[OAUTH-WG] poll url in draft-ietf-oauth-device-flow-01
Samuel Erdtman <samuel@erdtman.se> Tue, 17 May 2016 04:51 UTC
Return-Path: <samuel@erdtman.se>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3317E12D0B9 for <oauth@ietfa.amsl.com>; Mon, 16 May 2016 21:51:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=erdtman-se.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CgQ-iTDRNwMi for <oauth@ietfa.amsl.com>; Mon, 16 May 2016 21:51:29 -0700 (PDT)
Received: from mail-wm0-x234.google.com (mail-wm0-x234.google.com [IPv6:2a00:1450:400c:c09::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C73BF12D126 for <oauth@ietf.org>; Mon, 16 May 2016 21:51:28 -0700 (PDT)
Received: by mail-wm0-x234.google.com with SMTP id e201so123721200wme.0 for <oauth@ietf.org>; Mon, 16 May 2016 21:51:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=erdtman-se.20150623.gappssmtp.com; s=20150623; h=mime-version:date:message-id:subject:from:to; bh=3aUzJiLFMkVoEkp6zVX9prthAi0wCkdl2zbothPh7rc=; b=1uDJXabhzg4Da8TSmlTE+qKR9bgf0bjTvFwDeQf8joWcMEsnIYpgkNv4trPGoX1I+F BN5UB2amHv40oRMJ7Yfwz4yNorxvSfECI3Ap13n0oNMqDjJzO5lPgWYCnvbyeOviw8ME oBG3Esra9JOZ1MESGWPpbk7x1JGN0kA9xfo/PjczXniAFr8ZbJJIFFgPgKKlDWxJHOjD ulDiaKh85uA+2F8zHzpW6d8NvqqMt0EEfxIqs1ZcPPSSl6vBP41npD4uxGIHSDEx4vt9 H/GulkyLPnsP4baVMLNuEebmMKeLNQTZGeCYAABzbM7+0/+J2CKRGCT0z9JDbPiV+rTV VoiQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:date:message-id:subject:from:to; bh=3aUzJiLFMkVoEkp6zVX9prthAi0wCkdl2zbothPh7rc=; b=eNw7vEqzgrawY52/c3rHPHj/m6Gxy3oF2Mk06HGTsoO1NlhBFj23480w0UQRGc2+qH qZkJAWvFzPcYQcE+tTgo228E5/mI2hxZg6xBY6liyv0253yTPej8REmN+9xNhEiRi/Co zqD62wKIq9ZwIo1yrN5hWcpxuJ7XxBxkHwov2tBJb/8C8km2LBMo0NtEmNJ5WSRZWwpt 688DTD+YdqEwi6wxNN9N5/xYfJfSr7eMrDkp56Q9W3M13X+NOcAk3QAXvl9rVXUNlN5N TD1IC3N7wDud6lCC0trE4rfJWDnpmZWh1eqskAJ2ugh4v5UjurtrSiKftcQ71f9TrTEu 604g==
X-Gm-Message-State: AOPr4FWvnVHOZUym/9DIY2jgensSRUjbpfyanks6POIZsw8je/EJ/XrFT4VFtTStJ8drLuXlD7a0qL9U/2hO5A==
MIME-Version: 1.0
X-Received: by 10.194.114.228 with SMTP id jj4mr33338066wjb.121.1463460686889; Mon, 16 May 2016 21:51:26 -0700 (PDT)
Received: by 10.194.119.163 with HTTP; Mon, 16 May 2016 21:51:26 -0700 (PDT)
Date: Mon, 16 May 2016 21:51:26 -0700
Message-ID: <CAF2hCbYjsz+RVh5_o4RHibQfOO659igAgYAuFsx5aO8snX79-g@mail.gmail.com>
From: Samuel Erdtman <samuel@erdtman.se>
To: "<oauth@ietf.org>" <oauth@ietf.org>, wdenniss@google.com
Content-Type: multipart/alternative; boundary="001a1130caae62a0030533027e4e"
Archived-At: <http://mailarchive.ietf.org/arch/msg/oauth/PBH2MfjeTHQU328ix3XMHh9ZF3Q>
Subject: [OAUTH-WG] poll url in draft-ietf-oauth-device-flow-01
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 May 2016 04:51:31 -0000
Hi, I just manage to take the time to read this document and in general I like it a lot I think it fills a gap and with mapping to CBOR, and CoAP it will work well for more constrained deceive too. There are several details that would be great to address such as IANA section more thorough descriptions of device_code and user_code and It would also be good with more examples e.g. a poll example. The above things one can figure out relatively easy but how and where are poll requests sent. Is it new post requests to the token endpoint with the device_code included; or is it get requests to the token endpoint with the device_code; or is it a completely different endpoint? A solution that I would like is to have a poll url instead of the device_code then the client does not need to know how to construct the poll url form the device_code. Is there a github repo or something similar that I could send pull requests to? Best regards //Samuel
- [OAUTH-WG] poll url in draft-ietf-oauth-device-fl… Samuel Erdtman
- Re: [OAUTH-WG] poll url in draft-ietf-oauth-devic… Alex Bilbie
- Re: [OAUTH-WG] poll url in draft-ietf-oauth-devic… Mike Jones