IETF Logo Mail Archive

[OAUTH-WG] Re: [Openid-specs-mobile-profile] CIBA fields in DCR Metadata Registry

Brian Campbell <bcampbell@pingidentity.com> Wed, 10 June 2026 14:49 UTC

Return-Path: <bcampbell@pingidentity.com>
X-Original-To: oauth@mail2.ietf.org
Delivered-To: oauth@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 34FABFEC22C9 for <oauth@mail2.ietf.org>; Wed, 10 Jun 2026 07:49:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1781102959; bh=3kAcTf28m/0aCCJUD0tNWs3xzd8o0uGWEFSi8zMSPQ8=; h=References:In-Reply-To:From:Date:Subject:To:Cc; b=n7AhjmJzyZIQj4PKJb7KQYXGJ08eq482oSPi0siAHj2FZvdn8WSFr4C3LzoBCY3wg a6eLZDyVdbl7UpNX9KHWn1WmUlR7e23n3kxd8J6cMeBzMK7td3CkhNjjWrJAdg8g1x fibL5NydGE1klb2yBaqKOMRWOGd2+ZttkDnJYc84=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=pingidentity.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id e-b3geWa0T9w for <oauth@mail2.ietf.org>; Wed, 10 Jun 2026 07:49:18 -0700 (PDT)
Received: from mail-ua1-x92c.google.com (mail-ua1-x92c.google.com [IPv6:2607:f8b0:4864:20::92c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 859B4FEC22C2 for <oauth@ietf.org>; Wed, 10 Jun 2026 07:49:18 -0700 (PDT)
Received: by mail-ua1-x92c.google.com with SMTP id a1e0cc1a2514c-9639e91e773so2660016241.3 for <oauth@ietf.org>; Wed, 10 Jun 2026 07:49:18 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1781102952; cv=none; d=google.com; s=arc-20240605; b=JxvcExEN4Kd1ayTw14YITBioW7UHCy4Nl0a122hpGMAGwaKjLi5n2BE/SKcxfQKsrk NLFsazYUI7HkWnWFIYSV0vnq/azSaqYs9F4NafDyFepwV1DjRGAIjYTR3es7t038xkVU 6p6kOsBZbGwsEP5Vpq5fXkcIVgupFxYeZ6VHpALJ+dtyC5gpWyUDxWwXSmsaqVQuVyVK c6vbz1aG7hNph4pJ1dpWLlCBiOgCUs7XDNeVcGtWbv+iheSxM1s5+0u26nmqKgrSaM3H fUz641sS6NB0uQpjawMtTCqan4njHm9AQSJlnrYtFx+CzsaSRXRNVlPBSoobOsYo/Uli rvIw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:dkim-signature; bh=3kAcTf28m/0aCCJUD0tNWs3xzd8o0uGWEFSi8zMSPQ8=; fh=udaTc8LTHm/gk6QZXtE3ZQMHyjeCNcYSCaQCad50WhE=; b=d/yJPDsY6iA8EC/SYw1I6WFttS1VCwFnV1t5NuCI9xJ1dERV5jxKidS7iAb6UcsTSc gZlDsLj6NB+X5DquNd/FA9aKMptEL/cTaatk+fhGr0oleWUHJszjAXhtP0DJDk7nVCRz Mjd89Thcxc4qIEKrB1qZE9SzIerSYwM5xr5b3Xgt4QvFyxA2K13DUb2HRjNumRTwY7Sx So6eLPwznHuT343aia7bS2ZlA39aFbnuXPk4UKlvJa8xMWqCTJ9Z1QTjpcGXlXiFy8sn i81ZRzSoY9WvAxdM/GV+0ze5s1bzKeU3a+Hz/286o1wIrdsDh8lDr6C8d6grj8VxW/em QZUA==; darn=ietf.org
ARC-Authentication-Results: i=1; mx.google.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=google; t=1781102952; x=1781707752; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=3kAcTf28m/0aCCJUD0tNWs3xzd8o0uGWEFSi8zMSPQ8=; b=FXX2+GdySbGFyUmqMkGteUuvIuo8Ucy5ST0gB4l0qzDg/OBlX6YEwilWbUgzOgMRUZ fewbRmdMj9Qhj/nir/8AxBfUUSE6H2osVuMRJ/6fQcQJlyGfhD9yPfz0UOIQSl8zCoAJ pio6Nk7a4PcsT2XcdQV0mui5CFDOG6hWGgDny4KKUDl7PI/MOl977+7a2jGtfLL+r/Ll ML9yswpwim8XpFEdpEMA60dhdE8XfTZHDLJSa06bgZm+hdHRMASZSQMxzpc5iAscNydf F8yFrkf71sRzWnKgCOGo+NW2h0DrBAXLnKH+54G1UPCiR4eEY6DBOAIZkb576ar0ZYXz