IETF Logo Mail Archive

[OAUTH-WG] Re: WG Last Call: draft-ietf-oauth-identity-chaining-05 (Ends 2025-09-08)

Brian Campbell <bcampbell@pingidentity.com> Mon, 12 January 2026 18:01 UTC

Return-Path: <bcampbell@pingidentity.com>
X-Original-To: oauth@mail2.ietf.org
Delivered-To: oauth@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 18F9EA68C6C7 for <oauth@mail2.ietf.org>; Mon, 12 Jan 2026 10:01:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=pingidentity.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id S7ifRz--_oAn for <oauth@mail2.ietf.org>; Mon, 12 Jan 2026 10:01:18 -0800 (PST)
Received: from mail-ed1-x52e.google.com (mail-ed1-x52e.google.com [IPv6:2a00:1450:4864:20::52e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 188B4A68C6B7 for <oauth@ietf.org>; Mon, 12 Jan 2026 10:01:17 -0800 (PST)
Received: by mail-ed1-x52e.google.com with SMTP id 4fb4d7f45d1cf-64daeb28c56so11008473a12.2 for <oauth@ietf.org>; Mon, 12 Jan 2026 10:01:17 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=google; t=1768240871; x=1768845671; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=Zhnf7yz2HpUzZFLp5Od62/n0ZcKf8NOJG0Fb4dSBfP4=; b=Gb6XiLSEDXtZ9/f+XbGEaSs8xVS7WtWpkri8xVArLGG52/Q9SbPQ6YKJE35os9MZZw gqKcX0bhuxmiVXK3XY/gaoRLpNSPkUkAGdKWkCQamh8vkWauB5wyYvNlxERPvyJBQCyJ s2561yO0XuFUukzDBDedbRa2N4TPWZSDjGXD934hl+L0wrWRke7BEftrggBeLaouwL2h QQYD5T/2yeqXxeHyWMcSq+mVgl37ysFIXgn39496Hc/csfkum61+VLuQ13N3PYiHXDZ+ eM97PFo0XMLB4+gyrTTHj9hNf0vdMLV2FxQEezUyBN9O9rBD/K6vPazwYBx+jjubC9W5 ePYQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1768240871; x=1768845671; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-gg:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=Zhnf7yz2HpUzZFLp5Od62/n0ZcKf8NOJG0Fb4dSBfP4=; b=pmiXKv5Fq8oRcFqCshzocbcxc9rpAAVwkyYk/tzMV3iVImhmf7L79aVoSbB+F+7DIW cHTPAtYSInI9aj0OlEFudlJFHdlRBA7+CfM0ofcosIDRUxIfnhuACiuU9iN74U+xjqqE oKx0QV26ZEj+dibLMORvEmgxv14IGtANjpSe/+8aID9u6MffVrt9PIR2VC9gR5lu9Hen Ip/YjyVdtblry1VvXHWX83cUl3x9DhdAb9t6ImGaDvq21nQjjLdpDCT0YFaoiSdAaW9G 0ZpkfyPwPQLtHx0XXWp0xEGJrwUSr/kMhoC1Z9e6h3jrskrs0VaykhcF5dQ6Ef8Ii/s1 nShw==
X-Forwarded-Encrypted: i=1; AJvYcCVdRVXkCnWo1u9Ouoxx97Bl6zSiPONPIVGD+dtXR3mRn5eQlOQ6OY5ZOT4USUbFz4w8xOu3HA==@ietf.org
