IETF Logo Mail Archive

Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic Registration

Edmund Jay <ejay@mgi1.com> Thu, 23 May 2013 14:48 UTC

Return-Path: <edmundjay@sbcglobal.net>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92E7A21F969E for <oauth@ietfa.amsl.com>; Thu, 23 May 2013 07:48:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yKjQXNIwE2P2 for <oauth@ietfa.amsl.com>; Thu, 23 May 2013 07:48:50 -0700 (PDT)
Received: from nm12-vm0.access.bullet.mail.mud.yahoo.com (nm12-vm0.access.bullet.mail.mud.yahoo.com [66.94.236.11]) by ietfa.amsl.com (Postfix) with ESMTP id 0CCE721F9692 for <oauth@ietf.org>; Thu, 23 May 2013 07:48:48 -0700 (PDT)
Received: from [66.94.237.194] by nm12.access.bullet.mail.mud.yahoo.com with NNFMP; 23 May 2013 14:48:48 -0000
Received: from [66.94.237.124] by tm5.access.bullet.mail.mud.yahoo.com with NNFMP; 23 May 2013 14:48:48 -0000
Received: from [127.0.0.1] by omp1029.access.mail.mud.yahoo.com with NNFMP; 23 May 2013 14:48:48 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 684683.17382.bm@omp1029.access.mail.mud.yahoo.com
Received: (qmail 46261 invoked by uid 60001); 23 May 2013 14:48:48 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sbcglobal.net; s=s1024; t=1369320528; bh=OOcytzgeptkp5z+oJn/vbD4QM4SzhIlTZ+7zMYApiTY=; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-RocketYMMF:X-Mailer:References:Message-ID:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=izW9HcuWDR9OjPKUYXGznnqxbnUXZlC3eQL1yZmmntweCDe0xcugR3pAs3qzaDVmPpw0qGwQ99wWoITIGZ3pLjNfL0JNYrwumbXLEJksvjxhSnH4WQrZVUYhWGJQXZbiZ5aTPSCeOKDBsNdzIqgaSw/DAvJpJKaeYT6aE8K587k=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=sbcglobal.net; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-RocketYMMF:X-Mailer:References:Message-ID:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=m7MuOs1RGc7nPSSCsAMitIaFEyGB7/js+2grJ9w37PP3kdgIZBIkOYWvI9jQAx8yjzEJ2N/7Uq0pM8XmFlqd3HTPmNnS2mBBSae1E1/1auGJMrrwbHQ8OnyLHCaAg+P5JmdOvgEVraZt0dPQv40dX2EnPovijK7knDvt8BFK2R4=;
X-YMail-OSG: 1zRydzoVM1kyg_oCWoaeSdiYfVwR1Tp5cM.rof0M.hFTwLw 0dsD.3BmrniXgFlkZ8Jzp
Received: from [70.36.254.42] by web184406.mail.bf1.yahoo.com via HTTP; Thu, 23 May 2013 07:48:47 PDT
X-Rocket-MIMEInfo: 002.001, SSdtIE9LIHdpdGggY2hhbmdpbmcgZXhwaXJlc19hdCBhbmQgaXNzdWVkX2F0IHdoaWxlIGtlZXBpbmcgCnRva2VuX2VuZHBvaW50X2F1dGhfbWV0aG9kIHRoZSBzYW1lLgoKCgpfX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fXwpGcm9tOiBSb2xhbmQgSGVkYmVyZyA8cm9sYW5kLmhlZGJlcmdAYWRtLnVtdS5zZT4KVG86IFBoaWwgSHVudCA8cGhpbC5odW50QG9yYWNsZS5jb20.CkNjOiAib2F1dGhAaWV0Zi5vcmciIDxvYXV0aEBpZXRmLm9yZz4KU2VudDogVGh1LCBNYXkgMjMsIDIwMTMgNzoyODoyMiABMAEBAQE-
X-RocketYMMF: edmundjay@sbcglobal.net
X-Mailer: YahooMailRC/729 YahooMailWebService/0.8.144.546
References: <MLQM-20130520122606192-37488@mlite.mitre.org> <519D0C4D.60002@mitre.org> <D313364E-79D2-45F0-B99C-39E509739360@oracle.com> <9599F577-860E-4864-9DF2-4DA7EF2E2E04@adm.umu.se>
Message-ID: <1369320527.26231.YahooMailRC@web184406.mail.bf1.yahoo.com>
Date: Thu, 23 May 2013 07:48:47 -0700
From: Edmund Jay <ejay@mgi1.com>
To: Roland Hedberg <roland.hedberg@adm.umu.se>, Phil Hunt <phil.hunt@oracle.com>
In-Reply-To: <9599F577-860E-4864-9DF2-4DA7EF2E2E04@adm.umu.se>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="1789658926-1844771003-1369320527=:26231"
Cc: "oauth@ietf.org" <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic Registration
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 May 2013 14:48:56 -0000

I'm OK with changing expires_at and issued_at while keeping 
token_endpoint_auth_method the same.



