Re: [OAUTH-WG] Fwd: New Version Notification for draft-sakimura-oauth-meta-07.txt

Anthony Nadalin <> Wed, 24 February 2016 21:07 UTC

Return-Path: <>
Received: from localhost ( []) by (Postfix) with ESMTP id 7AE151AD0CB for <>; Wed, 24 Feb 2016 13:07:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: 1.11
X-Spam-Level: *
X-Spam-Status: No, score=1.11 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URI_HEX=1.122] autolearn=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id qpVJmsm2lVjW for <>; Wed, 24 Feb 2016 13:07:19 -0800 (PST)
Received: from ( [IPv6:2a01:111:f400:fc10::782]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 2CC651B2E3F for <>; Wed, 24 Feb 2016 13:07:07 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=selector1; h=From:To:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=E3w2SXER3kpk2TGOXeNip2TxB/+vDBuzQaSrgqdHtxs=; b=NYxMrCzSIS9E8EvDijAe0V2VI2WSxxTF/8yKM34skhykVvSmT0U1dCsVDFtY/3ZMrCP+Bd4ROrZk1fwb7+0vOSmqpAtnB076GZWVnIjfDDaDAIp2ouekmSsodwCXH3P3GJQW4nVxaUeVyAlJ8FukOkh9ohtf8ANRzsutKwA5oAM=
Received: from ( by ( with Microsoft SMTP Server (TLS) id 15.1.409.15; Wed, 24 Feb 2016 21:06:47 +0000
Received: from ([]) by ([]) with mapi id 15.01.0409.024; Wed, 24 Feb 2016 21:06:47 +0000
From: Anthony Nadalin <>
To: Nat Sakimura <>, oauth <>
Thread-Topic: [OAUTH-WG] Fwd: New Version Notification for draft-sakimura-oauth-meta-07.txt
Thread-Index: AQHRaR3f/VIinordjU6jdyp1yk7I6J87u85A
Date: Wed, 24 Feb 2016 21:06:47 +0000
Message-ID: <>
References: <> <> <> <>
In-Reply-To: <>
Accept-Language: en-US
Content-Language: en-US
authentication-results:; dkim=none (message not signed) header.d=none;; dmarc=none action=none;
x-originating-ip: [2001:4898:80e8::48a]
x-ms-office365-filtering-correlation-id: ef13e949-fff8-418d-e2f6-08d33d5e6860
x-microsoft-exchange-diagnostics: 1; BN3PR0301MB1233; 5:V2/ArRsiLT0Og+/przcdJJv6//20QCmwOCeA6nfoMNGuTwmmuhINtqHKBBAg5e0pWxG1xZisjFYRI6rmMwGRhEgMLIV8xRkUOeB5RmJPzEklPndea5GLlyj3P6qbI4ObolfjwZyLJ/vUG81uNud4dQ==; 24:qdBmndrKz+7ccI932gPNelwzt46NYHTs0mujk91rFqf9u7XX5IJcmCXJlskZkZG7m1tRveqOSI1nUtMuxnzM5e7P3ELkzfYO3huoBQcjDT4=
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BN3PR0301MB1233;
x-microsoft-antispam-prvs: <>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(61425038)(601004)(2401047)(5005006)(8121501046)(3002001)(10201501046)(61426038)(61427038); SRVR:BN3PR0301MB1233; BCL:0; PCL:0; RULEID:; SRVR:BN3PR0301MB1233;
x-forefront-prvs: 08626BE3A5
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(377424004)(2473001)(377454003)(102836003)(87936001)(107886002)(11100500001)(19300405004)(54356999)(76176999)(106116001)(189998001)(5001960100002)(93886004)(76576001)(5004730100002)(50986999)(15650500001)(5003600100002)(5008740100001)(230783001)(5002640100001)(40100003)(2420400007)(10710500007)(586003)(1220700001)(1096002)(2906002)(3660700001)(790700001)(6116002)(74316001)(86612001)(99286002)(2900100001)(3280700002)(19625215002)(15975445007)(7110500001)(92566002)(19617315012)(19609705001)(2950100001)(10400500002)(16236675004)(5001770100001)(561944003)(8990500004)(10290500002)(33656002)(122556002)(86362001)(77096005)(19580395003)(10090500001)(19580405001)(5005710100001)(42262002); DIR:OUT; SFP:1102; SCL:1; SRVR:BN3PR0301MB1233;; FPR:; SPF:None; MLV:sfv; LANG:en;
spamdiagnosticoutput: 1:23
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_BN3PR0301MB12342587C29BBCB3E708DB4EA6A50BN3PR0301MB1234_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Feb 2016 21:06:47.4428 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN3PR0301MB1233
Archived-At: <>
Subject: Re: [OAUTH-WG] Fwd: New Version Notification for draft-sakimura-oauth-meta-07.txt
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 24 Feb 2016 21:07:21 -0000

