Re: [OAUTH-WG] Implementation Support and Community
John Bradley <ve7jtb@ve7jtb.com> Fri, 24 August 2012 03:03 UTC
Return-Path: <ve7jtb@ve7jtb.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 05E8121F8526 for <oauth@ietfa.amsl.com>; Thu, 23 Aug 2012 20:03:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.092
X-Spam-Level:
X-Spam-Status: No, score=-3.092 tagged_above=-999 required=5 tests=[AWL=-0.299, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1, SARE_URI_CONS7=0.306, URI_NOVOWEL=0.5]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WAuWo5abqgwL for <oauth@ietfa.amsl.com>; Thu, 23 Aug 2012 20:03:02 -0700 (PDT)
Received: from mail-qc0-f172.google.com (mail-qc0-f172.google.com [209.85.216.172]) by ietfa.amsl.com (Postfix) with ESMTP id BCA1E21F8527 for <oauth@ietf.org>; Thu, 23 Aug 2012 20:03:00 -0700 (PDT)
Received: by qcac10 with SMTP id c10so1060352qca.31 for <oauth@ietf.org>; Thu, 23 Aug 2012 20:03:00 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=content-type:mime-version:subject:from:in-reply-to:date:cc :message-id:references:to:x-mailer:x-gm-message-state; bh=2x5dZSBjinTJidukiIggUqDc+q8S7llLDu8r3ym6Cj0=; b=aVm5enrY94jKnmdTF8LSVcHmxjYI4C+mLiYYoPK3wGUzBtSAW/2x30GdY1PoNcn8l1 ixi2BfpRl0vaD0ZpoMVTT0x+vZf1k8EwXNVFe0kCAI9DcMQ9yVlBiQsHX1Cnm9Mc/c8I L7RVxVtibeyRCB1/Ld66kVH5wZXNTsudJJ8uwuIWecRzHhjbLuqLxxsOrrnk9ZqWXs1g 6khh1ztjiJNG2CjBjAH49Y/d4Bt/UYCrUEZenT3AE9bOjJTnXtPLfV3tZ7pp1deWPDeI GauUIkMZSb8mGp3z63pSKmuusVF/mYHpxh3u9AaQc556iZF2ftEMvaLHWFxL1JYCAncY 6REw==
Received: by 10.229.135.202 with SMTP id o10mr1808670qct.19.1345777380240; Thu, 23 Aug 2012 20:03:00 -0700 (PDT)
Received: from [192.168.1.211] (190-20-25-212.baf.movistar.cl. [190.20.25.212]) by mx.google.com with ESMTPS id hq10sm6564445qab.1.2012.08.23.20.02.56 (version=TLSv1/SSLv3 cipher=OTHER); Thu, 23 Aug 2012 20:02:59 -0700 (PDT)
Content-Type: multipart/signed; boundary="Apple-Mail=_732276A4-A817-4019-9AF0-B537F3A6B4F6"; protocol="application/pkcs7-signature"; micalg="sha1"
Mime-Version: 1.0 (Mac OS X Mail 6.0 \(1485\))
From: John Bradley <ve7jtb@ve7jtb.com>
In-Reply-To: <26F5345A-064F-4330-A274-A90CFC653978@xmlgrrl.com>
Date: Thu, 23 Aug 2012 23:02:52 -0400
Message-Id: <F0617152-CAA9-4B69-AD32-018081E7C0BD@ve7jtb.com>
References: <50364056.4000400@mitre.org> <D5FD7EB9-BFC5-44F7-9FFF-0165477C79F7@ve7jtb.com> <26F5345A-064F-4330-A274-A90CFC653978@xmlgrrl.com>
To: Eve Maler <eve@xmlgrrl.com>
X-Mailer: Apple Mail (2.1485)
X-Gm-Message-State: ALoCoQkh5TVAhnqEySnbSlzF/qJQOyEjQWoVzCjj9NxqXLN9ODdY/n4g9i2x5XamM0NtJP5k9cJR
Cc: "oauth@ietf.org" <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Implementation Support and Community
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Aug 2012 03:03:04 -0000
Not that I know of beyond what we have as part of the openID Connect testing. A good number of those tests cover the underlying OAuth 2 flows. It would not take too much to expand the FEDLAB test harness for more generic OAuth tests if there was a demand. Though without a protocol to apply OAuth to the tests are more of a challenge. John B. On 2012-08-23, at 10:49 PM, Eve Maler <eve@xmlgrrl.com> wrote: > Perhaps relatedly, in the UMA group we've been defining feature tests for interoperability testing, and since UMA uses OAuth, we wondered if any OAuth feature tests exist; we couldn't find any. That might be another activity worthy of being taken up by such a community. (Both UMA and OpenID Connect are using the OSIS.idcommons.net wiki for interop testing.) > > Eve > > On 23 Aug 2012, at 7:51 AM, John Bradley <ve7jtb@ve7jtb.com> wrote: > >> The openID foundation is in a position of promoting OAuth 2 now as a significant dependency of openID Connect and other work. >> >> I can ask the board if there is a interest in hosting something specific for OAuth 2. >> >> I agree with Justin, now that the core spec is done there needs to be some consideration put to marketing and support by someone. >> This WG has new work items to progress so we probably don't want to get bogged down with that in this group. >> >> I will wait to see the discussion on this here before asking OIDF or anyone else if they want to set something up. >> >> John B. >> On 2012-08-23, at 10:38 AM, Justin Richer wrote: >> >>> With the core specs basically out the door and seeing wider adoption and publicity, the OAuth community is going to start to get more questions about "how do I do X?", and many of these are questions that have been answered before or seem "obvious" to those of us who have been up to our ears in the spec for the past few years. Nevertheless, these are important questions to support for the wellbeing of the protocol community, but where should they be asked? >>> >>> When the OAuth community lived on a simple Google Group, these kinds of questions make sense. But I'd argue that the IETF list is not really the right place for them. This list, and the IETF in general, seems to be best suited for *building* the protocol, not for the *use* and *support* of said protocol once it's built. >>> >>> The problem is that, as of right now, we don't have anywhere to point people where they could get a "real" answer. >>> >>> This opens a larger question of who might "sponsor" or "host" such a community. Anything like that needs moderators, and more importantly, needs experts willing to answer the questions. Some options I can think of: >>> >>> - Revive the google groups list for these kinds of questions/discussions >>> - Start a new list/forum, linked to oauth.net >>> - Point everyone to StackOverflow with an "oauth" tag >>> >>> >>> -- Justin (who is not volunteering himself to host or moderate the group) >>> _______________________________________________ >>> OAuth mailing list >>> OAuth@ietf.org >>> https://www.ietf.org/mailman/listinfo/oauth >> >> _______________________________________________ >> OAuth mailing list >> OAuth@ietf.org >> https://www.ietf.org/mailman/listinfo/oauth > > > Eve Maler http://www.xmlgrrl.com/blog > +1 425 345 6756 http://www.twitter.com/xmlgrrl > >
- [OAUTH-WG] Implementation Support and Community Justin Richer
- Re: [OAUTH-WG] Implementation Support and Communi… John Bradley
- Re: [OAUTH-WG] Implementation Support and Communi… Eve Maler
- Re: [OAUTH-WG] Implementation Support and Communi… John Bradley
- Re: [OAUTH-WG] Implementation Support and Communi… Igor Faynberg
- Re: [OAUTH-WG] Implementation Support and Communi… Dick Hardt