Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic Registration
Roland Hedberg <roland.hedberg@adm.umu.se> Thu, 23 May 2013 14:28 UTC
Return-Path: <roland.hedberg@adm.umu.se>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4FA9921F9610 for <oauth@ietfa.amsl.com>; Thu, 23 May 2013 07:28:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.249
X-Spam-Level:
X-Spam-Status: No, score=-2.249 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_SE=0.35]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gABvdrYVZEa8 for <oauth@ietfa.amsl.com>; Thu, 23 May 2013 07:28:02 -0700 (PDT)
Received: from mail.ad.umu.se (umdac-ch1.ad.umu.se [130.239.1.246]) by ietfa.amsl.com (Postfix) with ESMTP id E18A821F939E for <oauth@ietf.org>; Thu, 23 May 2013 07:28:00 -0700 (PDT)
Received: from UMDAC-CCR1.ad.umu.se ([169.254.2.46]) by UMDAC-CH1.ad.umu.se ([130.239.1.246]) with mapi; Thu, 23 May 2013 16:27:54 +0200
From: Roland Hedberg <roland.hedberg@adm.umu.se>
To: Phil Hunt <phil.hunt@oracle.com>
Date: Thu, 23 May 2013 16:27:57 +0200
Thread-Topic: [OAUTH-WG] Proposed Syntax Changes in Dynamic Registration
Thread-Index: Ac5XwbYysT5xjaBTSSedJjCKo4d3dg==
Message-ID: <9599F577-860E-4864-9DF2-4DA7EF2E2E04@adm.umu.se>
References: <MLQM-20130520122606192-37488@mlite.mitre.org> <519D0C4D.60002@mitre.org> <D313364E-79D2-45F0-B99C-39E509739360@oracle.com>
In-Reply-To: <D313364E-79D2-45F0-B99C-39E509739360@oracle.com>
Accept-Language: en-US, sv-SE
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US, sv-SE
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "oauth@ietf.org" <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic Registration
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 May 2013 14:28:06 -0000
As an implementor like Justin, I see no problem with changing "expires_at" and "issued_at" to the values proposed below. It's a minor code change and I don't have a large deployment to deal with. I also agree with Justin and Phil about "token_endpoint_auth_method". 22 maj 2013 kl. 20:34 skrev Phil Hunt <phil.hunt@oracle.com>: > +1 > > I also agree with Justin's comment on token_endpoint_auth_method. Never-the-less, I did want to pass along the feedback that some were confused. > > The expires_at, issued_at thing though is particularly confusing (though the text may be clear) and is a higher priority issue in my opinion. > > Phil > > @independentid > www.independentid.com > phil.hunt@oracle.com > > > > > > On 2013-05-22, at 11:19 AM, Justin Richer wrote: > >> Speaking as an implementor, I'm actually in favor of changing "expires_at" and "issued_at" to the values proposed below. It would require some minor code changes on my end, but the impact would be minimal, and I think that the new names are *much* more clear to new developers. I think it will save us a lot of questions and headaches going forward. I believe that changing it now will have minimal impact on any deployed and running code (there are no large-scale services that I am aware of), and it will make things clearer. So I vote for "B" for #1 and #2. >> >> I believe "token_endpoint_auth_method" is sufficient as is, since the client is the only thing that authenticates to the token endpoint. >> >> >> [[ Note: As an editor, I don't believe it's really in my power to make that change unless there's support in the working group for making it. I really want more feedback from people, with explanation if you can. ]] >> >> -- Justin >> >> >> On 05/20/2013 11:09 AM, Justin Richer wrote: >>> Phil Hunt's review of the Dynamic Registration specification has raised a couple of issues that I felt were getting buried by the larger discussion (which I still strongly encourage others to jump in to). Namely, Phil has suggested a couple of syntax changes to the names of several parameters. >>> >>> >>> 1) expires_at -> client_secret_expires_at >>> 2) issued_at -> client_id_issued_at >>> 3) token_endpoint_auth_method -> token_endpoint_client_auth_method >>> >>> >>> I'd like to get a feeling, especially from developers who have deployed this draft spec, what we ought to do for each of these: >>> >>> A) Keep the parameter names as-is >>> B) Adopt the new names as above >>> C) Adopt a new name that I will specify >>> >>> In all cases, clarifying text will be added to the parameter *definitions* so that it's more clear to people reading the spec what each piece does. Speaking as the editor: "A" is the default as far as I'm concerned, since we shouldn't change syntax without very good reason to do so. That said, if it's going to be better for developers with the new parameter names, I am open to fixing them now. >>> >>> Naming things is hard. >>> >>> -- Justin >>> >>> >>> _______________________________________________ >>> OAuth mailing list >>> >>> OAuth@ietf.org >>> https://www.ietf.org/mailman/listinfo/oauth >> >> _______________________________________________ >> OAuth mailing list >> OAuth@ietf.org >> https://www.ietf.org/mailman/listinfo/oauth > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth -- Roland "Education is the path from cocky ignorance to miserable uncertainty.” - Mark Twain
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Donald F Coffin
- [OAUTH-WG] Proposed Syntax Changes in Dynamic Reg… Justin Richer
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Phil Hunt
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Justin Richer
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Phil Hunt
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Justin Richer
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Mike Jones
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Mike Jones
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Justin Richer
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Phil Hunt
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Justin Richer
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Justin Richer
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Anthony Nadalin
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Phil Hunt
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Justin Richer
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Nat Sakimura
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Edmund Jay
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… nov matake
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… John Bradley
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Roland Hedberg
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Mike Jones
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Phil Hunt
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Justin Richer
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Anthony Nadalin
- [OAUTH-WG] Dyn Reg API Style: Was Re: Proposed Sy… Phil Hunt
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Justin Richer
- Re: [OAUTH-WG] Dyn Reg API Style: Was Re: Propose… Justin Richer
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Anthony Nadalin
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Phil Hunt
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Anthony Nadalin
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Justin Richer
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Roland Hedberg
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Edmund Jay
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Lewis Adam-CAL022
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Justin Richer
- Re: [OAUTH-WG] Proposed Syntax Changes in Dynamic… Donald F Coffin