So as I understand it in the Link Relations repository are XML documents that one has to create, are you suggesting as part of this effort is to rewrite all that in JSON and make a proposal for that also ?

From: Nat Sakimura []
Sent: Tuesday, February 16, 2016 4:55 PM
To: Anthony Nadalin <>; oauth <>
Subject: Re: [OAUTH-WG] Fwd: New Version Notification for draft-sakimura-oauth-meta-07.txt

Link relation is not at all XML. It is a step forward to RESTfulness.
In the older version of the draft, I was using JSONized version of it as well, but I splitted it out for the sake of brevity.
It is all about dynamic metadata about the response.
Once we do it with RFC5988, we could easily create a parallel to it with JSON meta object of your flavour.
(Currently, JSON schema seems to be in fashion, though I personally prefer HAL.)
Good things about using JSONized version is that it will be usable outside the HTTP and the fact that it can be stored in a single JSON object together with the data.
Bad thing about it is that we have to start from the syntax for it, which we can avoid by using RFC5988.
If people want the JSON version of this, I could do it as well.
However, since we are processing HTTP response headers anyways, there is not much compelling reason for that as long as we stick with HTTP.
That's why I am just sticking with RFC5988.


2016年2月17日(水) 8:50 Anthony Nadalin <<>>:
I really think that this is a step backwards relative to technology and what the developers would accept. The Link Relations takes us back to the XML days, I thought we have all moved on from that and at least trying to move Oauth to JSON. I think if this were adopted we might be splitting the developers into folks that are already going down the current JSON path with Oauth and those that want to go back to XML.

This just seems a very odd draft to adopt this technology.

From: OAuth [<>] On Behalf Of Nat Sakimura
Sent: Monday, February 15, 2016 3:59 PM
To: oauth <<>>
Subject: [OAUTH-WG] Fwd: New Version Notification for draft-sakimura-oauth-meta-07.txt

It now shows how to return multiple endpoints in web linking.
Also, added Resource Endpoint response header.



---------- Forwarded message ---------
From: <<>>
Date: 2016年2月12日(金) 18:40
Subject: New Version Notification for draft-sakimura-oauth-meta-07.txt
To: Nov Matake <<>>, Nat Sakimura <<>>, Sascha Preibisch <<>>, Sascha Preibisch <<>>

A new version of I-D, draft-sakimura-oauth-meta-07.txt
has been successfully submitted by Nat Sakimura and posted to the
IETF repository.

Name:           draft-sakimura-oauth-meta
Revision:       07
Title:          OAuth Response Metadata
Document date:  2016-02-12
Group:          Individual Submission
Pages:          10
URL:  <>
Diff: <>

   This specification defines an extensible metadata that may be
   inserted into the OAuth 2.0 responses to assist the clients to
   process those responses.  It is expressed either as a link header, or
   query parameters.  It will allow the client to learn where the
   members in the response could be used, what is the characteristics of
   the payload is, how it should be processed, and so on.  Since they
   are just additional response header/query parameters, any client that
   does not understand this extension should not break and work normally
   while supporting clients can utilize the metadata to take the
   advantage of the extension.

Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at<>.

The IETF Secretariat