Re: [OAUTH-WG] Do we have any public implementations of OAuth 2.0 MAC Token Profile..?

Prabath Siriwardena <prabath@wso2.com> Sun, 30 March 2014 16:46 UTC

Return-Path: <prabath@wso2.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EEA2F1A089D for <oauth@ietfa.amsl.com>; Sun, 30 Mar 2014 09:46:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.379
X-Spam-Level:
X-Spam-Status: No, score=-1.379 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id paC88dqh2b9F for <oauth@ietfa.amsl.com>; Sun, 30 Mar 2014 09:46:38 -0700 (PDT)
Received: from mail-oa0-x22a.google.com (mail-oa0-x22a.google.com [IPv6:2607:f8b0:4003:c02::22a]) by ietfa.amsl.com (Postfix) with ESMTP id 55CA61A06EA for <oauth@ietf.org>; Sun, 30 Mar 2014 09:46:38 -0700 (PDT)
Received: by mail-oa0-f42.google.com with SMTP id i4so8267190oah.15 for <oauth@ietf.org>; Sun, 30 Mar 2014 09:46:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=wso2.com; s=google; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=jvTxt4YD0Mz3r04/WMEAWEMW+KSckyKBagD1ddRMGD4=; b=NIiENWGgBxKBKd9i/r1Uy2d2gE9OS5ODoj7XHO/BoAoaeYkKC04BU9G7jZLG337btx WHq6HAZZ8doyeWpR8T9ARaRSNKjshA9jk/eyFtPhhHOc7NdH0egfHO2zMnsYYSnTAx2D 0rWUpeThc0CSkWkXtYK0eBA9dlQEcSmUz/OxE=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=jvTxt4YD0Mz3r04/WMEAWEMW+KSckyKBagD1ddRMGD4=; b=iUX4yQnZmzRyRe7H0j5EmmNJ0RTv3mrdEQzizyAIVc6PJbBh+3E9aIhn7OaGXuXBtx AJFoMpEqCXyxw6XyxUTw54XPHTR2kHLm7Btfw7br9ZLoIWt6cAzRdjCbNRtO0qVgLdR4 FNy0YZTp/sI+uiTk3efveu+1unpdi/k88EYEkV1OyTtKZoqad3yWS/vsguMv4SPOaPPj 44WsSas2dV/p+ySpX7T+CCgBXCmmH9aXAjMxZvfMuLaXMR/efAqUsL8owgFW5Lv+mBIk 8uhu81M34XphKQBVLp7FsuVa9KqZ7l7ChBIAILwdWqE+BF4P/Oi0nzdgNVp2gQ8aVh5E JQBQ==
X-Gm-Message-State: ALoCoQkRt5KKGkIszQePjbi6dRCBfinZJod0f5o0SJftbikn768RI/inItjWECAzLUd6D7EvKM1Q
MIME-Version: 1.0
X-Received: by 10.60.115.68 with SMTP id jm4mr1368740oeb.45.1396197995205; Sun, 30 Mar 2014 09:46:35 -0700 (PDT)
Received: by 10.60.54.99 with HTTP; Sun, 30 Mar 2014 09:46:35 -0700 (PDT)
In-Reply-To: <53383308.7040306@gmx.net>
References: <CAJV9qO8NGmiXv3VuSzhamY+3qbPSXeM=8E1Wh7MV+6ptE+7fFQ@mail.gmail.com> <53383308.7040306@gmx.net>
Date: Sun, 30 Mar 2014 22:16:35 +0530
Message-ID: <CAJV9qO8H5UjgfiWpK80AwnQHW=W2Bk_Nb3LLqNVqU39SXuHB7w@mail.gmail.com>
From: Prabath Siriwardena <prabath@wso2.com>
To: Hannes Tschofenig <hannes.tschofenig@gmx.net>
Content-Type: text/plain; charset=ISO-8859-1
Archived-At: http://mailarchive.ietf.org/arch/msg/oauth/T_UlgONunMCDeotzRGIM6DL027M
Cc: "oauth@ietf.org WG" <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Do we have any public implementations of OAuth 2.0 MAC Token Profile..?
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 30 Mar 2014 16:46:40 -0000

Thanks Hannes..

I was looking for a public API secured with MAC token profile to do a
demo in one of my presentations.. I hardly ever found one...

Thanks & regards,
-Prabath

On Sun, Mar 30, 2014 at 8:36 PM, Hannes Tschofenig
<hannes.tschofenig@gmx.net> wrote:
> Hi Prabath,
>
> I remember that someone mentioned that he had implemented that version
> of the document. Unfortunately, I cannot point you to the code from the
> top of my head.
>
> The main reason for my response is, however, different. At the last IETF
> meeting I presented a proposal for moving this "better-than-bearer
> token" work forward and there will be changes to what is currently in
> this document.
>
> So, I would encourage you to wait a few weeks and you will the updated
> version of the document.
>
> Ciao
> Hannes
>
>
> On 03/28/2014 01:10 AM, Prabath Siriwardena wrote:
>> Do we have any public implementations of OAuth 2.0 MAC Token Profile..?
>>
>> [1]: http://tools.ietf.org/html/draft-ietf-oauth-v2-http-mac-05
>>
>>
>> Thanks & Regards,
>> Prabath
>>
>> Twitter : @prabath
>> LinkedIn : http://www.linkedin.com/in/prabathsiriwardena
>>
>> Mobile : +94 71 809 6732
>>
>> http://blog.facilelogin.com
>> http://blog.api-security.org
>>
>> _______________________________________________
>> OAuth mailing list
>> OAuth@ietf.org
>> https://www.ietf.org/mailman/listinfo/oauth
>>
>



-- 
Thanks & Regards,
Prabath

Twitter : @prabath
LinkedIn : http://www.linkedin.com/in/prabathsiriwardena

Mobile : +94 71 809 6732

http://blog.facilelogin.com
http://blog.api-security.org