[oauth-ext-review] Request to register OAuth Authorization Server Metadata parameters
Mike Jones <Michael.Jones@microsoft.com> Sun, 26 April 2020 20:50 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: oauth-ext-review@ietfa.amsl.com
Delivered-To: oauth-ext-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6B2D03A11B5 for <oauth-ext-review@ietfa.amsl.com>; Sun, 26 Apr 2020 13:50:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_FONT_LOW_CONTRAST=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aTo0DIh3ntkh for <oauth-ext-review@ietfa.amsl.com>; Sun, 26 Apr 2020 13:50:50 -0700 (PDT)
Received: from NAM06-DM3-obe.outbound.protection.outlook.com (mail-eopbgr640129.outbound.protection.outlook.com [40.107.64.129]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 18F8D3A11B4 for <oauth-ext-review@ietf.org>; Sun, 26 Apr 2020 13:50:49 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=lGfANytHvQWXl2EMo5zSa0tlUIUOUHjh9DyuLoNqMKlptHWCOYGybpHe2NI2b8n51d+wlskW1xsEQL2mFLueeBNBkNHjCguOws026bSjYd51FltTH3XhhmXbxcm35HGOkJGTverUszHbbZgdKHCmaVqdqvipisvoSJIlFWR3WSgqTboSIv8ncjFA+O5+ZszHGTt0iiqDuGA5Nt4XpPtu45hsyja3DmSdbRErcSS/xmuGAKHpEWFwfUqdmY/gnijjD4MC8SrdqIo6XnezA+m9jMwoI5JA2PEp24yxNn1YH2ccJt3AmWRe61sPvBaE1S4mQI6ik4phxx5WwNUFQltQ0A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ifYb005uHFmMqtul/b2Gn1Sq9DLMc986oRDdhvoNMKw=; b=Uxms2vTGX9XtCaUTwILmZLVeu81o1X/BuxE4SxlHAAAbgGtwAH98a6u4NwtF7xGISeFwqs8J/cUK3kQwzD8Qr7bEuhMDL6+yEryl9H4GH9M39/KB8+7gJMZ/x8kVVzVsi/ytCz2OmMDXup5w5E2xAhPCuxNQdh0E04IRINiAmaC//QRJkjf3RMWQ3hg6uYe/jF7tMhYS+QCjGXVwV4cyL94Ng6KTkPy3a5WkrP25CW82d9apbaePRiESSZdBh8G9CRJUHpd4VatU9hQqlqvZedeDyAjaAGSCUvWzFxda6w2H2wNmIc/IwvZqO0jM8i1okQQw6SDVHCN7DkLVUnKudw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ifYb005uHFmMqtul/b2Gn1Sq9DLMc986oRDdhvoNMKw=; b=FfhuOZdh9Zs3rO9G/bSldUFUkD8jSg1hpyXhGQxmECFbA8T3Cih9T+8jOjpG2sP6RdD/rWH0+deJvZnbxfkOsoSReWHVvKaQaBAnrJfG8bKN3KWubL8UbLec3bGaEZkQP/CHesE4iJorUcQmqxakHpo2hhtIjfgeqa1ESOCATRE=
Received: from CH2PR00MB0679.namprd00.prod.outlook.com (2603:10b6:610:af::7) by CH2PR00MB0693.namprd00.prod.outlook.com (2603:10b6:610:ad::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2989.0; Sun, 26 Apr 2020 20:50:31 +0000
Received: from CH2PR00MB0679.namprd00.prod.outlook.com ([fe80::5c07:f872:b7d:cc68]) by CH2PR00MB0679.namprd00.prod.outlook.com ([fe80::5c07:f872:b7d:cc68%8]) with mapi id 15.20.2988.000; Sun, 26 Apr 2020 20:50:31 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "oauth-ext-review@ietf.org" <oauth-ext-review@ietf.org>
CC: "ve7jtb@gmail.com" <ve7jtb@ve7jtb.com>, Nat Sakimura <nat@sakimura.org>
Thread-Topic: Request to register OAuth Authorization Server Metadata parameters
Thread-Index: AdYcDCufkrsNgK4DR1m9P+MY7KSggg==
Date: Sun, 26 Apr 2020 20:50:31 +0000
Message-ID: <CH2PR00MB067936C76465BD3E4689CFAFF5AE0@CH2PR00MB0679.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=0c473b28-9197-4788-8bd6-000063eff6cf; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2020-04-26T20:42:05Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-originating-ip: [50.47.87.252]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 64323097-aa98-4288-d678-08d7ea2375d1
x-ms-traffictypediagnostic: CH2PR00MB0693:
x-microsoft-antispam-prvs: <CH2PR00MB069336D84890969ACC9397ABF5AE0@CH2PR00MB0693.namprd00.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 03853D523D
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH2PR00MB0679.namprd00.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(136003)(376002)(346002)(396003)(366004)(39860400002)(82960400001)(52536014)(8936002)(66556008)(66446008)(64756008)(66476007)(66946007)(82950400001)(76116006)(71200400001)(2906002)(33656002)(7696005)(186003)(26005)(8676002)(6506007)(4326008)(966005)(8990500004)(55016002)(86362001)(9686003)(6916009)(478600001)(54906003)(10290500003)(316002)(5660300002)(579004)(559001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_CH2PR00MB067936C76465BD3E4689CFAFF5AE0CH2PR00MB0679namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH2PR00MB0679.namprd00.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 64323097-aa98-4288-d678-08d7ea2375d1
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Apr 2020 20:50:31.6182 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: sq+acZQWeCD+iOgoP1kpIQW3t6IydZl1G4g4nolUD033KPvalYm/WGMGYtM11M6DuCx2d5mGFBFCnni73jkvrQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH2PR00MB0693
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth-ext-review/pzLuzCc0Lvz_ZHdzMSZrMhBcLus>
Subject: [oauth-ext-review] Request to register OAuth Authorization Server Metadata parameters
X-BeenThere: oauth-ext-review@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Review of proposed IANA registrations for OAuth." <oauth-ext-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth-ext-review>, <mailto:oauth-ext-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth-ext-review/>
List-Post: <mailto:oauth-ext-review@ietf.org>
List-Help: <mailto:oauth-ext-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth-ext-review>, <mailto:oauth-ext-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 26 Apr 2020 20:50:54 -0000