________________________________
From: Roland Hedberg <roland.hedberg@adm.umu.se>
To: Phil Hunt <phil.hunt@oracle.com>
Cc: "oauth@ietf.org" <oauth@ietf.org>
Sent: Thu, May 23, 2013 7:28:22 AM
Subject: Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic Registration

As an implementor like Justin, I see no problem with changing "expires_at" and 
"issued_at" to the values proposed below.
It's a minor code change and I don't have a large deployment to deal with.

I also agree with Justin and Phil about "token_endpoint_auth_method".

22 maj 2013 kl. 20:34 skrev Phil Hunt <phil.hunt@oracle.com>:

> +1
> 
> I also agree with Justin's comment on token_endpoint_auth_method. 
>Never-the-less, I did want to pass along the feedback that some were confused.
> 
> The expires_at, issued_at thing though is particularly confusing (though the 
>text may be clear) and is a higher priority issue in my opinion.
> 
> Phil
> 
> @independentid
> www.independentid.com
> phil.hunt@oracle.com
> 
> 
> 
> 
> 
> On 2013-05-22, at 11:19 AM, Justin Richer wrote:
> 
>> Speaking as an implementor, I'm actually in favor of changing "expires_at" and 
>>"issued_at" to the values proposed below. It would require some minor code 
>>changes on my end, but the impact would be minimal, and I think that the new 
>>names are *much* more clear to new developers. I think it will save us a lot of 
>>questions and headaches going forward. I believe that changing it now will have 
>>minimal impact on any deployed and running code (there are no large-scale 
>>services that I am aware of), and it will make things clearer. So I vote for "B" 
>>for #1 and #2.
>> 
>> I believe "token_endpoint_auth_method" is sufficient as is, since the client is 
>>the only thing that authenticates to the token endpoint. 
>>
>> 
>> 
>> [[ Note: As an editor, I don't believe it's really in my power to make that 
>>change unless there's support in the working group for making it. I really want 
>>more feedback from people, with explanation if you can. ]]
>> 
>>  -- Justin
>> 
>> 
>> On 05/20/2013 11:09 AM, Justin Richer wrote:
>>> Phil Hunt's review of the Dynamic Registration specification has raised a 
>>>couple of issues that I felt were getting buried by the larger discussion (which 
>>>I still strongly encourage others to jump in to). Namely, Phil has suggested a 
>>>couple of syntax changes to the names of several parameters. 
>>>
>>> 
>>> 
>>> 1) expires_at -> client_secret_expires_at
>>> 2) issued_at -> client_id_issued_at
>>> 3) token_endpoint_auth_method -> token_endpoint_client_auth_method
>>> 
>>> 
>>> I'd like to get a feeling, especially from developers who have deployed this 
>>>draft spec, what we ought to do for each of these:
>>> 
>>>  A) Keep the parameter names as-is
>>>  B) Adopt the new names as above
>>>  C) Adopt a new name that I will specify
>>> 
>>> In all cases, clarifying text will be added to the parameter *definitions* so 
>>>that it's more clear to people reading the spec       what each piece does. 
>>>Speaking as the editor: "A" is the default as far as I'm concerned, since we 
>>>shouldn't change syntax without very good reason to do so. That said, if it's 
>>>going to be better for developers with the new parameter names, I am open to 
>>>fixing them now.
>>> 
>>> Naming things is hard.
>>> 
>>>  -- Justin
>>> 
>>> 
>>> _______________________________________________
>>> OAuth mailing list
>>> 
>>> OAuth@ietf.org
>>> https://www.ietf.org/mailman/listinfo/oauth
>> 
>> _______________________________________________
>> OAuth mailing list
>> OAuth@ietf.org
>> https://www.ietf.org/mailman/listinfo/oauth
> 
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth

-- Roland
"Education is the path from cocky ignorance to miserable uncertainty.” - Mark 
Twain




_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

v2.23.0 | Report a Bug | By Email