Re: [oauth-ext-review] Request to register OAuth Authorization Server Metadata: claims_interaction_endpoint, uma_profiles_supported, permission_endpoint, resource_registration_endpoint
Mike Jones <Michael.Jones@microsoft.com> Wed, 28 June 2017 23:07 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: oauth-ext-review@ietfa.amsl.com
Delivered-To: oauth-ext-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E411124C27 for <oauth-ext-review@ietfa.amsl.com>; Wed, 28 Jun 2017 16:07:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.02
X-Spam-Level:
X-Spam-Status: No, score=-2.02 tagged_above=-999 required=5 tests=[AC_DIV_BONANZA=0.001, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TwZxCbfsQ2bi for <oauth-ext-review@ietfa.amsl.com>; Wed, 28 Jun 2017 16:07:14 -0700 (PDT)
Received: from NAM03-BY2-obe.outbound.protection.outlook.com (mail-by2nam03on0097.outbound.protection.outlook.com [104.47.42.97]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AE1FD129B1D for <oauth-ext-review@ietf.org>; Wed, 28 Jun 2017 16:07:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=EwQT1bIm64LY28cFWiF1ikzHx1JDVefxGWiEf6g8toE=; b=HbWxZrVrY8k4IJI6ohQOzioqpOiDsfClBHqzSu8z/ju7ci3NNgH3RsB1/Tsfh/up1BUM3G7vleNKIbiFPrWMneWTXAasFrjOBwvU8hiT9Bc92EBFtAnQIsGvtnnSHpNNMYZpcDLB5gp6oghxKzf7Gf1IewQqYq+9hqlXcSGogFI=
Received: from CY4PR21MB0504.namprd21.prod.outlook.com (10.172.122.14) by CY4PR21MB0167.namprd21.prod.outlook.com (10.173.192.149) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1240.1; Wed, 28 Jun 2017 23:07:12 +0000
Received: from CY4PR21MB0504.namprd21.prod.outlook.com ([10.172.122.14]) by CY4PR21MB0504.namprd21.prod.outlook.com ([10.172.122.14]) with mapi id 15.01.1240.001; Wed, 28 Jun 2017 23:07:12 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Eve Maler <eve.maler@forgerock.com>
CC: "oauth-ext-review@ietf.org" <oauth-ext-review@ietf.org>, Maciej Machulak <maciej.machulak@gmail.com>, Justin Richer <justin@bspk.io>
Thread-Topic: [oauth-ext-review] Request to register OAuth Authorization Server Metadata: claims_interaction_endpoint, uma_profiles_supported, permission_endpoint, resource_registration_endpoint
Thread-Index: AQHS5wboo3cbnQivBkmcdJFKRsk00KI66kqggAAIcQCAAAWSUA==
Date: Wed, 28 Jun 2017 23:07:12 +0000
Message-ID: <CY4PR21MB0504FAECC34377861DAAB0B4F5DD0@CY4PR21MB0504.namprd21.prod.outlook.com>
References: <CAMPbGmguVObYrbV5urxQV=tVFg1srfo3G8m1sQqDF1r+1XXuUg@mail.gmail.com> <CY4PR21MB0504106E9DA09715B4400652F5DD0@CY4PR21MB0504.namprd21.prod.outlook.com> <CAMPbGmio0qMnnwD3Uagm3PA4FbGisdQF6WRiZKb5dt=j0H9zvQ@mail.gmail.com>
In-Reply-To: <CAMPbGmio0qMnnwD3Uagm3PA4FbGisdQF6WRiZKb5dt=j0H9zvQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=True; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Ref=https://api.informationprotection.azure.com/api/72f988bf-86f1-41af-91ab-2d7cd011db47; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Owner=mbj@microsoft.com; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2017-06-28T16:07:10.9273581-07:00; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=General; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Application=Microsoft Azure Information Protection; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Extended_MSFT_Method=Automatic; Sensitivity=General
authentication-results: forgerock.com; dkim=none (message not signed) header.d=none;forgerock.com; dmarc=none action=none header.from=microsoft.com;
