Re: [OAUTH-WG] RFC 7009
Brig Lamoreaux <Brig.Lamoreaux@microsoft.com> Tue, 06 June 2017 21:43 UTC
Return-Path: <Brig.Lamoreaux@microsoft.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2FA0C128BB6 for <oauth@ietfa.amsl.com>; Tue, 6 Jun 2017 14:43:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.515
X-Spam-Level:
X-Spam-Status: No, score=-0.515 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, SUBJ_ALL_CAPS=1.506] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KVKijBZ4p8tB for <oauth@ietfa.amsl.com>; Tue, 6 Jun 2017 14:43:29 -0700 (PDT)
Received: from NAM03-DM3-obe.outbound.protection.outlook.com (mail-dm3nam03on0139.outbound.protection.outlook.com [104.47.41.139]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8E1A91286AB for <oauth@ietf.org>; Tue, 6 Jun 2017 14:43:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=YBEKIJhz4TGSsFfjDXBgT2HN8MH6jEqKlhzFOoxIW9w=; b=ZcoOgIFWsEcKb/rD/F0aTn33aeVTET7dW52gAlAGzA9pBKomRIhRhTv83BSN9byj9cy3KglrZqqs+bxj7jJLWxqWR3IY04T5CtRZq2hT9w087Hpdk/y25vTXQ94Eq1ROlgvhMbmOpeBmbpiMT3o5HxnCFQY4XfurHYFl760H9VQ=
Received: from DM5PR03MB2922.namprd03.prod.outlook.com (10.175.106.20) by DM5PR03MB2923.namprd03.prod.outlook.com (10.175.106.21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1157.12; Tue, 6 Jun 2017 21:43:28 +0000
Received: from DM5PR03MB2922.namprd03.prod.outlook.com ([10.175.106.20]) by DM5PR03MB2922.namprd03.prod.outlook.com ([10.175.106.20]) with mapi id 15.01.1157.012; Tue, 6 Jun 2017 21:43:28 +0000
From: Brig Lamoreaux <Brig.Lamoreaux@microsoft.com>
To: Justin Richer <jricher@mit.edu>
CC: "<oauth@ietf.org>" <oauth@ietf.org>
Thread-Topic: [OAUTH-WG] RFC 7009
Thread-Index: AdLVcSY9VMwm5v7UR7a29hVsc2krjwJbn5+AAAt1W1A=
Date: Tue, 06 Jun 2017 21:43:20 +0000
Deferred-Delivery: Tue, 6 Jun 2017 21:43:04 +0000
Message-ID: <DM5PR03MB292263A0429C2BEE01E95BB085CB0@DM5PR03MB2922.namprd03.prod.outlook.com>
References: <CY4PR03MB2920241827103D122E9EC82085FF0@CY4PR03MB2920.namprd03.prod.outlook.com> <FAF2C6DD-0A7A-4BE1-BDD3-E54B822CCD4D@mit.edu>
In-Reply-To: <FAF2C6DD-0A7A-4BE1-BDD3-E54B822CCD4D@mit.edu>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: mit.edu; dkim=none (message not signed) header.d=none;mit.edu; dmarc=none action=none header.from=microsoft.com;
x-originating-ip: [72.223.34.197]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DM5PR03MB2923; 7:EwcfTtgpbGcKBAEmexlPPthxYOthpaOOW9MD4C55MJlDd45mGhLfPZ+Me7inqCYxt7Tl7Sd0KT8TyjRlUKng6j6H6p8mxB4Y1P6wRKmErN8QS9l/cmjtjjBTrkfTcJViphV2FEwvIdzC0ztMi6iUlUbB3dzQlUzi1s2pMGsiA2oXiuJ5YWIrwkW3BFoO1EcT26Q8/6+t9lmHDep/MjPlHUSY2Rx6Xf+s1hdCUbIvvYbbQayNV/fNuCfzEu2CXC9PNhglyjKv310AJBpbkQvNWxc8RTfNTyiGL/x1HMqB/mYswOfADi6oYdQp56IBq0s63uUtSq2vX5HGgzIqiRwQ6i1UejG3EjAOBYiqWqzsm/k=
x-ms-traffictypediagnostic: DM5PR03MB2923:
x-ms-office365-filtering-correlation-id: beab79aa-873c-453f-cb84-08d4ad251142
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(2017030254075)(48565401081)(201703131423075)(201703031133081); SRVR:DM5PR03MB2923;
x-microsoft-antispam-prvs: <DM5PR03MB2923EF03719BAE83C3123B2A85CB0@DM5PR03MB2923.namprd03.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(189930954265078)(219752817060721)(21748063052155);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(61425038)(6040450)(601004)(2401047)(5005006)(8121501046)(3002001)(10201501046)(100000703101)(100105400095)(93006095)(93001095)(6055026)(61426038)(61427038)(6041248)(20161123558100)(20161123560025)(20161123564025)(20161123555025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123562025)(6072148)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:DM5PR03MB2923; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:DM5PR03MB2923;
