IETF Logo Mail Archive

Re: [OAUTH-WG] Working Group Last Call: JSON Web Token Best Current Practices

Mike Jones <Michael.Jones@microsoft.com> Mon, 16 April 2018 18:52 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 77BF112EA97 for <oauth@ietfa.amsl.com>; Mon, 16 Apr 2018 11:52:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.011
X-Spam-Level:
X-Spam-Status: No, score=-2.011 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZKe2SswcJD06 for <oauth@ietfa.amsl.com>; Mon, 16 Apr 2018 11:52:07 -0700 (PDT)
Received: from NAM02-CY1-obe.outbound.protection.outlook.com (mail-cys01nam02on0714.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe45::714]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 84C8B126CC4 for <oauth@ietf.org>; Mon, 16 Apr 2018 11:52:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=tbg1uJndrrzuYUs2J7VNmh76rlDPFMkRPDz7IFLQlT4=; b=PlgvkNl7e+Eo0RtTxWvsQSfTT0q0nAkLZzlBhtmTQq8pAa+BBTcWRw/Q84i0cj5kPF3zFdAQ+tZaMI8XjgMxQjp32HueRrwQCKSx55UkUpYhgZGG2ATFw9uAd8RoVFwrSEfDTHiMwgmmp6Oaf4qSd2+4qzW8ZmJRVF2rAMe9Xh8=
Received: from DM5PR00MB0293.namprd00.prod.outlook.com (2603:10b6:4:9e::34) by DM5PR00MB0358.namprd00.prod.outlook.com (2603:10b6:4:9f::37) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.726.0; Mon, 16 Apr 2018 18:52:06 +0000
Received: from DM5PR00MB0293.namprd00.prod.outlook.com ([fe80::ed7b:97ba:3e6f:29fd]) by DM5PR00MB0293.namprd00.prod.outlook.com ([fe80::ed7b:97ba:3e6f:29fd%4]) with mapi id 15.20.0727.000; Mon, 16 Apr 2018 18:52:06 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com>, oauth <oauth@ietf.org>
Thread-Topic: Working Group Last Call: JSON Web Token Best Current Practices
Thread-Index: AdPVqurCFfBabyqeSkmiBPeLsGrqowACQ8Ag
Date: Mon, 16 Apr 2018 18:52:06 +0000
Message-ID: <DM5PR00MB029309219F8731B5CD3BD563F5B00@DM5PR00MB0293.namprd00.prod.outlook.com>
References: <VI1PR0801MB21126C75C51AFC361852988BFAB00@VI1PR0801MB2112.eurprd08.prod.outlook.com>
In-Reply-To: <VI1PR0801MB21126C75C51AFC361852988BFAB00@VI1PR0801MB2112.eurprd08.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [50.204.119.2]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DM5PR00MB0358; 7:JUjWAly+Lfxfr9t+myufb571irayzK+bful9HfVR5ZWc88xe2FroJ0vVzWRkYrduCND7bcA/V/+oQz+KLT28OkvCIe7//Z+urDPzzzrPEnx2lKeAnRNK7zXc3eLafIAqmtG5mgUaUq+MGXTu4T1ThxpQNlmutlUMguu/Q858nbghIsWfhHeydUIubrTMYEFC7+wB7WayZp+XKOXX/rgPtMB7wxtsqPm/6RTCHpwrYMqOOvDMie86S+0FaojFBysf; 20:KCVu8JtMSGn+J2nJejv5u0ASM751JrSz9wQBqnQXq2ZFLjQB3oEnRcc5YVAYLXjkiXwdG2yukWobdzB4VMXipd8mb1cj99/z4burzr7Y0oApipN4cXM8bfc9MzCN7SPD4XaSaoqcMhLhP47fWOuEl+J7ViWRoC4zsultK9XRu7E=
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(48565401081)(5600026)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7193020); SRVR:DM5PR00MB0358;
x-ms-traffictypediagnostic: DM5PR00MB0358:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-ld-processed: 72f988bf-86f1-41af-91ab-2d7cd011db47,ExtAddr
x-microsoft-antispam-prvs: <DM5PR00MB0358CA47A0A3179D62055256F5B00@DM5PR00MB0358.namprd00.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(61425038)(2017102700009)(2017102701064)(6040522)(2401047)(5005006)(8121501046)(2017102702064)(20171027021009)(20171027022009)(20171027023009)(20171027024009)(20171027025009)(20171027026009)(2017102703076)(3231232)(944501347)(52105095)(10201501046)(93006095)(93001095)(3002001)(6055026)(61426038)(61427038)(6041310)(20161123560045)(20161123558120)(20161123562045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123564045)(6072148)(201708071742011); SRVR:DM5PR00MB0358; BCL:0; PCL:0; RULEID:; SRVR:DM5PR00MB0358;
x-forefront-prvs: 0644578634
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(376002)(39380400002)(39860400002)(346002)(396003)(366004)(13464003)(53754006)(199004)(189003)(40434004)(6246003)(66066001)(25786009)(5890100001)(2906002)(8990500004)(5250100002)(10090500001)(8936002)(10290500003)(478600001)(966005)(8676002)(72206003)(53936002)(3660700001)(3280700002)(6306002)(99286004)(55016002)(76176011)(7736002)(9686003)(7696005)(52396003)(97736004)(81166006)(68736007)(14454004)(81156014)(86362001)(2900100001)(486006)(6436002)(59450400001)(476003)(74316002)(26005)(229853002)(6506007)(106356001)(186003)(53546011)(86612001)(105586002)(305945005)(11346002)(33656002)(5660300001)(446003)(3846002)(110136005)(22452003)(316002)(102836004)(6116002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR00MB0358; H:DM5PR00MB0293.namprd00.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: ksf06kXPpuHwy6EY51gpe0IDIPPZQF5ntbiJkyQEivQwSOySQw18GVKVtWu+TZwD1tuCMaDjZqS53tBjGINdahScu/pkMqY6lOR+UfrSNTzKgIYI59HgRQQ1lQsX8SUDUx3ybMZA4nLV/LtCAOMOcD4Vmo1DWhEsmi90taXIWvJeg0i58lcrtes4E1gsxrq3
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Office365-Filtering-Correlation-Id: 6b524cd7-92de-45d1-cf79-08d5a3cb2678
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 6b524cd7-92de-45d1-cf79-08d5a3cb2678
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Apr 2018 18:52:06.0742 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR00MB0358
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/qud1mS6vTlFvncCypMCu812Wmk8>
Subject: Re: [OAUTH-WG] Working Group Last Call: JSON Web Token Best Current Practices
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 16 Apr 2018 18:52:09 -0000

The JWT BCP spec is ready to publish.

				-- Mike

-----Original Message-----
From: OAuth <oauth-bounces@ietf.org> On Behalf Of Hannes Tschofenig
Sent: Monday, April 16, 2018 10:49 AM
To: oauth <oauth@ietf.org>
Subject: [OAUTH-WG] Working Group Last Call: JSON Web Token Best Current Practices

Hi all,

this is a last call for comments on
https://tools.ietf.org/html/draft-ietf-oauth-jwt-bcp-01

Please have your comments in no later than April 30th.

Do remember to send a note in if you have read the document and have no other comments other than "its ready to go" - we need those as much as we need "I found a problem".

Ciao
Hannes & Rifaat
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

v2.23.0 | Report a Bug | By Email