[OAUTH-WG] Note to early adopters of draft-hammer-oauth-v2-mac-token
Eran Hammer-Lahav <eran@hueniverse.com> Thu, 07 April 2011 06:21 UTC
Return-Path: <eran@hueniverse.com>
X-Original-To: oauth@core3.amsl.com
Delivered-To: oauth@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 1D1353A6953 for <oauth@core3.amsl.com>; Wed, 6 Apr 2011 23:21:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.351
X-Spam-Level:
X-Spam-Status: No, score=-2.351 tagged_above=-999 required=5 tests=[AWL=-0.353, BAYES_00=-2.599, HTML_MESSAGE=0.001, J_CHICKENPOX_44=0.6]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id o3-r3v+i+kw9 for <oauth@core3.amsl.com>; Wed, 6 Apr 2011 23:21:49 -0700 (PDT)
Received: from p3plex1out02.prod.phx3.secureserver.net (p3plex1out02.prod.phx3.secureserver.net [72.167.180.18]) by core3.amsl.com (Postfix) with SMTP id 380F83A67F3 for <oauth@ietf.org>; Wed, 6 Apr 2011 23:21:48 -0700 (PDT)
Received: (qmail 18337 invoked from network); 7 Apr 2011 06:23:32 -0000
Received: from unknown (HELO smtp.ex1.secureserver.net) (72.167.180.21) by p3plex1out02.prod.phx3.secureserver.net with SMTP; 7 Apr 2011 06:23:32 -0000
Received: from P3PW5EX1MB01.EX1.SECURESERVER.NET ([10.6.135.19]) by P3PW5EX1HT003.EX1.SECURESERVER.NET ([72.167.180.21]) with mapi; Wed, 6 Apr 2011 23:23:32 -0700
From: Eran Hammer-Lahav <eran@hueniverse.com>
To: OAuth WG <oauth@ietf.org>
Date: Wed, 06 Apr 2011 23:23:25 -0700
Thread-Topic: Note to early adopters of draft-hammer-oauth-v2-mac-token
Thread-Index: Acv065bFaBlWgyzBQgSYV8FOfyQT7A==
Message-ID: <90C41DD21FB7C64BB94121FBBC2E7234465664E161@P3PW5EX1MB01.EX1.SECURESERVER.NET>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: multipart/alternative; boundary="_000_90C41DD21FB7C64BB94121FBBC2E7234465664E161P3PW5EX1MB01E_"
MIME-Version: 1.0
Subject: [OAUTH-WG] Note to early adopters of draft-hammer-oauth-v2-mac-token
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Apr 2011 06:21:53 -0000
I am in the midst of editing a new version which includes a few breaking changes such at header attribute name changes ('token' to 'id', 'signature' to 'mac') as well as a new attribute ('issuer' to indicate the host:port where the credentials were issues - in OAuth, the host and post of the authorization server). The normalized request string is also changing (adding the issuer value).
These are all changed in an early revision, so all of this can still change.
I just wanted to give people the heads up that this is coming in a couple of weeks and that if you have deployed the draft or plan to, that you will need to make these changes on both client and server.
Apologies for any issues this might cause, but this draft is not yet stable.
EHL
- [OAUTH-WG] Note to early adopters of draft-hammer… Eran Hammer-Lahav