[OAUTH-WG] draft-ietf-oauth-assertions WGLC comment III

Brian Campbell <bcampbell@pingidentity.com> Mon, 23 April 2012 13:17 UTC

Return-Path: <bcampbell@pingidentity.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6AE4A21F85E3 for <oauth@ietfa.amsl.com>; Mon, 23 Apr 2012 06:17:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.46
X-Spam-Level:
X-Spam-Status: No, score=-5.46 tagged_above=-999 required=5 tests=[AWL=-0.484, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, J_BACKHAIR_12=1, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qQzlrU97v6qa for <oauth@ietfa.amsl.com>; Mon, 23 Apr 2012 06:17:14 -0700 (PDT)
Received: from na3sys009aog123.obsmtp.com (na3sys009aog123.obsmtp.com [74.125.149.149]) by ietfa.amsl.com (Postfix) with ESMTP id 98D1D21F85DF for <oauth@ietf.org>; Mon, 23 Apr 2012 06:17:14 -0700 (PDT)
Received: from mail-vx0-f173.google.com ([209.85.220.173]) (using TLSv1) by na3sys009aob123.postini.com ([74.125.148.12]) with SMTP ID DSNKT5VWWQRP+mR2DGIZl3o9a3EphqQqJDzI@postini.com; Mon, 23 Apr 2012 06:17:14 PDT
Received: by vcbfl11 with SMTP id fl11so10697773vcb.32 for <oauth@ietf.org>; Mon, 23 Apr 2012 06:17:13 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:from:date:message-id:subject:to:content-type :x-gm-message-state; bh=1/dyC495oo8cBq4ibgBdKjA9XqZgcXtVrdhrBvV0gFc=; b=c9ZYRC1GA+qqLHlSY3ix/foy1t7/5TIuwP5F3nXTb42dcvfktcLKrd5J20O+xwoW2M XyHj3x7NFrUZmNtkOrVBBEJt+3rZlrHQOaMO+RydSNyKeHKDHQMrmaILpSzILerwMtIK 6t14JsJKAbk8s8N99xx8XE0l4yrGs01zxLTJ0EiKPBnftJfIYSZPSmUBS7Gim6wUqHqW TAb6OmrvyAWkk3nU3kLttMSQsTd+dpNvhAbajTGjYthkFIYbNGKeaW8KqkTVvwBL7gdr DAKg0kavedhkH32JkTD+DdK3eldD+sLxWSx9DViEg/Ld3TfK9kIIfmvItcRpnGJPVFI4 Gv0w==
Received: by 10.52.90.175 with SMTP id bx15mr10059710vdb.31.1335187032935; Mon, 23 Apr 2012 06:17:12 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.52.38.104 with HTTP; Mon, 23 Apr 2012 06:16:42 -0700 (PDT)
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Mon, 23 Apr 2012 07:16:42 -0600
Message-ID: <CA+k3eCR5=smoW=saRE072AG=dZXQrFqFO9ccngvbvcmFnHciig@mail.gmail.com>
To: oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary=20cf3071c9cece8c1a04be5874ce
X-Gm-Message-State: ALoCoQmpBNT31SqkNptppRKCEfPkWpTG6Ojmsww5yLGkr3yrZaUL+YYcjWDAls30MOqcGrrzprg/
Subject: [OAUTH-WG] draft-ietf-oauth-assertions WGLC comment III
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Apr 2012 13:17:15 -0000

The following text appears in §4.1 and §4.2 defining (describing because
it's already defined in core?) the client_id parameter,

"client_id OPTIONAL. The client identifier as described in Section
3<http://tools.ietf.org/html/draft-ietf-oauth-assertions-01#section-3>of
OAuth 2.0 [
I-D.ietf.oauth-v2<http://tools.ietf.org/html/draft-ietf-oauth-assertions-01#ref-I-D.ietf.oauth-v2>
]."

The section reference needs to be changed to 2 rather than 3 and the link
is currently to the wrong document.

I'd also argue that the text should be removed from §4.2 because it's usage
is orthogonal to the abstract use of assertions as authorization grants
which is what the section is defining.