x-forefront-prvs: 033054F29A
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39400400002)(39850400002)(39410400002)(39860400002)(39450400003)(39840400002)(377454003)(24454002)(81166006)(2950100002)(33656002)(2906002)(6436002)(5005710100001)(8676002)(86362001)(3846002)(102836003)(72206003)(10090500001)(478600001)(790700001)(6116002)(53546009)(14454004)(966005)(5660300001)(7736002)(7906003)(3280700002)(55016002)(74316002)(3660700001)(8936002)(229853002)(25786009)(4326008)(6666003)(7696004)(6916009)(54896002)(6306002)(99286003)(66066001)(6506006)(2900100001)(9686003)(236005)(54356999)(76176999)(606005)(50986999)(122556002)(2171002)(10290500003)(77096006)(6246003)(38730400002)(110136004)(189998001)(19609705001)(53936002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR03MB2923; H:DM5PR03MB2922.namprd03.prod.outlook.com; FPR:; SPF:None; MLV:sfv; LANG:en;
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_DM5PR03MB292263A0429C2BEE01E95BB085CB0DM5PR03MB2922namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Jun 2017 21:43:28.0130 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR03MB2923
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/jcOpyUFPKJSAJEQ6Ge4PgP9-epQ>
X-Mailman-Approved-At: Wed, 07 Jun 2017 06:15:09 -0700
Subject: Re: [OAUTH-WG] RFC 7009
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Jun 2017 21:43:31 -0000
Thanks for the reply. How do the RFC address a token that has been compromised? From: Justin Richer [mailto:jricher@mit.edu] Sent: Tuesday, June 6, 2017 9:12 AM To: Brig Lamoreaux <Brig.Lamoreaux@microsoft.com> Cc: <oauth@ietf.org> <oauth@ietf.org> Subject: Re: [OAUTH-WG] RFC 7009 OAuth doesn’t specify and specific timeout period, it’s up to the AS that issues the token to determine how long the token is good for. RFC7009 isn’t about timeout periods, it’s about the client proactively telling the AS that it doesn’t need a token anymore and the AS should throw it out, likely prior to any timeouts. — Justin On May 25, 2017, at 12:23 PM, Brig Lamoreaux <Brig.Lamoreaux@microsoft.com<mailto:Brig.Lamoreaux@microsoft.com>> wrote: Hi, What is the specified timeout period to invalidate the token? Brig Lamoreaux Data Solution Architect brig.lamoreaux@microsoft.com<mailto:brig.lamoreaux@microsoft.com> 480-828-8707 US Desert/Mountain Tempe <image001.jpg> _______________________________________________ OAuth mailing list OAuth@ietf.org<mailto:OAuth@ietf.org> https://www.ietf.org/mailman/listinfo/oauth<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Foauth&data=02%7C01%7CBrig.Lamoreaux%40microsoft.com%7C538020425e8a411a106408d4acf6ca32%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636323623328232170&sdata=UHQOwegm2k8MbWPCYHR3a4ted39xMFlfjil4FdJqyA8%3D&reserved=0>
- [OAUTH-WG] RFC 7009 Brig Lamoreaux
- Re: [OAUTH-WG] RFC 7009 Justin Richer
- Re: [OAUTH-WG] RFC 7009 Justin Richer
- Re: [OAUTH-WG] RFC 7009 Justin Richer
- Re: [OAUTH-WG] RFC 7009 Phil Hunt (IDM)
- Re: [OAUTH-WG] RFC 7009 Brig Lamoreaux
- Re: [OAUTH-WG] RFC 7009 Brig Lamoreaux
- Re: [OAUTH-WG] RFC 7009 Justin Richer