Re: [OAUTH-WG] Proposed change to section 8.4. Defining New Authorization Endpoint Response Types
Breno <breno.demedeiros@gmail.com> Wed, 20 July 2011 15:21 UTC
Return-Path: <breno.demedeiros@gmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2212A21F858D for <oauth@ietfa.amsl.com>; Wed, 20 Jul 2011 08:21:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.598
X-Spam-Level:
X-Spam-Status: No, score=-3.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Q5YjtmL15Ycm for <oauth@ietfa.amsl.com>; Wed, 20 Jul 2011 08:21:07 -0700 (PDT)
Received: from mail-pv0-f172.google.com (mail-pv0-f172.google.com [74.125.83.172]) by ietfa.amsl.com (Postfix) with ESMTP id 50D2421F84C8 for <oauth@ietf.org>; Wed, 20 Jul 2011 08:21:07 -0700 (PDT)
Received: by pvh18 with SMTP id 18so397119pvh.31 for <oauth@ietf.org>; Wed, 20 Jul 2011 08:21:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=xrwCv4CW47wi/wPdNrjEwFT+DrLhbzTzK9z7RUOKeOA=; b=f84AghBaL5KPjnaY2/Y1pqbd0kVdwYjhX54ZsZhO0AkrzZmA613kdaG/+vBiMt4WeH iOzuJ7t91yXWr06TwiKeQCLrvv6DnhXKsLa/6+l5DpbAtrENuUMfzrOy0DI3XsQgEoN1 Bd9mm/tYokfRwji16Xe5F6eQAC/9AN0LtE4UE=
MIME-Version: 1.0
Received: by 10.68.51.68 with SMTP id i4mr9370507pbo.124.1311175266861; Wed, 20 Jul 2011 08:21:06 -0700 (PDT)
Received: by 10.68.42.41 with HTTP; Wed, 20 Jul 2011 08:21:06 -0700 (PDT)
In-Reply-To: <CA+5SmTXuHWnmgg+U4RSVUP_6S2Z0uwo+YT7XkbbTS3-RFetCfw@mail.gmail.com>
References: <90C41DD21FB7C64BB94121FBBC2E7234501D6E0653@P3PW5EX1MB01.EX1.SECURESERVER.NET> <90C41DD21FB7C64BB94121FBBC2E7234501D6E0720@P3PW5EX1MB01.EX1.SECURESERVER.NET> <4E1F6AAD24975D4BA5B168042967394348D52D1F@TK5EX14MBXC201.redmond.corp.microsoft.com> <CA+5SmTXuHWnmgg+U4RSVUP_6S2Z0uwo+YT7XkbbTS3-RFetCfw@mail.gmail.com>
Date: Wed, 20 Jul 2011 08:21:06 -0700
Message-ID: <CAGHdeD6ehMB6Ubs=n++Rrk5NUg1QKLSYBezECD7tc5piS9tRYg@mail.gmail.com>
From: Breno <breno.demedeiros@gmail.com>
To: Aiden Bell <aiden449@gmail.com>
Content-Type: multipart/alternative; boundary="bcaec51a763a0502d604a881c824"
Cc: OAuth WG <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Proposed change to section 8.4. Defining New Authorization Endpoint Response Types
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Jul 2011 15:21:12 -0000
On Tue, Jul 19, 2011 at 10:08 AM, Aiden Bell <aiden449@gmail.com> wrote: > This seems clearer Eran. I don't blame you for not liking "collection", I > was searching for a term without > too much theoretical background; Your revision reads much better. > > I'm happy with it. This seems like a good alternative now if parsing is the > concensus. > > Thanks again, > Aiden > > > On 19 July 2011 17:33, Mike Jones <Michael.Jones@microsoft.com> wrote: > >> Good >> > Also agree that this is a reasonable compromise. > >> -----Original Message----- >> From: oauth-bounces@ietf.org [mailto:oauth-bounces@ietf.org] On Behalf Of >> Eran Hammer-Lahav >> Sent: Tuesday, July 19, 2011 9:24 AM >> To: OAuth WG >> Subject: Re: [OAUTH-WG] Proposed change to section 8.4. Defining New >> Authorization Endpoint Response Types >> >> Revised text. I changed it to focus on the implementation details. >> >> In other words, all response types must be registered. If the type name >> includes spaces, it changes how the value is compared (space-delimited list >> of values where the order does not matter). That's it. Spaces only change >> how values are compared. >> >> EHL >> >> --- >> >> 8.4. Defining New Authorization Endpoint Response Types >> >> New response types for use with the authorization endpoint are >> defined and registered in the authorization endpoint response type >> registry following the procedure in Section 11.3. Response type >> names MUST conform to the response-type ABNF. >> >> response-type = response-name *( SP response-name ) >> response-name = 1*response-char >> response-char = "_" / DIGIT / ALPHA >> >> If a response type contains one of more space characters (%x20), it is >> compared as a space-delimited list of values in which the order of >> values >> does not matter. Only one order of values can be registered, which >> covers >> all other arrangements of the same set of values. >> >> For example, the response type "token code" is left undefined by this >> specification. >> However, an extension can define and register the "token code" response >> type. >> Once registered, the same combination cannot be registered as "code >> token", but >> both values can be used to denote the same response type. >> >> Also, change the definition of response_type in section 3.1.1: >> >> response_type >> REQUIRED. The value MUST be one of "code" for requesting an >> authorization code as described by Section 4.1.1, "token" for >> requesting an access token (implicit grant) as described by >> Section 4.2.1, or a registered extension value as described by >> Section 8.4. If the response type contains one or more space >> characters >> (%x20), it is interpreted as a space-delimited list of values, >> where >> the order of values does not matter (e.g. "a b" is the same as "b >> a"). >> >> >> _______________________________________________ >> OAuth mailing list >> OAuth@ietf.org >> https://www.ietf.org/mailman/listinfo/oauth >> >> _______________________________________________ >> OAuth mailing list >> OAuth@ietf.org >> https://www.ietf.org/mailman/listinfo/oauth >> > > > > -- > ------------------------------------------------------------------ > Never send sensitive or private information via email unless it is > encrypted. http://www.gnupg.org > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth > > -- Breno de Medeiros
- [OAUTH-WG] Proposed change to section 8.4. Defini… Eran Hammer-Lahav
- Re: [OAUTH-WG] Proposed change to section 8.4. De… Aiden Bell
- Re: [OAUTH-WG] Proposed change to section 8.4. De… Mike Jones
- Re: [OAUTH-WG] Proposed change to section 8.4. De… Eran Hammer-Lahav
- Re: [OAUTH-WG] Proposed change to section 8.4. De… Eran Hammer-Lahav
- Re: [OAUTH-WG] Proposed change to section 8.4. De… Mike Jones
- Re: [OAUTH-WG] Proposed change to section 8.4. De… Aiden Bell
- Re: [OAUTH-WG] Proposed change to section 8.4. De… Breno
- Re: [OAUTH-WG] Proposed change to section 8.4. De… Eran Hammer-Lahav
- Re: [OAUTH-WG] Proposed change to section 8.4. De… Barry Leiba