Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resource Metadata
Giuseppe De Marco <demarcog83@gmail.com> Fri, 29 March 2024 17:18 UTC
Return-Path: <demarcog83@gmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 05CA8C14F619 for <oauth@ietfa.amsl.com>; Fri, 29 Mar 2024 10:18:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.845
X-Spam-Level:
X-Spam-Status: No, score=-6.845 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Jn15-3qYs6n2 for <oauth@ietfa.amsl.com>; Fri, 29 Mar 2024 10:18:50 -0700 (PDT)
Received: from mail-ej1-x636.google.com (mail-ej1-x636.google.com [IPv6:2a00:1450:4864:20::636]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3A9DEC14F615 for <oauth@ietf.org>; Fri, 29 Mar 2024 10:18:45 -0700 (PDT)
Received: by mail-ej1-x636.google.com with SMTP id a640c23a62f3a-a466a1f9ea0so136182866b.1 for <oauth@ietf.org>; Fri, 29 Mar 2024 10:18:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1711732723; x=1712337523; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=SBFNyRZC3itNtjNn6/f9iWBeYEqqUZC6G3sw1Vz+vV0=; b=E+uxy8YSghQidiw5+cHm7qIOPfXS7EKUBF8CawTWEOuw1jegH9b4XV9WGw5fnAhRJP lxQSingcTJ73hiKHVrdzKJjh3VX9OKl2IR6/Tjw2S7ZJ5iFcM/7bNtfMOockcm+BucIk qBlZ1+UTpYwqdCPTYueu3X08QeLXdx0RsSQ5HxS6BAVEsfMCHdXBbgUOtNfqSZi2x2cC +EqPhcsk9o3luUsuqeSmNNtFwghelrNGzvz/UjSfi8jWoq0dM3nw4m9X8L3r5BInq2ka tIwxfwLb2VCXzAe192oET/kN74Ofr/+1slVlXDlXc+B67ay9nxzUtWPQ+v73Od4NHPG6 EWyA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1711732723; x=1712337523; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=SBFNyRZC3itNtjNn6/f9iWBeYEqqUZC6G3sw1Vz+vV0=; b=hn0KVr22esLzfvdcDPa0AylVbl8XomJ75AyfjmEsvxQObqymMT1abay66bqM+KTGnP Ld82ug+tZG3RHxqHPIzGKLD5/cdWhttXt5/JBwS68mSkH7s/OU1SV1WuGGQj69SDVJ8D eZDFS1jJIBsiq6LWlwj3j7HmzSwVV0WjAU39HB4el1el23uTAqR7qLm4XcAR092qXqNw rpCrj2f89g/zsxSZmar57DgAJYCAVlP4nLiQ2W+GVx055yUl6YrGBS7HajsyKh3/nrqX 6wWm2bnU+MW5Jw1iIJ3ELjsNt/QYzqbWRwkcn/VhLGKY8He1+3tWE+6/awThm2Bcq81D i+dg==
X-Gm-Message-State: AOJu0YzE8ARLOq5BoV0wkfiWAr6SVABOZ11wgFSu0zdcbcs7SgTAajVI aqxgZzS8rVzVcEzwk0kLc3aWFTD9acVYB7N+4n+/uY0Jek+lW+SikauEkIWN1Q0iqtg5UVh9Lkd enm2HBSU9CicQkPDuaoKLkjPjKhiUObxnGdNawA==
X-Google-Smtp-Source: AGHT+IEYUURRKqfPCLlcgFyQe+NCWJElYsvOOQJBwcpif/Nx15oE1Z7C3+4Vx/EcUZ908FerM4ihqhcdPKttNkEHGB8=
X-Received: by 2002:a50:d65c:0:b0:56c:d21:d919 with SMTP id c28-20020a50d65c000000b0056c0d21d919mr2512288edj.34.1711732722561; Fri, 29 Mar 2024 10:18:42 -0700 (PDT)
MIME-Version: 1.0
References: <CADNypP9QRjmgs5Si4Fj+hSmScwx+4ihQmxfznCCVE4+8F2UFkw@mail.gmail.com>
In-Reply-To: <CADNypP9QRjmgs5Si4Fj+hSmScwx+4ihQmxfznCCVE4+8F2UFkw@mail.gmail.com>
From: Giuseppe De Marco <demarcog83@gmail.com>
Date: Fri, 29 Mar 2024 18:18:31 +0100
Message-ID: <CAP_qYym1rzEiWVNO+FtAiFffYC-m3-b2EMdO=gJSgV6vzt5s3w@mail.gmail.com>
To: Rifaat Shekh-Yusef <rifaat.s.ietf@gmail.com>
Cc: oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000e0f8ba0614cfd450"
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/XYxRIvWH4zS5TuKIERDzYAC-W7k>
Subject: Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resource Metadata
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Mar 2024 17:18:54 -0000
Ciao Rifaat and everybody, In Italy, I've come across two national guidelines[1][2] that utilize OAuth 2.0 for protecting resources. These were implemented two years ago when the draft was still an individual draft and not as mature as it is today. Reflecting on the Italian implementation experience, the most significant insights can be distilled into two main points: 1. The core components outlined in the Italian guidelines remain consistent with those in the current OAuth specification, demonstrating that this specification was already consistent, durable and relevant. 2. Despite its status as an I-D at the time, the specification met our needs perfectly. It provided the necessary framework that, in its absence, would have likely led to the development of a similar solution. For these reasons, I am convinced that OAuth 2.0 for protected resources should be standardized. My gratitude goes out to the authors for their foundational work and to everyone involved for their valuable revisions. Regards, Giuseppe De Marco [1] https://italia.github.io/spid-cie-oidc-docs/en/metadata_aa.html [2] https://www.agid.gov.it/sites/default/files/repository_files/llgg_attribute_authorities_0.pdf Il giorno mer 27 mar 2024 alle ore 13:54 Rifaat Shekh-Yusef < rifaat.s.ietf@gmail.com> ha scritto: > All, > > This is a *WG Last Call* for the *OAuth 2.0 Protected Resource Metadata* > document. > https://www.ietf.org/archive/id/draft-ietf-oauth-resource-metadata-03.html > > Please, review this document and reply on the mailing list if you have any > comments or concerns, by *April 12*. > > Regards, > Rifaat & Hannes > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth >
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Michael Jones
- [OAUTH-WG] WGLC for OAuth 2.0 Protected Resource … Rifaat Shekh-Yusef
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Atul Tulshibagwale
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Michael Jones
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Vladimir Dzhuvinov
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Giuseppe De Marco
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Atul Tulshibagwale
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Michael Jones
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Brian Campbell
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Brian Campbell
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Michael Jones
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Brian Campbell
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Brian Campbell
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Rifaat Shekh-Yusef
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Michael Jones
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Pieter Kasselman
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Michael Jones
- Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resou… Michael Jones