IETF Logo Mail Archive

[OAUTH-WG] Query on RFC6749

"NARAIN, SHISHIR (DD & MI (L), Group Transformation)" <Shishir.Narain@lloydsbanking.com> Tue, 14 May 2019 07:45 UTC

Return-Path: <Shishir.Narain@lloydsbanking.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 011F01201E4 for <oauth@ietfa.amsl.com>; Tue, 14 May 2019 00:45:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.989
X-Spam-Level:
X-Spam-Status: No, score=-1.989 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, T_KAM_HTML_FONT_INVALID=0.01, T_MIME_MALF=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lloydsbanking.com header.b=Rl/WYDvl; dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=lloydsbanking.onmicrosoft.com header.b=A/W3NpG/
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FXNIsIhxtaHq for <oauth@ietfa.amsl.com>; Tue, 14 May 2019 00:45:11 -0700 (PDT)
Received: from mail1.bemta26.messagelabs.com (mail1.bemta26.messagelabs.com [85.158.142.3]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6ECE212008A for <oauth@ietf.org>; Tue, 14 May 2019 00:45:10 -0700 (PDT)
Received: from [85.158.142.97] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-3.bemta.az-a.eu-central-1.aws.symcld.net id E6/63-19557-3027ADC5; Tue, 14 May 2019 07:45:07 +0000
X-Brightmail-Tracker: H4sIAAAAAAAAA12Ta0gUURiGPTPj7HiZGndNPyWjlgQrdnUpS7t AP6KECIqgwgQbc9wdWEebXUn7ZUSCWlqbhNtmhUlGhMoaWa633SxJisrKSumy6SZtSTchxKzm sl3/fDznvO9833sOZyhcW65JpLhSOycKrFVPRhJe/cQ3Ay6O5KS1DMzNuD0ZJNejrKamaWwry g7nhbyi0j3hlsDAV7K4/gRWGvT34+WoqxarQpEUwcwQUNnei6pQBBXBWOBYoIKQOZrRwdPm+w oDQ0P/hfpwlbfDu5pZXGYt40Fw916k3EjLDCCYmbqI1IUPweiZPkJdTCBocXgIdZ4Hh2DP9ZB Si0Gn40nom2cIPrX1KUlIJhd6HW8UjmWSoefmI43MOiYBZtt/aNT9BTB6xxNiI1x1NSqpCMnf NzyspKWZ3eCtdyt9EBMHXwcvYzLjTDyMjJ/F1BPFQKOrC1c5Dr53+km1D8Dpx72YyvFQ2TMd2 k8Ax+ep0G0sgAsdX3D5AMB04+D9OEmqw/LA1e4gVdNC6Lh1JMRJMHS2WgpESbwFhi6aj6H0U3 9FUlmAWYePPKUcIQZuO8eJf5mSPEugtTNVtS+Cumq/5n87zqTA4dMNmr8951DEJZSZJ/Jmi72 Q5a0GU1qawWRabjAZTKsyjOwBA2vkSgx7OcEuspJqZPfbjLaywr3WfKPA2d1Iem/5+5D7Gqpr NvtQAoXp59FjNU9ztHPyivLLLKzNkiuWWDmbD82nKD3QO4pHcrQxImfmSgt4q/Rof8lARetj6 RZZpm3FbKGNN6vSINpM9TX6G3Dqyss3Uu1UqtM5IdUXXrlOylVLCEUClxhPp++TWjByC0uJ8H vArx9jCCUl6mgUFhamjS7mxELe/q8eRPEU0utotxwkmhfsv3MEpYiYFDGTVyLa2T9SYjkKP/S qdVvKd+f7cu+6QNogVr8248HJx8n641mWtkZs+nl2U4or11i3inN9XJ3pHggk3XhYJhY0mMbO N8175Y/KyjR5NvFH38VNkb7FFQd3bp2JqnS0Ly3wvI09pMuqLXi9okIbWJnb6xxaVLcrdeOZ9 O7nG4bXfFjmK+tG54Ipj7r0hM3Cmpbioo39CZD+teUTBAAA
X-Env-Sender: Shishir.Narain@lloydsbanking.com
X-Msg-Ref: server-29.tower-222.messagelabs.com!1557819906!1819939!1
X-Originating-IP: [193.34.231.252]
X-SYMC-ESS-Client-Auth: outbound-route-from=pass
X-StarScan-Received:
X-StarScan-Version: 9.31.6; banners=-,-,-
X-VirusChecked: Checked
Received: (qmail 26321 invoked from network); 14 May 2019 07:45:07 -0000
