[OAUTH-WG] delete access tokens?

"Bart Wiegmans" <bart@all4students.nl> Tue, 29 November 2011 10:32 UTC

Return-Path: <bart@all4students.nl>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 54F9621F8C43 for <oauth@ietfa.amsl.com>; Tue, 29 Nov 2011 02:32:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.376
X-Spam-Level: *
X-Spam-Status: No, score=1.376 tagged_above=-999 required=5 tests=[AWL=0.020, BAYES_20=-0.74, HELO_EQ_NL=0.55, HOST_EQ_NL=1.545, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zQk-P9LxZcUm for <oauth@ietfa.amsl.com>; Tue, 29 Nov 2011 02:32:16 -0800 (PST)
Received: from mx-out14.all4students.nl (mx-out14.all4students.nl [89.188.22.31]) by ietfa.amsl.com (Postfix) with ESMTP id 83E7721F8C41 for <oauth@ietf.org>; Tue, 29 Nov 2011 02:32:15 -0800 (PST)
Received: from mx-out14.all4students.nl (localhost [127.0.0.1]) by mx-out14.all4students.nl (Postfix) with ESMTP id 2BDE29437A for <oauth@ietf.org>; Tue, 29 Nov 2011 11:32:14 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=studenten.net; h= mime-version:content-type:subject:date:message-id:from:to; s= selector1; bh=5MlyP/+hIPLN2n8ZrrxSgmPMwpI=; b=Wv84/LqR1ajimy1wE8 aO1uRcrPJaaz+ySPqrQ3HxIShD4/BjerJyEMsFfuPkhOCVUkgMRRfWlLPMlk9+mx 4VnbpN6ZVOtgXenQrmkYi3639kR9QAFRp9Dnz/s4bOxBt4+Uf3aLsrwFEQaP2N2X zAYKiD+YoHGwkSqeAHj+qyX8I=
Received: from all4students.nl (ip189-178-172-82.adsl2.static.versatel.nl [82.172.178.189]) by mx-out14.all4students.nl (Postfix) with ESMTP id EAAD094370 for <oauth@ietf.org>; Tue, 29 Nov 2011 11:32:13 +0100 (CET)
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01CCAE82.278DA7E3"
Date: Tue, 29 Nov 2011 11:32:11 +0100
Message-ID: <AEDA1B65E9329448939CEFA895C129E203850B09@studentserver.studentennet.local>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: delete access tokens?
Thread-Index: AcyugdFLRhLtg7zIR8O1iDGbNt/qeQ==
From: "Bart Wiegmans" <bart@all4students.nl>
To: "oauth WG" <oauth@ietf.org>
Subject: [OAUTH-WG] delete access tokens?
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Nov 2011 10:32:17 -0000

Hello everybody, again.

 

This is just me pushing a random idea, but what if you specified that
clients could ask for access token invalidation by making a DELETE
request to the token endpoint?

 

Bart Wiegmans