Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-bearer-08.txt
"MARCON, JEROME (JEROME)" <jerome.marcon@alcatel-lucent.com> Wed, 27 July 2011 14:52 UTC
Return-Path: <jerome.marcon@alcatel-lucent.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0DED321F8B25 for <oauth@ietfa.amsl.com>; Wed, 27 Jul 2011 07:52:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.249
X-Spam-Level:
X-Spam-Status: No, score=-6.249 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_FR=0.35, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Sm4YrOaYYsp9 for <oauth@ietfa.amsl.com>; Wed, 27 Jul 2011 07:52:47 -0700 (PDT)
Received: from smail2.alcatel.fr (smail2.alcatel.fr [62.23.212.57]) by ietfa.amsl.com (Postfix) with ESMTP id 7868321F86BF for <oauth@ietf.org>; Wed, 27 Jul 2011 07:52:43 -0700 (PDT)
Received: from FRMRSSXCHHUB02.dc-m.alcatel-lucent.com (FRMRSSXCHHUB02.dc-m.alcatel-lucent.com [135.120.45.62]) by smail2.alcatel.fr (8.14.3/8.14.3/ICT) with ESMTP id p6REqaK9008322 (version=TLSv1/SSLv3 cipher=RC4-MD5 bits=128 verify=NOT); Wed, 27 Jul 2011 16:52:38 +0200
Received: from FRMRSSXCHMBSA2.dc-m.alcatel-lucent.com ([135.120.45.35]) by FRMRSSXCHHUB02.dc-m.alcatel-lucent.com ([135.120.45.62]) with mapi; Wed, 27 Jul 2011 16:52:36 +0200
From: "MARCON, JEROME (JEROME)" <jerome.marcon@alcatel-lucent.com>
To: Mike Jones <Michael.Jones@microsoft.com>, "oauth@ietf.org" <oauth@ietf.org>
Date: Wed, 27 Jul 2011 16:52:33 +0200
Thread-Topic: [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-bearer-08.txt
Thread-Index: AQHMTGNqEzIftesX/EGmqnwb6WdXfJUALi1AgAAPiUA=
Message-ID: <BFE0F4202603194E8C5A9E5705DFC6C5345B4875D5@FRMRSSXCHMBSA2.dc-m.alcatel-lucent.com>
References: <20110727134508.1155.48861.idtracker@ietfa.amsl.com> <4E1F6AAD24975D4BA5B1680429673943498692EA@TK5EX14MBXC202.redmond.corp.microsoft.com>
In-Reply-To: <4E1F6AAD24975D4BA5B1680429673943498692EA@TK5EX14MBXC202.redmond.corp.microsoft.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: fr-FR, en-US
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Scanned-By: MIMEDefang 2.64 on 155.132.188.80
Subject: Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-bearer-08.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Jul 2011 14:52:48 -0000
Mike, Regarding the allowed characters for scope values (grammar of "scope-v"), is the non-support of percent encoding intentional ? That would preclude scope values to be (every kind of) UTF-8 strings, or URNs, or JSON (short) payload, etc. This character set limitation does not exist in the core spec, wherever scope parameter can be included in a request or response, either because percent encoding is usable, or else because scope parameter is a JSON string. It seems besides strange that the set of characters safe to use for scope values is not defined in the core spec, and instead is constrained by/dependent from the type of access token used (here, bearer token). Note that this question was raised also by the Liaison Statement received from the Open Mobile Alliance. Best regards, Jerome -----Message d'origine----- De : oauth-bounces@ietf.org [mailto:oauth-bounces@ietf.org] De la part de Mike Jones Envoyé : mercredi 27 juillet 2011 15:47 À : oauth@ietf.org Objet : Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-bearer-08.txt Updated references to oauth-v2 and httpbis. -- Mike -----Original Message----- From: oauth-bounces@ietf.org [mailto:oauth-bounces@ietf.org] On Behalf Of internet-drafts@ietf.org Sent: Wednesday, July 27, 2011 6:45 AM To: i-d-announce@ietf.org Cc: oauth@ietf.org Subject: [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-bearer-08.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Web Authorization Protocol Working Group of the IETF. Title : The OAuth 2.0 Protocol: Bearer Tokens Author(s) : Michael B. Jones Dick Hardt David Recordon Filename : draft-ietf-oauth-v2-bearer-08.txt Pages : 17 Date : 2011-07-27 This specification describes how to use bearer tokens when accessing OAuth 2.0 protected resources. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-oauth-v2-bearer-08.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ This Internet-Draft can be retrieved at: ftp://ftp.ietf.org/internet-drafts/draft-ietf-oauth-v2-bearer-08.txt _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
- [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-bearer… internet-drafts
- Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-be… Mike Jones
- Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-be… MARCON, JEROME (JEROME)
- Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-be… Mike Jones