[OAUTH-WG] Re: Paul Wouters' No Objection on draft-ietf-oauth-resource-metadata-10: (with COMMENT)
Michael Jones <michael_b_jones@hotmail.com> Wed, 02 October 2024 03:58 UTC
Return-Path: <michael_b_jones@hotmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 243BDC1CAF28; Tue, 1 Oct 2024 20:58:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.232
X-Spam-Level:
X-Spam-Status: No, score=-1.232 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FORGED_HOTMAIL_RCVD2=0.874, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=hotmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iZrcyRO1qkBP; Tue, 1 Oct 2024 20:58:31 -0700 (PDT)
Received: from SN4PR2101CU001.outbound.protection.outlook.com (mail-southcentralusazolkn19012051.outbound.protection.outlook.com [52.103.14.51]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D3812C1CAE99; Tue, 1 Oct 2024 20:58:31 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=uuDODWrpqfXIKhchgLDLNJg/WiWyuKyRPEzF3gar6dHhBsVfC3204buAu4dxQ+b7PQosS/l5Z1xcxgaESn9Eo6PmO75Tpww8B7QO9nVv5FDYqwmIhV9CGmKTODPWnaqJMw5BK0ugzKRoJ110ZaxrtxoHxDKvSiBcfJgtseGGeicr6UP4xzktsF03V95szwNFyf8y0UkHlBvcaSNxTPRYXQ8VrizZbeQU3NycUyEk5pf8ax2Wsqu+C1iIyxMWMxT+bOiUx0485UXdReO6qlrUaqZD4JDJHs9ntUoZY/0Yfs8bNYUDVvKwmmqsKYaLQo3ew0zl0hFvvzp5nBU3MhP8MA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=r+dhIgNpL6VRYkDeTyQi+6s/pa/+9FAk8YvJJO2SI8g=; b=TPSZtiZjV6D7T3NnRFTZpyokNnxWK08tMiQATv1YYltW36igCFEH6qnMnAqVHsw6Z+Itki2d40T9I7zD7ipDfHHQp0EL/UTy4ANcvrfHKpRPxvcwiXpnSyOtOA8WiLiIYNxjxOnac3esaV8VBqu19M8QoFeg+x3xhKUSWV5LIOwHpECo2sJq9vUtRgUmQB/VE6eMMu8xDGfiGwDeglUROHbbO5FP8Sb2GnoKNMPxFIuM4k6qpZn2sQEJKvybWGzbyZdU2TfUlbu34YI3fY0dzsixOG/WTXkUyJhk+szVEglYcpcqDY+HTNq5l4X8XhILBXP8Fqyv1MTrPBJsCfzjVw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hotmail.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=r+dhIgNpL6VRYkDeTyQi+6s/pa/+9FAk8YvJJO2SI8g=; b=rzVUdpYdU3EQHzZ9ysmTcibP2rDdapvC6Xndkr2pTFSLtOI5o98IkHnXXByZzFfU3/9igBjRY1tytNv477icHQ/XgTw7TddF/sDvwJs2YVRD/5ypEteLoqJ+JaiGu8CXAa12+zbbGlkBfUqfeFHMTH0oTjrxOP64Y7rZc57J+9p8F2t5v57+zhS1uCXTnWowj0cv65cGDtgDC0sWdoNbw9VOT+wQINEENb7bTRf+GXzWEM2MRb/yNcjU4FOwE/s1UFXOVbkBXZlCQmQi+R03o/5p+Hy3so7qM0hn+dMxCY0SfNlvmXH4BaRXmjsXwABnSJa8P1RjjVH/j0Qx5oxHKA==
Received: from PH0PR02MB7430.namprd02.prod.outlook.com (2603:10b6:510:b::9) by IA0PR02MB9147.namprd02.prod.outlook.com (2603:10b6:208:43d::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8005.27; Wed, 2 Oct 2024 03:58:29 +0000
Received: from PH0PR02MB7430.namprd02.prod.outlook.com ([fe80::67ac:16c1:95b5:fcdc]) by PH0PR02MB7430.namprd02.prod.outlook.com ([fe80::67ac:16c1:95b5:fcdc%6]) with mapi id 15.20.8026.014; Wed, 2 Oct 2024 03:58:29 +0000
From: Michael Jones <michael_b_jones@hotmail.com>
To: Paul Wouters <paul.wouters@aiven.io>, The IESG <iesg@ietf.org>
Thread-Topic: Paul Wouters' No Objection on draft-ietf-oauth-resource-metadata-10: (with COMMENT)
Thread-Index: AQHbFGs4TbwTzwFwzUKWD0+8nxz3irJy0sQA
Date: Wed, 02 Oct 2024 03:58:29 +0000
Message-ID: <PH0PR02MB7430263DA4704B783B0C06F9B7702@PH0PR02MB7430.namprd02.prod.outlook.com>
References: <172783286177.801494.14068142070782646720@dt-datatracker-7bbd96684-zjf54>
In-Reply-To: <172783286177.801494.14068142070782646720@dt-datatracker-7bbd96684-zjf54>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH0PR02MB7430:EE_|IA0PR02MB9147:EE_
x-ms-office365-filtering-correlation-id: aa3569fc-859d-4df4-1742-08dce29679a5