x-originating-ip: [2001:4898:80e8:4::36]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; CY4PR21MB0167; 7:f7s1h16xtSnT0OsPQHlJd6pAxm3ZkFjeoqCmffPcjrjA+U+mwk61/vpuP66ok5ZNYN2FjiLcLN1nytRutUWzI1V8BNUpdvKyPg7jj8NhQGhx7jiR4BmTfBKaM5KPJjNHn/fab3ZdjVP43synfj0wr0YQslG+bsXlyoyPJjF3letuG7UDjXxJ1jvIOxDhV4lAHUoR+JPFOSMYEh4RKVsGKNj7kDCT0ACDaEfsJeWQfwsjUAO40HWkvad7gENeyxHfA6a/3gw21OmVdr6rlqknW56QKPI1i6UsIBHw+9L94HGyQ0lUUyjU8pRaA2eIEDICFca8E/Hahrmnza3UVWWCpXUjYMHhyGpYPjn3yUVpzYEOvZx9hOeOQwwrDiDBLZa11l4J4jscBLIy27GwV4oLDa590WKqyrb86ij3pmuYj80oyBKErm9aOevZ/UTnfkOZMLyhnRv0ToyQQB81rdz1vp1p9auo7GElil1D17mjQ6NoVuTDYDs/xHHq2xH+UJB9ae9/8DPsTGMYGOJ6z+sbrmo9XiNy+W663njP++LGsMzCzuJEUXefXcsrJvVTzD83q1Ty4ofcHN3BrG07S6X7uFlACi3QfehnJhTB7F4dwxyg8Vpjt7/IMjorSHXaSa2l9P9PxFsddx59k8YUa51Lsm+hTW5fcIPj4AZbjlbW0vCqGmKgn2r8dd+/osV8nHyPlqYQbbDfY/kscBAEE+zhqBBkZQZhZwIslH3HG+TE2VcZNSBoTgK6pFXhccc18O+M3xJzsBBJZyevyhlh5lc+fEye1Ph5aK30Qb6vxS6ZdPk0iwmGtshFKMmbl1utAWQa
x-ms-office365-filtering-correlation-id: b810666a-80a1-42a9-20d8-08d4be7a68f5
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254075)(48565401081)(300000503095)(300135400095)(2017052603017)(201703131423075)(201703031133081)(201702281549075)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:CY4PR21MB0167;
x-ms-traffictypediagnostic: CY4PR21MB0167:
x-microsoft-antispam-prvs: <CY4PR21MB016785257A04BF82348FF991F5DD0@CY4PR21MB0167.namprd21.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(151999592597050)(158342451672863)(148322886591682)(26388249023172)(236129657087228)(92093043455673)(148574349560750)(21748063052155)(209349559609743)(48057245064654);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(61425038)(6040450)(601004)(2401047)(5005006)(8121501046)(2017060910014)(3002001)(100000703101)(100105400095)(10201501046)(93006095)(93001095)(6055026)(61426038)(61427038)(6041248)(20161123560025)(20161123558100)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123555025)(20161123564025)(20161123562025)(6072148)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:CY4PR21MB0167; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:CY4PR21MB0167;
x-forefront-prvs: 03524FBD26
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39410400002)(39400400002)(39860400002)(39840400002)(39850400002)(39450400003)(377454003)(24454002)(7736002)(50986999)(5660300001)(76176999)(54356999)(2950100002)(6916009)(25786009)(230783001)(7696004)(2900100001)(74316002)(606006)(10290500003)(33656002)(8990500004)(86612001)(53546010)(86362001)(2906002)(5005710100001)(54896002)(9686003)(236005)(6306002)(55016002)(99286003)(54906002)(478600001)(8936002)(72206003)(53936002)(189998001)(81166006)(77096006)(14454004)(6436002)(8676002)(229853002)(6506006)(102836003)(19609705001)(790700001)(6116002)(39060400002)(10090500001)(3280700002)(3660700001)(4326008)(38730400002)(110136004)(6246003); DIR:OUT; SFP:1102; SCL:1; SRVR:CY4PR21MB0167; H:CY4PR21MB0504.namprd21.prod.outlook.com; FPR:; SPF:None; MLV:ovrnspm; PTR:InfoNoRecords; LANG:en;
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_CY4PR21MB0504FAECC34377861DAAB0B4F5DD0CY4PR21MB0504namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Jun 2017 23:07:12.1484 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY4PR21MB0167
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth-ext-review/ZUHOqCEnRPfkph7Kt1U2V6rk89M>
Subject: Re: [oauth-ext-review] Request to register OAuth Authorization Server Metadata: claims_interaction_endpoint, uma_profiles_supported, permission_endpoint, resource_registration_endpoint
X-BeenThere: oauth-ext-review@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Review of proposed IANA registrations for OAuth." <oauth-ext-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth-ext-review>, <mailto:oauth-ext-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth-ext-review/>
List-Post: <mailto:oauth-ext-review@ietf.org>
List-Help: <mailto:oauth-ext-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth-ext-review>, <mailto:oauth-ext-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Jun 2017 23:07:19 -0000
I’d just leave it in the spec. Once AS Metadata is an RFC, we can then just act on it.
