Re: [OAUTH-WG] WGLC on Assertion Drafts

Justin Richer <jricher@mitre.org> Thu, 05 April 2012 16:53 UTC

Return-Path: <jricher@mitre.org>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A5FCC21F871B for <oauth@ietfa.amsl.com>; Thu, 5 Apr 2012 09:53:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.598
X-Spam-Level:
X-Spam-Status: No, score=-6.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id un4skV1j4jPW for <oauth@ietfa.amsl.com>; Thu, 5 Apr 2012 09:53:48 -0700 (PDT)
Received: from smtpksrv1.mitre.org (smtpksrv1.mitre.org [198.49.146.77]) by ietfa.amsl.com (Postfix) with ESMTP id 1EB2D21F865D for <oauth@ietf.org>; Thu, 5 Apr 2012 09:53:47 -0700 (PDT)
Received: from smtpksrv1.mitre.org (localhost.localdomain [127.0.0.1]) by localhost (Postfix) with SMTP id 9A33E21B0A92 for <oauth@ietf.org>; Thu, 5 Apr 2012 12:53:46 -0400 (EDT)
Received: from IMCCAS03.MITRE.ORG (imccas03.mitre.org [129.83.29.80]) by smtpksrv1.mitre.org (Postfix) with ESMTP id 7442121B0A7D for <oauth@ietf.org>; Thu, 5 Apr 2012 12:53:46 -0400 (EDT)
Received: from [129.83.50.12] (129.83.31.51) by IMCCAS03.MITRE.ORG (129.83.29.80) with Microsoft SMTP Server (TLS) id 14.1.339.1; Thu, 5 Apr 2012 12:53:46 -0400
Message-ID: <4F7DCE03.3020009@mitre.org>
Date: Thu, 05 Apr 2012 12:53:23 -0400
From: Justin Richer <jricher@mitre.org>
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:11.0) Gecko/20120310 Thunderbird/11.0
MIME-Version: 1.0
To: oauth@ietf.org
References: <999913AB42CC9341B05A99BBF358718D014D5CD1@FIESEXC035.nsn-intra.net>
In-Reply-To: <999913AB42CC9341B05A99BBF358718D014D5CD1@FIESEXC035.nsn-intra.net>
Content-Type: multipart/alternative; boundary="------------010908050505050206090205"
X-Originating-IP: [129.83.31.51]
Subject: Re: [OAUTH-WG] WGLC on Assertion Drafts
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Apr 2012 16:53:48 -0000

> http://tools.ietf.org/html/draft-ietf-oauth-assertions-01
>

Section 7's second portion about a client including multiple credentials 
types seems buried down here in the Error Responses section for 
something this fundamental. It also conflates discussion of selection of 
this client authorization type in here, where it ought to be in its own 
section, closer to the top.

> http://tools.ietf.org/html/draft-ietf-oauth-urn-sub-ns-02
>
>
This one seems fine to me, very straightforward.

> http://tools.ietf.org/html/draft-ietf-oauth-saml2-bearer-10
>

As I try to avoid SAML in general, I'm not a good person to comment on 
this draft.

  -- Justin