml#token-introspection-response>
> already has an entry for "cnf", which makes the first request in
> https://tools.ietf.org/html/draft-ietf-ace-oauth-params-07#section-9.4
> rather problematic.

Indeed.

It seems like the right thing to do is probably just to drop that entry
from the registration request (even though the existing description of
"Confirmation" is kind of lousy), since we are using it with the same
semantics as from 7800 and mtls.

Sorry for missing that initially!

-Ben

v2.23.0 | Report a Bug | By Email