Received: from mailgate2.lloydstsb.co.uk (HELO MGWLSPET03F003.machine.group) (193.34.231.252) by server-29.tower-222.messagelabs.com with DHE-RSA-AES256-GCM-SHA384 encrypted SMTP; 14 May 2019 07:45:07 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=lloydsbanking.com; i=@lloydsbanking.com; l=8192; q=dns/txt; s=LBG20130210; t=1557819906; x=1589355906; h=from:to:subject:date:message-id:mime-version; bh=K3A4DWxrsoaYd6XPSI29UAJ4Fg0Z+Q0aPDZ1CnyJT3I=; b=Rl/WYDvljxBvLrLke2uIcSD/aDnvic4rWFMe9uh1NR6avSA2Nf4qYtcu 3IOOCQI2LCa3MuIYu361l/qa04lzd8052gtYR2mVpS03eb0FURYSDrB91 7UnFS5T/PU0vVCrSQBSOfMTn7o4Rb/09xDwiwy21xBIh7lLyp16J1r/Fi ZZY76wWsIoPSK4aKF1ImxLb+hUZVuT1gyy//Y6GnGCJmajgiluoa/0TZV tXVJXkuqeYVbjWbtCBOqIGBrfiJ/XaZkwloNmA5WrlMZ10h8GC8OrR4R8 OOM82xA/iti2FipLAdWiENKVUz7NNUwwPmISZO3t355pl10WglCX4O0zQ g==;
IronPort-SDR: +fEnzJ18cyYaj+eeeAXFgJLklBg1xApF/IaKFNEaSCZoTKMbkNKuUlyhKEAJ1fU9TfeSGrd1gW Vv2nkSafsbCQ==
LexicalCheck: NOTOK
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.60,467,1549929600"; d="scan'208,217";a="478941548"
Received: from unknown (HELO EXCLGVIRTUAL00B.Global.Lloydstsb.Com) ([10.12.225.232]) by MGWLSPET03F003.machine.group with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 14 May 2019 08:45:05 +0100
Received: from EXCLGP0005.Global.Lloydstsb.Com (10.79.135.103) by EXCLGVIRTUAL00B.Global.Lloydstsb.Com (10.125.226.11) with Microsoft SMTP Server (TLS) id 8.3.515.0; Tue, 14 May 2019 08:45:05 +0100
Received: from EXCLGV0013.Global.Lloydstsb.Com (10.75.49.45) by EXCLGP0005.Global.Lloydstsb.Com (10.79.135.103) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Tue, 14 May 2019 08:45:05 +0100
Received: from GBR01-LO2-obe.outbound.protection.outlook.com (10.79.242.118) by EXCLGV0013.Global.Lloydstsb.Com (10.75.49.45) with Microsoft SMTP Server (TLS) id 15.0.1395.4 via Frontend Transport; Tue, 14 May 2019 08:45:05 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lloydsbanking.onmicrosoft.com; s=selector2-lloydsbanking-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Eq2OT0gTddiaRkzvEPSRWTPq26l9pGS+Nnljl8h7ZoQ=; b=A/W3NpG/4Q2G5I2qUPID+Pbk5S9/wHYv8hYcouTfn6tadDrM9Jbtz0PCSLzUJQgnUqmQ0MKdYIV8AaSl91TiWi9x9Edqz/mQ88RajGLHS7H3Bfj+ENzdxxTEkPndbV0/5QQrvAEqc+oTE29+2Wp3Vy6NCnl0B2EI8FoBPiaNPXk=
Received: from CWXP123MB2214.GBRP123.PROD.OUTLOOK.COM (20.179.109.150) by CWXP123MB1894.GBRP123.PROD.OUTLOOK.COM (20.179.108.76) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1900.16; Tue, 14 May 2019 07:45:03 +0000
Received: from CWXP123MB2214.GBRP123.PROD.OUTLOOK.COM ([fe80::1ca4:dba9:96e:ffc]) by CWXP123MB2214.GBRP123.PROD.OUTLOOK.COM ([fe80::1ca4:dba9:96e:ffc%7]) with mapi id 15.20.1878.024; Tue, 14 May 2019 07:45:03 +0000
From: "NARAIN, SHISHIR (DD & MI (L), Group Transformation)" <Shishir.Narain@lloydsbanking.com>
To: "oauth@ietf.org" <oauth@ietf.org>
Thread-Topic: Query on RFC6749
Thread-Index: AdUKJ3OMXVIvW9o7QE+BqBZU+RkdjQ==
Date: Tue, 14 May 2019 07:45:03 +0000
Message-ID: <CWXP123MB2214A956DF5C9EE7156E1EC295080@CWXP123MB2214.GBRP123.PROD.OUTLOOK.COM>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-version: 11.0.300.84
dlp-reaction: no-action
dlp-product: dlpe-windows
x-lloydsclassification: Public
