Re: [OAUTH-WG] Status of draft-tschofenig-oauth-audience
Hannes Tschofenig <hannes.tschofenig@gmx.net> Wed, 20 January 2016 14:27 UTC
Return-Path: <hannes.tschofenig@gmx.net>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E99251A8A11 for <oauth@ietfa.amsl.com>; Wed, 20 Jan 2016 06:27:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ngCv-0-VjjwQ for <oauth@ietfa.amsl.com>; Wed, 20 Jan 2016 06:27:50 -0800 (PST)
Received: from mout.gmx.net (mout.gmx.net [212.227.17.22]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DFC641A8A10 for <oauth@ietf.org>; Wed, 20 Jan 2016 06:27:49 -0800 (PST)
Received: from [192.168.10.141] ([82.142.85.169]) by mail.gmx.com (mrgmx103) with ESMTPSA (Nemesis) id 0LmJsk-1Zm11F1DxC-00ZuLq; Wed, 20 Jan 2016 15:27:47 +0100
To: Sergey Beryozkin <sberyozkin@gmail.com>, oauth@ietf.org
References: <CA+k3eCSpWFwyvk=XHP4b_zxzu-zrMYsS-axF6csO90-ahmkueQ@mail.gmail.com> <BY2PR03MB4423033D5604E9E36B20C23F5CA0@BY2PR03MB442.namprd03.prod.outlook.com> <5CA9073D-BBF7-48BD-BEC5-1F626E8C3818@mit.edu> <8EB68572-DA59-482D-A660-FA6D9848AAD2@oracle.com> <ade5692aa1afa2d9d79b8ac7a55bf150@lodderstedt.net> <5698CB3D.1030306@gmail.com> <69B0E23E-818A-4FE4-81A0-A8106EB6C312@ve7jtb.com> <5698F885.3030009@gmail.com> <569A69A5.7020006@connect2id.com> <A1C1786C-BE13-4D0F-9541-BEAE4DB8F284@mit.edu> <569ABB30.9060703@gmail.com> <569D0AE6.3060708@mit.edu> <569D0E86.60908@gmail.com> <569D1297.2000805@mit.edu> <569D1631.4030705@gmail.com> <569E1804.8010803@gmail.com> <569F60B3.3030501@gmail.com>
From: Hannes Tschofenig <hannes.tschofenig@gmx.net>
Openpgp: id=071A97A9ECBADCA8E31E678554D9CEEF4D776BC9
Message-ID: <569F9955.9030001@gmx.net>
Date: Wed, 20 Jan 2016 15:27:33 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.5.1
MIME-Version: 1.0
In-Reply-To: <569F60B3.3030501@gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="UN2XxnqCVlOCPv1QIe17p7KV80QDaldU6"
X-Provags-ID: V03:K0:nPob/93v5EFdbxbhOS4i/dfHcis7aL8kWjM4RR1IEs84TXz1h+W KcznUzOyibhXghgvFve8dSrtNkkIuNiYihGID3czbxbH5udVHknFdgF8zcKMctwa7zMEuaU alNCkl/MCFBQ0loxvaZpraF9ltpftJh1sDOKXV80AIFjD07yO5LqDwtQDiByZS/nC5Q1Iyv krJqnr409tpyZgF6xQbkg==
X-UI-Out-Filterresults: notjunk:1;V01:K0:HCt8qecpbRo=:2UKXPiILPlJ6826rjxreWU ekUuFwpV62/1Qt2mTVkOcbUudIY2DYaP08N8HhlW0mCM0JeTlGrKyQ0JILbjuWwj9NNQynvvN h0vcplM36V2url42JtM94zvxUmN+kkCE3ZGuzO2IlnQ7k8rq/UMsFek/dGZSDV1Gsm6M5VJIF lbEuzJipj1iCFE7qbY4UG7h5rK/ovRypy92BjfnKRRJg9hUkOBR3zU81DUZ19LY2OeZPkYWXj haVV9Krj2uDjbK46/Pcjazg6dy6KxTccjF6776mpBWWTmXL8Ne8zqTi0+Vexio4+Txylf/2ir BrvHYc/AKTxaKgKnARe3DUGXMiAjWCRmzg7IAon77zmuVdPxBvmApCpJkiYmBlk3kqfbXGSfY Tz5OSJ5jlGJF6ljg27Ro4/EihPdW/EPyJ0owrbNw/6vZQMLL/rARNe/y2o1IGRC6XS6yo2RA5 94enbnNSHa9N/puwtqj9wjxxS9vmz0dKrtrtFZlY4YDLXbwNUR1hJv93YTJ+Y63gIpvX8QLXD x1UJFudKeIfGb1JWZNh2o0c4j+mA9dzpKEZ0DlfxdG97kC+AiMq7FYkK9B0E95lRNc/mveSq5 9nHpYFL1HBKizNVNaSZR24LFVZqw1pLwGS5kwjM+10GF596Ea08etjut2pFN3JGxuh/tKdQ0N /+JUI0VeZ4PRz7wpwaFlBmOurTbpBQt8gTfLXleiP5E8z090bS8bfxtrTY+WCSpc9Gx9ZVn8Y B4wvkq+7sHvdmJMfC8pfIJkcrPjc2AZvK4MfJnScRzuwtLD+4d3le9hLiIo=
Archived-At: <http://mailarchive.ietf.org/arch/msg/oauth/zR9m6Gq78kryu5niIfAooTqZ3vM>
Subject: Re: [OAUTH-WG] Status of draft-tschofenig-oauth-audience
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Jan 2016 14:27:52 -0000
