[OAUTH-WG] Weekly github digest (OAuth Activity Summary)
Repository Activity Summary Bot <do_not_reply@mnot.net> Sun, 26 May 2024 07:39 UTC
Return-Path: <do_not_reply@mnot.net>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 828B2C14F712 for <oauth@ietfa.amsl.com>; Sun, 26 May 2024 00:39:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.397
X-Spam-Level:
X-Spam-Status: No, score=-2.397 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=mnot.net header.b="ik769XRd"; dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=messagingengine.com header.b="IUQyvado"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id d8YYpO3UQM8I for <oauth@ietfa.amsl.com>; Sun, 26 May 2024 00:39:39 -0700 (PDT)
Received: from wfhigh7-smtp.messagingengine.com (wfhigh7-smtp.messagingengine.com [64.147.123.158]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CB22DC15106A for <oauth@ietf.org>; Sun, 26 May 2024 00:39:38 -0700 (PDT)
Received: from compute7.internal (compute7.nyi.internal [10.202.2.48]) by mailfhigh.west.internal (Postfix) with ESMTP id CA2831800151 for <oauth@ietf.org>; Sun, 26 May 2024 03:39:34 -0400 (EDT)
Received: from mailfrontend2 ([10.202.2.163]) by compute7.internal (MEProxy); Sun, 26 May 2024 03:39:34 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h=cc :content-type:content-type:date:from:from:in-reply-to :mime-version:reply-to:subject:subject:to:to; s=fm2; t= 1716709174; x=1716795574; bh=T13Rv8i80txMlRfMa2nDGL6/E1C92z0fa0r 8ii8K/H4=; b=ik769XRdgaC+5fK4ePNCkIRUidH6cd6XsAxoH9hm2DF2KCfiM2V RorXOfF585R7Wy0Num1UYqnhcMX+GZsJEC4o4LkWXZtbP+oQj/AJ6AE6kXsAAXlj kW8pw50vAxeOtWW9RRHe493hJ/akOmA2yzpUecgc6EzZnU5PsAdzZQotmNgch6xG 4QAUfCRQGA36/v6GW9zpAJE3m1xOYq5P1+fYOZoAo72f0ymzt29q1UZe7eZ8S6FK caOzb5/CAC6bPbxm6HuDO4UO6LhNVkUnTG74k40cEq2RkHsChYEfrzcXoj2aimX2 kT4IicgIoPUOXYus9PC4NIuGS7ctyOiG6Ww==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:content-type:date :feedback-id:feedback-id:from:from:in-reply-to:mime-version :reply-to:subject:subject:to:to:x-me-proxy:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm1; t=1716709174; x= 1716795574; bh=T13Rv8i80txMlRfMa2nDGL6/E1C92z0fa0r8ii8K/H4=; b=I UQyvadoTZe2YGot0d8DXQ51qtVLcaGJAiE5MSWp22HuQ64jWJHU6JTSInQG5QFAJ cbhHhV2lyEcRg30aPv+hDMiGAs7FopmsayxGYmgw1pN1U6WEolzO04QVLqmC+Bq3 tTBt2rZpRtnt9jo2uPVvTuX8InxA0jmegoWJSGGRx5c/QiIyu4co6ZYbTmCi8QG7 MCXJ6FHfMJx//CDiIpB0dIPM3NjmfB8wunrWSdO84ffjvf2e1NJlidSdNMcIXQSg /O4MXHKMyn1c/fx787qjq7niMWeAOQ6kCLuOOIc/SwzqGQjaE4C8Fj3aVkptre+m xym83qkZMeW5MjnUXufgA==
X-ME-Sender: <xms:NudSZno12WKEg_IGjCf89wJYpOCQDvX-xMcsBDs2eHQEKwVycrq74w> <xme:NudSZhp99Zx3jVSWh6c-zGGodOATxLcZsEjIBgYJAnibLEsTEEEQxi33QJq2A6mnR Y0EDT4hOOjEQvAwDQ>
X-ME-Received: <xmr:NudSZkP4QzqajWU-Pesap5E0xqeBNq7qG_Enr-Y5q7B63294bk-orGl4j4AajwA>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvledrvdejuddguddvtdcutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecupfhoucgurghtvgcufhhivghlugculdegledmne cujfgurheptggghffvufesrgdttdertddtjeenucfhrhhomheptfgvphhoshhithhorhih ucettghtihhvihhthicuufhumhhmrghrhicuuehothcuoeguohgpnhhothgprhgvphhlhi esmhhnohhtrdhnvghtqeenucggtffrrghtthgvrhhnpeekfedvudetjedvfeekheeiveeu gfefhfetteevgeffkefffeetffdvleehudeiteenucffohhmrghinhepghhithhhuhgsrd gtohhmnecuvehluhhsthgvrhfuihiivgepudenucfrrghrrghmpehmrghilhhfrhhomhep ughopghnohhtpghrvghplhihsehmnhhothdrnhgvth
X-ME-Proxy: <xmx:NudSZq5SpByPg8IU-zUeRJB63E7QVf7X5gspNXxayiHMX6C-f-oFFg> <xmx:NudSZm5M6yya61t1QTaome_sjX5VlE-qAXVjjZVwa6zMZxQ-qCdM6w> <xmx:NudSZij7KOFLBgt9__hdBMJukG-08B7F6n8bA7aXglZYNbTMYsnAdg> <xmx:NudSZo5xllvy7rRZBrea3kgUyMnXSOs-9Dh5PkwACWUWFxiHke1jVw> <xmx:NudSZmE5fgldJXQSS0nZqWa1KV2hENLbpw1FUZJdOiZzBM80g_S-B1YE>
Feedback-ID: i1c3946f2:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA for <oauth@ietf.org>; Sun, 26 May 2024 03:39:34 -0400 (EDT)
Content-Type: multipart/alternative; boundary="===============8086958533683709815=="
