IETF Logo Mail Archive

Re: [regext] Web Service Client Flow

"Hollenbeck, Scott" <shollenbeck@verisign.com> Mon, 28 November 2022 17:07 UTC

Return-Path: <shollenbeck@verisign.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4F54CC15259D for <regext@ietfa.amsl.com>; Mon, 28 Nov 2022 09:07:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id b4u0wnOG8cKw for <regext@ietfa.amsl.com>; Mon, 28 Nov 2022 09:07:29 -0800 (PST)
Received: from mail2.verisign.com (mail2.verisign.com [72.13.63.31]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3FEBAC15259A for <regext@ietf.org>; Mon, 28 Nov 2022 09:07:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=1201; q=dns/txt; s=VRSN; t=1669655249; h=from:to:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version:subject; bh=r7Gd7m84qLr5Odowo8tgxgLfUYRAwGLuEGgsJSy2jdk=; b=O7s5OOlVViwgFOy1jemF3O9X8jcsAHGm5fb+OsowBuB/09db/jNXwj6d cNO/x3aElZcOa3lpnB3MWgsHyTmzoS+IAu8RH8+jF9ydNX3qDUM8Ymy8S jQ8NI+wHBOX9UsNswcMkUWAQ1Zq2n66IpeHHcEpiRs6f38tBUuZxismHJ l1sNMEMvb7RcnjXHMRQvXfIc6cimn/JUiFpqsJqKaC32l8c80azFCSUMC lEy7WzaVqaaf1mkX2jhz9epdt6gQu4f9D5Upsazk08UC/ATA9J2r95Yhj Fz/YVHjSzjthWGhTLaK9GB0WNmZ6p5JI0/6X02jRrUgdw8C6db4qUk47j A==;
IronPort-Data: A9a23:LQf0RKC5Re/5/hVW/yjiw5YqxClBgxIJ4kV8jS/XYbTApGtw1TcDm 2VJC2mFPfeMMGHwfth2Po/lpBwF78PTytdlTANkpHpgcSlH+JHPbTi7wuUcHAvJd5GeExg3h yk6QoOdRCzhZiaE/n9BCpC48T8mk/ngqoPUUIbsIjp2SRJvVBAvgBdin/9RqoNziLBVOSvU0 T/Ji5CZaQHNNwJcaDpOsfva8kM35ZwehRtD1rAATaET1LPhvyRNZH4vDfnZB2f1RIBSAtm7S 47rpF1u1jqEl/uFIorNfofTKiXmcJaLVeS9oiM+t5yZv/R3jndaPpATb6NANBgN211lqPgqo DlFncTYpQ4BYPWQyLxFO/VSO3kW0aZuoNcrLZUj2CA6IoKvn3bEmp1T4E8K0YIwqrZMI3AV1 vIidnMJbkyYntm/mKCZRbw57igjBJGD0II3kEtGlA7/IMZ+G9bdSKLQ/ZlR0HEunNtIW/3ZY qL1axI2NFKZPEYJYwpMTs5v9AurriCXnzlws1KSoa465WLexw9ZzrX3McHUddrMTsJQ9qqdj juWoT6mX0FEXDCZ4Svf7H+9vs/Opg/2RZAABq/nrvhl0GTGkwT/DzVTDzNXu8KRiUmhUtZeK GQY9ywvpu4++SSDS9DnXhr+pHmKsAQRV914EuwmrgqL0OzV/26xHGULQy5dQN0rqMFwQiYlv mJlhPvjHzo2r7uYWSrHs6yKt3W3ODNQJ2hEbzUCFE0b+cLl5oo0i3ojU+peLUJ8tfWtcRmY/ txAhHFWa2k75SLT65iGwA==
IronPort-HdrOrdr: A9a23:jeTWSK0BdXXjrk1CAtrSygqjBJkkLtp133Aq2lEZdPUMSL38qy ncpoV+6faSskdrZJhAo6H5BEDuexLhHPJOi7X5eI3SPjUO21HYVr2Kj7GD/9SIIUSXndK1l5 0QEJSWY+edMbEOt6jHCX6DfOrIruPrzEniv5a4854kd3ANV0hP1XYBNjqm
X-IronPort-AV: E=Sophos;i="5.96,200,1665446400"; d="scan'208";a="18627586"
Received: from BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) by BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.16; Mon, 28 Nov 2022 12:07:27 -0500
Received: from BRN1WNEX02.vcorp.ad.vrsn.com ([10.173.153.49]) by BRN1WNEX02.vcorp.ad.vrsn.com ([10.173.153.49]) with mapi id 15.01.2507.016; Mon, 28 Nov 2022 12:07:27 -0500
From: "Hollenbeck, Scott" <shollenbeck@verisign.com>
To: "kowalik@denic.de" <kowalik@denic.de>, "mario.loffredo@iit.cnr.it" <mario.loffredo@iit.cnr.it>, "regext@ietf.org" <regext@ietf.org>
Thread-Topic: [EXTERNAL] Re: [regext] Web Service Client Flow
Thread-Index: Adj6ivWSDaZjgU6FRr2zQEt/DdxvSQAVZMYAAAnir9AAGF9lgAABXgcAAAjH9ZAAjMxOgAAGU1/QAVr2kDA=
Date: Mon, 28 Nov 2022 17:07:27 +0000
Message-ID: <cc75203eea1d444a9ef4dc7a6f00322a@verisign.com>
References: <c13d400573404ec3bf897feb263d5f3c@verisign.com> <44c38e17-0317-1e43-6531-2de6bf7c3cf9@denic.de> <3697246c04fc49c6a152329822594d4b@verisign.com> <41f8647e-959b-35f9-5414-f031a9b629d8@denic.de> <93a0f79c-6720-0e7f-ae3e-689b52359504@iit.cnr.it> <84a6822ea7234bf093b4af31ef136a2c@verisign.com> <b5ac553b-ab58-9703-2445-1274110f51af@denic.de> <1077c9b84e5c404c8533bf9858befa5e@verisign.com>
In-Reply-To: <1077c9b84e5c404c8533bf9858befa5e@verisign.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.170.148.18]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/0I-nsbTiHWOpRCOXC4-kJmOmRX4>
Subject: Re: [regext] Web Service Client Flow
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Nov 2022 17:07:33 -0000

Does this make sense for use as introductory text to appear in new Section 3.1.2 of what will be -19? Please make suggestions for improvement as you see fit.

3.1.1 Terminology

3.1.2 Client Considerations

Clients that can accept and process HTTP cookies [RFC6265] as part of session-oriented interactions with an RDAP server are known as "session-oriented" clients. This type of RDAP client performs the role of an OpenID Connect Core 1.0 [OIDCC] Entity or End-User. An RDAP server performs the role of an OpenID Connect Core Relying Party (RP). A web browser used to send queries directly to an RDAP server is an example of a session-oriented client.

Clients that perform the role of an RP in interactions with an OP and send tokens to an RDAP server to authorize RDAP queries are known as "token-oriented" clients. An RDAP server also performs RP functions to verify the tokens received from the client and to retrieve information from the OP as necessary to make access control decisions. A web browser running JavaScript received from a web service that sends queries to an RDAP server is an example of a token-oriented client.

3.1.3 Overview

v2.23.0 | Report a Bug | By Email