Re: [sipcore] I-D Action: draft-ietf-sipcore-sip-token-authnz-08.txt
Christer Holmberg <christer.holmberg@ericsson.com> Thu, 20 February 2020 11:06 UTC
Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: sipcore@ietfa.amsl.com
Delivered-To: sipcore@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E71D81200BA for <sipcore@ietfa.amsl.com>; Thu, 20 Feb 2020 03:06:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gE8vnZ85A6Ic for <sipcore@ietfa.amsl.com>; Thu, 20 Feb 2020 03:06:41 -0800 (PST)
Received: from EUR03-AM5-obe.outbound.protection.outlook.com (mail-eopbgr30043.outbound.protection.outlook.com [40.107.3.43]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A13A012001A for <sipcore@ietf.org>; Thu, 20 Feb 2020 03:06:41 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=gMo5BXrZd8siYNHkDypJCZPdNeFljRd89k/NLCSlfJTXl6zD4RFROpzjS6qyLmIuT/0nCRAVEymAGFM5WKCbP+DZN54aZNh0xV1ZOi5cRed/aNyiCPqKAks64y+g0jw+Rpz2H3YHJDLCanei1QyRmutSIn17RTIG9aOeA8nFDRH9xNFo1AyU1ySHmtgaxrfJOUK9n/9PHwOuGx0Ta8Vb6Q2vMMzTlqYR/tfLJXUw9ia6UlKF2hhDSjQIOaqDRjQtPl90R9sPmx1pi0Zcg+4AH57hHVPZp/JdZpmL+FSsaCPsIyF7mBuz/7u1PRt5b/P8MbbvIo3q5x9w8/KpQgPkhw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=R7xlvAGCyZ4bgOxztu+RTQcegEhzo5O6e9xhdyG4Kvs=; b=bbQja9403P1qrcPP8DtJ7rzTBpJtetkCpDEvB7SFZ6tsl+N5aAaVlYiNYF/YNtsQtd9j7osFdvwJaa24GCKArreUZ9iuwj7KNz+CAQ/FFq+CqvkyJVomNI06XaBGH+eBd91o+CNM3Ixp1+T8FxE/mFPQs1Q289xcfswggqOj0qEjhKJtpfeIJ5Hb1dl164MRmbfusX882izAq1GpzP/0ebPOgAgZ+0XIPn5bhHjt+c1OWW7fYS+dnzT73zlwX9QpQnV2wQM/vBjyy6YtKjS1ydAPFJMS4PYYJeav3S3gmhxzKFqhlvynMbdCNwa06qtwAuBTg3YNaHBZ2EnYw+QtdA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=R7xlvAGCyZ4bgOxztu+RTQcegEhzo5O6e9xhdyG4Kvs=; b=jsZgKthMmgtNRF/uS+qSdRaHnUUrepq+bHchFXM3ThcKVabQu3ga3ie4xqhc3BrqncLWkGgR7evjljX0sH4hfz5JDP7HBZT0sDQZH0je46w9qylr6eX7xQ5jeF2p1ODHn9KL98A2AsTqjTncBmaehxUPQACrauVjfFsyk/NoJ6E=
Received: from AM0PR07MB3987.eurprd07.prod.outlook.com (52.134.82.159) by AM0PR07MB6099.eurprd07.prod.outlook.com (20.178.113.22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2750.8; Thu, 20 Feb 2020 11:06:39 +0000
Received: from AM0PR07MB3987.eurprd07.prod.outlook.com ([fe80::2c17:b7da:3370:2cb0]) by AM0PR07MB3987.eurprd07.prod.outlook.com ([fe80::2c17:b7da:3370:2cb0%4]) with mapi id 15.20.2750.016; Thu, 20 Feb 2020 11:06:39 +0000
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: "A. Jean Mahoney" <mahoney@nostrum.com>, Rifaat Shekh-Yusef <rifaat.ietf@gmail.com>, SIPCORE <sipcore@ietf.org>
Thread-Topic: [sipcore] I-D Action: draft-ietf-sipcore-sip-token-authnz-08.txt
Thread-Index: AQHV5sJqGlkHbpAxRUeLN7Gj2NHzkKghuKqAgAAssQCAAipNgA==
Date: Thu, 20 Feb 2020 11:06:39 +0000
Message-ID: <40AFC5AE-5988-433A-9F60-D37977CA8EF8@ericsson.com>
References: <158207503697.14142.14665017584848144240@ietfa.amsl.com> <CAGL6ep+KOBEYT1HXcNYNuYdzjnd2_jJ18AVpgPp_mqDW7k9MPA@mail.gmail.com> <62fff329-c42d-a7f3-7ae0-7bec4ab2fecd@nostrum.com>
In-Reply-To: <62fff329-c42d-a7f3-7ae0-7bec4ab2fecd@nostrum.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.1e.0.191013
authentication-results: spf=none (sender IP is ) smtp.mailfrom=christer.holmberg@ericsson.com;
x-originating-ip: [89.166.49.243]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 4daf3ef7-2534-4ca8-0e66-08d7b5f4f5b3
x-ms-traffictypediagnostic: AM0PR07MB6099:
x-microsoft-antispam-prvs: <AM0PR07MB60991243176473783294D62A93130@AM0PR07MB6099.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 031996B7EF
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(346002)(39860400002)(136003)(396003)(376002)(366004)(199004)(189003)(26005)(66476007)(66946007)(64756008)(66556008)(2616005)(66446008)(36756003)(76116006)(2906002)(71200400001)(5660300002)(86362001)(6512007)(8676002)(186003)(966005)(53546011)(6486002)(66574012)(6506007)(316002)(110136005)(81156014)(81166006)(478600001)(33656002)(8936002)(44832011); DIR:OUT; SFP:1101; SCL:1; SRVR:AM0PR07MB6099; H:AM0PR07MB3987.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: 9xP+68LpPtarI6puvBLuvh+RImDVK/BkvgdIBHyQM3dWNudrMPJcokGoznuOFC8sppS4akf9NzjYOYNliPGUVfFgkPecdK3O5u4c46U1lhnylT93XQWTualZgN3iQhtsiQ3eAj/VFkSU/aCqZBW8Cw==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <6283A4EC08F16540A52193B55E478240@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4daf3ef7-2534-4ca8-0e66-08d7b5f4f5b3
