IETF Logo Mail Archive

Re: [OAUTH-WG] [Technical Errata Reported] RFC6749 (3880)

Bill Mills <wmills_92105@yahoo.com> Tue, 04 February 2014 18:56 UTC

Return-Path: <wmills_92105@yahoo.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 891781A0164 for <oauth@ietfa.amsl.com>; Tue, 4 Feb 2014 10:56:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.033
X-Spam-Level:
X-Spam-Status: No, score=-2.033 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, FREEMAIL_REPLYTO_END_DIGIT=0.25, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.535] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IgBG55lL6NOP for <oauth@ietfa.amsl.com>; Tue, 4 Feb 2014 10:56:12 -0800 (PST)
Received: from nm26-vm0.bullet.mail.bf1.yahoo.com (nm26-vm0.bullet.mail.bf1.yahoo.com [98.139.213.74]) by ietfa.amsl.com (Postfix) with ESMTP id DC8CA1A01DD for <oauth@ietf.org>; Tue, 4 Feb 2014 10:56:11 -0800 (PST)
Received: from [98.139.215.142] by nm26.bullet.mail.bf1.yahoo.com with NNFMP; 04 Feb 2014 18:56:11 -0000
Received: from [98.139.212.208] by tm13.bullet.mail.bf1.yahoo.com with NNFMP; 04 Feb 2014 18:56:11 -0000
Received: from [127.0.0.1] by omp1017.mail.bf1.yahoo.com with NNFMP; 04 Feb 2014 18:56:11 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 91808.43864.bm@omp1017.mail.bf1.yahoo.com
Received: (qmail 76959 invoked by uid 60001); 4 Feb 2014 18:56:11 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1391540170; bh=Xg9Q5rYcwyv9NjHLkl65d9E7aMcWtG0mqSkEkRxGd3M=; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=vZ5qVPXaFYq+0KPiFNxQID+CW6dNISm/NNjrUT0NxfpUV99Eh85o7tPN3Y3Pk2l8wRsZ0c2cNgBBUy8W1X9oOxUVu08b/OULfDz9KEMYmAIIIfGzJCEYWBWhuinWSS400N/y0wHKuGBt8R+hAyLK5C2EbhenZYkIiqSC2vwT0/Y=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=zwTGeyzxud7hmsbN5ksFJTNwKYDeut76BZG7GQIn6E/7PCksmGVvEpGYCkT8dH8SANBeGyHvvNxDVsL7yCisvzJxlzmTiqeH8QNNNMN6nixY8/Y2KuIsWBjFngskv1hmwWTG3UiZRzrtLFvKam52/HIv+JqeSW2x9RLsx2I/fqU=;
X-YMail-OSG: yR1cTbwVM1k5yGYUmEvtU6aVr5fun32FmPMdovEP8EmNmQ_ JLO7tZrlUJFRMZUMC91MRGJ8dCjc4SdfvZtQCu8CETdyvUOKCeNMkJib3mIG oqISZOnyR2wH11R4gk.qM9sXKHOxJsFXvzWoJuhUB6w9y22AYIbpOZsEwzry 95Zg9DvRhQAS_siHnwAJX8qtz9UzNWChkT4xRr4eIGzIzZZP.AgQngoA3lnd Q6xAF0rVaJLltLCwMivsh8ATZoJrh3GCAGRY9c91FxHz4vm3cDEc7qSr0ogl 4xdHonc10F2XoWwfKkS6lMKZSQDg12SD84VzR6UnYdizeFgaI3AoN3lNzwZl n31UM5_wTgN1qfiIl04y1U4mhYjHaeBEJ9KLzhnWQQJ0Uzyirz.dxuIS.03j xcCDWC7811WMnyukIxzloi7qiCwD3.KPN_kJeRx2Xe762X3o0HsWQgpVib98 VrNxv.utmF1mcJvVwOHB9TRDI1yx191JTCAm1sGjG1jtUCeSQmkXoQOB01uO oOY8oEHFIOMwBVKaha72GxkMb26cUm9bLWNYddfToVZ4ysUgKSbSuJ_KVONh B8w5U80fmcapqra_JYU7FR5Ui
Received: from [66.228.162.44] by web142801.mail.bf1.yahoo.com via HTTP; Tue, 04 Feb 2014 10:56:10 PST
X-Rocket-MIMEInfo: 002.001, QWdyZWVkLgoKCgpPbiBUdWVzZGF5LCBGZWJydWFyeSA0LCAyMDE0IDg6MTcgQU0sIERpY2sgSGFyZHQgPGRpY2suaGFyZHRAZ21haWwuY29tPiB3cm90ZToKIApUaGlzIGNoYW5nZSBpcyBhcHByb3ByaWF0ZSBhbmQgcmVmbGVjdHMgdGhlIGludGVudCBvZiB0aGUgc3RhdGVtZW50LgoKCgpPbiBUdWUsIEZlYiA0LCAyMDE0IGF0IDg6MTMgQU0sIFJGQyBFcnJhdGEgU3lzdGVtIDxyZmMtZWRpdG9yQHJmYy1lZGl0b3Iub3JnPiB3cm90ZToKClRoZSBmb2xsb3dpbmcgZXJyYXRhIHJlcG9ydCBoYXMgYmVlbiBzdWIBMAEBAQE-
X-Mailer: YahooMailWebService/0.8.174.630
References: <20140204161338.9A4007FC168@rfc-editor.org> <CAD9ie-tGtcBaXbJMkCDswMDhGHNbj+qbawaiXrHowPZFPxzUUQ@mail.gmail.com>
Message-ID: <1391540170.23334.YahooMailNeo@web142801.mail.bf1.yahoo.com>
Date: Tue, 04 Feb 2014 10:56:10 -0800
From: Bill Mills <wmills_92105@yahoo.com>
To: Dick Hardt <dick.hardt@gmail.com>, RFC Errata System <rfc-editor@rfc-editor.org>
In-Reply-To: <CAD9ie-tGtcBaXbJMkCDswMDhGHNbj+qbawaiXrHowPZFPxzUUQ@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="469468616-1184692804-1391540170=:23334"
Cc: "eriksencosta@gmail.com" <eriksencosta@gmail.com>, "derek@ihtfp.com" <derek@ihtfp.com>, "turners@ieca.com" <turners@ieca.com>, OAuth WG <oauth@ietf.org>
Subject: Re: [OAUTH-WG] [Technical Errata Reported] RFC6749 (3880)
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Bill Mills <wmills_92105@yahoo.com>
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Feb 2014 18:56:14 -0000

