[OAUTH-WG] I-D Action:draft-hammer-oauth-04.txt
Eran Hammer-Lahav <eran@hueniverse.com> Sun, 15 November 2009 08:25 UTC
Return-Path: <eran@hueniverse.com>
X-Original-To: oauth@core3.amsl.com
Delivered-To: oauth@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2D0773A6908 for <oauth@core3.amsl.com>; Sun, 15 Nov 2009 00:25:59 -0800 (PST)
X-Quarantine-ID: <LcdcsHl-2TM2>
X-Virus-Scanned: amavisd-new at amsl.com
X-Amavis-Alert: BAD HEADER, MIME error: error: illegal encoding [base64] for MIME type message/external-body
X-Spam-Flag: NO
X-Spam-Score: -2.557
X-Spam-Level:
X-Spam-Status: No, score=-2.557 tagged_above=-999 required=5 tests=[AWL=0.042, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LcdcsHl-2TM2 for <oauth@core3.amsl.com>; Sun, 15 Nov 2009 00:25:58 -0800 (PST)
Received: from p3plex1out02.prod.phx3.secureserver.net (p3plex1out02.prod.phx3.secureserver.net [72.167.180.18]) by core3.amsl.com (Postfix) with SMTP id 4B2DC3A6836 for <oauth@ietf.org>; Sun, 15 Nov 2009 00:25:58 -0800 (PST)
Received: (qmail 1456 invoked from network); 15 Nov 2009 08:26:29 -0000
Received: from unknown (HELO smtp.ex1.secureserver.net) (72.167.180.20) by p3plex1out02.prod.phx3.secureserver.net with SMTP; 15 Nov 2009 08:26:29 -0000
Received: from P3PW5EX1MB01.EX1.SECURESERVER.NET ([10.6.135.19]) by P3PW5EX1HT002.EX1.SECURESERVER.NET ([72.167.180.20]) with mapi; Sun, 15 Nov 2009 01:26:28 -0700
From: Eran Hammer-Lahav <eran@hueniverse.com>
To: "oauth@ietf.org" <oauth@ietf.org>, "oauth@googlegroups.com" <oauth@googlegroups.com>
Date: Sun, 15 Nov 2009 01:26:26 -0700
Thread-Topic: I-D Action:draft-hammer-oauth-04.txt
Thread-Index: Acply+EckLJDrepTTt+NZPqL1M/DLAAACK3g
Message-ID: <90C41DD21FB7C64BB94121FBBC2E723437851030EB@P3PW5EX1MB01.EX1.SECURESERVER.NET>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: multipart/mixed; boundary="_003_90C41DD21FB7C64BB94121FBBC2E723437851030EBP3PW5EX1MB01E_"
MIME-Version: 1.0
Subject: [OAUTH-WG] I-D Action:draft-hammer-oauth-04.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 15 Nov 2009 08:25:59 -0000
The following draft incorporates all the feedback received from the Last-Call review. Other than comments from Lisa, Peter, and the general-area review, no other review has been received, which needless to say, is extremely disappointing. This draft is meant to replace the OAuth Core 1.0 (and Rev A) specification as the canonical reference. It includes hundreds of hours of work to correct all the known issues with the specification language and protocol errors. It is also used as the basis for the new WG work. In other words, this has been designed to solve everything you have been complaining about for 2 years. It is sad that not a single person from the original group of authors bothered to give this a thorough read and provide feedback. EHL -----Original Message----- From: i-d-announce-bounces@ietf.org [mailto:i-d-announce-bounces@ietf.org] On Behalf Of Internet-Drafts@ietf.org Sent: Sunday, November 15, 2009 12:15 AM To: i-d-announce@ietf.org Subject: I-D Action:draft-hammer-oauth-04.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : The OAuth Core 1.0 Protocol Author(s) : E. Hammer-Lahav, B. Cook Filename : draft-hammer-oauth-04.txt Pages : 41 Date : 2009-11-15 This document specifies the OAuth Core 1.0 protocol. OAuth provides a method for clients to access server resources on behalf of another party (such as a different client or an end user). It also provides a redirection-based user agent process for end users to authorize access to another party by substituting their credentials (typically, a username and password pair) with a different set of delegation- specific credentials. This document is based on revision A of the community specification and includes a few clarifications. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-hammer-oauth-04.txt[InternetShortcut] URL=ftp://ftp.ietf.org/internet-drafts/draft-hammer-oauth-04.txt
- [OAUTH-WG] I-D Action:draft-hammer-oauth-04.txt Eran Hammer-Lahav