x-titus-metadata-40: eyJDYXRlZ29yeUxhYmVscyI6IiIsIk1ldGFkYXRhIjp7Im5zIjoiaHR0cDpcL1wvbGJnLmludHJhbmV0Lmdyb3VwXC9sYmdfY29tbXNcLyIsImlkIjoiNDdhMzM1MGYtNzQyMC00MWEyLTgxNzAtMTcyNjU0ZmQ4MTJlIiwicHJvcHMiOlt7Im4iOiJDbGFzc2lmaWNhdGlvbiIsInZhbHMiOlt7InZhbHVlIjoiUHVibGljIn1dfV19LCJTdWJqZWN0TGFiZWxzIjpbXSwiVE1DVmVyc2lvbiI6IjE3LjIuOS4yIiwiVHJ1c3RlZExhYmVsSGFzaCI6ImlcL21qVDRWOUVlQzVDblN6Q1FUUHlqcnpjNE94eWtDNnBENnY4eFpcLzg0blJqNngyc1dTSk1NNEJBRWhCSWRMZiJ9
x-originating-ip: [141.92.69.17]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: b9c42d1d-0cb4-449e-25f5-08d6d8401388
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600141)(711020)(4605104)(2017052603328)(7193020); SRVR:CWXP123MB1894;
x-ms-traffictypediagnostic: CWXP123MB1894:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <CWXP123MB189458C6B4A5B2A38371564095080@CWXP123MB1894.GBRP123.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0037FD6480
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(396003)(366004)(39860400002)(346002)(376002)(136003)(40764003)(199004)(189003)(2501003)(102836004)(486006)(55016002)(52536014)(6916009)(7736002)(66446008)(256004)(14444005)(186003)(2351001)(66556008)(66476007)(64756008)(74316002)(71200400001)(26005)(73956011)(476003)(76116006)(66946007)(790700001)(6116002)(3846002)(14454004)(1730700003)(81166006)(71190400001)(8676002)(81156014)(8936002)(7116003)(53936002)(66066001)(478600001)(606006)(966005)(33656002)(316002)(72206003)(4744005)(99286004)(6436002)(54896002)(6306002)(2906002)(68736007)(6506007)(236005)(25786009)(9686003)(7696005)(86362001)(5640700003)(5660300002); DIR:OUT; SFP:1101; SCL:1; SRVR:CWXP123MB1894; H:CWXP123MB2214.GBRP123.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:0; MX:1;
received-spf: None (protection.outlook.com: lloydsbanking.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: cqHMCbdUHpbMpkMY+WksY9Rm0PdQmKiw7RfBTP82SjsPOBaKU8G/iiXzRLifLhn1pW859sZhC+3xmMXjVw7pcbJ5H0TS31MwssITIFWWWYQQ/+grPfC0M8k7cSyXDXqfrRSK/r+aifclB4EoC1lRyAPIGK8TSfcN2opdD16hg1jtV38sDrwYqAsJ6xJkJTd5l9CO/cUs3TCx30AUvWYxghDeXAbkCwQhFv29wbxLKysn8Z+0tWfEVXlNKmII3XWh9OU/FypWAmztSlDqrpL0de/O6cqbO+W9aoLitIn3RHAwTN04FrRcdTRQjiAGW6pR6ArZqs0fqO3B5Qb060CpwQ9iqYsUkW6NTxhtPXW2NPbiXiqwuK7NNVCWTLBon0ooqUW4X/0qZgGlAZVPUsslkJhlY0lV8MeKfw2Fvr/oI/w=
Content-Type: multipart/alternative; boundary="_000_CWXP123MB2214A956DF5C9EE7156E1EC295080CWXP123MB2214GBRP_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: b9c42d1d-0cb4-449e-25f5-08d6d8401388
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 May 2019 07:45:03.5420 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 3ded2960-214a-46ff-8cf4-611f125e2398
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CWXP123MB1894
X-OriginatorOrg: lloydsbanking.com
X-Cfilter: Forwarded
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/glEvAx4yI1xnumUGZRuKVHlmeio>
X-Mailman-Approved-At: Tue, 14 May 2019 08:01:27 -0700
Subject: [OAUTH-WG] Query on RFC6749
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 May 2019 07:47:59 -0000

