Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth-12
Bill Mills <wmills@yahoo-inc.com> Wed, 19 February 2014 05:39 UTC
Return-Path: <wmills@yahoo-inc.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 57CA01A0424 for <kitten@ietfa.amsl.com>; Tue, 18 Feb 2014 21:39:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -16.22
X-Spam-Level:
X-Spam-Status: No, score=-16.22 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_NEUTRAL=0.779, USER_IN_DEF_WHITELIST=-15] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UYYObxM5w-Ke for <kitten@ietfa.amsl.com>; Tue, 18 Feb 2014 21:39:32 -0800 (PST)
Received: from mrout2-b.corp.bf1.yahoo.com (mrout2-b.corp.bf1.yahoo.com [98.139.253.105]) by ietfa.amsl.com (Postfix) with ESMTP id 794811A0332 for <kitten@ietf.org>; Tue, 18 Feb 2014 21:39:32 -0800 (PST)
Received: from GQ1-EX10-CAHT19.y.corp.yahoo.com (gq1-ex10-caht19.corp.gq1.yahoo.com [10.73.119.200]) by mrout2-b.corp.bf1.yahoo.com (8.14.4/8.14.4/y.out) with ESMTP id s1J5d116050359 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL) for <kitten@ietf.org>; Tue, 18 Feb 2014 21:39:03 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=yahoo-inc.com; s=cobra; t=1392788343; bh=XI3ccYWnmyGxia5y+PQq4yrx83SPIws3NMXNZu/x4WA=; h=References:Date:From:Reply-To:Subject:In-Reply-To; b=LIaNhcJwWCpGqq8gZx1S617o6nJ3a/nz4x1inHsSBXoI5UWCEQhCj+pdUdh9Wn3hh lyANZeIMPplhTrIbBCmMh2lCvzt0BqPwUyliILVFy1TX2+F5L67P+eiLNS69HWzBLA /QMYkNkLTmsi5ESXTxi5ixveY8j4hbK0eeQyY7is=
Received: from omp1039.mail.ne1.yahoo.com (98.138.88.239) by GQ1-EX10-CAHT19.y.corp.yahoo.com (10.72.228.24) with Microsoft SMTP Server (TLS) id 14.3.174.1; Tue, 18 Feb 2014 21:39:00 -0800
Received: (qmail 55410 invoked by uid 1000); 19 Feb 2014 05:38:59 -0000
Received: (qmail 16262 invoked by uid 60001); 19 Feb 2014 05:38:59 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo-inc.com; s=ginc1024; t=1392788339; bh=ohgaC1C6B+XL/vrR1hWbGQWANCHk5CdvwnOYh49S6ao=; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=CfjHuJAFSpY0ZLxDyAvsecRst1ezdFX0Xgw3kJnnq2A5CshTe1eFYIKAgktj4epbiymDG4uwShSc9dpJi4fGGTaWGx+ZZGgXjO0P/LkTlCHeEIvkjwQCgA++aOpbyfFfsGMf9ycLeSTh6yi561aLIbLvxTZhOLUTt4MswlvWeRM=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=ginc1024; d=yahoo-inc.com; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=U9JO2LVA+wjqIPOyw6xFrHhquQBcq77jzgyCj3kMG2o4rSL5qi4kbssJk26l/gr2Y25baijBOvR+pXlrDSoQsjR9AbTie4FT5OA92EeRI1Z04Tgppi0PAqjf+H339cRPyP0fq26tgQiZU/sY2m7xO7EkpNp3vibRu3Cb1QGARk0=;
X-YMail-OSG: PWF6V0kVM1lT8Iy04G3Ch.KZ9PxvotJnUqvxUzkax4hJNqZ RQWLnLVV53qUYluvNBwWXk7pndEDP84QCFc9Kg5kBgNtZi3u3nDYioUCN.5C MSLW2_lSjOsCt.VLpmRv29OorpH7shbBZ30ua.Roo_IRz54KkyO8FxKBVrRY 1SleNITU70Ph1Uj8.f_l9oSpuKG3k7lXn70ECXEiV95u4JSD4KXZKzGLHabv zWmJP.EdLGc.P9pDO_POMWYVO2Oq1MbWWm2NlsLMdXJvvJG_6io3gO54ZI.R 9MlKzpEa1ldQrBU9ZFLN7p5igLpJRgRw-
Received: from [99.31.212.42] by web125602.mail.ne1.yahoo.com via HTTP; Tue, 18 Feb 2014 21:38:59 PST
X-Rocket-MIMEInfo: 002.001, TXkgZXJyb3IsIEkgd2FzIHN1cHBvc2VkIHRvIHB1dCBpdCBiYWNrLgoKQ2FuIHdlIGZpeCBpdD8KCgrCoAotYmlsbAoKCgotLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQpXaWxsaWFtIEouIE1pbGxzCiJQYXJhbm9pZCIgTWVtYmVyc2hpcCBZYWhvbyEKCgoKCgpPbiBUdWVzZGF5LCBGZWJydWFyeSAxOCwgMjAxNCA5OjA3IFBNLCBSeWFuIFRyb2xsIDxydHJvbGxAZ29vZ2xlcnMuY29tPiB3cm90ZToKIApWZXJzaW9uIC0xMyB3YXMgcmVsZWFzZWQsIGFuZCAidXNlcj0iIGlzIG5vdCBwcmVzZW50LgoBMAEBAQE-
X-Mailer: YahooMailWebService/0.8.177.636
References: <52AE9A65.1010700@oracle.com> <C2752600-AC7C-4839-8BD0-3D850ECB19EB@cisco.com> <CAPe4CjpsuGrb+8_bwWa1raFbhgUBVyZBN7bO-JWOSRs5Ambygg@mail.gmail.com> <1389054229.19390.YahooMailNeo@web125601.mail.ne1.yahoo.com> <1389054308.10730.YahooMailNeo@web125604.mail.ne1.yahoo.com> <CAPe4Cjpe7sSMZh_H0=oY3rJGq2OCtwBoCri9THrjhTaqqgTyAg@mail.gmail.com>
Message-ID: <1392788339.98053.YahooMailNeo@web125602.mail.ne1.yahoo.com>
Date: Tue, 18 Feb 2014 21:38:59 -0800
From: Bill Mills <wmills@yahoo-inc.com>
To: Ryan Troll <rtroll@googlers.com>
In-Reply-To: <CAPe4Cjpe7sSMZh_H0=oY3rJGq2OCtwBoCri9THrjhTaqqgTyAg@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="-1088529044-532608147-1392788339=:98053"
X-Milter-Version: master.31+4-gbc07cd5+
X-CLX-ID: 788343005
