IETF Logo Mail Archive

Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-jwsreq-01.txt

Nat Sakimura <n-sakimura@nri.co.jp> Thu, 13 November 2014 04:12 UTC

Return-Path: <n-sakimura@nri.co.jp>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 61FD81A1B4D for <oauth@ietfa.amsl.com>; Wed, 12 Nov 2014 20:12:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 3.318
X-Spam-Level: ***
X-Spam-Status: No, score=3.318 tagged_above=-999 required=5 tests=[BAYES_50=0.8, HELO_EQ_JP=1.244, HOST_EQ_JP=1.265, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_FSL_HELO_BARE_IP_2=0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZtRY8P7VGA2V for <oauth@ietfa.amsl.com>; Wed, 12 Nov 2014 20:12:37 -0800 (PST)
Received: from nrifs02.index.or.jp (nrigw01.index.or.jp [133.250.250.1]) by ietfa.amsl.com (Postfix) with ESMTP id ABE181A1B4A for <oauth@ietf.org>; Wed, 12 Nov 2014 20:12:37 -0800 (PST)
Received: from nriea03.index.or.jp (unknown [172.19.246.38]) by nrifs02.index.or.jp (Postfix) with SMTP id 1C6E4196867 for <oauth@ietf.org>; Thu, 13 Nov 2014 13:12:37 +0900 (JST)
Received: from nrims00a.nri.co.jp ([192.50.135.11]) by nriea03.index.or.jp (unknown) with ESMTP id sAD4CaMY032490 for <oauth@ietf.org>; Thu, 13 Nov 2014 13:12:36 +0900
Received: from nrims00a.nri.co.jp (localhost.localdomain [127.0.0.1]) by nrims00a.nri.co.jp (Switch-3.3.3/Switch-3.3.3) with ESMTP id sAD4CaWp029412; Thu, 13 Nov 2014 13:12:36 +0900
Received: (from mailnull@localhost) by nrims00a.nri.co.jp (Switch-3.3.3/Switch-3.3.0/Submit) id sAD4Ca6M029411; Thu, 13 Nov 2014 13:12:36 +0900
X-Authentication-Warning: nrims00a.nri.co.jp: mailnull set sender to n-sakimura@nri.co.jp using -f
Received: from nrizmf21a.index.or.jp ([172.100.25.19]) by nrims00a.nri.co.jp (Switch-3.3.3/Switch-3.3.3) with ESMTP id sAD4Ca7Z029407 for <oauth@ietf.org>; Thu, 13 Nov 2014 13:12:36 +0900
Received: from 127.0.0.1 (127.0.0.1) by m-FILTER with ESMTP; Thu, 13 Nov 2014 13:12:36 +0900
Received: from Nat-PC (unknown [172.31.163.87]) by nrivpnfs01.index.or.jp (Postfix) with ESMTP id 4D958BF93E for <oauth@ietf.org>; Thu, 13 Nov 2014 13:11:55 +0900 (JST)
Date: Thu, 13 Nov 2014 13:11:54 +0900
From: Nat Sakimura <n-sakimura@nri.co.jp>
To: oauth@ietf.org
Message-Id: <20141113131154.bda787f79ceb3eb83360dd29@nri.co.jp>
In-Reply-To: <20141113040729.675.60416.idtracker@ietfa.amsl.com>
References: <20141113040729.675.60416.idtracker@ietfa.amsl.com>
X-Mailer: Sylpheed 3.4.2 (GTK+ 2.10.14; i686-pc-mingw32)
Mime-Version: 1.0
Content-Type: text/plain; charset="ISO-2022-JP"
Content-Transfer-Encoding: 7bit
X-MailAdviser: Ver1.5.1
Archived-At: http://mailarchive.ietf.org/arch/msg/oauth/BT_vzhRFAiGb8B968cfRyS8vTxc
Subject: Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-jwsreq-01.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Nov 2014 04:12:39 -0000

This is just a copy edit. 

It is a very short spec, which gives you integrity for the request. 
It has been used in OpenID Connect. 
The real text is only 4 pages long. Please read and comment. 

Nat

On Wed, 12 Nov 2014 20:07:29 -0800
internet-drafts@ietf.org wrote:

> 
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories. This draft is a work item of the Web Authorization
> Protocol Working Group of the IETF.
> 
>         Title           : Request by JWS ver.1.0 for OAuth 2.0
>         Authors         : Nat Sakimura
>                           John Bradley
> 	Filename        : draft-ietf-oauth-jwsreq-01.txt
> 	Pages           : 9
> 	Date            : 2014-11-12
> 
> Abstract:
>    The authorization request in OAuth 2.0 utilizes query parameter
>    serialization.  This specification defines the authorization
> request using JWT serialization.  The request is sent through
> "request" parameter or by reference through "request_uri" parameter
> that points to the JWT, allowing the request to be optionally signed
> and encrypted.
> 
> 
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-oauth-jwsreq/
> 
> There's also a htmlized version available at:
> http://tools.ietf.org/html/draft-ietf-oauth-jwsreq-01
> 
> A diff from the previous version is available at:
> http://www.ietf.org/rfcdiff?url2=draft-ietf-oauth-jwsreq-01
> 
> 
> Please note that it may take a couple of minutes from the time of
> submission until the htmlized version and diff are available at
> tools.ietf.org.
> 
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
> 
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth


-- 
Nat Sakimura (n-sakimura@nri.co.jp)
Nomura Research Institute, Ltd. 

本メールに含まれる情報は機密情報であり、宛先に記載されている方のみに送信
することを意図しております。意図された受取人以外の方によるこれらの情報の
開示、複製、再配布や転送など一切の利用が禁止されています。誤って本メール
を受信された場合は、申し訳ございませんが、送信者までお知らせいただき、受
信されたメールを削除していただきますようお願い致します。 PLEASE READ:
The information contained in this e-mail is confidential and intended
for the named recipient(s) only. If you are not an intended recipient
of this e-mail, you are hereby notified that any review, dissemination,
distribution or duplication of this message is strictly prohibited. If
you have received this message in error, please notify the sender
immediately and delete your copy from your system.

v2.40.3 | Report a Bug | By Email | System Status