Classification: Public

Hello,
I have a query about OAuth error message structure. I understand that the message structure is defined at https://tools.ietf.org/html/rfc6749#section-5.2 but I am not sure if the following response is a valid OAuth response as per the spec?

HTTP/1.1 400 Bad Request
Content-Type: application/json;charset=UTF-8
Cache-Control: no-store
Pragma: no-cache
{
                "error": "invalid_request",
                "transaction_id": "11222333"
}

I wanted to check if additional claim like transaction_id can be added in the response.

Thanks for your help.

Regards,
Shishir Narain
API Enabler Team,
Lloyds Banking Group | Group IT
________________________________
M: +44 (0) 74 3889 3857 | E: Shishir.Narain@lloydsbanking.com<mailto:Shishir.Narain@lloydsbanking.com>
A: 2nd Floor, Red Lion Court, 46-48 Park Street, London, SE1 9EQ



Lloyds Banking Group plc. Registered Office: The Mound, Edinburgh EH1 1YZ. Registered in Scotland no. SC95000. Telephone: 0131 225 4555.



Lloyds Bank plc. Registered Office: 25 Gresham Street, London EC2V 7HN. Registered in England and Wales no. 2065. Telephone 0207626 1500.



Bank of Scotland plc. Registered Office: The Mound, Edinburgh EH1 1YZ. Registered in Scotland no. SC327000. Telephone: 03457 801 801. 



Lloyds Bank Corporate Markets plc. Registered office: 25 Gresham Street, London EC2V 7HN. Registered in England and Wales no. 10399850.



Lloyds Bank plc, Bank of Scotland plc and Lloyds Bank Corporate Markets plc are authorised by the Prudential Regulation Authority and regulated by the Financial Conduct Authority and Prudential Regulation Authority.



Lloyds Bank Corporate Markets Wertpapierhandelsbank GmbH is a wholly-owned subsidiary of Lloyds Bank Corporate Markets plc.  Lloyds Bank Corporate Markets Wertpapierhandelsbank GmbH has its registered office at Thurn-und-Taxis Platz 6, 60313 Frankfurt, Germany. The company is registered with the Amtsgericht Frankfurt am Main, HRB 111650. Lloyds Bank Corporate Markets Wertpapierhandelsbank GmbH is supervised by the Bundesanstalt für Finanzdienstleistungsaufsicht.



Halifax is a division of Bank of Scotland plc.



HBOS plc. Registered Office: The Mound, Edinburgh EH1 1YZ. Registered in Scotland no. SC218813.



This e-mail (including any attachments) is private and confidential and may contain privileged material. If you have received this e-mail in error, please notify the sender and delete it (including any attachments) immediately. You must not copy, distribute, disclose or use any of the information in it or any attachments. Telephone calls may be monitored or recorded.

v2.23.0 | Report a Bug | By Email