IETF Logo Mail Archive

Re: [Txauth] Reviewing draft-hardt-xauth-protocol-11 - Dictionary

Francis Pouatcha <fpo@adorsys.de> Tue, 21 July 2020 18:27 UTC

Return-Path: <fpo@adorsys.de>
X-Original-To: txauth@ietfa.amsl.com
Delivered-To: txauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ECA973A0365 for <txauth@ietfa.amsl.com>; Tue, 21 Jul 2020 11:27:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=adorsys.de
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id p29C2BWrbnLg for <txauth@ietfa.amsl.com>; Tue, 21 Jul 2020 11:27:24 -0700 (PDT)
Received: from mail-wm1-x32b.google.com (mail-wm1-x32b.google.com [IPv6:2a00:1450:4864:20::32b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 416813A0303 for <txauth@ietf.org>; Tue, 21 Jul 2020 11:27:24 -0700 (PDT)
Received: by mail-wm1-x32b.google.com with SMTP id c80so3784035wme.0 for <txauth@ietf.org>; Tue, 21 Jul 2020 11:27:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=adorsys.de; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=n9tUL5QEfTEssa97/8pySic6tmQ2yfCULtz4vs4IiX8=; b=grr5C3dy2CXQ8ASZu2Hxbu+xy3QyympaSe9fgbfC45FL8UyUv0QRrAX0IDzePsfxwR KWj2OmWjlI229gbeM2cJbkScK/MEBWEnaeNRRLtQbXan5v60AgZP7IQ1kmvINnxFXZzW WaHqPEd8UVwF1rKD6yjUYfbIwygH2G2JBmPGQ=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=n9tUL5QEfTEssa97/8pySic6tmQ2yfCULtz4vs4IiX8=; b=Yjr4L7N/gNOqFtcaQDTd0JoUBqBBVjDL/LsTsiCtfXdjXX4/tDkfCnDGk2tt7ZRkJv FHj/0sQ64VDWuHsccwbNnw5pLxMbzPZgwmY0tcCFBapOj8CtuNbDCL9aMfcZnYG/oAzm cjj0kBKSIw4OpTkS8l/56NAFmDcPKRK+DTWYXQEtuHOY8tQOpqfDU+jpgk1L8E2oHMZy 4ggc2yqK/O1UQdiCcM7JuiWUA/PvyQdskPqxOdWOOF2Hk1EkEgz088AyIem1GVRyf41Y 9yt+T7YiXwGZq2h8jQrncozN5O3XmS2e+4Pbc/kFabBv+VLFiwUarWmR1er/YRZGwFBY FI4g==
X-Gm-Message-State: AOAM53095cwoR54XVvFGDKWCQzjB5DLMWUP5bkNoh39sR0MOH8hrMkh9 diT0Iz3DUfWL1RApSUUTjKV4dxSEXsNmLimHmCBnrxye
X-Google-Smtp-Source: ABdhPJxbYaDbY5UvZIqca+XqNE5Dhcw/UqCAa4hI5mgHSqAikeODMXL2mHTUNFwMJRHjbhZ4AeF6Lvd2bhdxv3LefKs=
X-Received: by 2002:a1c:f407:: with SMTP id z7mr5128271wma.8.1595356042675; Tue, 21 Jul 2020 11:27:22 -0700 (PDT)
MIME-Version: 1.0
References: <CAOW4vyO2C1E3Sg58CrSVT81t0T3iCTY87tdAx+a8d2A+cNa3nA@mail.gmail.com> <CAD9ie-vMzepgmaP-jUunKSo-chWrGpB230TWgJq7u8Yt-afDxA@mail.gmail.com> <CAOW4vyObyZC7USUqsW_qdDV9Hcpvg9OHKmM1yMEjSUvmjx0UZQ@mail.gmail.com> <CAD9ie-sWn41XDiwyFMcTgV3a8MMESXqf36fNJcTaSYDKwU+LPg@mail.gmail.com> <CAOW4vyNzGG95eNf6RRLf_jgHoQDMJHz8kPF10EENeaAq9vkrVQ@mail.gmail.com> <CAD9ie-vPDMPM8CRid169WsssD0r3dWNqoNCDJcgrxEs+MfvtjQ@mail.gmail.com>
In-Reply-To: <CAD9ie-vPDMPM8CRid169WsssD0r3dWNqoNCDJcgrxEs+MfvtjQ@mail.gmail.com>
From: Francis Pouatcha <fpo@adorsys.de>
Date: Tue, 21 Jul 2020 14:27:10 -0400
Message-ID: <CAOW4vyOjpL3Qoy02uV1dxc+wYir+yh0wWKiaV93OqzRXtk_Sxg@mail.gmail.com>
To: Dick Hardt <dick.hardt@gmail.com>
Cc: txauth@ietf.org
Content-Type: multipart/alternative; boundary="00000000000036d80905aaf7c629"
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/3RpCdYNKA0bKCfDlGsr3RxQOXKU>
Subject: Re: [Txauth] Reviewing draft-hardt-xauth-protocol-11 - Dictionary
X-BeenThere: txauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <txauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/txauth>, <mailto:txauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/txauth/>
List-Post: <mailto:txauth@ietf.org>
List-Help: <mailto:txauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/txauth>, <mailto:txauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Jul 2020 18:27:26 -0000

On Tue, Jul 21, 2020 at 2:15 PM Dick Hardt <dick.hardt@gmail.com> wrote:

>
>
> On Tue, Jul 21, 2020 at 11:09 AM Francis Pouatcha <fpo@adorsys.de> wrote:
>
>>
>> On Tue, Jul 21, 2020 at 1:59 PM Dick Hardt <dick.hardt@gmail.com> wrote:
>>
>>> FYI: I consider the release of claims to be an "authorization" as well.
>>>
>> Great. Then it is included.
>>
>
> I pivoted to using the term Grant rather than authorization so that it
> included both authorizing access to a resource, and authorizing the release
> of an identity claim.
>
> Perhaps we should not use the word "authorization"?
>
Authorization is currently used to refer to the token issued by the GSand
presented to the RS by the Client. I have no alternative word for now.

>
> "resource access" and "claim release"
>
> A Grant then covers both?
>
Yes, Great! The word Grant fits best for both. I suggest adding this
clarification to that dictionary.

>
>
>
>>
>>> IE, the user authorizes the GS to release a DOB claim to a Client.
>>>
>> I guess you mean the "RO" authorizes the GS to release a DOB!
>>
>
> Yes, thanks for clarifying!
>
> /Dick
>
>>

-- 
Francis Pouatcha
Co-Founder and Technical Lead
adorsys GmbH & Co. KG
https://adorsys-platform.de/solutions/

v2.23.0 | Report a Bug | By Email