IETF Logo Mail Archive

Re: [oauth-ext-review] Registration of the new OAuth client registration parameter

Justin Richer <jricher@mit.edu> Thu, 11 April 2024 13:00 UTC

Return-Path: <jricher@mit.edu>
X-Original-To: oauth-ext-review@ietfa.amsl.com
Delivered-To: oauth-ext-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 74FC8C14F68F for <oauth-ext-review@ietfa.amsl.com>; Thu, 11 Apr 2024 06:00:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mit.edu
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O_BwfoxpPe66 for <oauth-ext-review@ietfa.amsl.com>; Thu, 11 Apr 2024 06:00:47 -0700 (PDT)
Received: from NAM04-MW2-obe.outbound.protection.outlook.com (mail-mw2nam04on2100.outbound.protection.outlook.com [40.107.101.100]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 79391C14F710 for <oauth-ext-review@ietf.org>; Thu, 11 Apr 2024 06:00:28 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=du2VbMLq0HNb/4lz7CwnOdU5aaSGjKhok80wYRoHkvT/PF4wMjvBaiaEjccmkkOJ9Opv8UtlEsfRKcDii1sUxId+Gk8T7gdIkULDPjQIiFyO2mU1P2g1IbPEmWYXPiD6l9r/4dk8x6Q4TWZxBr/QZnv5f4fFSMp6aAcA/j0webySk8T98cmqJAB2U88TkRdWeCQ9QUR+HoHKHbBvolGZ9v08+x+hWDiyAjbrW/nm2JPletAM0GaKdgDIJXDTLtZ+sAUbFTqWskI0eD6s/ITsYtFGKR5G4eCH8OyKmCXGO+NaTxa+3+bzjxeND3aZ2fz0peAStV3pFqGPBldYQ3EYmg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=apkTqbodQmVGyZC8cOCr0m2VcWVvbfLrxfun921ajik=; b=cjz2oPsW6gJK2kBTEnYtA4nZGFoEqcRg06lNEtPOtEidNHm9NfawIGvq2wJ+fZn/uXRchiUJKexoPW4mNF3AxNzm4oeaiphYw2VZvAl9k6yTe58UtygpJXO7bhtrFAvsJQZkqnf9V8UQF4fOScvTcugzxvmEcYDnoX3JjaHnVLrSBCP5yffbArGNfucESultFglEa8RSf7d5pFxOsiBtnRQ9f+MFjuUbMPAc7lUP1bP3PODH4A/3kOMSbAgx1Pc+1M/ok3z1hoI7KGy7AxpShDuCMP7rd3TzRtmxfAguc25UInEb8MN/q9ffLpovnlurG2XBCo+6Fosqy6fcVRmu9g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=mit.edu; dmarc=pass action=none header.from=mit.edu; dkim=pass header.d=mit.edu; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mit.edu; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=apkTqbodQmVGyZC8cOCr0m2VcWVvbfLrxfun921ajik=; b=YCy/U9dwBvurawbhDDQdZdOT0Hzkx3fYQszN8/AtvRIcSoO9q3CK2tp9xeYTYyLLRGjF6cYjQNF6ZlG0wZh2cVGzcKyybRyik679gCW3+AnzoDocWVagPlnwkxU0NqZxI5jC1utbu+5La3cgNF7n7jVSxX30b6hiwJz9xy3SV5Y=
Received: from LV8PR01MB8677.prod.exchangelabs.com (2603:10b6:408:1e8::20) by CH3PR01MB8574.prod.exchangelabs.com (2603:10b6:610:168::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7409.46; Thu, 11 Apr 2024 13:00:26 +0000
Received: from LV8PR01MB8677.prod.exchangelabs.com ([fe80::167:b38f:bb84:ecef]) by LV8PR01MB8677.prod.exchangelabs.com ([fe80::167:b38f:bb84:ecef%3]) with mapi id 15.20.7409.053; Thu, 11 Apr 2024 13:00:25 +0000
From: Justin Richer <jricher@mit.edu>
To: Rifaat Shekh-Yusef <rifaat.s.ietf@gmail.com>
CC: Dima Postnikov <dima@postnikov.net>, "oauth-ext-review@ietf.org" <oauth-ext-review@ietf.org>, Dave Tonge <dave.tonge@moneyhub.com>, Nat Sakimura <nat@nat.consulting>
Thread-Topic: [oauth-ext-review] Registration of the new OAuth client registration parameter
Thread-Index: AQHajA25cSxx4VFZikiZFImpsaShybFjBdGAgAACd4A=
Date: Thu, 11 Apr 2024 13:00:25 +0000
Message-ID: <9DEC226D-8315-4A34-8A5A-9D3675F438D7@mit.edu>
References: <CAEMK1uYc4nshaWx7S7sxczyHE9r-_aUu=JHaHr2Kb7_jnwGUKQ@mail.gmail.com> <CADNypP9VZRYsi7THp=6-XFn_VL9q-evJ2FCQhcMEbavH+cGhfw@mail.gmail.com>
In-Reply-To: <CADNypP9VZRYsi7THp=6-XFn_VL9q-evJ2FCQhcMEbavH+cGhfw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=mit.edu;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: LV8PR01MB8677:EE_|CH3PR01MB8574:EE_
x-ms-office365-filtering-correlation-id: 332a41af-b532-4858-9229-08dc5a275b1c
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:LV8PR01MB8677.prod.exchangelabs.com; PTR:; CAT:NONE; SFS:(13230031)(1800799015)(376005)(366007)(38070700009); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_9DEC226D83154A348A5A9D3675F438D7mitedu_"
MIME-Version: 1.0
X-OriginatorOrg: mit.edu
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: LV8PR01MB8677.prod.exchangelabs.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 332a41af-b532-4858-9229-08dc5a275b1c
X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Apr 2024 13:00:25.8523 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: OIrScfvuEgOeGOPNxqQNfLbJCZ3qHiyishZ8uTJv1bHGNVZEEOBxkom/DYHaQyAk
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH3PR01MB8574
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth-ext-review/tV52GKjU08_yqAeCNRuCHOmKtrQ>
Subject: Re: [oauth-ext-review] Registration of the new OAuth client registration parameter
X-BeenThere: oauth-ext-review@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Review of proposed IANA registrations for OAuth." <oauth-ext-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth-ext-review>, <mailto:oauth-ext-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth-ext-review/>
List-Post: <mailto:oauth-ext-review@ietf.org>
List-Help: <mailto:oauth-ext-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth-ext-review>, <mailto:oauth-ext-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Apr 2024 13:00:51 -0000

