Re: [OAUTH-WG] Fwd: New Version Notification for draft-richer-oauth-introspection-01.txt
Torsten Lodderstedt <torsten@lodderstedt.net> Wed, 09 January 2013 19:23 UTC
Return-Path: <torsten@lodderstedt.net>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F2B8621F87CB for <oauth@ietfa.amsl.com>; Wed, 9 Jan 2013 11:23:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.201
X-Spam-Level:
X-Spam-Status: No, score=-1.201 tagged_above=-999 required=5 tests=[AWL=-0.349, BAYES_00=-2.599, HELO_EQ_DE=0.35, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=1.396]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NdWvFXB7Ng1s for <oauth@ietfa.amsl.com>; Wed, 9 Jan 2013 11:23:02 -0800 (PST)
Received: from smtprelay03.ispgateway.de (smtprelay03.ispgateway.de [80.67.29.7]) by ietfa.amsl.com (Postfix) with ESMTP id CCBF821F870A for <oauth@ietf.org>; Wed, 9 Jan 2013 11:23:00 -0800 (PST)
Received: from [79.253.23.39] (helo=[192.168.71.56]) by smtprelay03.ispgateway.de with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.68) (envelope-from <torsten@lodderstedt.net>) id 1Tt1Eo-0003JN-87; Wed, 09 Jan 2013 20:22:58 +0100
References: <20130108224847.20224.42156.idtracker@ietfa.amsl.com> <50EDC0AE.6050005@mitre.org>
Mime-Version: 1.0 (1.0)
In-Reply-To: <50EDC0AE.6050005@mitre.org>
Content-Type: multipart/alternative; boundary="Apple-Mail-F96B19A1-446E-4B08-947B-903BE933CCA8"
Content-Transfer-Encoding: 7bit
Message-Id: <C3C21E32-8A85-4AC8-973E-4FCD25D61791@lodderstedt.net>
X-Mailer: iPad Mail (10A523)
From: Torsten Lodderstedt <torsten@lodderstedt.net>
Date: Wed, 09 Jan 2013 20:22:57 +0100
To: Justin Richer <jricher@mitre.org>
X-Df-Sender: dG9yc3RlbkBsb2RkZXJzdGVkdC1vbmxpbmUuZGU=
Cc: "oauth@ietf.org" <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Fwd: New Version Notification for draft-richer-oauth-introspection-01.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Jan 2013 19:23:04 -0000
Hi Justin, why is there a need for both scope and audience? I would assume the scope of the authorization request is typically turned into an audience of an access token. Generally, wouldn't it be simpler (spec-wise) to just return a JWT instead of inventing another set of JSON elements? regards, Torsten. Am 09.01.2013 um 20:10 schrieb Justin Richer <jricher@mitre.org>: > Updated the introspection draft with feedback from the UMA WG, who have incorporated it into their latest revision of UMA. > > I would like this document to become a working group item. > > -- Justin > > > -------- Original Message -------- > Subject: New Version Notification for draft-richer-oauth-introspection-01.txt > Date: Tue, 8 Jan 2013 14:48:47 -0800 > From: <internet-drafts@ietf.org> > To: <jricher@mitre.org> > > A new version of I-D, draft-richer-oauth-introspection-01.txt > has been successfully submitted by Justin Richer and posted to the > IETF repository. > > Filename: draft-richer-oauth-introspection > Revision: 01 > Title: OAuth Token Introspection > Creation date: 2013-01-08 > WG ID: Individual Submission > Number of pages: 6 > URL: http://www.ietf.org/internet-drafts/draft-richer-oauth-introspection-01.txt > Status: http://datatracker.ietf.org/doc/draft-richer-oauth-introspection > Htmlized: http://tools.ietf.org/html/draft-richer-oauth-introspection-01 > Diff: http://www.ietf.org/rfcdiff?url2=draft-richer-oauth-introspection-01 > > Abstract: > This specification defines a method for a client or protected > resource to query an OAuth authorization server to determine meta- > information about an OAuth token. > > > > > > The IETF Secretariat > > > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth
- [OAUTH-WG] Fwd: New Version Notification for draf… Justin Richer
- Re: [OAUTH-WG] Fwd: New Version Notification for … Torsten Lodderstedt
- Re: [OAUTH-WG] Fwd: New Version Notification for … Justin Richer
- Re: [OAUTH-WG] Fwd: New Version Notification for … Torsten Lodderstedt
- Re: [OAUTH-WG] Fwd: New Version Notification for … Richer, Justin P.
- Re: [OAUTH-WG] Fwd: New Version Notification for … George Fletcher
- Re: [OAUTH-WG] Fwd: New Version Notification for … Sergey Beryozkin
- Re: [OAUTH-WG] Fwd: New Version Notification for … Justin Richer
- Re: [OAUTH-WG] Fwd: New Version Notification for … George Fletcher
- Re: [OAUTH-WG] Fwd: New Version Notification for … Justin Richer
- Re: [OAUTH-WG] Fwd: New Version Notification for … George Fletcher
- Re: [OAUTH-WG] Fwd: New Version Notification for … Igor Faynberg
- Re: [OAUTH-WG] Fwd: New Version Notification for … Justin Richer
- Re: [OAUTH-WG] Fwd: New Version Notification for … George Fletcher
- Re: [OAUTH-WG] Fwd: New Version Notification for … Richer, Justin P.
- Re: [OAUTH-WG] Fwd: New Version Notification for … George Fletcher