Dear Designated Experts and IANA, I am writing to you on behalf of the OpenID Connect Artifact Binding working group requesting to register the OAuth Authorization Server Metadata parameters defined in https://openid.net/specs/openid-connect-discovery-1_0-29.html#MetadataRegistry. The individual registration requests are repeated below. These parameters were defined in the OpenID Connect Discovery specification that became final in February 2014. Now that the OAuth Authorization Server Metadata registry has been established at https://www.iana.org/assignments/oauth-parameters/oauth-parameters.xhtml#authorization-server-metadata, those parameters not already registered by RFC 8414 are now being registered. Thank you, -- Mike 8.2. OAuth Authorization Server Metadata Registry This specification registers the following metadata names in the IANA "OAuth Authorization Server Metadata" registry [IANA.OAuth.Parameters]<https://openid.net/specs/openid-connect-discovery-1_0-29.html#IANA.OAuth.Parameters> established by [RFC8414]<https://openid.net/specs/openid-connect-discovery-1_0-29.html#RFC8414>. ________________________________ TOC <https://openid.net/specs/openid-connect-discovery-1_0-29.html#toc> 8.2.1. Registry Contents * Metadata Name: userinfo_endpoint * Metadata Description: URL of the OP's UserInfo Endpoint * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: acr_values_supported * Metadata Description: JSON array containing a list of the Authentication Context Class References that this OP supports * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: subject_types_supported * Metadata Description: JSON array containing a list of the Subject Identifier types that this OP supports * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: id_token_signing_alg_values_supported * Metadata Description: JSON array containing a list of the JWS "alg" values supported by the OP for the ID Token * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: id_token_encryption_alg_values_supported * Metadata Description: JSON array containing a list of the JWE "alg" values supported by the OP for the ID Token * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: id_token_encryption_enc_values_supported * Metadata Description: JSON array containing a list of the JWE "enc" values supported by the OP for the ID Token * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: userinfo_signing_alg_values_supported * Metadata Description: JSON array containing a list of the JWS "alg" values supported by the UserInfo Endpoint * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: userinfo_encryption_alg_values_supported * Metadata Description: JSON array containing a list of the JWE "alg" values supported by the UserInfo Endpoint * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: userinfo_encryption_enc_values_supported * Metadata Description: JSON array containing a list of the JWE "enc" values supported by the UserInfo Endpoint * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: request_object_signing_alg_values_supported * Metadata Description: JSON array containing a list of the JWS "alg" values supported by the OP for Request Objects * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: request_object_encryption_alg_values_supported * Metadata Description: JSON array containing a list of the JWE "alg" values supported by the OP for Request Objects * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: request_object_encryption_enc_values_supported * Metadata Description: JSON array containing a list of the JWE "enc" values supported by the OP for Request Objects * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: display_values_supported * Metadata Description: JSON array containing a list of the "display" parameter values that the OpenID Provider supports * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: claim_types_supported * Metadata Description: JSON array containing a list of the Claim Types that the OpenID Provider supports * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: claims_supported * Metadata Description: JSON array containing a list of the Claim Names of the Claims that the OpenID Provider MAY be able to supply values for * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: claims_locales_supported * Metadata Description: Languages and scripts supported for values in Claims being returned, represented as a JSON array of BCP 47 language tag values * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: claims_parameter_supported * Metadata Description: Boolean value specifying whether the OP supports use of the "claims" parameter * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: request_parameter_supported * Metadata Description: Boolean value specifying whether the OP supports use of the "request" parameter * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: request_uri_parameter_supported * Metadata Description: Boolean value specifying whether the OP supports use of the "request_uri" parameter * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document * Metadata Name: require_request_uri_registration * Metadata Description: Boolean value specifying whether the OP requires any "request_uri" values used to be pre-registered * Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net<mailto:openid-specs-ab@lists.openid.net> * Specification Document(s): Section 3<https://openid.net/specs/openid-connect-discovery-1_0-29.html#ProviderMetadata> of this document
- [oauth-ext-review] Request to register OAuth Auth… Mike Jones
- Re: [oauth-ext-review] Request to register OAuth … John Bradley