[OAUTH-WG] Weekly github digest (OAuth Activity Summary)
Repository Activity Summary Bot <do_not_reply@mnot.net> Sun, 14 April 2024 08:37 UTC
Return-Path: <do_not_reply@mnot.net>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1054AC14F697 for <oauth@ietfa.amsl.com>; Sun, 14 Apr 2024 01:37:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.696
X-Spam-Level:
X-Spam-Status: No, score=-6.696 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=mnot.net header.b="Y93tRNkU"; dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=messagingengine.com header.b="oAWeIim2"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yttRLGeuOQ3p for <oauth@ietfa.amsl.com>; Sun, 14 Apr 2024 01:37:34 -0700 (PDT)
Received: from fhigh5-smtp.messagingengine.com (fhigh5-smtp.messagingengine.com [103.168.172.156]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 293AAC14F69B for <oauth@ietf.org>; Sun, 14 Apr 2024 01:37:14 -0700 (PDT)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailfhigh.nyi.internal (Postfix) with ESMTP id 926251140118 for <oauth@ietf.org>; Sun, 14 Apr 2024 04:37:13 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute1.internal (MEProxy); Sun, 14 Apr 2024 04:37:13 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h=cc :content-type:content-type:date:from:from:in-reply-to :mime-version:reply-to:subject:subject:to:to; s=fm3; t= 1713083833; x=1713170233; bh=khnllFGhM1wIwb0Em2BhDgIaBR7ba5x6IW+ gIF6uYac=; b=Y93tRNkU5OpXTtBV4h4n+syC/a8wSbzLexoWD6Kt6GNuOk/Q51r n/ytzt/rOkiyE3m/x9VmyZkxLPDqQTnlTVPLsg1nyuy5RVPTM3DZRmvmzsZFdxyZ 5wT3o4arHRHJ87z1GNSJKu6MDrkl3Hoji4rLTFgOWTl6p0WJrpcJx0Lkpo7lAjCN okRG6HkrkNL//RIKeWzGaMaXbb0ractpaPyZ3J3yVuAYt4COQy6JlqsCXSJLnF9L F8eZCgG801QijntnaZf75epBOJABsfFgJwxHY3isMU5z5UOuxp8ci3trXMqnnqZd e3f7UW1gL9M/TvtcvSGiXvrjbvm8nNr3E+Q==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:content-type:date :feedback-id:feedback-id:from:from:in-reply-to:mime-version :reply-to:subject:subject:to:to:x-me-proxy:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm2; t=1713083833; x= 1713170233; bh=khnllFGhM1wIwb0Em2BhDgIaBR7ba5x6IW+gIF6uYac=; b=o AWeIim2H+OJ2np+llZSKIcuIMgS3AFr7c2/TZAaf0prAP45gGbM+Jv/Zm06wGUxZ RMJj6h3myrkpuuy1CH+xQ7azWK968niFFpfbRbGbhN38VzSmlOPc2s1oymmUlOXF X4lKRvBPkjdY0V3MKBRiDhgeeDWHylhpzOaZecJGZK+qKVBYpB/ZpawnTpRtouer 7LqZ8ARL31V5lvRUx0xBvJLaf2kQQu+n96Tmw9hfSbPZOKgr6D1fpnFvZZw9DxY/ 7UQZkBAjdPEyrVgL5/eHeKsv+wZMleqNozRdaQcTIFOmG3CM2Oi6zlNfU+1hclcS THuc+yFdpx78kZlJ5dCEQ==
X-ME-Sender: <xms:uZUbZmEZVZgG2S4t2i9uo4UK6hiNlirxKDrEDR-XHFJoSvsqjrWP2A> <xme:uZUbZnUQaxxKKEcqP60Iapj9JolVJKz8Ro6A7fUDXJlcOzRAYE1myEKUpMk-b1hNe feX36lql1IFJfDkXA>
X-ME-Received: <xmr:uZUbZgJ4m-OpB6ODJIjoDPmqPKuKljKb9sNUUYmN29cslwUJPpHQIdMUftK1vw>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvledrudeiledgtdejucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucfpohcuuggrthgvuchfihgvlhguucdlgeelmdenuc fjughrpegtggfhvffusegrtddtredttdejnecuhfhrohhmpeftvghpohhsihhtohhrhicu tegtthhivhhithihucfuuhhmmhgrrhihuceuohhtuceoughopghnohhtpghrvghplhihse hmnhhothdrnhgvtheqnecuggftrfgrthhtvghrnhepkeefvdduteejvdefkeehieevuefg fefhteetveegffekffefteffvdelheduieetnecuffhomhgrihhnpehgihhthhhusgdrtg homhenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpegu ohgpnhhothgprhgvphhlhiesmhhnohhtrdhnvght
X-ME-Proxy: <xmx:uZUbZgFRvzmBm1jG92fcQqpHDNOe9YLdhEWqKWvZ1wfHyO6CZTLYxQ> <xmx:uZUbZsUnbEAxNxrukDgq1YySISHkzibLeD6JCM-04ETLudSrRWVfxA> <xmx:uZUbZjOJSprsJ9T5orUYftIj0SIrGqp9jT5HkU8F--t0XNYaw3r6BA> <xmx:uZUbZj3OodCTjIlvfHY_l_gVLmvLg4XwaXwa798T-uccHAbHykARSA> <xmx:uZUbZpiI6FGsZQPht0GmduqGUUBHM7IVTbG69aS4MWgChnUaLF7jc8MB>
Feedback-ID: i1c3946f2:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA for <oauth@ietf.org>; Sun, 14 Apr 2024 04:37:13 -0400 (EDT)
Content-Type: multipart/alternative; boundary="===============4012789101314216863=="
MIME-Version: 1.0
From: Repository Activity Summary Bot <do_not_reply@mnot.net>
To: oauth@ietf.org
Message-Id: <20240414083714.293AAC14F69B@ietfa.amsl.com>
Date: Sun, 14 Apr 2024 01:37:14 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/9bISnCCOkNgtwWHinBosukpVXqc>
Subject: [OAUTH-WG] Weekly github digest (OAuth Activity Summary)