-- Mike
From: Eve Maler [mailto:eve.maler@forgerock.com]
Sent: Wednesday, June 28, 2017 3:47 PM
To: Mike Jones <Michael.Jones@microsoft.com>
Cc: oauth-ext-review@ietf.org; Maciej Machulak <maciej.machulak@gmail.com>; Justin Richer <justin@bspk.io>
Subject: Re: [oauth-ext-review] Request to register OAuth Authorization Server Metadata: claims_interaction_endpoint, uma_profiles_supported, permission_endpoint, resource_registration_endpoint
Righto. :-) Should we keep this IANA request subsection in the spec, do you think, and change it over into a note about it being a forward/future reference?
Eve Maler
ForgeRock Office of the CTO | VP Innovation & Emerging Technology
Cell +1 425.345.6756 | Skype: xmlgrrl | Twitter: @xmlgrrl
On Wed, Jun 28, 2017 at 3:25 PM, Mike Jones <Michael.Jones@microsoft.com<mailto:Michael.Jones@microsoft.com>> wrote:
As I mentioned to you in person, Eve, this registry won’t exist until draft-ietf-oauth-discovery is an RFC. Hopefully this will happen within a few months, at which point, your registration request can be considered.
Best wishes,
-- Mike
From: oauth-ext-review [mailto:oauth-ext-review-bounces@ietf.org<mailto:oauth-ext-review-bounces@ietf.org>] On Behalf Of Eve Maler
Sent: Friday, June 16, 2017 5:41 PM
To: oauth-ext-review@ietf.org<mailto:oauth-ext-review@ietf.org>
Cc: Maciej Machulak <maciej.machulak@gmail.com<mailto:maciej.machulak@gmail.com>>; Justin Richer <justin@bspk.io<mailto:justin@bspk.io>>
Subject: [oauth-ext-review] Request to register OAuth Authorization Server Metadata: claims_interaction_endpoint, uma_profiles_supported, permission_endpoint, resource_registration_endpoint
As required by draft-ietf-oauth-discovery (currently at 06) Section 7, the authors of the specifications User-Managed Access (UMA) 2.0 Grant for OAuth 2.0 Authorization<https://docs.kantarainitiative.org/uma/wg/oauth-uma-grant-2.0-05.html> and Federated Authorization for User-Managed Access (UMA) 2.0<https://docs.kantarainitiative.org/uma/wg/oauth-uma-federated-authz-2.0-05.html> are requesting to register the following four items of OAuth Authorization Server Metadata:
* For the UMA Grant spec (metadata definitions appear in Section 2<https://docs.kantarainitiative.org/uma/wg/oauth-uma-grant-2.0-05.html#as-config>; IANA request appears in Section 7.2<https://docs.kantarainitiative.org/uma/wg/oauth-uma-grant-2.0-05.html#rfc.section.7.2>):
* claims_interaction_endpoint
* uma_profiles_supported
* For the UMA Federated Authorization spec (metadata definitions appear in Section 2<https://docs.kantarainitiative.org/uma/wg/oauth-uma-federated-authz-2.0-05.html#as-config>; IANA request appears in Section 9.1<https://docs.kantarainitiative.org/uma/wg/oauth-uma-federated-authz-2.0-05.html#rfc.section.9.1>):
* permission_endpoint
* resource_registration_endpoint
Thank you. We look forward to your response.
Eve Maler
ForgeRock Office of the CTO | VP Innovation & Emerging Technology
Cell +1 425.345.6756<tel:(425)%20345-6756> | Skype: xmlgrrl | Twitter: @xmlgrrl