[OAUTH-WG] ' force_auth' request parameter
Eran Hammer-Lahav <eran@hueniverse.com> Sun, 11 July 2010 18:41 UTC
Return-Path: <eran@hueniverse.com>
X-Original-To: oauth@core3.amsl.com
Delivered-To: oauth@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id A498A3A69F7 for <oauth@core3.amsl.com>; Sun, 11 Jul 2010 11:41:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.359
X-Spam-Level:
X-Spam-Status: No, score=-2.359 tagged_above=-999 required=5 tests=[AWL=0.238, BAYES_00=-2.599, HS_INDEX_PARAM=0.001, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Xi415z0fivzp for <oauth@core3.amsl.com>; Sun, 11 Jul 2010 11:41:34 -0700 (PDT)
Received: from p3plex1out02.prod.phx3.secureserver.net (p3plex1out02.prod.phx3.secureserver.net [72.167.180.18]) by core3.amsl.com (Postfix) with SMTP id EB4743A69E9 for <oauth@ietf.org>; Sun, 11 Jul 2010 11:41:33 -0700 (PDT)
Received: (qmail 18401 invoked from network); 11 Jul 2010 18:41:40 -0000
Received: from unknown (HELO smtp.ex1.secureserver.net) (72.167.180.21) by p3plex1out02.prod.phx3.secureserver.net with SMTP; 11 Jul 2010 18:41:40 -0000
Received: from P3PW5EX1MB01.EX1.SECURESERVER.NET ([10.6.135.20]) by P3PW5EX1HT003.EX1.SECURESERVER.NET ([72.167.180.21]) with mapi; Sun, 11 Jul 2010 11:41:40 -0700
From: Eran Hammer-Lahav <eran@hueniverse.com>
To: OAuth WG <oauth@ietf.org>
Date: Sun, 11 Jul 2010 11:41:37 -0700
Thread-Topic: ' force_auth' request parameter
Thread-Index: AcsgWeSCtWnD8MWzS8aE8UFXBLFA1gAzsz1r
Message-ID: <C85F5E71.36FE7%eran@hueniverse.com>
In-Reply-To: <4c38b569.0309960a.3208.295b@mx.google.com>
Accept-Language: en-US
Content-Language: en
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: multipart/alternative; boundary="_000_C85F5E7136FE7eranhueniversecom_"
MIME-Version: 1.0
Subject: [OAUTH-WG] ' force_auth' request parameter
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 11 Jul 2010 18:41:39 -0000
The following was submitted via the shared-copy page but does not belong with editorial feedback. This needs to be discussed and supported on the list before added the specification. I think it belongs where 'immediate' is specified.
EHL
------ Forwarded Message
From: An anonymous reader <mailman@sharedcopy.com>
Date: Sat, 10 Jul 2010 11:01:11 -0700
To: Eran Hammer-Lahav <eran@hueniverse.com>
Subject: Re: draft-ietf-oauth-v2-09 - The OAuth 2.0 Protocol
"Colin Snover" left these comments on your copy:
draft-ietf-oauth-v2-09 - The OAuth 2.0 Protocol <http://r6.sharedcopy.com/6bnqq8v>
As proposed on the ML, a new parameter to counteract the current behaviour of OAuth 1.0a authorization servers which is to assume that the account logged into the user-agent is the account that should be checked for access:
force_auth
OPTIONAL. The parameter value must be set to "true" or "false".
If set to "true", the authorization server MUST prompt the end-user to authenticate and approve access. The authorization server MUST NOT make any assumptions as to the identity of the entity requesting access, even if another automatic mechanism is available to do so (e.g. browser cookies).
If set to "false" or not present, the authorization server MAY automatically grant access to the client if it is able to determine that access was previously granted. link » <http://r6.sharedcopy.com/6bnqq8v#shcp21>
tools.ietf.org/html/draft-ietf-oauth-v2-09 <http://r6.sharedcopy.com/6bnqq8v> · Original page <http://tools.ietf.org/html/draft-ietf-oauth-v2-09>
________________________________
via sharedcopy.com <http://sharedcopy.com/?ef>
------ End of Forwarded Message
- [OAUTH-WG] ' force_auth' request parameter Eran Hammer-Lahav
- Re: [OAUTH-WG] ' force_auth' request parameter Colin Snover
- Re: [OAUTH-WG] ' force_auth' request parameter Eran Hammer-Lahav
- Re: [OAUTH-WG] ' force_auth' request parameter William Mills
- Re: [OAUTH-WG] ' force_auth' request parameter David Recordon
- Re: [OAUTH-WG] ' force_auth' request parameter Justin Hart
- Re: [OAUTH-WG] ' force_auth' request parameter William Mills
- Re: [OAUTH-WG] ' force_auth' request parameter Eran Hammer-Lahav
- Re: [OAUTH-WG] ' force_auth' request parameter William Mills
- Re: [OAUTH-WG] ' force_auth' request parameter Colin Snover
- Re: [OAUTH-WG] ' force_auth' request parameter Eran Hammer-Lahav
- Re: [OAUTH-WG] ' force_auth' request parameter Eran Hammer-Lahav
- Re: [OAUTH-WG] ' force_auth' request parameter William Mills
- Re: [OAUTH-WG] ' force_auth' request parameter Colin Snover
- Re: [OAUTH-WG] ' force_auth' request parameter William Mills