IETF Logo Mail Archive

Re: [oauth-ext-review] Request to register OAuth Authorization Server Metadata: tls_client_certificate_bound_access_tokens & mtls_endpoint_aliases

Brian Campbell <bcampbell@pingidentity.com> Thu, 15 August 2019 20:39 UTC

Return-Path: <bcampbell@pingidentity.com>
X-Original-To: oauth-ext-review@ietfa.amsl.com
Delivered-To: oauth-ext-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ACA761200CC for <oauth-ext-review@ietfa.amsl.com>; Thu, 15 Aug 2019 13:39:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=pingidentity.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oaBXhwZ5Z5iB for <oauth-ext-review@ietfa.amsl.com>; Thu, 15 Aug 2019 13:39:55 -0700 (PDT)
Received: from mail-io1-xd42.google.com (mail-io1-xd42.google.com [IPv6:2607:f8b0:4864:20::d42]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C47611200C7 for <oauth-ext-review@ietf.org>; Thu, 15 Aug 2019 13:39:55 -0700 (PDT)
Received: by mail-io1-xd42.google.com with SMTP id i22so1857164ioh.2 for <oauth-ext-review@ietf.org>; Thu, 15 Aug 2019 13:39:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=gmail; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=jDb/Tx9Oa+IfgESWWV5dum3SpgSV/rXYv/o2pAXhezg=; b=Xkq/zpz0SoQhOhbRoG/KJNTGrLw8ew2cu0r3nhOvF1ZGMk2lUQrcoEumknX9hwWvyT CznFQjwYKHBl14seYcEhboJzCuZW0uofQrzMxYebpaeAoRKf9NED4v55q6Zbb17Tlwsy eJdxLUHP3C2fJxXTaSsgEVxc19xTWOgPxvHI0=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=jDb/Tx9Oa+IfgESWWV5dum3SpgSV/rXYv/o2pAXhezg=; b=hr8yu37xBrK5qa25ZmgXVpIYYhhwjJRaoY/B1TMU2pwtKF1gROyqfWe7x4aEb/n+fY ZSk+9qVh2E3gfra7uuDb1lILz9QzGK+rQpGpr612qrCqTAwCuRfoM20l/siPM0FFwWxU k2G8sr6jZTxVyVb3DWT+ZKbpWCGE3hoBPQI4+emYJ44jkshKrHAEqmTkkHCGUYnv4B0C TP6DUK1CAbhRfquZu0qG1R6Fucxk0FuKBI5t4fUo+x9d+jiH8xZPaQ6CvUwVUrA1c9dY laOYZL2ugEza3wUz7o6i15CMqII2/N+doOO4rKjOkuN+DxB4T0dPuqOlxC88tOaOuazZ Fgmg==
X-Gm-Message-State: APjAAAUdof5ZIWzQy0M1UrKWIjyMdLlS2Vs6ccZzAEYoRqS+wzZKnYfD NfZkEzHm8Mda5lOgfyAi4rhsMI80WRC0BwK4RUsZ2mCEa+OciOMFkL6qMKD4XVxfiINTozHbb6t iPGZhqUzE9MksCHj3RHO3fVUrWywUp/k51w==
X-Google-Smtp-Source: APXvYqyLFhGhSfL00ONHUXvnWM2soPeabZiX5C/Lffd04yE/jGLg9JeqHmHDyZk+Zo36WaPXl4H+xipJTQXRdXxMhS4=
X-Received: by 2002:a6b:fd10:: with SMTP id c16mr3523996ioi.217.1565901594753; Thu, 15 Aug 2019 13:39:54 -0700 (PDT)
MIME-Version: 1.0
References: <CA+k3eCRszuuFxDhGSKY223eTHpNv-U_cFbsvy=hq0=FHLVGMTw@mail.gmail.com>
In-Reply-To: <CA+k3eCRszuuFxDhGSKY223eTHpNv-U_cFbsvy=hq0=FHLVGMTw@mail.gmail.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Thu, 15 Aug 2019 14:39:28 -0600
Message-ID: <CA+k3eCT=6eWjh1UR23Nn0mCbaK4jyA-Y75JSuwz-eX4RsG0UcQ@mail.gmail.com>
To: oauth-ext-review@ietf.org, Mike Jones <Michael.Jones@microsoft.com>, John Bradley <ve7jtb@ve7jtb.com>, n-sakimura <n-sakimura@nri.co.jp>
Content-Type: multipart/alternative; boundary="0000000000004f13e005902de0e2"
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth-ext-review/y3QAZq5K8xvo393Z2anp8BwZ1qA>
Subject: Re: [oauth-ext-review] Request to register OAuth Authorization Server Metadata: tls_client_certificate_bound_access_tokens & mtls_endpoint_aliases
X-BeenThere: oauth-ext-review@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Review of proposed IANA registrations for OAuth." <oauth-ext-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth-ext-review>, <mailto:oauth-ext-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth-ext-review/>
List-Post: <mailto:oauth-ext-review@ietf.org>
List-Help: <mailto:oauth-ext-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth-ext-review>, <mailto:oauth-ext-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Aug 2019 20:39:59 -0000

Looking at
https://www.iana.org/assignments/oauth-parameters/oauth-parameters.xhtml#authorization-server-metadata
I see the DEs for AS Metadata are Michael Jones, Nat Sakimura, and John
Bradley. John and Nat are co-authors of the document in question so their
approval is implied but also could be perceived as creating a conflict of
interest. So per https://tools.ietf.org/html/rfc8414#section-7 I think that
means that this should be "defer[ed] to the judgment of the other Experts".
The other experts are Mike. Mike is heavily involved in the WG that the
document came out of so I'd hope and expect that he'd approve of the
registration too. But I'll request that he respond in the affirmative to
this message just for procedural sake.

On Tue, Aug 13, 2019 at 12:16 PM Brian Campbell <bcampbell@pingidentity.com>
wrote:

> Please review the registration requests for the
> "tls_client_certificate_bound_access_tokens" & "mtls_endpoint_aliases"
> OAuth Authorization Server Metadata parameters found in section 9.2 of
> draft-ietf-oauth-mtls at
> https://tools.ietf.org/html/draft-ietf-oauth-mtls-16#section-9.2
>
> Thank you,
> Brian Campbell - draft-ietf-oauth-mtls co-author
>

-- 
_CONFIDENTIALITY NOTICE: This email may contain confidential and privileged 
material for the sole use of the intended recipient(s). Any review, use, 
distribution or disclosure by others is strictly prohibited.  If you have 
received this communication in error, please notify the sender immediately 
by e-mail and delete the message and any file attachments from your 
computer. Thank you._

v2.23.0 | Report a Bug | By Email