Re: [OAUTH-WG] Issuers, Discovery Docs & Brands

Joseph Heenan <joseph@authlete.com> Mon, 08 June 2020 11:52 UTC

Return-Path: <joseph@authlete.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 69C5A3A09D3 for <oauth@ietfa.amsl.com>; Mon, 8 Jun 2020 04:52:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=authlete-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XovM5yL90Ls1 for <oauth@ietfa.amsl.com>; Mon, 8 Jun 2020 04:52:15 -0700 (PDT)
Received: from mail-wr1-x42b.google.com (mail-wr1-x42b.google.com [IPv6:2a00:1450:4864:20::42b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E385D3A09CD for <oauth@ietf.org>; Mon, 8 Jun 2020 04:52:14 -0700 (PDT)
Received: by mail-wr1-x42b.google.com with SMTP id h5so17062650wrc.7 for <oauth@ietf.org>; Mon, 08 Jun 2020 04:52:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=authlete-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=V4PyfVXkPy7abFJtvFhdsRRnkg8bvu2tL7QBlVQrfa8=; b=pBYGgoe6wvzy2V+jCRkrUUvj5Y9IoniNTxoP+LiPsk3FwNuYhDmzuC83dynYm++bN7 ZOegZ6slMLy6dXaxnzCBXNKerM0t1iE+yPipOxSJe5Lm0EZs7hzQxCKxb79BBtg8zwp1 Asod0YBCXCU+hD/g4eM3wO/LCcaxeOtQaqtIT/x69e4YOOL1N9YfKo8l59MxDX7Cn7Kq JY5leilWWaEM444dqAyRTmLNkwt384eLo5myi8EMtMUyjD/o/aMIw+B72f2lewDA9LYB sUBe1dp4uDXcYKCk9gGd3jsG9EwU34LtOvI7hcLOoyuX2q8AucrPuykEUd2BSI8UO6co Up+w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=V4PyfVXkPy7abFJtvFhdsRRnkg8bvu2tL7QBlVQrfa8=; b=XUUcsYh6dsqDwyg1Wmj5HHDi6i9RYg48HBOkMnLWZxNE+gDPyJ0i+TcXkr2Eom063d O6YIdseSiNPk/U39WMr0dN+zybpO2kykUoc+sqyApy/1axNGMudyYM3rQGW0QxWfM84w 5ND/juDqhyB2A6p8x9n+CshEhdCXfCLm88bTe189Mz/VWnvJkNKRkmGoJbaggbccM3Zi uMp9sRrG8wT3qHGIOvR5fpWlbg1tpPyW2B0vHAQpPzyPcW9fm+ZUWETzbjQT+tXZnlm3 5AtMQ+ifx3Ow/9slyOUyfRoZfsl/eIf5m4MOGd21RFL7nKycjeMn59WxGOB59uyi//Mw 98Hg==
X-Gm-Message-State: AOAM532iT84MDidccZDf9+aS5BGC06dYN/6RBAuC49Llns4FH1MsKf0u nSk0Fom2794BY0sqUhxYtaAu4w==
X-Google-Smtp-Source: ABdhPJzG5WZuINY7Gg6OX5LKng+lQ/syYw26LxlOMSK5OI143W84lvvVBqAKDfiTWXFfxDq2UNDA0g==
X-Received: by 2002:a5d:4b47:: with SMTP id w7mr22150614wrs.234.1591617132089; Mon, 08 Jun 2020 04:52:12 -0700 (PDT)
Received: from [192.168.1.112] (home.heenan.me.uk. [212.159.108.133]) by smtp.gmail.com with ESMTPSA id z9sm21647218wmi.41.2020.06.08.04.52.11 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Mon, 08 Jun 2020 04:52:11 -0700 (PDT)
From: Joseph Heenan <joseph@authlete.com>
Message-Id: <563AD7F9-D4A0-4F99-BAE2-B84F7439A733@authlete.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_8A3017A5-CF88-4333-99FB-6B288AE5F338"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.80.23.2.2\))
Date: Mon, 08 Jun 2020 12:52:10 +0100
In-Reply-To: <ME2PR01MB3011FF24E2C95FF0BDB0287CE5860@ME2PR01MB3011.ausprd01.prod.outlook.com>
Cc: Francis Pouatcha <fpo=40adorsys.de@dmarc.ietf.org>, Openid-specs-fapi <openid-specs-fapi@lists.openid.net>, OAuth WG <oauth@ietf.org>
To: "Manger, James" <James.H.Manger@team.telstra.com>
References: <mailman.1608.1590473008.8861.oauth@ietf.org> <CAOW4vyONovS7SLPnTpoGVoi5T92M7tMDbQ4N4o3hGodQRssqSQ@mail.gmail.com> <CAP-T6TT3yo8NhLOGhk3XmPDJJaR6nccjigGSM=VuauysekhV2g@mail.gmail.com> <CAOW4vyNfwRLuNDXg2fVDPVRov_REKYR+KirgDPUq-AdwW4s+mw@mail.gmail.com> <0CD7A267-59D0-4815-BC24-3A0C80321542@authlete.com> <ME2PR01MB3011FF24E2C95FF0BDB0287CE5860@ME2PR01MB3011.ausprd01.prod.outlook.com>
X-Mailer: Apple Mail (2.3608.80.23.2.2)
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/IZulzQfFNa5UxsXh0F7tWL4nW6c>
Subject: Re: [OAUTH-WG] Issuers, Discovery Docs & Brands
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Jun 2020 11:52:18 -0000

Hi James,


> On 5 Jun 2020, at 03:23, Manger, James <James.H.Manger@team.telstra.com> wrote:
> If you merely want to trigger a different look-n-feel, define a “brand” parameter to add the to the authorization request.

Unfortunately this doesn’t work when the authorization endpoint is a claimed https url for a mobile app: the mobile app to be used is selected purely based on the host/path segment.

Joseph