IETF Logo Mail Archive

Re: [OAUTH-WG] FW: [Fwd: I-D ACTION:draft-vrancken-oauth-redelegation-00.txt]

Igor Faynberg <faynberg@alcatel-lucent.com> Thu, 01 October 2009 17:46 UTC

Return-Path: <faynberg@alcatel-lucent.com>
X-Original-To: oauth@core3.amsl.com
Delivered-To: oauth@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 0318E3A69D9 for <oauth@core3.amsl.com>; Thu, 1 Oct 2009 10:46:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.539
X-Spam-Level:
X-Spam-Status: No, score=-2.539 tagged_above=-999 required=5 tests=[AWL=0.060, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mvsi1RjuPgZG for <oauth@core3.amsl.com>; Thu, 1 Oct 2009 10:46:05 -0700 (PDT)
Received: from ihemail4.lucent.com (ihemail4.lucent.com [135.245.0.39]) by core3.amsl.com (Postfix) with ESMTP id 67CC83A6895 for <oauth@ietf.org>; Thu, 1 Oct 2009 10:45:42 -0700 (PDT)
Received: from umail.lucent.com (h135-3-40-61.lucent.com [135.3.40.61]) by ihemail4.lucent.com (8.13.8/IER-o) with ESMTP id n91Hl6W4023806 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 1 Oct 2009 12:47:06 -0500 (CDT)
Received: from [135.244.35.74] (faynberg.lra.lucent.com [135.244.35.74]) by umail.lucent.com (8.13.8/TPES) with ESMTP id n91Hl3qe003460; Thu, 1 Oct 2009 12:47:03 -0500 (CDT)
Message-ID: <4AC4EB16.9020405@alcatel-lucent.com>
Date: Thu, 01 Oct 2009 13:47:02 -0400
From: Igor Faynberg <faynberg@alcatel-lucent.com>
Organization: Alcatel-Lucent
User-Agent: Thunderbird 2.0.0.23 (Windows/20090812)
MIME-Version: 1.0
To: Peter Saint-Andre <stpeter@stpeter.im>
References: <5710F82C0E73B04FA559560098BF95B124EDE09F3D@USNAVSXCHMBSA3.ndc.alcatel-lucent.com> <4AC4E6FA.2020608@stpeter.im>
In-Reply-To: <4AC4E6FA.2020608@stpeter.im>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Scanned-By: MIMEDefang 2.57 on 135.245.2.39
Cc: OAuth WG <oauth@ietf.org>
Subject: Re: [OAUTH-WG] FW: [Fwd: I-D ACTION:draft-vrancken-oauth-redelegation-00.txt]
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: faynberg@alcatel-lucent.com
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Oct 2009 17:46:07 -0000

I think Peter's advice is very reasonable.  Ultimately the point here is 
to get the discussion going without delaying the schedule for the agreed 
deliverables.  It surely is the WG chairs' prerogative to decide on what 
ought to be done first.

Personally, I don't see any reason to issue a call for consensus before 
the draft has been discussed. I remember the burst of discussions on the 
mailing list before the "bar session," which clearly indicated an 
interest, so I thought we would see more of it after the draft has been 
published.

 I hope that we will get a chance to discuss this in Hiroshima.

Igor

Peter Saint-Andre wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> <hat type="chair"/>
>
> On 10/1/09 10:24 AM, Zeltsan, Zachary (Zachary) wrote:
>   
>> This is reminder of the draft
>> draft-vrancken-oauth-redelegation-00.txt. The authors of the draft
>> would like to get feedback on the proposed work (otherwise I should
>> assume that there are no objections to accepting the proposal as a
>> work item).
>>     
>
> Our charter (i.e., our "contract" with the IESG) states:
>
>    After delivering OAuth 1.1, the Working Group may consider
>    defining additional functions and/or extensions...
>
> Naturally we can discuss draft-vrancken-oauth-redelegation (and other
> specs) on this list.  And I don't think we absolutely must wait until
> draft-ietf-oauth-authentication and draft-ietf-oauth-web-delegation are
> delivered to the IESG before taking on additional WG items.  However, I
> am at least hesitant to take attention away from the core specs (and
> draft-hammer-oauth as informational documentation of "OAuth Core 1.0
> Revision A" with errata) until we have consensus on the major issues
> we've been discussing recently: mandatory signature algorithms, the
> appropriate place to communicate client credentials, simplifying request
> normalization, token expiration, improved error codes, interaction of
> OAuth with HTTP caching, etc.  I also think it would be very helpful for
> members of this list to complete reviews of the above-mentioned I-Ds
> (perhaps after the document editor has had a chance to incorporate the
> results of recent list discussion).
>
> That said, if the group comes to consensus that it would like to accept
> draft-vrancken-oauth-redelegation as an official work item of the OAuth
> WG, we could proceed with doing so.  If the authors would like the
> chairs to issue a consensus call on this matter, please let us know.
>
> Peter
>
> - --
> Peter Saint-Andre
> https://stpeter.im/
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.8 (Darwin)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
>
> iEYEARECAAYFAkrE5voACgkQNL8k5A2w/vyuUQCgvmtiKTSsfpp9EoqQE38RYx+y
> tycAn30XJx74n5/7LbX6gEzcTN45zCur
> =+lG6
> -----END PGP SIGNATURE-----
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth
>

v2.23.0 | Report a Bug | By Email