[OAUTH-WG] OAuth Token Exchange spec addressing Area Director feedback
Mike Jones <Michael.Jones@microsoft.com> Sat, 20 January 2018 05:43 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D79C11273B1 for <oauth@ietfa.amsl.com>; Fri, 19 Jan 2018 21:43:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.02
X-Spam-Level:
X-Spam-Status: No, score=-2.02 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dtbRjCeFsOwD for <oauth@ietfa.amsl.com>; Fri, 19 Jan 2018 21:43:09 -0800 (PST)
Received: from NAM03-BY2-obe.outbound.protection.outlook.com (mail-by2nam03on0105.outbound.protection.outlook.com [104.47.42.105]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BF565126C2F for <oauth@ietf.org>; Fri, 19 Jan 2018 21:43:09 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=dwdR/nMiMkTwsogFonI2AVLobD58OI1toABvZUyprNo=; b=PIhEeRVLlDneb3ivigCyJpkzAp6y9Fc03nbOqtz5tZewJ2oWn4dogNeq9wqggL0XThiXzXf63uUFQllzx/eQ6IUHX+9CioMkrHcisPPSYgo4WtYh6K4PeqmYo24HUtgVOb9cUMtLWUtSeDZ5RLbqmMpeJj4s0PhAAnc5BjCmSrU=
Received: from SN6PR2101MB0943.namprd21.prod.outlook.com (52.132.114.20) by SN6PR2101MB1040.namprd21.prod.outlook.com (52.132.115.13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.444.7; Sat, 20 Jan 2018 05:43:08 +0000
Received: from SN6PR2101MB0943.namprd21.prod.outlook.com ([fe80::7068:47f5:3e1c:ce6a]) by SN6PR2101MB0943.namprd21.prod.outlook.com ([fe80::7068:47f5:3e1c:ce6a%4]) with mapi id 15.20.0444.004; Sat, 20 Jan 2018 05:43:08 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "oauth@ietf.org" <oauth@ietf.org>
Thread-Topic: OAuth Token Exchange spec addressing Area Director feedback
Thread-Index: AdORr6CmW9LOKmuWRgK9blu9JlBeTA==
Date: Sat, 20 Jan 2018 05:43:08 +0000
Message-ID: <SN6PR2101MB09435D9080441418C3555F0FF5EE0@SN6PR2101MB0943.namprd21.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [50.47.88.182]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; SN6PR2101MB1040; 7:bqCHUX+SD6VCljGmBE9eRzEuy6D1y40ovfkX88nc9xFIeWVgN9RB8bk2fDajJBsX4J78H7F7A8rone9V+1TSrMh3gFHNGEfFQ7FnyhlXdkWD9Fz0AC1SekleokYQ6hUaBD76FG9Sxr3Hxp7n0AkORAxPiKA9hMsRC/mjkkFLlyrI1h/z4MvXFdwNyz5OcOI2xPhOAxjaJvrAm5eswcAbqqb9XiSztUAfJNpqxjUDDZ98QNZQdNn9N/rVadCKAC+2
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 61a620c9-f995-4b00-71f2-08d55fc8af59
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(5600026)(4604075)(3008032)(4534125)(4602075)(4627221)(201703031133081)(201702281549075)(48565401081)(2017052603307)(7193020); SRVR:SN6PR2101MB1040;
x-ms-traffictypediagnostic: SN6PR2101MB1040:
x-microsoft-antispam-prvs: <SN6PR2101MB1040F497569D7FD556C8B748F5EE0@SN6PR2101MB1040.namprd21.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(28532068793085)(192374486261705)(31418570063057)(21748063052155);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(61425038)(6040501)(2401047)(5005006)(8121501046)(3231046)(2400081)(944501161)(10201501046)(3002001)(93006095)(93001095)(6055026)(61426038)(61427038)(6041288)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123562045)(20161123564045)(20161123558120)(6072148)(201708071742011); SRVR:SN6PR2101MB1040; BCL:0; PCL:0; RULEID:(100000803126)(100110400120); SRVR:SN6PR2101MB1040;
x-forefront-prvs: 0558D3C5AC
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(376002)(39860400002)(396003)(366004)(346002)(39380400002)(209900001)(189003)(199004)(5250100002)(53376002)(2501003)(68736007)(6346003)(8676002)(6916009)(606006)(7696005)(236005)(26005)(1730700003)(81156014)(2900100001)(105586002)(81166006)(55016002)(5640700003)(3280700002)(54896002)(9686003)(53936002)(966005)(25786009)(99286004)(6306002)(3660700001)(86612001)(6436002)(14454004)(5630700001)(5660300001)(97736004)(72206003)(8936002)(106356001)(66066001)(2906002)(7736002)(74316002)(102836004)(6506007)(59450400001)(8990500004)(10290500003)(478600001)(2351001)(316002)(3846002)(6116002)(790700001)(86362001)(10090500001)(33656002)(22452003)(6606295002); DIR:OUT; SFP:1102; SCL:1; SRVR:SN6PR2101MB1040; H:SN6PR2101MB0943.namprd21.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-microsoft-antispam-message-info: PR+FAJLzWIXG7+c7/LObBoTAAvfW4YBkoHCx1Mm97Q2LrJtvy2MfsuBS9q2AEh1h5wJCNq573+6aVDY3VEf3Aw==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_SN6PR2101MB09435D9080441418C3555F0FF5EE0SN6PR2101MB0943_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 61a620c9-f995-4b00-71f2-08d55fc8af59
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Jan 2018 05:43:08.1194 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR2101MB1040
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/iEH1l050WQS0RUKRKM_NfWDOhvU>
Subject: [OAUTH-WG] OAuth Token Exchange spec addressing Area Director feedback
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 20 Jan 2018 05:43:12 -0000
A new draft of the OAuth 2.0 Token Exchange specification has been published that addresses feedback from Security Area Director Eric Rescorla. The acknowledgements were also updated. Thanks to Brian Campbell for doing the editing for this version. The specification is available at: * https://tools.ietf.org/html/draft-ietf-oauth-token-exchange-11 An HTML-formatted version is also available at: * http://self-issued.info/docs/draft-ietf-oauth-token-exchange-11.html -- Mike P.S. This notice was also posted at http://self-issued.info/?p=1764 and as @selfissued<https://twitter.com/selfissued>.