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Feb 2020 11:06:39.3775 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Qkv5Hpfg5KFFUJLyGpF9FgfQwpiwtRe5a8RWksheJm8P7WguSYZnAvNRLjGhekhoTbdNxqajVGwaEBFG02GthCqJiUD+T+f/qJb10C7LnC8=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR07MB6099
Archived-At: <https://mailarchive.ietf.org/arch/msg/sipcore/rltu3wB0DKCt6ecTU4wH-Ss7B0Y>
Subject: Re: [sipcore] I-D Action: draft-ietf-sipcore-sip-token-authnz-08.txt
X-BeenThere: sipcore@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: SIP Core Working Group <sipcore.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sipcore>, <mailto:sipcore-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sipcore/>
List-Post: <mailto:sipcore@ietf.org>
List-Help: <mailto:sipcore-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sipcore>, <mailto:sipcore-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Feb 2020 11:06:44 -0000
Hi,
> I just converted it to v3. I still have edits on my todo list. I'll make
> nit fixes in GitHub and post my comments to the list regarding bigger
> issues. (Like, what's a reference token?)
A reference token does not contain any metadata or identity information about the user - it is just a reference to such information stored elsewhere. It is also sometimes called an opaque token. We'll clarify that.
Regards,
Christer
On 2/18/20 7:22 PM, Rifaat Shekh-Yusef wrote:
> All,
>
> This new version of the document has few editorial changes.
> Many thanks to Jean Mahoney for these editorial changes and the
> conversion of the XML source file from v2 to v3.
>
> Regards,
> Rifaat
>
>
> On Tue, Feb 18, 2020 at 8:17 PM <internet-drafts@ietf.org
> <mailto:internet-drafts@ietf.org>> wrote:
>
>
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
> This draft is a work item of the Session Initiation Protocol Core WG
> of the IETF.
>
> Title : Third-Party Token-based Authentication
> and Authorization for Session Initiation Protocol (SIP)
> Authors : Rifaat Shekh-Yusef
> Christer Holmberg
> Victor Pascual
> Filename : draft-ietf-sipcore-sip-token-authnz-08.txt
> Pages : 13
> Date : 2020-02-18
>
> Abstract:
> This document defines a SIP mechanism that relies on the OAuth 2.0
> and OpenID Connect Core 1.0 to enable delegation of the user
> authentication and SIP registration authorization to a third-party.
> The document updates RFC 3261.
>
>
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-sipcore-sip-token-authnz/
>
> There are also htmlized versions available at:
> https://tools.ietf.org/html/draft-ietf-sipcore-sip-token-authnz-08
> https://datatracker.ietf..org/doc/html/draft-ietf-sipcore-sip-token-authnz-08
> <https://datatracker.ietf.org/doc/html/draft-ietf-sipcore-sip-token-authnz-08>
>
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-sipcore-sip-token-authnz-08
>
>
> Please note that it may take a couple of minutes from the time of
> submission
> until the htmlized version and diff are available at tools.ietf.org
> <http://tools.ietf.org>.
>
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
>
> _______________________________________________
> sipcore mailing list
> sipcore@ietf.org <mailto:sipcore@ietf.org>
> https://www.ietf.org/mailman/listinfo/sipcore
>
>
> _______________________________________________
> sipcore mailing list
> sipcore@ietf.org
> https://www.ietf.org/mailman/listinfo/sipcore
>
_______________________________________________
sipcore mailing list
sipcore@ietf.org
https://www.ietf.org/mailman/listinfo/sipcore
- [sipcore] I-D Action: draft-ietf-sipcore-sip-toke… internet-drafts
- Re: [sipcore] I-D Action: draft-ietf-sipcore-sip-… Rifaat Shekh-Yusef
- Re: [sipcore] I-D Action: draft-ietf-sipcore-sip-… A. Jean Mahoney
- Re: [sipcore] I-D Action: draft-ietf-sipcore-sip-… Christer Holmberg