X-Gm-Message-State: AOJu0Yy4OP1aiLOlEECOmJzB6E9djZ10Z3WzWvnph+k/S8bv20BHO5qn 2Cx5l/1gCsm+DGXW768C2AIsjZKZBYEsm4P4SJFrlOIy4TaxvBNv3i2BiNGojni1FJfV+ljLz/b 4AMYZe2h1dCO1AYTUcP6RwhxqLBTKJSZQotm1z6272J41iqKx9DZXKGmKU3mx9ZHkIV7auIQbKi 7AxtqZnuaQNb98ih3h5ZoVE15NfEsEvA==
X-Gm-Gg: AY/fxX6rZjbWm9/g2a5EEJdqk/CMG6qCe/aAE5RXdrXkYmcYTWk4qAbQcbB/DsVxgYp +M8+pKKpIcIV5z4j5A6JxDMX5GMAoUrvPsk4UUINXE9u4P5twn/zf1PuSodRE2bAcR1EFsV9MJP Rom6RADXs3SvxHT81U43CWFdT8kTNO8v7tX87KEYY++zat5HwmGzIwMzjIwLFxXX9/qMDZktZUc w9R1m8RhbA1mzB7tfdsN9kzmYYiAWsMLFQJgVDBkJSVfLoFZLVLE5FkMPUn0bs5owzrlDaLxfMD ExyFBLG0wAF/POIXDVMzc7K+L7o/up2QjXb/hgo=
X-Google-Smtp-Source: AGHT+IFJ6EFvoMvFtkMsFN9CSOaWDtOD3bZ3Z7w3jBwq6NK1Ex0LT+91BN492yOMGlEY5aw7Wtoafx7f2KVyNKptthA=
X-Received: by 2002:a17:907:94cc:b0:b87:124c:5f54 with SMTP id a640c23a62f3a-b87124c62dbmr495025666b.59.1768240870464; Mon, 12 Jan 2026 10:01:10 -0800 (PST)
MIME-Version: 1.0
References: <175612564651.306862.4509614675361941507@dt-datatracker-67876766b7-bkzgr> <CA+k3eCRBiLoi508iOQKnUyw0YynQFsNnsr_HQ1UOOYNNLo_5dQ@mail.gmail.com> <CA+k3eCQrVx3=ZR88vG=BzC2GeaBijZGtJa=LAUg=ZC+ZSTXAww@mail.gmail.com> <CADNypP_pojGoRhnGzaaehtG1PipPdNaLgDsxc-Q2uuAeqxcGKw@mail.gmail.com> <CA+k3eCQPmtfiXMOTJMLJo4qJOwDJuH5O=UuohDdwPHHXXAsk6Q@mail.gmail.com> <CA+k3eCRBHotU025_58Dt3Yg-zMp1beOjUThki6QadMr1+FLP8Q@mail.gmail.com>
In-Reply-To: <CA+k3eCRBHotU025_58Dt3Yg-zMp1beOjUThki6QadMr1+FLP8Q@mail.gmail.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Mon, 12 Jan 2026 11:00:42 -0700
X-Gm-Features: AZwV_QiyUGCqtnGekVDcFUS77sjWsK84dsySSlmbDNpwvoMxlwi2pXJrYbJe_sM
Message-ID: <CA+k3eCScyiaa5mtkC=Tk6XmnSLfJuVj8g11p1+792sq6pU+_wQ@mail.gmail.com>
To: Rifaat Shekh-Yusef <rifaat.s.ietf@gmail.com>
Content-Type: multipart/alternative; boundary="000000000000f641f4064834a865"
Message-ID-Hash: O4INOB3DK3BLMQO3BE3JCQSODHDYZXC2
X-Message-ID-Hash: O4INOB3DK3BLMQO3BE3JCQSODHDYZXC2
X-MailFrom: bcampbell@pingidentity.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: draft-ietf-oauth-identity-chaining@ietf.org, oauth-chairs@ietf.org, oauth@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [OAUTH-WG] Re: WG Last Call: draft-ietf-oauth-identity-chaining-05 (Ends 2025-09-08)
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/-JHazAj739IltcP5GplsqyxZ9Xg>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>

