IETF Logo Mail Archive

Re: [OAUTH-WG] Call for adoption of "JWT Response for OAuth Token Introspection"

Rifaat Shekh-Yusef <rifaat.ietf@gmail.com> Fri, 03 August 2018 12:32 UTC

Return-Path: <rifaat.ietf@gmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 78C4912DD85 for <oauth@ietfa.amsl.com>; Fri, 3 Aug 2018 05:32:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fBmkIKyVaPMt for <oauth@ietfa.amsl.com>; Fri, 3 Aug 2018 05:31:58 -0700 (PDT)
Received: from mail-it0-x232.google.com (mail-it0-x232.google.com [IPv6:2607:f8b0:4001:c0b::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7ABED126F72 for <oauth@ietf.org>; Fri, 3 Aug 2018 05:31:58 -0700 (PDT)
Received: by mail-it0-x232.google.com with SMTP id d9-v6so8118031itf.2 for <oauth@ietf.org>; Fri, 03 Aug 2018 05:31:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ao/+fX//0LtQn0kOkDie91i4hckZVkYUcPWt9KEmye4=; b=Y97hCv34tYSCa2SbATM0wghjKGiaj+3liFO+R5uvmsOe0YPtmDxsSWPvKrwx/A7yHI 5ueE1w7NmV+hKkQkZrgOJgykq6aDKax+XJTx3jOSyqVMENzd+FXDyIlRmVyGBJPBbcq/ kBzacuRpz527j3h1X+lD0Vo9T5RNHXzeVwN8EEBZyqtulHjzedWfbkF/XgJ4l20KN3gh V30+5/Wo2yeZcKkrUQj2RCPshKuNfKHCxWof922mHeT7W8iKqBXbvoHGgIfPQldBm6/j UpwXp/Zgjy9Gxd910wcujevXgGIBOAWrmCbNqfbXWUWsG9XULZ+/dvd2mXjCeQk9OmRy dzVA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ao/+fX//0LtQn0kOkDie91i4hckZVkYUcPWt9KEmye4=; b=lYcB3KppZzfGKlCdWyrzYwp2tcvDs9zbF+0JJ4tTkMA6ZsMwfnV408I07Auf3InIbV WmIjw1t6wo+jbkMIgJPXUQpoxhqqstlWGsiyHQO62O9drjhkjoRqtPFqbl60nHpwayiP mKk0lLotBixDJXA3nqO2uxkBTHC3UetxVcKehULffMBWCijrpOjkFc38Aj2xWtN3qlTd X4Ykw6b1LxBRsqH8ipA9MA++4ztIJU3i9g5kHumDVF6S6vcE93SZjDjVnqLBRJ97nKeA XtYnVJYIjNvk2m6ks3iCUboB0/QrReU1KwP6l5tPM9AlRa9s68X57BNq3uRLVDTzgLdj KuGg==
X-Gm-Message-State: AOUpUlE9xswyxEfytd3W890V/QLtiavv5bGQlv6OEuMxCK53c04TTBPe +2f4g+UxmAHVsekbWXRQoAYVQc73ik0aDTeuZpA=
X-Google-Smtp-Source: AAOMgpc7Fg5H2SYRLTcs/eCWanwCnU9NVsIchLpN/49ZT5ucLSEfasEoCVWgiFUYpH8pBCa9Id7+tbf79LTXlELL0rc=
X-Received: by 2002:a24:69c6:: with SMTP id e189-v6mr5793491itc.21.1533299517744; Fri, 03 Aug 2018 05:31:57 -0700 (PDT)
MIME-Version: 1.0
References: <CAGL6epJQ7qrdTv+RrNhuJ_GqKHzFRV=YDA1aswtTiE9NmK6LjQ@mail.gmail.com> <CAAP42hAusd1vyAGFHTQ46FuODXFrUjEg6BaL7m3th25gy5RC=g@mail.gmail.com>
In-Reply-To: <CAAP42hAusd1vyAGFHTQ46FuODXFrUjEg6BaL7m3th25gy5RC=g@mail.gmail.com>
From: Rifaat Shekh-Yusef <rifaat.ietf@gmail.com>
Date: Fri, 03 Aug 2018 08:32:37 -0400
Message-ID: <CAGL6epJoG_muXNHDJQGsEGkQiv5GKw3yWF0NebR+wynEX2KLaQ@mail.gmail.com>
To: William Denniss <wdenniss@google.com>
Cc: oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000016edac0572871d39"
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/cR2IBdRPcmMzZbetxLToUDxlGsE>
Subject: Re: [OAUTH-WG] Call for adoption of "JWT Response for OAuth Token Introspection"
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Aug 2018 12:32:00 -0000

All,

Based on the feedback during the meeting in Montreal and on the mailing
list, we think that the WG has decided to adopt this draft.


*Authors,*

Feel free to submit a new WG -00 draft.
We would like to point out that Tony has raised some security concerns
about this, so please take that into consideration when you submit your
draft.

Regards,
 Rifaat & Hannes


On Thu, Jul 19, 2018 at 1:51 PM William Denniss <wdenniss@google.com> wrote:

> I support adoption of this document by the working group.
>
>
> On Thu, Jul 19, 2018 at 10:43 AM, Rifaat Shekh-Yusef <
> rifaat.ietf@gmail.com> wrote:
>
>> Hi all,
>>
>> This is the call for adoption of the 'JWT Response for OAuth Token
>> Introspection' document following the presentation by Torsten at the
>> Montreal IETF meeting where we didn't have a chance to do a call for
>> adoption in the meeting itself.
>>
>> Here is presentation by Torsten:
>>
>> https://datatracker.ietf.org/meeting/102/materials/slides-102-oauth-sessa-jwt-response-for-oauth-token-introspection-00
>>
>> Here is the document:
>>
>> https://tools.ietf.org/html/draft-lodderstedt-oauth-jwt-introspection-response-01
>>
>> Please let us know by August 2nd whether you accept / object to the
>> adoption of this document as a starting point for work in the OAuth working
>> group.
>>
>> Regards,
>> Hannes & Rifaat
>>
>> _______________________________________________
>> OAuth mailing list
>> OAuth@ietf.org
>> https://www.ietf.org/mailman/listinfo/oauth
>>
>>
>

v2.23.0 | Report a Bug | By Email