Hi Dima,

The process is to write to this email address which goes to the designated experts (of which I’m one), so you’ve done that part right. :)

OAuth chairs and IANA — I’ve looked at the registration, and I think it is sufficiently described to allow registration. However, the document is not yet final, and so the registration should not yet take place.

When the document is final, I believe IANA will be OK to add this value to the registry.


— Justin

On Apr 11, 2024, at 2:51 PM, Rifaat Shekh-Yusef <rifaat.s.ietf@gmail.com> wrote:

Hi Dima,

The process is described in the RFC7591 section 4.1:
https://datatracker.ietf.org/doc/html/rfc7591#section-4.1

The following is a link to the registry with the name of the designated expert:
https://www.iana.org/assignments/oauth-parameters/oauth-parameters.xhtml#client-metadata

Regards,
 Rifaat


On Thu, Apr 11, 2024 at 8:42 AM Dima Postnikov <dima@postnikov.net<mailto:dima@postnikov.net>> wrote:
Hi all

OIDF FAPI WG is planning to publish a final specification of FAPI 2 within a few weeks.

Per this specification, the following client metadata definition needs to be registered in the IANA "OAuth Dynamic Client Registration Metadata" registry established by RFC7591.


**Metadata Name**: `use_mtls_endpoint_aliases`

**Metadata Description**: Indicates the requirement for a client to use mutual TLS endpoint aliases defined by the AS where present.

**Change Controller**: OIDF FAPI WG

**Specification Document(s)**: Section 7 of FAPI 2 security profile

Could you please guide us through the process of what needs to be done.

Thanks for your assistance.

Best regards,

Dima Postnikov



_______________________________________________
oauth-ext-review mailing list
oauth-ext-review@ietf.org<mailto:oauth-ext-review@ietf.org>
https://www.ietf.org/mailman/listinfo/oauth-ext-review
_______________________________________________
oauth-ext-review mailing list
oauth-ext-review@ietf.org
https://www.ietf.org/mailman/listinfo/oauth-ext-review

v2.23.0 | Report a Bug | By Email