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 14 Apr 2024 08:37:39 -0000
Events without label "editorial"
Issues
------
* oauth-wg/oauth-browser-based-apps (+2/-2/š¬2)
2 issues created:
- Draw diagrams with tools instead of raw ASCII (by philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/issues/49
- Add BCP references to the normative section (by philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/issues/48
2 issues received 2 new comments:
- #44 Address outstanding comments from Justin Richer (1 by philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/issues/44
- #43 Properly render sublists (1 by philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/issues/43
2 issues closed:
- Address outstanding comments from Justin Richer https://github.com/oauth-wg/oauth-browser-based-apps/issues/44
- Consistently use *applications* or *apps* https://github.com/oauth-wg/oauth-browser-based-apps/issues/42
* oauth-wg/oauth-sd-jwt-vc (+1/-1/š¬8)
1 issues created:
- SD-JWT-VC Types repository (by babisRoutis)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/226
3 issues received 8 new comments:
- #226 SD-JWT-VC Types repository (5 by awoie, babisRoutis)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/226
- #224 claims and display etc in type metadata (2 by awoie, babisRoutis)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/224 [metadata]
- #145 how cnf claim can be used with any other types of "binding" (1 by paulbastian)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/145 [discuss]
1 issues closed:
- SD-JWT-VC Types repository https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/226
* oauth-wg/draft-ietf-oauth-resource-metadata (+10/-0/š¬0)
10 issues created:
- Reorder paragraphs in 7.6 (by aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/33
- Section 5 (by aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/32
- Add flow diagrams (by aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/31
- Section 4 AS metadata (by aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/30
- Add reference to attack (by aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/29
- Section 3 Change "applications" to "deployment" (by aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/28
- Add reference to example path construction in section 3 intro (by aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/27
- Update description of resource_signing_alg_values_supported (by aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/26
- Rephrase description of `bearer_methods_supported` (by aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/25
- resource alg properties (by aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/24
* oauth-wg/oauth-selective-disclosure-jwt (+0/-0/š¬1)
1 issues received 1 new comments:
- #419 why isn't cnf the only way to bind to a holder public key? (1 by babisRoutis)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/419
Pull requests
-------------
* oauth-wg/oauth-browser-based-apps (+1/-0/š¬4)
1 pull requests submitted:
- Reworded the benefits of the Token Mediating Backend (by philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/pull/47
3 pull requests received 4 new comments:
- #46 Feedback (1 by philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/pull/46
- #45 Processed review from Justin Richer (1 by philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/pull/45
- #40 Add BFF advice for performance purposes (2 by emmanuelgautier, philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/pull/40
* oauth-wg/oauth-transaction-tokens (+1/-0/š¬0)
1 pull requests submitted:
- specified language for self-signed JWTs as subject_tokens (by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/pull/90
* oauth-wg/oauth-v2-1 (+2/-0/š¬0)
2 pull requests submitted:
- Minor fix (by MozharAlhosni)
https://github.com/oauth-wg/oauth-v2-1/pull/173
- clarify expires_in is a JSON number (by panva)
https://github.com/oauth-wg/oauth-v2-1/pull/172
Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
- [OAUTH-WG] Weekly github digest (OAuth Activity Sā¦ Repository Activity Summary Bot