MIME-Version: 1.0
From: Repository Activity Summary Bot <do_not_reply@mnot.net>
To: oauth@ietf.org
Message-Id: <20240526073938.CB22DC15106A@ietfa.amsl.com>
Date: Sun, 26 May 2024 00:39:38 -0700
Message-ID-Hash: QMVWN4VUOMCMMIRTACEJG7LN4GRGBUZM
X-Message-ID-Hash: QMVWN4VUOMCMMIRTACEJG7LN4GRGBUZM
X-MailFrom: do_not_reply@mnot.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [OAUTH-WG] Weekly github digest (OAuth Activity Summary)
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/atlJ2X2y02zo8q61xSovKahqAng>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>
Events without label "editorial"
Issues
------
* oauth-wg/oauth-browser-based-apps (+0/-0/š¬1)
1 issues received 1 new comments:
- #52 Fragments, performance, and historic notes. (1 by aaronpk)
https://github.com/oauth-wg/oauth-browser-based-apps/issues/52
* oauth-wg/oauth-sd-jwt-vc (+0/-0/š¬8)
3 issues received 8 new comments:
- #232 Constraints on using JWT VC Isser metadata and x5c (3 by Sakurann, awoie, paulbastian)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/232
- #208 SD-JWT VC Chaining / Delegation? (3 by awoie, c2bo)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/208 [pending close]
- #205 defining how DID can be used as user's indetifier (2 by TimoGlastra, awoie)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/205 [discuss]
* oauth-wg/draft-ietf-oauth-resource-metadata (+1/-0/š¬0)
1 issues created:
- Usage of /.well-known/ as specified is not licit (by randomstuff)
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/44
* oauth-wg/oauth-selective-disclosure-jwt (+3/-0/š¬0)
3 issues created:
- more affliations, more problems (by bc-pi)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/429
- fix up permutations figure/example (by bc-pi)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/428
- Adapt JWS JSON Serialization wording to new terms SD-JWT/SD-JWT+KB (by danielfett)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/426
* oauth-wg/oauth-v2-1 (+2/-1/š¬17)
2 issues created:
- Consider add field expires_at in token response (by jht5945)
https://github.com/oauth-wg/oauth-v2-1/issues/180
- Reasons for recommending loopback redirects over private-use URI scheme (by archer-321)
https://github.com/oauth-wg/oauth-v2-1/issues/179
4 issues received 17 new comments:
- #180 Consider add field expires_at in token response (2 by aaronpk, bellebaum)
https://github.com/oauth-wg/oauth-v2-1/issues/180
- #179 Reasons for recommending loopback redirects over private-use URI scheme (2 by archer-321, dickhardt)
https://github.com/oauth-wg/oauth-v2-1/issues/179
- #176 Allow public clients to use the `client_credentials` grant type (12 by aaronpk, archer-321, bellebaum, dickhardt)
https://github.com/oauth-wg/oauth-v2-1/issues/176
- #170 Ambigious text around whether `code_challenge` is required (1 by SECtim)
https://github.com/oauth-wg/oauth-v2-1/issues/170
1 issues closed:
- Consider add field expires_at in token response https://github.com/oauth-wg/oauth-v2-1/issues/180
Pull requests
-------------
* oauth-wg/oauth-sd-jwt-vc (+0/-0/š¬2)
1 pull requests received 2 new comments:
- #231 Add schema type metadata (2 by bc-pi)
https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/231
* oauth-wg/oauth-cross-device-security (+1/-0/š¬0)
1 pull requests submitted:
- Fix typo on the Authenticate-then-Initiate mitigation (by marcopernpruner)
https://github.com/oauth-wg/oauth-cross-device-security/pull/147
* oauth-wg/oauth-selective-disclosure-jwt (+1/-0/š¬0)
1 pull requests submitted:
- Update terminology in JWS JSON Serialization (by danielfett)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/427
Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
- [OAUTH-WG] Weekly github digest (OAuth Activity Sā¦ Repository Activity Summary Bot