[OAUTH-WG] Fwd: New Version Notification for draft-ietf-oauth-par-02.txt
Brian Campbell <bcampbell@pingidentity.com> Fri, 10 July 2020 19:36 UTC
Return-Path: <bcampbell@pingidentity.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5F9F53A08B7 for <oauth@ietfa.amsl.com>; Fri, 10 Jul 2020 12:36:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=pingidentity.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0SIBqAJdhOik for <oauth@ietfa.amsl.com>; Fri, 10 Jul 2020 12:36:50 -0700 (PDT)
Received: from mail-lf1-x131.google.com (mail-lf1-x131.google.com [IPv6:2a00:1450:4864:20::131]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 24EB83A07FB for <oauth@ietf.org>; Fri, 10 Jul 2020 12:36:49 -0700 (PDT)
Received: by mail-lf1-x131.google.com with SMTP id d21so3832127lfb.6 for <oauth@ietf.org>; Fri, 10 Jul 2020 12:36:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=W79L8IQ8TaatP80rDHBmdL6n4v4SptfXIc1jZmqdQXg=; b=bq0S5JxoMzICMunXzeZi4oS5LtgkvPePOvzrTK4FLRO/zpYxJNL3DT5/d0MObM9axS oIMAhbgkldXVUwWPKM46T5vMnQezYwUQgh1rORbMMrOuVbsUJk2C0xl4U/bMrchFs4l5 nMDSQAA6EHD6G1SfZ0HRFICLG/veEbaigURzZ6SarQqkyNuJns04rCSgUT8gAkhZ0eU3 Lqn+90DLbWJyXfI4fQaYb71JZmDVaoH3LWfVp9rLFCPnUk+3YkzjG1epm5k0RU8kD+Ju Gbg/jOqqYU1UnGk11im53fWF8l6ISZb/T6b2THtfRicpRShXqtcpjYIi8j3E6hBaaBX+ GWeQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=W79L8IQ8TaatP80rDHBmdL6n4v4SptfXIc1jZmqdQXg=; b=BQcbVNT2AU9VfKJeTjl6BwaO+MvCLFnul+CXWulIFGfGRUPOxqoXhLkk4QTfspTOOE pQLbkilpEaFN8nsTflTykmGJB4emXGxXk/oMXyQtefKVp05ViMUzIG2LHKiEhVEwqxXA 06dsTKIsiPHW+7f/u6uIERX7rWj7phelh1CzmNN/MdnS5225kebK7XtMo6NEwDjJ0xgc zcZX/vTrC+XqcfOwToY+SmwLmEgbJqtIsKrKPf97y6zAwofmQIrjmRYjcZ20eazSCElH RvSNAoxbVMGHP5QAmKZXE3tdoSoKe99vLM2x9dNfWthIa8fHUR6KWRlosBL64eNTV6BY AVLQ==
X-Gm-Message-State: AOAM533A1WwLU8ROg+AbB9L+o5JziuEbxwHACO6zQlecJ1ebRVUdCSjI s+I1AoLk9QmBSoeUg/c9ymC9qi/kAVA9IM97J6RoA/GXIe5F6Fq/z7kixmyz0Znx3wZG1J28rjr NfVmBADHUidq0Z/DmMlg=
X-Google-Smtp-Source: ABdhPJzprX15lJAbDJavXDFZViYH/HS90llkMVmTwVlOPUI6Fz+fZVLHyyoIyUqXvuzShritZ9mQsQ3KW4t8379x9Bg=
X-Received: by 2002:ac2:5e29:: with SMTP id o9mr43101449lfg.196.1594409807286; Fri, 10 Jul 2020 12:36:47 -0700 (PDT)
MIME-Version: 1.0
References: <159440889543.18992.875170114115905147@ietfa.amsl.com>
In-Reply-To: <159440889543.18992.875170114115905147@ietfa.amsl.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Fri, 10 Jul 2020 13:36:20 -0600
Message-ID: <CA+k3eCQzkFo_NPsRp+vb05YyDsuPzQNH-0Ldm26uvwtCRfgvSA@mail.gmail.com>
To: oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000030b07b05aa1b7647"
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/vrVPYjHuB7_Uu9f9j-6KakEXAS8>
Subject: [OAUTH-WG] Fwd: New Version Notification for draft-ietf-oauth-par-02.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Jul 2020 19:36:52 -0000
WG, A new -02 draft of "OAuth 2.0 Pushed Authorization Requests" has been published. A summary of the changes, taken from the document history, is included below for ease of reference. -02 * Update Resource Indicators reference to the somewhat recently published RFC 8707 <https://datatracker.ietf.org/doc/html/rfc8707> * Added metadata in support of pushed authorization requests only feature * Update to comply with draft-ietf-oauth-jwsreq-21 <https://datatracker.ietf.org/doc/html/draft-ietf-oauth-jwsreq-21>, which requires "client_id" in the authorization request in addition to the "request_uri" * Clarified timing of request validation * Add some guidance/options on the request URI structure * Add the key used in the request object example so that a reader could validate or recreate the request object signature * Update to draft-ietf-oauth-jwsreq-25 <https://datatracker.ietf.org/doc/html/draft-ietf-oauth-jwsreq-25> and added note regarding "require_signed_request_object" ---------- Forwarded message --------- From: <internet-drafts@ietf.org> Date: Fri, Jul 10, 2020 at 1:21 PM Subject: New Version Notification for draft-ietf-oauth-par-02.txt To: Filip Skokan <panva.ip@gmail.com>, Torsten Lodderstedt < torsten@lodderstedt.net>, Brian Campbell <bcampbell@pingidentity.com>, Dave Tonge <dave@tonge.org>, Nat Sakimura <nat@sakimura.org> A new version of I-D, draft-ietf-oauth-par-02.txt has been successfully submitted by Brian Campbell and posted to the IETF repository. Name: draft-ietf-oauth-par Revision: 02 Title: OAuth 2.0 Pushed Authorization Requests Document date: 2020-07-10 Group: oauth Pages: 18 URL: https://www.ietf.org/internet-drafts/draft-ietf-oauth-par-02.txt Status: https://datatracker.ietf.org/doc/draft-ietf-oauth-par/ Htmlized: https://tools.ietf.org/html/draft-ietf-oauth-par-02 Htmlized: https://datatracker.ietf.org/doc/html/draft-ietf-oauth-par Diff: https://www.ietf.org/rfcdiff?url2=draft-ietf-oauth-par-02 Abstract: This document defines the pushed authorization request endpoint, which allows clients to push the payload of an OAuth 2.0 authorization request to the authorization server via a direct request and provides them with a request URI that is used as reference to the data in a subsequent authorization request. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat -- _CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited. If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you._
- [OAUTH-WG] Fwd: New Version Notification for draf… Brian Campbell
- Re: [OAUTH-WG] Fwd: New Version Notification for … Vladimir Dzhuvinov
- Re: [OAUTH-WG] Fwd: New Version Notification for … Brian Campbell
- Re: [OAUTH-WG] Fwd: New Version Notification for … Neil Madden
- Re: [OAUTH-WG] Fwd: New Version Notification for … Brian Campbell
- Re: [OAUTH-WG] New Version Notification for draft… Neil Madden