IETF Logo Mail Archive

Re: [OAUTH-WG] Working Group Last Call on Dynamic Client Registration Documents

Mike Jones <Michael.Jones@microsoft.com> Sun, 06 April 2014 17:45 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AB1F51A04AF for <oauth@ietfa.amsl.com>; Sun, 6 Apr 2014 10:45:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tegvR0lGkK65 for <oauth@ietfa.amsl.com>; Sun, 6 Apr 2014 10:45:38 -0700 (PDT)
Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1lp0145.outbound.protection.outlook.com [207.46.163.145]) by ietfa.amsl.com (Postfix) with ESMTP id 00BC41A03EA for <oauth@ietf.org>; Sun, 6 Apr 2014 10:45:37 -0700 (PDT)
Received: from CH1PR03CA007.namprd03.prod.outlook.com (10.255.156.152) by BLUPR03MB439.namprd03.prod.outlook.com (10.141.78.151) with Microsoft SMTP Server (TLS) id 15.0.908.10; Sun, 6 Apr 2014 17:45:31 +0000
Received: from BN1AFFO11FD013.protection.gbl (10.255.156.132) by CH1PR03CA007.outlook.office365.com (10.255.156.152) with Microsoft SMTP Server (TLS) id 15.0.913.9 via Frontend Transport; Sun, 6 Apr 2014 17:45:31 +0000
Received: from mail.microsoft.com (131.107.125.37) by BN1AFFO11FD013.mail.protection.outlook.com (10.58.52.73) with Microsoft SMTP Server (TLS) id 15.0.918.6 via Frontend Transport; Sun, 6 Apr 2014 17:45:29 +0000
Received: from TK5EX14MBXC286.redmond.corp.microsoft.com ([169.254.1.232]) by TK5EX14HUBC107.redmond.corp.microsoft.com ([157.54.80.67]) with mapi id 14.03.0181.007; Sun, 6 Apr 2014 17:44:58 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Torsten Lodderstedt <torsten@lodderstedt.net>, Bill Mills <wmills_92105@yahoo.com>
Thread-Topic: [OAUTH-WG] Working Group Last Call on Dynamic Client Registration Documents
Thread-Index: AQHPT+nITTIZxjtAw0axukyWMLHP/JsBqYwAgADqJoCAAXocgIAALomAgACjKcA=
Date: Sun, 06 Apr 2014 17:44:57 +0000
Message-ID: <4E1F6AAD24975D4BA5B16804296739439A148D31@TK5EX14MBXC286.redmond.corp.microsoft.com>
References: <533E77C3.9000509@gmx.net> <1396629672.75505.YahooMailNeo@web142804.mail.bf1.yahoo.com> <495B4720-34D6-4588-9E63-A8F501D39177@lodderstedt.net> <1396761153.23438.YahooMailNeo@web142805.mail.bf1.yahoo.com> <D8D86C7B-9DC6-44CE-A7E4-903313571A31@lodderstedt.net>
In-Reply-To: <D8D86C7B-9DC6-44CE-A7E4-903313571A31@lodderstedt.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [157.54.51.35]
Content-Type: multipart/alternative; boundary="_000_4E1F6AAD24975D4BA5B16804296739439A148D31TK5EX14MBXC286r_"
MIME-Version: 1.0
X-EOPAttributedMessage: 0
X-Forefront-Antispam-Report: CIP:131.107.125.37; CTRY:US; IPV:CAL; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(10009001)(438001)(189002)(199002)(377454003)(53754006)(24454002)(87266001)(49866001)(2656002)(86362001)(87936001)(94316002)(85306002)(93516002)(90146001)(47736001)(97186001)(92726001)(54356001)(47976001)(74662001)(31966008)(69226001)(19300405004)(85852003)(92566001)(79102001)(74502001)(55846006)(6806004)(224303002)(80976001)(224313003)(53806001)(50986001)(97336001)(59766001)(16236675002)(84326002)(95666003)(20776003)(94946001)(2009001)(74706001)(56816005)(33656001)(95416001)(93136001)(47446002)(83072002)(81342001)(81542001)(15975445006)(76786001)(19580395003)(54316002)(98676001)(77096001)(83322001)(81686001)(76796001)(81816001)(74366001)(76482001)(74876001)(99396002)(84676001)(63696002)(4396001)(66066001)(46102001)(19580405001)(77982001)(512874002)(65816001)(15202345003)(97736001)(71186001)(80022001)(56776001)(44976005); DIR:OUT; SFP:1101; SCL:1; SRVR:BLUPR03MB439; H:mail.microsoft.com; FPR:3CA6F1F7.CF2D3ED.33F93FF7.48C352C8.2033D; MLV:sfv; PTR:InfoDomainNonexistent; MX:1; A:1; LANG:en;
X-O365ENT-EOP-Header: Message processed by - O365_ENT: Allow from ranges (Engineering ONLY)
X-Forefront-PRVS: 0173C6D4D5
Received-SPF: Pass (: domain of microsoft.com designates 131.107.125.37 as permitted sender) receiver=; client-ip=131.107.125.37; helo=mail.microsoft.com;
X-OriginatorOrg: microsoft.onmicrosoft.com
Archived-At: http://mailarchive.ietf.org/arch/msg/oauth/xpO1ZuROtahsgMAh4zKPbmZ-M6s
Cc: "oauth@ietf.org" <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Working Group Last Call on Dynamic Client Registration Documents
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 06 Apr 2014 17:45:42 -0000

