Re: [OAUTH-WG] Better title for OAuth 2.0 JWT Authorization Request
"Nat Sakimura" <n-sakimura@nri.co.jp> Thu, 15 October 2015 04:52 UTC
Return-Path: <n-sakimura@nri.co.jp>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B1C61B305D for <oauth@ietfa.amsl.com>; Wed, 14 Oct 2015 21:52:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 2.609
X-Spam-Level: **
X-Spam-Status: No, score=2.609 tagged_above=-999 required=5 tests=[BAYES_50=0.8, HELO_EQ_JP=1.244, HOST_EQ_JP=1.265, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id szW_IJGhRVmW for <oauth@ietfa.amsl.com>; Wed, 14 Oct 2015 21:52:47 -0700 (PDT)
Received: from nrifs01.index.or.jp (nrigw01.index.or.jp [133.250.250.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3E2611B3052 for <oauth@ietf.org>; Wed, 14 Oct 2015 21:52:46 -0700 (PDT)
Received: from nriea02.index.or.jp (unknown [172.19.246.37]) by nrifs01.index.or.jp (Postfix) with SMTP id C2DBD77EE9; Thu, 15 Oct 2015 13:52:45 +0900 (JST)
Received: from nrims00b.nri.co.jp ([192.50.135.12]) by nriea02.index.or.jp (unknown) with ESMTP id t9F4qj0W024494; Thu, 15 Oct 2015 13:52:45 +0900
Received: from nrims00b.nri.co.jp (localhost.localdomain [127.0.0.1]) by nrims00b.nri.co.jp (Switch-3.3.4/Switch-3.3.4) with ESMTP id t9F4qjq5062708; Thu, 15 Oct 2015 13:52:45 +0900
Received: (from mailnull@localhost) by nrims00b.nri.co.jp (Switch-3.3.4/Switch-3.3.0/Submit) id t9F4qjHo062707; Thu, 15 Oct 2015 13:52:45 +0900
X-Authentication-Warning: nrims00b.nri.co.jp: mailnull set sender to n-sakimura@nri.co.jp using -f
Received: from nrizmf14.index.or.jp ([172.100.25.23]) by nrims00b.nri.co.jp (Switch-3.3.4/Switch-3.3.4) with ESMTP id t9F4qjE2062704; Thu, 15 Oct 2015 13:52:45 +0900
From: Nat Sakimura <n-sakimura@nri.co.jp>
To: 'Jim Manico' <jim@manicode.com>
References: <00c001d10233$debc8720$9c359560$@nri.co.jp> <8BA8D241-67FF-4DD2-AA01-DF007D8916B0@manicode.com> <CABzCy2AN-Q=kEXh+ky4GDLWGr6HHsu1P_1KLxg2FX_VuCCMhTA@mail.gmail.com> <190D3129-645A-4267-A3FC-215AFE71DE38@manicode.com>
In-Reply-To: <190D3129-645A-4267-A3FC-215AFE71DE38@manicode.com>
Date: Thu, 15 Oct 2015 13:52:46 +0900
Message-ID: <01a701d10705$55aa9a90$00ffcfb0$@nri.co.jp>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_01A8_01D10750.C595EC10"
X-Mailer: Microsoft Outlook 15.0
Thread-Index: AQIXN1KCYSLJRI30MmS0aTS8lpF7xwGnHHEzAU3gH3QB+2z5CZ24GAkQ
Content-Language: ja
x-mailadviser: 20150401
Archived-At: <http://mailarchive.ietf.org/arch/msg/oauth/FhP2IU8uEiPi7k68_cJLOvs5aFU>
Cc: 'oauth' <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Better title for OAuth 2.0 JWT Authorization Request
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Oct 2015 04:52:50 -0000
That’s true, but RFC6749 uses the term Authorization request to mean the request sent to the authorization endpoint. See 4.1.1, 4.2.1, 4.3.1, 4.4.1 of RFC6749. Best, -- Nat Sakimura < <mailto:n-sakimura@nri.co.jp> n-sakimura@nri.co.jp> Nomura Research Institute, Ltd. PLEASE READ: The information contained in this e-mail is confidential and intended for the named recipient(s) only. If you are not an intended recipient of this e-mail, you are hereby notified that any review, dissemination, distribution or duplication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately and delete your copy from your system. From: Jim Manico [mailto:jim@manicode.com] Sent: Saturday, October 10, 2015 12:28 AM To: Nat Sakimura <n-sakimura@nri.co.jp> Cc: oauth <oauth@ietf.org> Subject: Re: [OAUTH-WG] Better title for OAuth 2.0 JWT Authorization Request But its all authorization, even the token request.... -- Jim Manico @Manicode Secure Coding Education +1 (808) 652-3805 On Oct 9, 2015, at 5:23 PM, Nat Sakimura <n-sakimura@nri.co.jp <mailto:n-sakimura@nri.co.jp> > wrote: The reason for saying authorization request is that there are two types of requests in RFC6749; authorization request and token request. This draft deals with the former and thus named JAR. Nat 2015年10月9日金曜日、Jim Manico<jim@manicode.com <mailto:jim@manicode.com> >さんは書きました: The word authorization is implied by OAuth, consider "OAuth 2.0 JWT Request". -- Jim Manico @Manicode (808) 652-3805 On Oct 9, 2015, at 3:43 AM, Nat Sakimura <n-sakimura@nri.co.jp <javascript:_e(%7B%7D,'cvml','n-sakimura@nri.co.jp');> > wrote: Hi OAuthers: One of the to do for https://tools.ietf.org/html/draft-ietf-oauth-jwsreq-05 is to come up with a better title. The current title “OAuth 2.0 JWT Authorization Request (JAR)”, is somewhat better than what it used to be, but if you can suggest a better name, I am all for it. Please let me know if you have an idea. Best, -- Nat Sakimura < <javascript:_e(%7B%7D,'cvml','n-sakimura@nri.co.jp');> n-sakimura@nri.co.jp> Nomura Research Institute, Ltd. PLEASE READ: The information contained in this e-mail is confidential and intended for the named recipient(s) only. If you are not an intended recipient of this e-mail, you are hereby notified that any review, dissemination, distribution or duplication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately and delete your copy from your system. _______________________________________________ OAuth mailing list OAuth@ietf.org <javascript:_e(%7B%7D,'cvml','OAuth@ietf.org');> https://www.ietf.org/mailman/listinfo/oauth -- Nat Sakimura (=nat) http://www.sakimura.org/en/ http://twitter.com/_nat_en
- [OAUTH-WG] Better title for OAuth 2.0 JWT Authori… Nat Sakimura
- Re: [OAUTH-WG] Better title for OAuth 2.0 JWT Aut… Jim Manico
- Re: [OAUTH-WG] Better title for OAuth 2.0 JWT Aut… Axel.Nennker
- Re: [OAUTH-WG] Better title for OAuth 2.0 JWT Aut… Axel.Nennker
- Re: [OAUTH-WG] Better title for OAuth 2.0 JWT Aut… Nat Sakimura
- Re: [OAUTH-WG] Better title for OAuth 2.0 JWT Aut… Jim Manico
- Re: [OAUTH-WG] Better title for OAuth 2.0 JWT Aut… John Bradley
- Re: [OAUTH-WG] Better title for OAuth 2.0 JWT Aut… Nat Sakimura
- Re: [OAUTH-WG] Better title for OAuth 2.0 JWT Aut… Jim Manico