Hi Sergey, that's a good question. After this document was published the functionality had been integrated into the PoP solution document. Recently, I got feedback that the functionality should be more generic and it is independent of the PoP work. So, I guess it is a good time to discuss the needed functionality and where it should be included. Ciao Hannes On 01/20/2016 11:25 AM, Sergey Beryozkin wrote: > Hi > > Given that the draft-tschofenig-oauth-audience [1] has expired, I'm > wondering if it is still relevant. > > I know the token introspection response can provide the audience > value(s), but the question is really how a client is associated with a a > given audience in the first place. As such [1] may still make sense, for > example, I can think of two options: > 1. the client audiences are set out of band during the client > registration time and all the tokens issued to that client will be > restricted accordingly > 2. the client is requesting a specific audience during the grant to > token exchange as per [1] > > I guess 1. is how it is done in practice or is 2. is also a valid option ? > > > Thanks, Sergey > > > [1] https://tools.ietf.org/html/draft-tschofenig-oauth-audience-00 > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth
- [OAUTH-WG] Mix-Up About The Mix-Up Mitigation Brian Campbell
- Re: [OAUTH-WG] Mix-Up About The Mix-Up Mitigation Mike Jones
- Re: [OAUTH-WG] Mix-Up About The Mix-Up Mitigation Justin Richer
- Re: [OAUTH-WG] Mix-Up About The Mix-Up Mitigation Phil Hunt (IDM)
- Re: [OAUTH-WG] Mix-Up About The Mix-Up Mitigation torsten
- Re: [OAUTH-WG] Mix-Up About The Mix-Up Mitigation Brian Campbell
- Re: [OAUTH-WG] Mix-Up About The Mix-Up Mitigation Bill Mills
- Re: [OAUTH-WG] Mix-Up About The Mix-Up Mitigation Antonio Sanso
- [OAUTH-WG] Question about RFC 7622 (Token Introsp… Sergey Beryozkin
- Re: [OAUTH-WG] Question about RFC 7622 (Token Int… John Bradley
- Re: [OAUTH-WG] Question about RFC 7622 (Token Int… Sergey Beryozkin
- Re: [OAUTH-WG] Question about RFC 7622 (Token Int… Buhake Sindi
- Re: [OAUTH-WG] Question about RFC 7622 (Token Int… Sergey Beryozkin
- Re: [OAUTH-WG] Question about RFC 7622 (Token Int… Buhake Sindi
- Re: [OAUTH-WG] Question about RFC 7622 (Token Int… John Bradley
- Re: [OAUTH-WG] Question about RFC 7622 (Token Int… Vladimir Dzhuvinov
- Re: [OAUTH-WG] Question about RFC 7622 (Token Int… Justin Richer
- Re: [OAUTH-WG] Question about RFC 7622 (Token Int… Sergey Beryozkin
- Re: [OAUTH-WG] Question about RFC 7622 (Token Int… Sergey Beryozkin
- [OAUTH-WG] Status of draft-tschofenig-oauth-audie… Sergey Beryozkin
- Re: [OAUTH-WG] Status of draft-tschofenig-oauth-a… Hannes Tschofenig
- Re: [OAUTH-WG] Mix-Up About The Mix-Up Mitigation Roland Hedberg
- Re: [OAUTH-WG] Status of draft-tschofenig-oauth-a… Brian Campbell
- Re: [OAUTH-WG] Status of draft-tschofenig-oauth-a… Mike Jones
- Re: [OAUTH-WG] Status of draft-tschofenig-oauth-a… John Bradley
- Re: [OAUTH-WG] Status of draft-tschofenig-oauth-a… Nat Sakimura
- Re: [OAUTH-WG] Status of draft-tschofenig-oauth-a… Mike Jones
- Re: [OAUTH-WG] Status of draft-tschofenig-oauth-a… John Bradley
- Re: [OAUTH-WG] Status of draft-tschofenig-oauth-a… Mike Jones
- Re: [OAUTH-WG] Status of draft-tschofenig-oauth-a… Nat Sakimura
- Re: [OAUTH-WG] Status of draft-tschofenig-oauth-a… Sergey Beryozkin
- Re: [OAUTH-WG] Status of draft-tschofenig-oauth-a… Sergey Beryozkin