As a point of clarity, OpenID Connect does not mandate support for dynamic registration in all cases.  In static profiles with a pre-established set of identity providers, it isn’t required.  It *is* required in the dynamic profile, in which clients can use identity providers that they have no pre-existing relationship with.

                                                            -- Mike

From: OAuth [mailto:oauth-bounces@ietf.org] On Behalf Of Torsten Lodderstedt
Sent: Sunday, April 06, 2014 12:59 AM
To: Bill Mills
Cc: oauth@ietf.org
Subject: Re: [OAUTH-WG] Working Group Last Call on Dynamic Client Registration Documents

I think it is at the discretion of the actual deployment whether clients may dynamically register or not (meaning they need to go through some oob mechanism). Protocols utilizing OAuth could make it part of their mandatory to implement features - in the same way OIDC does.

Best regards,
Torsten.
Am 06.04.2014 um 07:12 schrieb Bill Mills <wmills_92105@yahoo.com<mailto:wmills_92105@yahoo.com>>:
To me the fundamental question of whether a client has to be registered in each place it is used is quite significant.  We don't address the problem and have not discussed it enough.

-bill
On Friday, April 4, 2014 11:39 PM, Torsten Lodderstedt <torsten@lodderstedt.net<mailto:torsten@lodderstedt.net>> wrote:
Hi Bill,

which scalability problem are you referring to? As far as I remember there were issues around the management API but not the core protocol.

regards,
Torsten.

Am 04.04.2014 um 18:41 schrieb Bill Mills <wmills_92105@yahoo.com<mailto:wmills_92105@yahoo.com>>:
Given the fundamental scalability problem we discussed in London do we really feel we're ready?
On Friday, April 4, 2014 3:07 AM, Hannes Tschofenig <hannes.tschofenig@gmx.net<mailto:hannes.tschofenig@gmx.net>> wrote:
Hi all,

This is a Last Call for comments on the dynamic client registration
documents:

* OAuth 2.0 Dynamic Client Registration Core Protocol
http://tools.ietf.org/html/draft-ietf-oauth-dyn-reg-16

* OAuth 2.0 Dynamic Client Registration Metadata
http://tools.ietf.org/html/draft-ietf-oauth-dyn-reg-metadata-00

Since we have to do the last call for these two documents together we
are setting the call for **3 weeks**.

Please have your comments in no later than April 25th.

Ciao
Hannes & Derek

_______________________________________________
OAuth mailing list
OAuth@ietf.org<mailto:OAuth@ietf.org>
https://www.ietf.org/mailman/listinfo/oauth

_______________________________________________
OAuth mailing list
OAuth@ietf.org<mailto:OAuth@ietf.org>
https://www.ietf.org/mailman/listinfo/oauth

v2.23.0 | Report a Bug | By Email