[OAUTH-WG] Access token response in application/jwt format
Sergey Beryozkin <sberyozkin@gmail.com> Mon, 01 December 2014 11:09 UTC
Return-Path: <sberyozkin@gmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AA74D1A1B3F for <oauth@ietfa.amsl.com>; Mon, 1 Dec 2014 03:09:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6CirVoeU8JAK for <oauth@ietfa.amsl.com>; Mon, 1 Dec 2014 03:09:28 -0800 (PST)
Received: from mail-wg0-x236.google.com (mail-wg0-x236.google.com [IPv6:2a00:1450:400c:c00::236]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 178971A1B37 for <oauth@ietf.org>; Mon, 1 Dec 2014 03:09:24 -0800 (PST)
Received: by mail-wg0-f54.google.com with SMTP id l2so13849342wgh.27 for <oauth@ietf.org>; Mon, 01 Dec 2014 03:09:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=N7d0twz4NMpgHHLAm4o5MQBu9sGWjZqm66CFIO7Dodw=; b=FIa+rNRZbvnVWX2SaYS3sOsPkYDNRkgvu/2Oo4rc1qvAnNshBqXeLFkQB9X28667TK dNbsbmRXJZcV8Ed6PQ8ZmBCU2bxWcMsNlEGlU3abTTk+7/okGFC1t16OxjzVgq29ze8V i7oFaDZQ3Em+1o6hX+B6fvIbJb8D5KfdGOG8SJu9RLxNM35nB8gYwVhzlltpDZ42I2oc KtsVShi7CDyJRw7Qraa+QXDfbN/99Ud9jPbAHwUP86tCZshE/SO8xw5HhSj8tUotjphy YZwggjZhbg17axN3d+7llBLexW/rCyJc8qlUqpZZs2eC2cw5k3aAFma3iSAqNHA4OPsz sopw==
X-Received: by 10.194.2.164 with SMTP id 4mr25280647wjv.55.1417432162711; Mon, 01 Dec 2014 03:09:22 -0800 (PST)
Received: from [10.36.226.2] ([80.169.137.63]) by mx.google.com with ESMTPSA id gf6sm14306186wjc.11.2014.12.01.03.09.21 for <oauth@ietf.org> (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 01 Dec 2014 03:09:21 -0800 (PST)
Message-ID: <547C4C60.50008@gmail.com>
Date: Mon, 01 Dec 2014 11:09:20 +0000
From: Sergey Beryozkin <sberyozkin@gmail.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.2.0
MIME-Version: 1.0
To: oauth@ietf.org
References: <20141201024133.16302.20230.idtracker@ietfa.amsl.com> <547C495F.1010402@gmail.com>
In-Reply-To: <547C495F.1010402@gmail.com>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/oauth/MWjPUnRpo7jWbMumnP6KMmUr370
Subject: [OAUTH-WG] Access token response in application/jwt format
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Dec 2014 11:09:35 -0000
Hi OIDC UserInfo endpoint supports returning UserInfo directly in JSON or JWS and/or JWE encoded. It is not only useful for OIDC RP clients but also allows for supporting a proper HTTP content negotiation, example, the implementation of OIDC UserInfo endpoint has a better choice of where an optional JWE/JWS encoding can be done, directly in the code or via the filters reacting to HTTP Accept. IMHO it would be good to get it supported directly in OAuth2 token responses too. Among other thing it would also help with making the whole JOSE effort more popular. Just an idea, I do not expect any action from the group, but hopefully it will be reviewed over time Sergey
- [OAUTH-WG] I-D Action: draft-ietf-oauth-introspec… internet-drafts
- Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-intro… Sergey Beryozkin
- Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-intro… Sergey Beryozkin
- [OAUTH-WG] Access token response in application/j… Sergey Beryozkin
- Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-intro… Justin Richer