IETF Logo Mail Archive

[OAUTH-WG] Weekly github digest (OAuth Activity Summary)

Repository Activity Summary Bot <do_not_reply@mnot.net> Sun, 05 April 2026 08:07 UTC

Return-Path: <do_not_reply@mnot.net>
X-Original-To: oauth@mail2.ietf.org
Delivered-To: oauth@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 64A9BD69BD71 for <oauth@mail2.ietf.org>; Sun, 5 Apr 2026 01:07:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1775376427; bh=kaqtFmZWTlQr0CIxcjebhGAHj8ZYflc/tPd4Y+c/muo=; h=From:To:Subject:Date; b=E6rC7+5CMNP0l7zZkISyvtKBFy5x1XoikrK73vBTk2IkZGlC+Q95Z/KHFncsEEIx+ +t4c2Y0EdWYouYTS7RLetgSKLWOCNYcVbXU3ZpDY8djA27dkcQpK19yJIkaqzo15NI gFUnLt7K0maHRU2TLJz6wYaAdg9SUpDZvheIMhZ0=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.397
X-Spam-Level:
X-Spam-Status: No, score=-2.397 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, HTML_MESSAGE=0.001, MSGID_FROM_MTA_HEADER=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=mnot.net header.b="GNb2bjD7"; dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=messagingengine.com header.b="ZdhZlvaa"
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ar3wgnOBW6Jq for <oauth@mail2.ietf.org>; Sun, 5 Apr 2026 01:07:06 -0700 (PDT)
Received: from fout-a4-smtp.messagingengine.com (fout-a4-smtp.messagingengine.com [103.168.172.147]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256)) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id E5A84D69AFA1 for <oauth@ietf.org>; Sun, 5 Apr 2026 01:06:16 -0700 (PDT)
Received: from phl-compute-05.internal (phl-compute-05.internal [10.202.2.45]) by mailfout.phl.internal (Postfix) with ESMTP id CFCF7EC00AA for <oauth@ietf.org>; Sun, 5 Apr 2026 04:06:16 -0400 (EDT)
Received: from phl-frontend-04 ([10.202.2.163]) by phl-compute-05.internal (MEProxy); Sun, 05 Apr 2026 04:06:16 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h=cc :content-type:content-type:date:from:from:in-reply-to:message-id :mime-version:reply-to:subject:subject:to:to; s=fm3; t= 1775376376; x=1775462776; bh=lMkiPmmCEnbpILCbYWXiavUUe29MYFD6m0z 4llstgpk=; b=GNb2bjD7Ksa5BxDYoGzi8p0M7WQEZsPa7X4p8st76AVuqAratiK fA4jWybx0fyyeogWyWyycKjH5Tkkx0UfOIGpIwdz7PKkfEwqr3YOYGRQ9cAE70h0 AZJVziWIXDBT/DRTD4qQSScUcpJtjTEJBg2AxyjEoVsFKxE5aGlc9fslsBMnVa3y ubdXZ01aAv2JvZGirJfGslq5tQn6bkwRGJzgptPJEkZY6ePibcMH764GBBNOypVm crxnYN4pV/NxUjBU+fK/e7Nhaj7xiN/CBeuirMBsRMQ0O3q5VeaZ2VbtUmsanLKI Hn8uLsBgC5L8wquBPeoJ+BbaltVMFra1t9g==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:content-type:date :feedback-id:feedback-id:from:from:in-reply-to:message-id :mime-version:reply-to:subject:subject:to:to:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm2; t=1775376376; x= 1775462776; bh=lMkiPmmCEnbpILCbYWXiavUUe29MYFD6m0z4llstgpk=; b=Z dhZlvaah6dhmlsL9CKeSTm/Kv3MWeZP6OMKfzUvEzxHZvunXV3Mzkuv2PQ6s8iYg aJdbHnQP6wv9EWTHMUYVCnVX6kVd0auEO6OSTSWwSdP9LEEJrO+dSEra9LBuNkIk jqW1bP9+FK2uxkynQX7nwbwuZlTTNIDa2+iHZtX/vlX7x20Y8zSSnZqDZ5Inhwy7 x+a63ZnFIyb0Qbjw3xwK57HaF7G6+6mRz3e8wtV+CjMxuj+8rdZ+KdYCVda2KPeB NjiXZZNC5fi0iLOD2XrNDu3fJNCunAh/zBQ+6nK+YeOyS/xW5a3WgiLWs7vVek70 86es+piY/ue2LDNtmDbxw==
X-ME-Sender: <xms:-BfSaeGzV-DjFt2G_fPRpgNhWbU9OysjxurpZjnt-oi6IV7rFQTgVA> <xme:-BfSaVNO_bQLBXUF0yeJMdFkBMXi1cPv10MNPLXh-nW7zvZKzDOU1l5BfAB7k9sz7 SQHXA9Csip3VrRO-M6JTew59pI8sPgUUsAdYVV9mi5z33-eCUS_xA>
X-ME-Received: <xmr:-BfSaTO4bdtsX5R0ZJq2wel2RZTolHw-gIhtdz1jxBm4pyHaX5xss_dSiwXUyVICTxnevz2CGGYHDTO6lJ-8axCLhbxT1z2vTcux85hesazZxAwD-rE_vFk9jd9oT9ix4KWwUw>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeefhedrtddtgddugedvfecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpuffrtefokffrpgfnqfghnecuuegr ihhlohhuthemuceftddtnecupfhoucgurghtvgcufhhivghlugculdegledmnecujfgurh eptggghffvufesrgdttdertddtjeenucfhrhhomheptfgvphhoshhithhorhihucettght ihhvihhthicuufhumhhmrghrhicuuehothcuoeguohgpnhhothgprhgvphhlhiesmhhnoh htrdhnvghtqeenucggtffrrghtthgvrhhnpeekfedvudetjedvfeekheeiveeugfefhfet teevgeffkefffeetffdvleehudeiteenucffohhmrghinhepghhithhhuhgsrdgtohhmne cuvehluhhsthgvrhfuihiivgepudenucfrrghrrghmpehmrghilhhfrhhomhepughopghn ohhtpghrvghplhihsehmnhhothdrnhgvthdpnhgspghrtghpthhtohepuddpmhhouggvpe hsmhhtphhouhhtpdhrtghpthhtohepohgruhhthhesihgvthhfrdhorhhg
X-ME-Proxy: <xmx:-BfSaU5U2bBiUyEUoCXK9MOZxbWIECBjVD3Q25uZy7phbW7ywY2S4w> <xmx:-BfSaX5kUWbCzxNsY_fJTCoyV0k5ppiAKwOpTzZvppVsnDU0UHJQ1g> <xmx:-BfSac1-jgFzbofSe-v9o_Cht__JItNXH0RKe1nH1cFuuAnOnrMuoA> <xmx:-BfSabUgufvMNHgi0VMY4TOIcv0rrn6cWVREbek8k4V3S6JHoeQ_1g> <xmx:-BfSabOG1AM5PYEh-pjAEInri7VOsfDlTNqDKUSewWKCoxgdJcrOxnin>
Feedback-ID: i1c3946f2:Fastmail
Message-Id: <1775376376.1272158.020BD6B0@outbound.messagingengine.com>
Received: by mail.messagingengine.com (Postfix) with ESMTPA for <oauth@ietf.org>; Sun, 5 Apr 2026 04:06:16 -0400 (EDT)
Content-Type: multipart/alternative; boundary="===============4529924368451996726=="
MIME-Version: 1.0
From: Repository Activity Summary Bot <do_not_reply@mnot.net>
To: oauth@ietf.org
Date: Sun, 05 Apr 2026 01:06:16 -0700
Message-ID-Hash: LMKMWMSKSNCJUBKW7YPZJZQS5XN4VNJ7
X-Message-ID-Hash: LMKMWMSKSNCJUBKW7YPZJZQS5XN4VNJ7
X-MailFrom: do_not_reply@mnot.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [OAUTH-WG] Weekly github digest (OAuth Activity Summary)
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/U9GmNXmv3SR-6IoqC6vpFeNTT44>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>