ohuw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1781102952; x=1781707752; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-gg:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=3kAcTf28m/0aCCJUD0tNWs3xzd8o0uGWEFSi8zMSPQ8=; b=G/aGTY+BOuuKitzSFxJmB9Bb9DLGbBANTh5v3lJxWLE4W/DpBZsr280x8NCOXielFT 2RTPysrrYzXW62yrcAk89RoXflVY5nCCRPsXIDizdswV5KP3ErlRU/Tttae4JhiER1uW 6PFk7cl5g85IMeaBN+j1AVX04cZWocZHKGR+bGcqEiMS4gG8r/MDHPCU54knJoXHCrcS zi5lwXceMvkXL5OFG3TSsbdfCVK1fC0WTRw2vd5/01WqhFUJ6Y4unsG+JnWROqoWpnF5 rAWktZ+Mih5p/bmh9Ip7xVuisT//g0E6SHPTHq+tDW/O1vOGzjztphFrH5Gpf/ckPbct nZiw==
X-Forwarded-Encrypted: i=1; AFNElJ9ManLEK5EiVh2W/5FowFcEGnce4HGn50YNfi1C8AkZtsOwGBGgVS9WAS9Z/3/aGectFv6ugw==@ietf.org
X-Gm-Message-State: AOJu0Yz+1iopJGpLP32YiiNaAVK+KIBuQucl7p4kYhlCH1bY5sBVQV4r kaGRnyiWh50jvH6E9QIExMdY5zx3qTzdaV8l7pZt2J7X2JPytFnauiIKmxb2KhKSeKYrxsOVjqz uQd9IK0sIrBwmduYXWVBdPyqFb/aEo3NXrioHrvnPN8nxqKprrPySAdq5i3p+nTL0TF4iOuKxJv p26ICbKLrBsTmMVg==
X-Gm-Gg: Acq92OFUBoGNgRZrfEOcqieLAMQ9+TIDm+e5xAGIs411ERm9hovzRK3VIlQH4DjmpIS tgKxJJiqg6F4QbeYe0w7v39GRen9m4hrI3a0bvRpo0Olrvv4WpOPNKfHDV8pHJ5orirpWormXo+ ejcFjpiY0defCZazwqAf7D+o4a9FvWPocodFx6XgARtixjN/ciB70OMd+Q1LMN24LreGQiL7lO4 TVlpd3wjkbGWfCAb0P8NRVMFl+N1tVHKjc8ebRBCqeVOm7rOEjY7CNxjfyrlO5OMae7Sz9SCo4D 8qDHoW4c7O3pS4svOvbvg8vB8PpBZRuMdSgSX+k+hN74Ebfc9AxDrRVENIOwXHajpMHAyqwoaF2 T5wi2SqtmAmR64pRfyUVCCpJDuahBBkwVzS4I
X-Received: by 2002:a05:6102:3a0c:b0:6ef:f691:7043 with SMTP id ada2fe7eead31-6ff0eaac5ddmr14136031137.15.1781102951994; Wed, 10 Jun 2026 07:49:11 -0700 (PDT)
MIME-Version: 1.0
References: <CA+k3eCTxHQHGiXQ9dY7CjEFsOwhx-t-nudONSMzXk07_Ozt0rg@mail.gmail.com> <872C4016-B7A0-47D8-8C1A-A96C6BC58510@gmail.com> <IA0PR01MB827727D5EA4A84BE29E8891DBD0C2@IA0PR01MB8277.prod.exchangelabs.com> <CAH8kd8T36JG5XKD0eWHaSL+0dtSwL54D0+ijA+1KqF1FcbUg6A@mail.gmail.com>
In-Reply-To: <CAH8kd8T36JG5XKD0eWHaSL+0dtSwL54D0+ijA+1KqF1FcbUg6A@mail.gmail.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Wed, 10 Jun 2026 08:48:45 -0600
X-Gm-Features: AVVi8CfNlUsjhGXulVWzJEjA0EfGY5-NJWDHHk6LP55FoqevNfqw02R7_Twwso0
Message-ID: <CA+k3eCS68E7DxyM_EkwhvnPyhs2aP4VVMUKc4f3jWAGQ-wpDSQ@mail.gmail.com>
To: Max Gerber <mgerber@twilio.com>
Content-Type: multipart/alternative; boundary="000000000000c330690653e75835"
Message-ID-Hash: WPVTIC3YXHVOHZMARLZSQRHKZPGTDKYI
X-Message-ID-Hash: WPVTIC3YXHVOHZMARLZSQRHKZPGTDKYI
X-MailFrom: bcampbell@pingidentity.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Bjorn Hjelm <blhjelm@gmail.com>, "oauth@ietf.org" <oauth@ietf.org>, Openid-specs-mobile-profile <openid-specs-mobile-profile@lists.openid.net>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [OAUTH-WG] Re: [Openid-specs-mobile-profile] CIBA fields in DCR Metadata Registry
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/iYyarJJg-fIl9YuEp_gsiwgvMp0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>

Would it be possible for one of the other four CIBA authors or the MODRNA
WG chairs or someone on OIDF staff to get this minor change published as
errata?

