[OAUTH-WG] Re: New issue: RAR object inside a TraT

Brian Campbell <bcampbell@pingidentity.com> Thu, 25 July 2024 17:46 UTC

Return-Path: <bcampbell@pingidentity.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 76805C14F689 for <oauth@ietfa.amsl.com>; Thu, 25 Jul 2024 10:46:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=pingidentity.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id neIzgPoyDuBG for <oauth@ietfa.amsl.com>; Thu, 25 Jul 2024 10:46:32 -0700 (PDT)
Received: from mail-lf1-x135.google.com (mail-lf1-x135.google.com [IPv6:2a00:1450:4864:20::135]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B8D22C14F5FC for <oauth@ietf.org>; Thu, 25 Jul 2024 10:46:32 -0700 (PDT)
Received: by mail-lf1-x135.google.com with SMTP id 2adb3069b0e04-52f04b3cb33so1027338e87.0 for <oauth@ietf.org>; Thu, 25 Jul 2024 10:46:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=google; t=1721929590; x=1722534390; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=7xfT6Tl/V7a78ThMFGXPmydQxrOoRdsWo57RfBn35fI=; b=PV7kOfMnDxrO0RNCggpPcUMUsSzlUlLvvXmYubqnN24+8kRBvslkpQtiFY3WcViS2I Sbf/oYNe9pRTC8NJvX8eUughF6MNQAFyLXBWFvaF6FeZtf4FQDpr9i7KokoVyR4V8f+L scFDa87leY0Wmc1z+s87LyQvLbc3dJujdTftPVCwMShIZyW0LVC9ti25q/JaW8TjDN5M XqTW24sXAQxfAZT1raDXTPmqE9Rj6S1LiqV9H4e+lWTpqrEo4Uj2hD8hMKIrMbj0OCGT H+8Zy4lIE/FJpWzNgFt6uwUm5EcKuzku08ceAuZuhhMyFhpTqqTJRLbXh6k1D8ZlgugK 7qaw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1721929590; x=1722534390; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=7xfT6Tl/V7a78ThMFGXPmydQxrOoRdsWo57RfBn35fI=; b=HWw59hupHri31+3gKdu7JGqkSO7m8Hg/9dTZsNQcnCyYC3MaOFCMJkBK6z/FXYi8Tq 7s5G3p+ouiJL9u6aq8fOQEQp/ZPoZ0TwsEvBe+mGEkfFcoES0sCHfJhnTYIt3oVjrq72 zRcIRBwYxUp3w0etCZoSslI1B1bscK4lp5m8hdTQrXJqkYx63hCIhVYyW3ybh3Jeng7f GXBu66zxftUwM7PbDvm2qaxvw2XkIyR7sxs8MeVOpdsUO1uTDD2QgrLYzNJi+ROMCMyi kTUbBSJ/OAaiOzTBOYPCF2k/LY3kk945IhkKVg37fBMNT2QwaC+EO4ByK/LHH+mE/Csk z1YA==
X-Gm-Message-State: AOJu0YzyPcw3dKBkeGcmCQ34lY+x1z7epMOPr4iCJwybQZvDTKeCTLAw UJo5dMZl1Pf1f4g2ZgylFe4R0ykiik3mwIiyPuvy1GuB3+kDeuV2iRVKPkqiUcqekk29z8f8kIT kQ1Y9pKiXbfRi31/ovZ5CWNmV+1QM7WBdc2jhoOOKg1wyVxTdVxmjCfbQpMoMYS2tekFaCYWK16 pOqi+53NXaXa50C9w7AvgqQ/0xBQ==
X-Google-Smtp-Source: AGHT+IE6ygMT/canO95HJgel3ZwIUNqVPOl1jRAeC5VufdDVlUOCfv0CcLPHkIW1TzdNKi4oQo7/tvcdZFF+e1821uY=
X-Received: by 2002:a05:6512:b92:b0:52f:d17e:46b with SMTP id 2adb3069b0e04-52fd60928edmr2686765e87.54.1721929590320; Thu, 25 Jul 2024 10:46:30 -0700 (PDT)
MIME-Version: 1.0
References: <32923bd8-5b72-486f-97f7-15cfd2ae1190.ref@aol.com> <32923bd8-5b72-486f-97f7-15cfd2ae1190@aol.com>
In-Reply-To: <32923bd8-5b72-486f-97f7-15cfd2ae1190@aol.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Thu, 25 Jul 2024 10:46:02 -0700
Message-ID: <CA+k3eCRsLZOm+0C+By-WEkknfGk6sFzTEBPgBbi1f-YwYAXG+A@mail.gmail.com>
To: George Fletcher <gffletch=40aol.com@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008f9967061e15f98e"
Message-ID-Hash: PBY5TUG5PTYO7WYEA2AIRJN5NDYDN5U3
X-Message-ID-Hash: PBY5TUG5PTYO7WYEA2AIRJN5NDYDN5U3
X-MailFrom: bcampbell@pingidentity.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "oauth@ietf.org" <oauth@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [OAUTH-WG] Re: New issue: RAR object inside a TraT
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/sA5CIPkF9k5qJ3OG7JFVtDnpZDU>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>

Any statement I made at meeting the other day on this topic was less an
actual proposal and more just a meta comment that there might be some
confusion around the term "authorization details" because it is already
used extensively in RAR to mean a RAR related thing. RFC9396 uses the
term "authorization
details" 64 times while the parameter, claim, and introspection response
member name "authorization_details" appears 87 times.

Ironically, I'm sending this from the "[ID-align] Side Meeting at IETF120"
which is about divergent use of similar or same terms.

On Wed, Jul 24, 2024 at 2:33 PM George Fletcher <gffletch=
40aol.com@dmarc.ietf.org> wrote:

> Hi,
>
> At IETF 120, a proposal was made to both rename the `azd` claim (because
> of it's overlap with azd as defined by RAR) as well as define a way to
> explicitly include a RAR object. The issue can be found here:
>
> https://github.com/oauth-wg/oauth-transaction-tokens/issues/118
>
> The proposal is to rename `azd` to `tad` (Transaction Authorization
> Details) but NOT define a specific mechanism for including a RAR object in
> the `tad`. Are there any current (real world) use cases where an explicit
> inclusion of a RAR object would be valuable?
>
> This or any other feedback greatly appreciated. Please provide feedback in
> the issue on github.
>
> Thanks,
> George
> _______________________________________________
> OAuth mailing list -- oauth@ietf.org
> To unsubscribe send an email to oauth-leave@ietf.org
>

-- 
_CONFIDENTIALITY NOTICE: This email may contain confidential and privileged 
material for the sole use of the intended recipient(s). Any review, use, 
distribution or disclosure by others is strictly prohibited.  If you have 
received this communication in error, please notify the sender immediately 
by e-mail and delete the message and any file attachments from your 
computer. Thank you._