[jose] #17: add 'aud' and 'iss' to 4.1 Reserved Header Parameter Names
"jose issue tracker" <trac+jose@trac.tools.ietf.org> Wed, 03 April 2013 18:13 UTC
Return-Path: <trac+jose@trac.tools.ietf.org>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7045D21F8C3C for <jose@ietfa.amsl.com>; Wed, 3 Apr 2013 11:13:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AvNeQaDLdVBD for <jose@ietfa.amsl.com>; Wed, 3 Apr 2013 11:13:42 -0700 (PDT)
Received: from grenache.tools.ietf.org (grenache.tools.ietf.org [IPv6:2a01:3f0:1:2::30]) by ietfa.amsl.com (Postfix) with ESMTP id BB47021F8C1E for <jose@ietf.org>; Wed, 3 Apr 2013 11:13:42 -0700 (PDT)
Received: from localhost ([127.0.0.1]:41853 helo=grenache.tools.ietf.org ident=www-data) by grenache.tools.ietf.org with esmtp (Exim 4.80) (envelope-from <trac+jose@trac.tools.ietf.org>) id 1UNSBg-0001xd-88; Wed, 03 Apr 2013 20:13:32 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: jose issue tracker <trac+jose@trac.tools.ietf.org>
X-Trac-Version: 0.12.3
Precedence: bulk
Auto-Submitted: auto-generated
X-Mailer: Trac 0.12.3, by Edgewall Software
To: draft-ietf-jose-json-web-encryption@tools.ietf.org, dick.hardt@gmail.com
X-Trac-Project: jose
Date: Wed, 03 Apr 2013 18:13:32 -0000
X-URL: http://tools.ietf.org/jose/
X-Trac-Ticket-URL: http://trac.tools.ietf.org/wg/jose/trac/ticket/17
Message-ID: <059.28920e1fc6703f74a91ab3b3829a8a57@trac.tools.ietf.org>
X-Trac-Ticket-ID: 17
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Rcpt-To: draft-ietf-jose-json-web-encryption@tools.ietf.org, dick.hardt@gmail.com, jose@ietf.org
X-SA-Exim-Mail-From: trac+jose@trac.tools.ietf.org
X-SA-Exim-Scanned: No (on grenache.tools.ietf.org); SAEximRunCond expanded to false
Resent-To: ekr@rtfm.com, jhildebr@cisco.com, mbj@microsoft.com
Resent-Message-Id: <20130403181342.BB47021F8C1E@ietfa.amsl.com>
Resent-Date: Wed, 03 Apr 2013 11:13:42 -0700
Resent-From: trac+jose@trac.tools.ietf.org
Cc: jose@ietf.org
Subject: [jose] #17: add 'aud' and 'iss' to 4.1 Reserved Header Parameter Names
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Apr 2013 18:13:43 -0000
#17: add 'aud' and 'iss' to 4.1 Reserved Header Parameter Names Recipients of an encrypted token sometimes are not the audience, and may not know who the issuer is. Allowing these values to be in the header enables a recipient to have a hint if the token needs to be handed to another party for processing, and a hint of who the issuer was. These values are not confirmed until validation of the token has been performed, but enables the appropriate parties and keys to be used to validate. Suggested added text: 4.1.x The "iss" (issuer) Header Parameter The "iss" (issuer) header parameter identifies the principal that issued the JWT. The processing of this header parameter is generally application specific. The "iss" value is case sensitive. This header parameter is OPTIONAL. 4.1.x The "aud" (audience) Header Parameter The "aud" (audience) header parameter identifies the audience that the JWT is intended for. The principal intended to process the JWT MUST be identified with the value of the audience header parameter. If the principal processing the header parameter does not identify itself with the identifier in the "aud" header parameter value then the JWT MUST be rejected. The interpretation of the audience value is generally application specific. The "aud" value is case sensitive. This header parameter is OPTIONAL. -- -------------------------+------------------------------------------------- Reporter: | Owner: draft-ietf-jose-json-web- dick.hardt@gmail.com | encryption@tools.ietf.org Type: enhancement | Status: new Priority: major | Milestone: Component: json-web- | Version: encryption | Keywords: Severity: - | -------------------------+------------------------------------------------- Ticket URL: <http://trac.tools.ietf.org/wg/jose/trac/ticket/17> jose <http://tools.ietf.org/jose/>
- [jose] #17: add 'aud' and 'iss' to 4.1 Reserved H… jose issue tracker
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… jose issue tracker
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Dick Hardt
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… jose issue tracker
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Dick Hardt
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Mike Jones
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Mike Jones
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… John Bradley
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Dick Hardt
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Dick Hardt
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Dick Hardt
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Mike Jones
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Dick Hardt
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Jim Schaad
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Mike Jones
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… Matt Miller (mamille2)
- Re: [jose] #17: add 'aud' and 'iss' to 4.1 Reserv… jose issue tracker