Re: [OAUTH-WG] Proposed OAuth Core -28
Julian Reschke <julian.reschke@gmx.de> Tue, 19 June 2012 06:17 UTC
Return-Path: <julian.reschke@gmx.de>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7181211E8083 for <oauth@ietfa.amsl.com>; Mon, 18 Jun 2012 23:17:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -105.466
X-Spam-Level:
X-Spam-Status: No, score=-105.466 tagged_above=-999 required=5 tests=[AWL=-2.867, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7GjOhYmQX4Qv for <oauth@ietfa.amsl.com>; Mon, 18 Jun 2012 23:17:44 -0700 (PDT)
Received: from mailout-de.gmx.net (mailout-de.gmx.net [213.165.64.22]) by ietfa.amsl.com (Postfix) with SMTP id 5070811E8073 for <oauth@ietf.org>; Mon, 18 Jun 2012 23:17:44 -0700 (PDT)
Received: (qmail invoked by alias); 19 Jun 2012 06:17:42 -0000
Received: from p5DD95DFC.dip.t-dialin.net (EHLO [192.168.178.36]) [93.217.93.252] by mail.gmx.net (mp024) with SMTP; 19 Jun 2012 08:17:42 +0200
X-Authenticated: #1915285
X-Provags-ID: V01U2FsdGVkX1+itVNdnZuiKXYSlj0sA7GTXTtCn+cC7y6TEbeVVu oVlZrpGqtIxcdY
Message-ID: <4FE01984.50603@gmx.de>
Date: Tue, 19 Jun 2012 08:17:40 +0200
From: Julian Reschke <julian.reschke@gmx.de>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:13.0) Gecko/20120614 Thunderbird/13.0.1
MIME-Version: 1.0
To: Mike Jones <Michael.Jones@microsoft.com>
References: <4E1F6AAD24975D4BA5B16804296739436655A85E@TK5EX14MBXC283.redmond.corp.microsoft.com>
In-Reply-To: <4E1F6AAD24975D4BA5B16804296739436655A85E@TK5EX14MBXC283.redmond.corp.microsoft.com>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 8bit
X-Y-GMX-Trusted: 0
Cc: "oauth@ietf.org" <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Proposed OAuth Core -28
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Jun 2012 06:17:45 -0000
On 2012-06-19 02:03, Mike Jones wrote: > In cooperation with the chairs and Eran, I’ve produced the attached > proposed OAuth Core -28 version. It updates the ABNF in the manner > discussed by the working group, allowing username and password to be > Unicode and restricting client_id and client_secret to ASCII. It > specifies the use of the application/x-www-form-urlencoded content-type > encoding method to encode the client_id when used as the password for > HTTP Basic. A few minor grammar errors encountered were also > corrected. Normative changes are in sections 2.3.1, A.1, A.2, A.15, and > A.16. Unless I hear objections, I’ll use the publication tool to post > this as -28 at close of business tomorrow, with Eran being the one to > give approval in the tool for publication. I note that the ABNF is still unchanged with respect to the confusion about octets vs characters. You can't silently mix both. If the ABNF defines character sequences, you should say that upfront, and then need to specify how to map to octet sequences on the wire. If it's a mix, you need to mark the special cases. Again, an example for a spec doing this here: <http://greenbytes.de/tech/webdav/rfc5323.html#rfc.section.5.15.1> Best regards, Julian
- [OAUTH-WG] Proposed OAuth Core -28 Mike Jones
- Re: [OAUTH-WG] Proposed OAuth Core -28 Julian Reschke