IETF Logo Mail Archive

Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-access-token-jwt-05.txt

Vittorio Bertocci <vittorio.bertocci@auth0.com> Tue, 31 March 2020 22:10 UTC

Return-Path: <vittorio.bertocci@auth0.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6B41B3A0A4B for <oauth@ietfa.amsl.com>; Tue, 31 Mar 2020 15:10:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.199
X-Spam-Level:
X-Spam-Status: No, score=-0.199 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=auth0.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mXrIY2mnai8k for <oauth@ietfa.amsl.com>; Tue, 31 Mar 2020 15:10:41 -0700 (PDT)
Received: from mail-pg1-x536.google.com (mail-pg1-x536.google.com [IPv6:2607:f8b0:4864:20::536]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CCF593A0A3E for <oauth@ietf.org>; Tue, 31 Mar 2020 15:10:36 -0700 (PDT)
Received: by mail-pg1-x536.google.com with SMTP id i34so929758pgl.4 for <oauth@ietf.org>; Tue, 31 Mar 2020 15:10:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=auth0.com; s=google; h=from:to:subject:thread-topic:thread-index:date:message-id :references:in-reply-to:accept-language:content-language :content-transfer-encoding:mime-version; bh=lL0/1k7zTOsh4q8J1VfDV7GQ1An45YHfkHetGUHFuOM=; b=eEm2t5P8zvVny2aZ08mk46Fw0FVOwjm0pF7AYWayQn8ZWfR+rIemVZ5ewu9GwtSRk0 kXEzTsINFUxitJwJ+a245d5VejfwxGFKXnc+k0L32gyls+hZf1O8dMs90CrX+qcB9PPm uVH6p0h2rD9WklEUVJTFkm8mT3Wx3tMz8DWwOdA2HRAtc26b/DJ9RfouoFP7X0vlVCom uX7X7awllBRLd1aWRYPkjEdcPlJo1Y00V/6wtkg0ZceLmQXATS4ojiDv2ofpR3kxsAEm IRbpgBktM6A1wJSj/Be2QvN0EFNF3MgRWeRMN9AvKgPGXaz8ZXgdVUeztgmz+wTTErDa ND9Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:thread-topic:thread-index:date :message-id:references:in-reply-to:accept-language:content-language :content-transfer-encoding:mime-version; bh=lL0/1k7zTOsh4q8J1VfDV7GQ1An45YHfkHetGUHFuOM=; b=qYrgtu1CRJl9xzJOYtrDzeZrv8Qw5O5LJ57EVN7RaQFOfaiQdGymo1n6XwFo8P+r2G OSr5Tn8FdFb0EsX+Gvgf195dWD/wifRmXuvW0jlv1jqbdbC5BTWiBHpyAHaQ47f+V7Ru cXBKtoRecSabNR66hLOKH00nH5U2yMkOXS9ipLCmJrhu54IRm8j4XmTw7ZPYWEZhvlI2 +eIE+nnfH3QClL4dEYtvi3Gel2gj1SwZV1nyvt0dQCwnQmDBjlwOIyoFAcsq0hJ1QMk/ Vsvj9nLcOOpOjvkFrGfhSnYhNlb1Ub1QZNcweFTBz0Q00sZv02gMquNH1SRh4XRU0P/H XYrQ==
X-Gm-Message-State: ANhLgQ2YlX06q8dz4/4CTHCn/SaWis6QEYprluK/VVdIT827zaygTLHl n8vcTGpWa4JZZsexoiNo6zALMydxehpAacAq4zsqQAqPDddVDUntFPFuExRu0XE6ONhGT5lY5+U fPnN+oPRgabjEnjsLibaRfYNYG7BzBmnoaeG6WyOIDp6s7zBcIhNUv3T5+CP4BHqcvQ==
X-Google-Smtp-Source: ADFU+vvCD+zB4vf2zSgQzTZsTgVKmtVOYI/cBZ+UaVKlXijaQW9lTCq1rnZ33bTIT9W4tikEgfJtnA==
X-Received: by 2002:a63:3d06:: with SMTP id k6mr19221864pga.418.1585692635602; Tue, 31 Mar 2020 15:10:35 -0700 (PDT)
Received: from MWHPR19MB1501.namprd19.prod.outlook.com ([2603:1036:120:1d::5]) by smtp.gmail.com with ESMTPSA id s62sm10413pgb.94.2020.03.31.15.10.35 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Tue, 31 Mar 2020 15:10:35 -0700 (PDT)
From: Vittorio Bertocci <vittorio.bertocci@auth0.com>
To: "oauth@ietf.org" <oauth@ietf.org>, "i-d-announce@ietf.org" <i-d-announce@ietf.org>
Thread-Topic: [OAUTH-WG] I-D Action: draft-ietf-oauth-access-token-jwt-05.txt
Thread-Index: ATkwNTQ4RdKqeG38xKAGS4nnS/gUrLmu5/11
X-MS-Exchange-MessageSentRepresentingType: 1
Date: Tue, 31 Mar 2020 22:10:34 +0000
Message-ID: <MWHPR19MB1501BF0000EB3057E4EEA386AEC80@MWHPR19MB1501.namprd19.prod.outlook.com>
References: <158569049868.28443.3227580455701748019@ietfa.amsl.com>
In-Reply-To: <158569049868.28443.3227580455701748019@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-Exchange-Organization-SCL: -1
X-MS-TNEF-Correlator:
X-MS-Exchange-Organization-RecordReviewCfmType: 0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/hUiqktgp98aA9vVdnKqiAiy6xcI>
Subject: Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-access-token-jwt-05.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 Mar 2020 22:10:48 -0000

This version includes a quite large set of changes and additions- thanks Annabelle, George, Aaron, Brian, Filip.
Will pick up the conversation on the main remaining item, audience & scopes, in the next few hours.

On 3/31/20, 14:35, "OAuth on behalf of internet-drafts@ietf.org" <oauth-bounces@ietf.org on behalf of internet-drafts@ietf.org> wrote:

    
    A New Internet-Draft is available from the on-line Internet-Drafts directories.
    This draft is a work item of the Web Authorization Protocol WG of the IETF.
    
            Title           : JSON Web Token (JWT) Profile for OAuth 2.0 Access Tokens
            Author          : Vittorio Bertocci
    	Filename        : draft-ietf-oauth-access-token-jwt-05.txt
    	Pages           : 18
    	Date            : 2020-03-31
    
    Abstract:
       This specification defines a profile for issuing OAuth 2.0 access
       tokens in JSON web token (JWT) format.  Authorization servers and
       resource servers from different vendors can leverage this profile to
       issue and consume access tokens in interoperable manner.
    
    
    The IETF datatracker status page for this draft is:
    https://datatracker.ietf.org/doc/draft-ietf-oauth-access-token-jwt/
    
    There are also htmlized versions available at:
    https://tools.ietf.org/html/draft-ietf-oauth-access-token-jwt-05
    https://datatracker.ietf.org/doc/html/draft-ietf-oauth-access-token-jwt-05
    
    A diff from the previous version is available at:
    https://www.ietf.org/rfcdiff?url2=draft-ietf-oauth-access-token-jwt-05
    
    
    Please note that it may take a couple of minutes from the time of submission
    until the htmlized version and diff are available at tools.ietf.org.
    
    Internet-Drafts are also available by anonymous FTP at:
    ftp://ftp.ietf.org/internet-drafts/
    
    
    _______________________________________________
    OAuth mailing list
    OAuth@ietf.org
    https://www.ietf.org/mailman/listinfo/oauth

v2.23.0 | Report a Bug | By Email