Events without label "editorial"

Issues
------
* oauth-wg/draft-ietf-oauth-attestation-based-client-auth (+0/-0/πŸ’¬1)
  1 issues received 1 new comments:
  - #168 Integrity protecting HTTP requests using DPoP and Client Attestations (1 by TakahikoKawasaki)
    https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/168 [discuss] 

* oauth-wg/oauth-identity-assertion-authz-grant (+1/-0/πŸ’¬1)
  1 issues created:
  - Adding Optional `actor_token` to ID-JAG for Explicit Actor Modeling (by mcguinness)
    https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/80 

  1 issues received 1 new comments:
  - #73 Proposal: Workload/Agent Identity SSO and Explicit Delegated β€œOn-Behalf-Of” Access (1 by mcguinness)
    https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/73 

* oauth-wg/draft-ietf-oauth-client-id-metadata-document (+1/-0/πŸ’¬2)
  1 issues created:
  - Are SSRF checks when AS is running on loopback needed for URLs *within* CIMDs? (by josephdecock)
    https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/issues/73 

  2 issues received 2 new comments:
  - #73 Are SSRF checks when AS is running on loopback needed for URLs *within* CIMDs? (1 by ThisIsMissEm)
    https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/issues/73 
  - #30 Client metadata retrieval can be abused to make server issued requests (1 by josephdecock)
    https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/issues/30 [ietf-125] 



Pull requests
-------------
* oauth-wg/oauth-identity-assertion-authz-grant (+1/-0/πŸ’¬1)
  1 pull requests submitted:
  -  (by mcguinness)
     

  1 pull requests received 1 new comments:
  - #79 Add support for "authorization_grant_profiles_supported" (1 by mcguinness)
    https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/pull/79 

* oauth-wg/draft-ietf-oauth-client-id-metadata-document (+1/-0/πŸ’¬0)
  1 pull requests submitted:
  -  (by josephdecock)
     


Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
* https://github.com/oauth-wg/draft-ietf-oauth-status-list
* https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth
* https://github.com/oauth-wg/oauth-identity-assertion-authz-grant
* https://github.com/oauth-wg/draft-ietf-oauth-rfc8725bis
* https://github.com/oauth-wg/draft-ietf-oauth-rfc7523bis
* https://github.com/oauth-wg/oauth-first-party-apps
* https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document


-- 
To have a summary like this sent to your list, see: https://github.com/ietf-github-services/activity-summary

v2.46.0 | Report a Bug | By Email | System Status