x-microsoft-antispam: BCL:0;ARA:14566002|19110799003|461199028|15080799006|8060799006|8062599003|7092599003|3412199025|440099028|4302099013|10035399004|102099032|1602099012;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: sct-15-20-7719-20-msonline-outlook-0f88b.templateTenant
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH0PR02MB7430.namprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000
X-MS-Exchange-CrossTenant-Network-Message-Id: aa3569fc-859d-4df4-1742-08dce29679a5
X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Oct 2024 03:58:29.3109 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa
X-MS-Exchange-Transport-CrossTenantHeadersStamped: IA0PR02MB9147
Message-ID-Hash: 6XNVTYDTYYN366SZUP4ELG33T3S3SLGI
X-Message-ID-Hash: 6XNVTYDTYYN366SZUP4ELG33T3S3SLGI
X-MailFrom: michael_b_jones@hotmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "draft-ietf-oauth-resource-metadata@ietf.org" <draft-ietf-oauth-resource-metadata@ietf.org>, "oauth-chairs@ietf.org" <oauth-chairs@ietf.org>, "oauth@ietf.org" <oauth@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [OAUTH-WG] Re: Paul Wouters' No Objection on draft-ietf-oauth-resource-metadata-10: (with COMMENT)
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/m0Zy-6k0JJtL1bmPuoVqdju-7cE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>
Thanks for your review, Paul. My responses are inline below, prefixed by "Mike>". -----Original Message----- From: Paul Wouters via Datatracker <noreply@ietf.org> Sent: Tuesday, October 1, 2024 6:34 PM To: The IESG <iesg@ietf.org> Cc: draft-ietf-oauth-resource-metadata@ietf.org; oauth-chairs@ietf.org; oauth@ietf.org; rifaat.s.ietf@gmail.com; rifaat.s.ietf@gmail.com Subject: Paul Wouters' No Objection on draft-ietf-oauth-resource-metadata-10: (with COMMENT) Paul Wouters has entered the following ballot position for draft-ietf-oauth-resource-metadata-10: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-oauth-resource-metadata/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- La mia bella recensione resource_signing_alg_values_supported No default algorithms are implied if this entry is omitted. What does this imply? Does it mean a value can be supplied later? Or that the request will never be able to succeed? Mike> Like many things OAuth, if this information isn't provided, the participating parties will need to agree on supported values out of band. For what it's worth, the same language is used multiple times in the resource server metadata parameter definitions in https://www.rfc-editor.org/rfc/rfc8414.html#section-2. In Section 5.1 there is an error message, but unlike earlier in the document, there seems to be no language support here. I guess that is a shortcoming of RFC6750. Mike> Yes, it is. The good news, though, is that these error messages are intended as debugging aids for programmers and are not intended to be shown to end-users. Therefore, the lack of internationalization is less of a concern. I am also interested to hear the response to Orie's DISCUSS Mike> Orie and I DISCUSSED, and he won me over. You'll see my response with a PR allowing the use of query parameters in resource identifiers shortly. Grazie, -- Mike
- [OAUTH-WG] Paul Wouters' No Objection on draft-ie… Paul Wouters via Datatracker
- [OAUTH-WG] Re: Paul Wouters' No Objection on draf… Michael Jones
- [OAUTH-WG] Re: Paul Wouters' No Objection on draf… Paul Wouters