Agreed.



On Tuesday, February 4, 2014 8:17 AM, Dick Hardt <dick.hardt@gmail.com> wrote:
 
This change is appropriate and reflects the intent of the statement.



On Tue, Feb 4, 2014 at 8:13 AM, RFC Errata System <rfc-editor@rfc-editor.org> wrote:

The following errata report has been submitted for RFC6749,
>"The OAuth 2.0 Authorization Framework".
>
>--------------------------------------
>You may review the report below and at:
>http://www.rfc-editor.org/errata_search.php?rfc=6749&eid=3880
>
>--------------------------------------
>Type: Technical
>Reported by: Eriksen Costa <eriksencosta@gmail.com>
>
>Section: 10.16
>
>Original Text
>-------------
>For public clients using implicit flows, this specification does not
>provide any method for the client to determine what client an access
>token was issued to.
>
>Corrected Text
>--------------
>For public clients using implicit flows, this specification does not
>provide any method for the authorization server to determine what
>client an access token was issued to.
>
>Notes
>-----
>A client can only know about tokens issued to it and not for other clients.
>
>Instructions:
>-------------
>This errata is currently posted as "Reported". If necessary, please
>use "Reply All" to discuss whether it should be verified or
>rejected. When a decision is reached, the verifying party (IESG)
>can log in to change the status and edit the report, if necessary.
>
>--------------------------------------
>RFC6749 (draft-ietf-oauth-v2-31)
>--------------------------------------
>Title               : The OAuth 2.0 Authorization Framework
>Publication Date    : October 2012
>Author(s)           : D. Hardt, Ed.
>Category            : PROPOSED STANDARD
>Source              : Web Authorization Protocol
>Area                : Security
>Stream              : IETF
>Verifying Party     : IESG
>


_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

v2.23.0 | Report a Bug | By Email