[OAUTH-WG] oauth with command line clients

Bill Burke <bburke@redhat.com> Mon, 12 June 2017 03:53 UTC

Return-Path: <bburke@redhat.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id DBB2F129B9E for <oauth@ietfa.amsl.com>; Sun, 11 Jun 2017 20:53:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.923
X-Spam-Status: No, score=-6.923 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id igC4RoZtznPF for <oauth@ietfa.amsl.com>; Sun, 11 Jun 2017 20:52:58 -0700 (PDT)
Received: from mx1.redhat.com (mx1.redhat.com []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 76A051270A0 for <oauth@ietf.org>; Sun, 11 Jun 2017 20:52:58 -0700 (PDT)
Received: from smtp.corp.redhat.com (int-mx02.intmail.prod.int.phx2.redhat.com []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.redhat.com (Postfix) with ESMTPS id AED405D68D for <oauth@ietf.org>; Mon, 12 Jun 2017 03:52:57 +0000 (UTC)
DMARC-Filter: OpenDMARC Filter v1.3.2 mx1.redhat.com AED405D68D
Authentication-Results: ext-mx10.extmail.prod.ext.phx2.redhat.com; dmarc=none (p=none dis=none) header.from=redhat.com
Authentication-Results: ext-mx10.extmail.prod.ext.phx2.redhat.com; spf=pass smtp.mailfrom=bburke@redhat.com
DKIM-Filter: OpenDKIM Filter v2.11.0 mx1.redhat.com AED405D68D
Received: from ovpn-116-70.phx2.redhat.com (ovpn-116-70.phx2.redhat.com []) by smtp.corp.redhat.com (Postfix) with ESMTP id 3AD0417BB0 for <oauth@ietf.org>; Mon, 12 Jun 2017 03:52:57 +0000 (UTC)
To: oauth@ietf.org
From: Bill Burke <bburke@redhat.com>
Message-ID: <a496c372-b700-c6ad-06e7-c257c10d5986@redhat.com>
Date: Sun, 11 Jun 2017 23:52:55 -0400
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:52.0) Gecko/20100101 Thunderbird/52.1.1
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Language: en-US
X-Scanned-By: MIMEDefang 2.79 on
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.16 (mx1.redhat.com []); Mon, 12 Jun 2017 03:52:57 +0000 (UTC)
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/h0ivzMZBHjXGi6HqcB0LYdR4skw>
Subject: [OAUTH-WG] oauth with command line clients
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Jun 2017 03:53:01 -0000

Has anybody done any spec work around doing oauth from command line 
interfaces?  We're looking for something where the auth server can 
generate text-based challenges that are rendered in the console window 
that query for simple text input over possibly multiple requests.  I'm 
not talking about Resource Owner or Client Credentials grant.  The 
command line client may not know the credential types required for a 
successful token request. It would be easy to write a simple protocol, 
but I'd rather just do something around any existing internet draft or 
rfc that somebody has put some thought into.  Hope I'm making sense here.


Bill Burke

Red Hat