[OAUTH-WG] Francesca Palombini's Discuss on draft-ietf-oauth-iss-auth-resp-03: (with DISCUSS)

Francesca Palombini via Datatracker <noreply@ietf.org> Mon, 29 November 2021 21:21 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: oauth@ietf.org
Delivered-To: oauth@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id D6F2E3A09E1; Mon, 29 Nov 2021 13:21:28 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Francesca Palombini via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-oauth-iss-auth-resp@ietf.org, oauth-chairs@ietf.org, oauth@ietf.org, rifaat.s.ietf@gmail.com, rifaat.s.ietf@gmail.com
X-Test-IDTracker: no
X-IETF-IDTracker: 7.40.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Francesca Palombini <francesca.palombini@ericsson.com>
Message-ID: <163822088838.18976.10538179060671617456@ietfa.amsl.com>
Date: Mon, 29 Nov 2021 13:21:28 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/QIYTI2fMczNUwEMmA0ssKiUotSw>
Subject: [OAUTH-WG] Francesca Palombini's Discuss on draft-ietf-oauth-iss-auth-resp-03: (with DISCUSS)
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Nov 2021 21:21:29 -0000

Francesca Palombini has entered the following ballot position for
draft-ietf-oauth-iss-auth-resp-03: Discuss

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)

Please refer to https://www.ietf.org/blog/handling-iesg-ballot-positions/
for more information about how to handle DISCUSS and COMMENT positions.

The document, along with other ballot positions, can be found here:


Thank you for the work on this document.

Many thanks to Julian Reschke for the ART ART review:

I have one DISCUSS point that has to do with IANA considerations, and is
hopefully easy to resolve.


1. -----

FP: I am sure the Designated Expert will bring this up, but "iss" is already
defined as a OAuth Parameter, for authorization requests. I don't think it's a
good idea to use the same parameter name, although in a different message of
the exchange, for something different, as the registration defined in Section
5.2 seems to imply. I strongly recommend to change the name in this document.
Or, if we can agree that the meaning is similar enough to the original "iss",
merge the two IANA registrations (this would not be my preferred choice).