Re: [OAUTH-WG] Call for Adoption: OAuth 2.0 Discovery

Justin Richer <jricher@mit.edu> Fri, 05 February 2016 00:34 UTC

Return-Path: <jricher@mit.edu>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CABAB1B2AA0 for <oauth@ietfa.amsl.com>; Thu, 4 Feb 2016 16:34:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, MANGLED_PREMTR=2.3, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KxY-K4GQ-eVP for <oauth@ietfa.amsl.com>; Thu, 4 Feb 2016 16:34:47 -0800 (PST)
Received: from dmz-mailsec-scanner-1.mit.edu (dmz-mailsec-scanner-1.mit.edu [18.9.25.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A0FA21B2A9F for <oauth@ietf.org>; Thu, 4 Feb 2016 16:34:47 -0800 (PST)
X-AuditID: 1209190c-513ff7000000165e-0b-56b3ee2600e9
Received: from mailhub-auth-3.mit.edu ( [18.9.21.43]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by (Symantec Messaging Gateway) with SMTP id 41.25.05726.62EE3B65; Thu, 4 Feb 2016 19:34:46 -0500 (EST)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by mailhub-auth-3.mit.edu (8.13.8/8.9.2) with ESMTP id u150YjDp005746; Thu, 4 Feb 2016 19:34:45 -0500
Received: from [192.168.128.48] (static-96-237-195-53.bstnma.fios.verizon.net [96.237.195.53]) (authenticated bits=0) (User authenticated as jricher@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id u150YhBk000446 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Thu, 4 Feb 2016 19:34:44 -0500
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\))
Content-Type: multipart/signed; boundary="Apple-Mail=_6D7AC991-DF1D-4B53-A854-100C45DCD807"; protocol="application/pgp-signature"; micalg=pgp-sha256
X-Pgp-Agent: GPGMail 2.5.2
From: Justin Richer <jricher@mit.edu>
In-Reply-To: <E04315CD-4FD3-4B06-BD33-22FF6DC5EB38@adm.umu.se>
Date: Thu, 4 Feb 2016 19:34:42 -0500
Message-Id: <2DE2E1FE-BBB0-489B-9479-888A7D36E6C8@mit.edu>
References: <569E2298.3010508@gmx.net> <BY2PR03MB44237A6E59B1E76D9B7D14CF5D10@BY2PR03MB442.namprd03.prod.outlook.com> <CAAP42hATYHF1meMjJ_Exu=G5d-xWXcky2nNwny1DwWqxf3ZE6Q@mail.gmail.com> <0B9E9D6E-67A9-4956-BFA2-9A90CD39087A@oracle.com> <E04315CD-4FD3-4B06-BD33-22FF6DC5EB38@adm.umu.se>
To: Roland Hedberg <roland.hedberg@umu.se>
X-Mailer: Apple Mail (2.2104)
X-Brightmail-Tracker: H4sIAAAAAAAAA01SbUgTYRznubvN29rpNZU9Ww1zmKQ20zCwTFkfAvtgRIGQX9rlrm21nbKb pgahEKJGYpCbLdOZUpqKS6MCR+ISKo3QxJJhJmZY0418gd4gu9um+e33/N7+/4fnwVHpkECB GxkrbWEok0ooxqSi2BR1YmAgP81ftSPztd8nzHS2VkVkPn/7JkKD5nZ0/EJyV754sdzJvrRT aIH4qI42GUtpy4EcrdjQ276KFr9SltlmeyMqwXdYB0Q4JDOga/oTVgfEuJSsRuCCewwNHVwA NrqcYcWLwL7uJsBHoskc6B/5ifGYIFOhzzsp4E0oeQvAyaYWpA7gXK8CNg2RvEdI7oX2nmtB WsRl6wflPI2RCbBmagXhMUqegKt2e7jyCPTUTghCc1sQeGO8VsgLMWQydDo6haG1lXDwzzzS AEjHtjUc29dwBItT4P22JTSEk+DQ9QdYCMfBp/7mMH8Ytt+eDvPZ0FvvDGdz4LztnsAJ8IdA qTNXqM2U0cTShWq2kGIY2qJOTzUbram0rqQfBN9GLnkGlodVHkDiQCUhDN0D+VIBVcqWmz1A jiOqWCJvhqMizxfpyg0UazhnKTHRrAckcLPmXd3jQIExRQytiiEef+R8hI4qr6AtRZu2XTim khEHo/rzpaSestKXaLqYtmyqu3FcBYkkPxfcaaH1dNkFo8n6X0ZwkQdAXMKVi3kPwRZTZtao D+mjIF4hI9zLnEDygqGE2cry/07rf3HIB2TctaIJLR+XcL9yK+3jihGueAwEi63Uf0lRCeIN WVVW2NOfsRF3t3WPK/3Ku7xhzW85mnW5VV/QZXLb7qwxgUR9w+LXjcYfj96flGkCyv2ygO3s lCaxq3nJY/DZa7KAo9NdLxnYdzOW+ewcXet5stCSvD5HXb34LXtkYub4rGAM/o1c03bMnTk2 9SGqIX6x+nRkHFxve7nSpsJYA5WejFpY6h8SkZ5HUgMAAA==
Archived-At: <http://mailarchive.ietf.org/arch/msg/oauth/6h1I2HOqHvoJbkrduJ5homvGgYI>
Cc: "<oauth@ietf.org>" <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Call for Adoption: OAuth 2.0 Discovery
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Feb 2016 00:34:49 -0000