On Tue, May 26, 2026 at 12:15 PM Max Gerber <mgerber@twilio.com> wrote:

> > Was the errata ever published to fix the issue mentioned in the
> tracker?
>
> It doesn't appear so.
>
> I encountered this issue while examining how CIMD clients could be used
> with CIBA.
> The CIMD JSON schema pulls fields from the DCR Metadata Registry.
> CIMD has language around additional fields being permitted in the JSON
> object, so I don't think any actual usage is blocked.
> An implementation can say, "Yes, this is fine, we will accept CIBA
> fields from CIMD anyway", but it would be beneficial if those parameters
> were also explicitly defined in the registry.
>
> On Sat, May 23, 2026 at 2:48 AM Justin Richer <jricher@mit.edu> wrote:
>
>> Was the errata ever published to fix the issue mentioned in the tracker?
>> ------------------------------
>> *From:* Bjorn Hjelm <blhjelm@gmail.com>
>> *Sent:* Friday, May 22, 2026 4:32 PM
>> *To:* Brian Campbell <bcampbell@pingidentity.com>
>> *Cc:* Max Gerber <mgerber=40twilio.com@dmarc.ietf.org>; oauth@ietf.org <
>> oauth@ietf.org>; Openid-specs-mobile-profile <
>> openid-specs-mobile-profile@lists.openid.net>
>> *Subject:* [OAUTH-WG] Re: [Openid-specs-mobile-profile] CIBA fields in
>> DCR Metadata Registry
>>
>> Brian is correct and it’s an outstanding item (and errata) that needs to
>> be completed.
>>
>> Kind Regards,
>> Bjorn
>>
>> On May 22, 2026, at 9:14 AM, Brian Campbell via
>> Openid-specs-mobile-profile <openid-specs-mobile-profile@lists.openid.net>
>> wrote:
>>
>> 
>> I believe the answer lies toward the end of the comments on
>> https://bitbucket.org/openid/mobile/issues/206/ciba-iana-actions
>>
>> On Thu, May 21, 2026 at 3:52 PM Max Gerber <mgerber=
>> 40twilio.com@dmarc.ietf.org> wrote:
>>
>> Hey folks,
>>
>> I noticed that the fields in OpenID CIBA § 16.2
>> <https://openid.net/specs/openid-client-initiated-backchannel-authentication-core-1_0.html#rfc.section.16.2> are
>> missing from the Dynamic Client Registration Metadata registry
>> <https://www.iana.org/assignments/oauth-parameters/oauth-parameters.xhtml#client-metadata>.
>> Does anybody know why?
>>
>> Specifically:
>> - backchannel_token_delivery_mode
>> - backchannel_client_notification_endpoint
>> - backchannel_authentication_request_signing_alg
>> - backchannel_user_code_parameter
>>
>> Interestingly, the corresponding AS Metadata fields in §16.1
>> <https://openid.net/specs/openid-client-initiated-backchannel-authentication-core-1_0.html#ietf-oauth-discoveryIANA> are
>> all present in the Authorization Server Metadata
>> <https://www.iana.org/assignments/oauth-parameters/oauth-parameters.xhtml#authorization-server-metadata>
>> registry:
>>
>> - backchannel_token_delivery_modes_supported
>> - backchannel_authentication_endpoint
>> - backchannel_authentication_request_signing_alg_values_supported
>> - backchannel_user_code_parameter_supported
>>
>> Best,
>> Max
>> _______________________________________________
>> OAuth mailing list -- oauth@ietf.org
>> To unsubscribe send an email to oauth-leave@ietf.org
>>
>>
>> *CONFIDENTIALITY NOTICE: This email may contain confidential and
>> privileged material for the sole use of the intended recipient(s). Any
>> review, use, distribution or disclosure by others is strictly prohibited.
>> If you have received this communication in error, please notify the sender
>> immediately by e-mail and delete the message and any file attachments from
>> your computer. Thank you.*_______________________________________________
>> Openid-specs-mobile-profile mailing list
>> Openid-specs-mobile-profile@lists.openid.net
>> https://lists.openid.net/mailman/listinfo/openid-specs-mobile-profile
>>
>>

-- 
_CONFIDENTIALITY NOTICE: This email may contain confidential and privileged 
material for the sole use of the intended recipient(s). Any review, use, 
distribution or disclosure by others is strictly prohibited.  If you have 
received this communication in error, please notify the sender immediately 
by e-mail and delete the message and any file attachments from your 
computer. Thank you._

v2.46.0 | Report a Bug | By Email | System Status