Archived-At: http://mailarchive.ietf.org/arch/msg/kitten/uAeCtirH5fCFTTT1UWSIN5U3UmM
Cc: "kitten@ietf.org" <kitten@ietf.org>
Subject: Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth-12
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Bill Mills <wmills@yahoo-inc.com>
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Feb 2014 05:39:34 -0000
My error, I was supposed to put it back. Can we fix it? -bill -------------------------------- William J. Mills "Paranoid" Membership Yahoo! On Tuesday, February 18, 2014 9:07 PM, Ryan Troll <rtroll@googlers.com> wrote: Version -13 was released, and "user=" is not present. Can this be placed back in prior to approval as an RFC? It's optional, present to encourage implementors to use the same field name for this data (if required by their implementation), and was previously part of the GS2-header which was recently removed. -R On Mon, Jan 6, 2014 at 4:25 PM, Bill Mills <wmills@yahoo-inc.com> wrote: That said, your extant implementation might argue for leaving the GS2 header in there... > > > > > >-bill > > > >-------------------------------- >William J. Mills >"Paranoid" Yahoo! > > > > > > >On , Bill Mills <wmills@yahoo-inc.com> wrote: > >Now that it's not duplicating the gs2 stuff it makes some sense. It can be easily added back. > > > >Any objection to adding the "user" field back in? > > >-bill > > > >-------------------------------- >William J. Mills >"Paranoid" Yahoo! > > > > > > >On Monday, January 6, 2014 4:10 PM, Ryan Troll <rtroll@googlers.com> wrote: > > >>MAJOR: >> >>* Removing the GS2-header (which was done in revision -11) also removed the ability for the client to specify an authorization identity. If the lack of an authorization identity is acceptable (and I suspect it is not for some), then the document needs to state these mechanisms do not support authz-id. > > > > >The loss of the authz-id is a problem for us. Last year we discussed the use case with the list, came to the conclusion that what our use case needed was access to the authz-id; and agreed that we'd pull it from the GS2-header. > > >Now that the GS2-header is gone, it would be beneficial to provide a standard, but optional, way for clients to provide the authz-id to the service. This would ensure compatibility across services which require the authz-id; while not requiring it for *all* SASL-OAuth clients. > > >The original proposal had been to define a reserved keyword ("user") which could be part of the initial client response. Should this be re-added? > > >-R > > >_______________________________________________ >Kitten mailing list >Kitten@ietf.org >https://www.ietf.org/mailman/listinfo/kitten > > > > >
- [kitten] WGLC on draft-ietf-kitten-sasl-oauth-12 Shawn M Emery
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Matt Miller (mamille2)
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Matt Miller (mamille2)
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Matt Miller (mamille2)
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Ryan Troll
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Ryan Troll
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- [kitten] WGLC on draft-ietf-kitten-aes-cts-hmac-s… Shawn M Emery
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Benjamin Kaduk
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Peck, Michael A
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Benjamin Kaduk
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Simon Josefsson
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Benjamin Kaduk
- Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hm… Greg Hudson
- [kitten] WGLC on draft-ietf-krb-wg-cammac-08 Shawn M Emery
- Re: [kitten] WGLC on draft-ietf-krb-wg-cammac-08 Zheng, Kai
- Re: [kitten] WGLC on draft-ietf-krb-wg-cammac-08 Tom Yu
- Re: [kitten] WGLC on draft-ietf-krb-wg-cammac-08 Zheng, Kai
- [kitten] WGLC on draft-ietf-kitten-sasl-oauth-15 Shawn M Emery
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Benjamin Kaduk
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Benjamin Kaduk
- Re: [kitten] WGLC on draft-ietf-kitten-sasl-oauth… Bill Mills