Re: [OAUTH-WG] FYI per a request on the last conference call, this is a method for making client registration stateless.
Phil Hunt <phil.hunt@oracle.com> Mon, 21 October 2013 17:21 UTC
Return-Path: <phil.hunt@oracle.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B57F511E8201 for <oauth@ietfa.amsl.com>; Mon, 21 Oct 2013 10:21:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.226
X-Spam-Level:
X-Spam-Status: No, score=-6.226 tagged_above=-999 required=5 tests=[AWL=0.372, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CgJ6FRziuK+1 for <oauth@ietfa.amsl.com>; Mon, 21 Oct 2013 10:21:33 -0700 (PDT)
Received: from aserp1040.oracle.com (aserp1040.oracle.com [141.146.126.69]) by ietfa.amsl.com (Postfix) with ESMTP id D1AA711E827E for <oauth@ietf.org>; Mon, 21 Oct 2013 10:21:27 -0700 (PDT)
Received: from acsinet22.oracle.com (acsinet22.oracle.com [141.146.126.238]) by aserp1040.oracle.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.1) with ESMTP id r9LHLPGo023911 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Mon, 21 Oct 2013 17:21:26 GMT
Received: from aserz7021.oracle.com (aserz7021.oracle.com [141.146.126.230]) by acsinet22.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id r9LHLO6U016442 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 21 Oct 2013 17:21:24 GMT
Received: from abhmt120.oracle.com (abhmt120.oracle.com [141.146.116.72]) by aserz7021.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id r9LHLOtI019050; Mon, 21 Oct 2013 17:21:24 GMT
Received: from [192.168.1.12] (/24.86.29.34) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Mon, 21 Oct 2013 10:21:23 -0700
Content-Type: multipart/alternative; boundary="Apple-Mail=_B9F8B899-D0D4-4480-B716-B599B307E6E9"
Mime-Version: 1.0 (Mac OS X Mail 6.6 \(1510\))
From: Phil Hunt <phil.hunt@oracle.com>
In-Reply-To: <E2658D78-4EF8-433F-B007-15457EE353C4@ve7jtb.com>
Date: Mon, 21 Oct 2013 10:21:29 -0700
Message-Id: <BBFA9BB8-5FE1-45CD-9BF7-422D80A5412A@oracle.com>
References: <E2658D78-4EF8-433F-B007-15457EE353C4@ve7jtb.com>
To: John Bradley <ve7jtb@ve7jtb.com>
X-Mailer: Apple Mail (2.1510)
X-Source-IP: acsinet22.oracle.com [141.146.126.238]
Cc: oauth list <oauth@ietf.org>
Subject: Re: [OAUTH-WG] FYI per a request on the last conference call, this is a method for making client registration stateless.
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Oct 2013 17:21:38 -0000
I am assuming that this draft fits with the dyn reg draft. It makes the assumption that every single client is somehow potentially different in terms of registration. This draft encodes the registration values in the JWT so that stateless registration can be achieved. Dynamic registration takes a different view from client association, in that dynamic registration has no notion of fixed client software releases that are deployed many times. As such there is no fixed registration profile. Every client is potentially different. In contrast Client Association + Software statements, clients are identified as a particular software and are fixed. Have I read this correctly? From a policy perspective, how would a service provider handle registration of clients that are all potentially different? Why would individual clients need to differ in registration (other than in the tokens negotiated with a particular deployment SP)? Phil @independentid www.independentid.com phil.hunt@oracle.com On 2013-10-14, at 5:01 PM, John Bradley <ve7jtb@ve7jtb.com> wrote: > A new version of I-D, draft-bradley-stateless-oauth-client-00.txt > has been successfully submitted by John Bradley and posted to the > IETF repository. > > Filename: draft-bradley-stateless-oauth-client > Revision: 00 > Title: Stateless Client Identifier for OAuth 2 > Creation date: 2013-10-15 > Group: Individual Submission > Number of pages: 4 > URL: http://www.ietf.org/internet-drafts/draft-bradley-stateless-oauth-client-00.txt > Status: http://datatracker.ietf.org/doc/draft-bradley-stateless-oauth-client > Htmlized: http://tools.ietf.org/html/draft-bradley-stateless-oauth-client-00 > > > Abstract: > This draft provides a method for communicating information about an > OAuth client through its client identifier allowing for fully > stateless operation. > > > > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth
- [OAUTH-WG] FYI per a request on the last conferen… John Bradley
- Re: [OAUTH-WG] FYI per a request on the last conf… Pedro Felix
- Re: [OAUTH-WG] FYI per a request on the last conf… John Bradley
- Re: [OAUTH-WG] FYI per a request on the last conf… Vladimir Dzhuvinov / NimbusDS
- Re: [OAUTH-WG] FYI per a request on the last conf… Richer, Justin P.
- Re: [OAUTH-WG] FYI per a request on the last conf… Phil Hunt
- Re: [OAUTH-WG] FYI per a request on the last conf… Mike Jones
- Re: [OAUTH-WG] FYI per a request on the last conf… Phil Hunt
- Re: [OAUTH-WG] FYI per a request on the last conf… Richer, Justin P.
- Re: [OAUTH-WG] FYI per a request on the last conf… Anthony Nadalin