[OAUTH-WG] draft-ietf-oauth-revocation

Torsten Lodderstedt <torsten@lodderstedt.net> Sun, 03 February 2013 13:02 UTC

Return-Path: <torsten@lodderstedt.net>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 38D3721F868F for <oauth@ietfa.amsl.com>; Sun, 3 Feb 2013 05:02:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.676
X-Spam-Level:
X-Spam-Status: No, score=-0.676 tagged_above=-999 required=5 tests=[AWL=1.573, BAYES_00=-2.599, HELO_EQ_DE=0.35]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RtYhHOi7GqZm for <oauth@ietfa.amsl.com>; Sun, 3 Feb 2013 05:02:04 -0800 (PST)
Received: from smtprelay04.ispgateway.de (smtprelay04.ispgateway.de [80.67.31.31]) by ietfa.amsl.com (Postfix) with ESMTP id 93EF921F8681 for <oauth@ietf.org>; Sun, 3 Feb 2013 05:02:04 -0800 (PST)
Received: from [79.253.33.56] (helo=[192.168.71.36]) by smtprelay04.ispgateway.de with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.68) (envelope-from <torsten@lodderstedt.net>) id 1U1zCt-0000fg-7S for oauth@ietf.org; Sun, 03 Feb 2013 14:02:03 +0100
Message-ID: <510E5FB5.10803@lodderstedt.net>
Date: Sun, 03 Feb 2013 14:01:41 +0100
From: Torsten Lodderstedt <torsten@lodderstedt.net>
User-Agent: Mozilla/5.0 (Windows NT 6.2; rv:17.0) Gecko/20130107 Thunderbird/17.0.2
MIME-Version: 1.0
To: OAuth WG <oauth@ietf.org>
Content-Type: text/plain; charset="ISO-8859-15"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Df-Sender: dG9yc3RlbkBsb2RkZXJzdGVkdC1vbmxpbmUuZGU=
Subject: [OAUTH-WG] draft-ietf-oauth-revocation
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 03 Feb 2013 13:02:06 -0000

Hi all,

before I publish a new revision of the draft, I would like to sort out 
the following issues and would like to ask you for your feedback.

- Authorization vs. access grant vs. authorization grant: I propose to 
use "authorization grant".
- invalid_token error code: I propose to use the new error code 
"invalid_parameter" (as suggested by Peter and George). I don't see the 
need to register it (see 
http://www.ietf.org/mail-archive/web/oauth/current/msg10604.html) but 
would like to get your advice.
- Donald F. Coffin raised the need for a token_type parameter to the 
revocation request. Shall we re-consider this topic?

best regards,
Torsten.