As best I recall, the shepherding of this one was put on the back burner to
free up folks' time for preparations for the Montreal meeting. Which is
perfectly reasonable but it seems to have gotten somewhat forgotten about
in the intervening time. Can we re-engage with the publication process?

On Fri, Sep 12, 2025 at 10:20 AM Brian Campbell <bcampbell@pingidentity.com>
wrote:

> And we've got a -06 out hopefully addressing feedback received during WGLC
> and ready for shepherding considerations
> https://mailarchive.ietf.org/arch/msg/oauth/qfK9VoUURc8oih-I3I6OGi_0JQg/
>
> On Tue, Sep 9, 2025 at 2:50 PM Brian Campbell <bcampbell@pingidentity.com>
> wrote:
>
>> Thanks Rifaat,
>>
>> https://github.com/oauth-wg/oauth-identity-chaining/pull/171 has updates
>> aimed at addressing the feedback received during WGLC. We'll get a new
>> version of the draft published once we've aligned on the changes and merged
>> that.
>>
>> On Mon, Sep 8, 2025 at 7:12 AM Rifaat Shekh-Yusef <
>> rifaat.s.ietf@gmail.com> wrote:
>>
>>> Brian,
>>>
>>> Submit a new version of the draft that addresses these concerns.
>>> After that the chairs will review the document and start working on the
>>> document shepherd write up.
>>>
>>> Regards,
>>>  Rifaat & Hannes
>>>
>>>
>>>
>>>
>>> On Fri, Sep 5, 2025 at 1:09 PM Brian Campbell <
>>> bcampbell@pingidentity.com> wrote:
>>>
>>>> The feedback was otherwise positive, which I didn't capture in the
>>>> issue, but is maybe relevant to the overall WGLC sentiment.
>>>>
>>>> On Tue, Sep 2, 2025 at 3:10 PM Brian Campbell <
>>>> bcampbell@pingidentity.com> wrote:
>>>>
>>>>> I received some feedback off-list that seemed like it could be
>>>>> considered as part of WGLC, which I tried to summarize at
>>>>> https://github.com/oauth-wg/oauth-identity-chaining/issues/169
>>>>>
>>>>> On Mon, Aug 25, 2025 at 6:40 AM Rifaat Shekh-Yusef via Datatracker <
>>>>> noreply@ietf.org> wrote:
>>>>>
>>>>>>
>>>>>> Subject: WG Last Call: draft-ietf-oauth-identity-chaining-05 (Ends
>>>>>> 2025-09-08)
>>>>>>
>>>>>> This message starts a 2-week WG Last Call for this document.
>>>>>>
>>>>>> Abstract:
>>>>>>    This specification defines a mechanism to preserve identity and
>>>>>>    authorization information across trust domains that use the OAuth
>>>>>> 2.0
>>>>>>    Framework.
>>>>>>
>>>>>> Discussion Venues
>>>>>>
>>>>>>    This note is to be removed before publishing as an RFC.
>>>>>>
>>>>>>    Discussion of this document takes place on the Web Authorization
>>>>>>    Protocol Working Group mailing list (oauth@ietf.org) which is
>>>>>>    archived at https://mailarchive.ietf.org/arch/browse/oauth/.
>>>>>>
>>>>>>    Source for this draft and an issue tracker can be found at
>>>>>>    https://github.com/oauth-wg/oauth-identity-chaining.
>>>>>>
>>>>>> File can be retrieved from:
>>>>>> https://datatracker.ietf.org/doc/draft-ietf-oauth-identity-chaining/
>>>>>>
>>>>>> Please review and indicate your support or objection to proceed with
>>>>>> the
>>>>>> publication of this document by replying to this email keeping
>>>>>> oauth@ietf.org
>>>>>> in copy. Objections should be motivated and suggestions to resolve
>>>>>> them are
>>>>>> highly appreciated.
>>>>>>
>>>>>> Authors, and WG participants in general, are reminded again of the
>>>>>> Intellectual Property Rights (IPR) disclosure obligations described
>>>>>> in BCP 79
>>>>>> [1]. Appropriate IPR disclosures required for full conformance with
>>>>>> the
>>>>>> provisions of BCP 78 [1] and BCP 79 [2] must be filed, if you are
>>>>>> aware of
>>>>>> any. Sanctions available for application to violators of IETF IPR
>>>>>> Policy can
>>>>>> be found at [3].
>>>>>>
>>>>>> Thank you.
>>>>>>
>>>>>> [1] https://datatracker.ietf.org/doc/bcp78/
>>>>>> [2] https://datatracker.ietf.org/doc/bcp79/
>>>>>> [3] https://datatracker.ietf.org/doc/rfc6701/
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>> *CONFIDENTIALITY NOTICE: This email may contain confidential and
>>>> privileged material for the sole use of the intended recipient(s). Any
>>>> review, use, distribution or disclosure by others is strictly prohibited.
>>>> If you have received this communication in error, please notify the sender
>>>> immediately by e-mail and delete the message and any file attachments from
>>>> your computer. Thank you.*
>>>
>>>

-- 
_CONFIDENTIALITY NOTICE: This email may contain confidential and privileged 
material for the sole use of the intended recipient(s). Any review, use, 
distribution or disclosure by others is strictly prohibited.  If you have 
received this communication in error, please notify the sender immediately 
by e-mail and delete the message and any file attachments from your 
computer. Thank you._

v2.37.1 | Report a Bug | By Email | System Status