+1, if we define a webfinger/rel at all.

I would rather we just define the service discovery document, the thing that lives under .well-known.

 — Justin


> On Feb 4, 2016, at 4:01 AM, Roland Hedberg <roland.hedberg@umu.se> wrote:
> 
> +1
> 
>> 4 feb 2016 kl. 08:10 skrev Phil Hunt <phil.hunt@oracle.com>om>:
>> 
>> +1 for adoption.
>> 
>> However I would like a rel value distinct from OpenID (see separate email). While the mechanics of discovery is the same, I believe some clients will want to distinguish between OAuth AS’s and OIDC OPs.  Further, I would expect over time that different discovery features may be required. Locking them together seems like a pre-mature or rush choice.
>> 
>> Phil
>> 
>> @independentid
>> www.independentid.com
>> phil.hunt@oracle.com
>> 
>> 
>> 
>> 
>> 
>>> On Feb 3, 2016, at 10:44 PM, William Denniss <wdenniss@google.com> wrote:
>>> 
>>> +1 for adoption of this document by the working group
>>> 
>>> On Wed, Feb 3, 2016 at 10:27 PM, Mike Jones <Michael.Jones@microsoft.com> wrote:
>>> I support adoption of this document by the working group.  I'll note that elements of this specification are already in production use by multiple parties.
>>> 
>>>                                -- Mike
>>> 
>>> -----Original Message-----
>>> From: OAuth [mailto:oauth-bounces@ietf.org] On Behalf Of Hannes Tschofenig
>>> Sent: Tuesday, January 19, 2016 3:49 AM
>>> To: oauth@ietf.org
>>> Subject: [OAUTH-WG] Call for Adoption: OAuth 2.0 Discovery
>>> 
>>> Hi all,
>>> 
>>> this is the call for adoption of OAuth 2.0 Discovery, see
>>> https://tools.ietf.org/html/draft-jones-oauth-discovery-00
>>> 
>>> Please let us know by Feb 2nd whether you accept / object to the adoption of this document as a starting point for work in the OAuth working group.
>>> 
>>> Note: If you already stated your opinion at the IETF meeting in Yokohama then you don't need to re-state your opinion, if you want.
>>> 
>>> The feedback at the Yokohama IETF meeting was the following: 19 for / zero against / 4 persons need more information.
>>> 
>>> Ciao
>>> Hannes & Derek
>>> 
>>> _______________________________________________
>>> OAuth mailing list
>>> OAuth@ietf.org
>>> https://www.ietf.org/mailman/listinfo/oauth
>>> 
>>> _______________________________________________
>>> OAuth mailing list
>>> OAuth@ietf.org
>>> https://www.ietf.org/mailman/listinfo/oauth
>> 
>> _______________________________________________
>> OAuth mailing list
>> OAuth@ietf.org
>> https://www.ietf.org/mailman/listinfo/oauth
> 
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth