Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-jwt-introspection-response-09.txt

Torsten Lodderstedt <torsten@lodderstedt.net> Sat, 25 April 2020 13:59 UTC

Return-Path: <torsten@lodderstedt.net>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CEC3A3A0FA4 for <oauth@ietfa.amsl.com>; Sat, 25 Apr 2020 06:59:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lodderstedt.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zgFwRQJmjdGN for <oauth@ietfa.amsl.com>; Sat, 25 Apr 2020 06:59:33 -0700 (PDT)
Received: from mail-wm1-x334.google.com (mail-wm1-x334.google.com [IPv6:2a00:1450:4864:20::334]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 634CB3A0C98 for <oauth@ietf.org>; Sat, 25 Apr 2020 06:59:33 -0700 (PDT)
Received: by mail-wm1-x334.google.com with SMTP id x25so14313806wmc.0 for <oauth@ietf.org>; Sat, 25 Apr 2020 06:59:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lodderstedt.net; s=google; h=from:content-transfer-encoding:mime-version:subject:date:references :to:in-reply-to:message-id; bh=bY34Q3WmgrMcwg02R2aFP0ECvKEUVY5pvh6pnke1d2U=; b=DiDVXNn3Ln8qK8NNbWWBENM0Hsz4JoRdXPDTBTWEm+q3Ba9YFnwHQDxuJejxR683DA dZC67YfkDA5s9ISitKcsVYXGJzKu5pHguPNbCwos8GSoG9AUwMV3IFBB2CxdWnehz192 MaM9f2ru9LzP1+BIZGJpQHDScxAIYzgzWB+v0CBOC2TJIwv7UxqMY0VgckZZPCEDYcl7 UerCdRPVefpC2g6Lmm4Lf6j7ARQvxzbvL92BFHvDxGOVIu+gTSejXrjJZcJgyDKm4NbP 269j7YA2vxOvmOG/VEBF+farj+AfvVxI383l5PwD8nplBizZQ7Bgu+AxY38eeUT9/KiH jIrw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:content-transfer-encoding:mime-version :subject:date:references:to:in-reply-to:message-id; bh=bY34Q3WmgrMcwg02R2aFP0ECvKEUVY5pvh6pnke1d2U=; b=OewAQz5WhmzW+hsi1vB6PXhxHAr/aFD9h+0OdD09LItXbi8inyouD17cMZg1cQ6M9C SuvRGz+MO54CenwDfTr+Anvbv217vOnQtqS+TTLwO+d5Z4M88QeE8o1/whtJlKt4ytwM th/KH9KDc7x1YiCo3L/Xj0QAL+i4Ov4Ty7pyDRmZtWBAc/52W23hVDQPjNcuo1pMdrl+ 4sYXtpM6PhpztPy6ui2eshjCnMTrP3TrSE9QAIYcnASATjbJUUCXzT2JmbeLCz0qShcl lM6n4p1Nf5Sic4ecIAsVESyqrKO51umC0/Ezy7cofq31f3XFLDHjYzwi/z96KsoTUa/9 j37Q==
X-Gm-Message-State: AGi0Pua69oBpfKa1EmyV+vYDsJSYcG+LuIX8r7W6L58kotQlElueP3OF 66akIl1FjYoxPULLvpu0swCAeG1xFlc=
X-Google-Smtp-Source: APiQypLiBULvEKDixCqiB+oj0je1FiRgQ9hW1lkA6jL6FbHKkhurOYRT76IPv5bQmXV23Rf2TH8vVQ==
X-Received: by 2002:a7b:ce13:: with SMTP id m19mr15387147wmc.76.1587823171278; Sat, 25 Apr 2020 06:59:31 -0700 (PDT)
Received: from [192.168.71.111] (p5B0D9376.dip0.t-ipconnect.de. [91.13.147.118]) by smtp.gmail.com with ESMTPSA id q10sm12017805wrv.95.2020.04.25.06.59.30 for <oauth@ietf.org> (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Sat, 25 Apr 2020 06:59:30 -0700 (PDT)
From: Torsten Lodderstedt <torsten@lodderstedt.net>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.80.23.2.2\))
Date: Sat, 25 Apr 2020 15:59:29 +0200
References: <158782292128.14210.4772883516559961122@ietfa.amsl.com>
To: oauth <oauth@ietf.org>
In-Reply-To: <158782292128.14210.4772883516559961122@ietfa.amsl.com>
Message-Id: <0B7C4ABE-6B01-437B-B520-442333D6E1F8@lodderstedt.net>
X-Mailer: Apple Mail (2.3608.80.23.2.2)
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/rJySxYGHlFDcuCgiezH0gdkHjMM>
Subject: Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-jwt-introspection-response-09.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Apr 2020 13:59:35 -0000

Hi all,

the new revision puts the data of the introspected token into a top level claim “token_introspection”. This allows to clearly distinguish the claims of the  JWT serving as representation of the introspection response from the actual token claims with same name, e.g. “iat”.

The new revision will be presented in the virtual meeting next Monday. 

best regards,
Torsten.  

> On 25. Apr 2020, at 15:55, internet-drafts@ietf.org wrote:
> 
> 
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> This draft is a work item of the Web Authorization Protocol WG of the IETF.
> 
>        Title           : JWT Response for OAuth Token Introspection
>        Authors         : Torsten Lodderstedt
>                          Vladimir Dzhuvinov
> 	Filename        : draft-ietf-oauth-jwt-introspection-response-09.txt
> 	Pages           : 18
> 	Date            : 2020-04-25
> 
> Abstract:
>   This specification proposes an additional JSON Web Token (JWT)
>   secured response for OAuth 2.0 Token Introspection.
> 
> 
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-oauth-jwt-introspection-response/
> 
> There are also htmlized versions available at:
> https://tools.ietf.org/html/draft-ietf-oauth-jwt-introspection-response-09
> https://datatracker.ietf.org/doc/html/draft-ietf-oauth-jwt-introspection-response-09
> 
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-oauth-jwt-introspection-response-09
> 
> 
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
> 
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
> 
> 
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth