Re: [Txauth] Reviewing draft-hardt-xauth-protocol-11

Dick Hardt <dick.hardt@gmail.com> Fri, 17 July 2020 18:12 UTC

Return-Path: <dick.hardt@gmail.com>
X-Original-To: txauth@ietfa.amsl.com
Delivered-To: txauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6F50E3A0A19 for <txauth@ietfa.amsl.com>; Fri, 17 Jul 2020 11:12:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.54
X-Spam-Level:
X-Spam-Status: No, score=-0.54 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_FONT_LOW_CONTRAST=0.001, HTML_IMAGE_ONLY_20=1.546, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UAvg7BkWVTFE for <txauth@ietfa.amsl.com>; Fri, 17 Jul 2020 11:12:20 -0700 (PDT)
Received: from mail-lj1-x22c.google.com (mail-lj1-x22c.google.com [IPv6:2a00:1450:4864:20::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D40B03A0A11 for <txauth@ietf.org>; Fri, 17 Jul 2020 11:12:19 -0700 (PDT)
Received: by mail-lj1-x22c.google.com with SMTP id e4so13728458ljn.4 for <txauth@ietf.org>; Fri, 17 Jul 2020 11:12:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=8F41mdT6CQ3ykr71nJm4wYy/Lxe4JHvFirVvVtVzgEo=; b=cB5k69xVr3dHqJuZMiWCRoowM3g2hJbQ85wFICHq1aBAw2ddFHxfHw66OG/FVHczEo 9xeRQ9H5VqVLwAR9XZyjUzxi0RBnof2YKKS27m50m+zwRvDBkRqL8kbJCjpKneVZIGnC Lcejpz3jGcLoaGdASiaGBzDtb3Gd3sUOrCEKyrnb3h/CzSwCyWOQ05aOgJ3W8OFjilgf uC1MY2Zap/InSlXjTgDLTsan1sswyhvErxX8DlVnvS/5z61JhZa6Xn72rmFO8UvXof4E OE4rs1xRryeuebylcap6Bpyzdhfu2R4SwK56LOKW3D28RE/gygcFKKc5VcDNovi1p/Rr XdoQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=8F41mdT6CQ3ykr71nJm4wYy/Lxe4JHvFirVvVtVzgEo=; b=ftB8++cTzVXqsGcURkt4BHIc+E6QiQZC35dIIrwtY0dCVocLpHapkT7SEyM4d1rePz h+XFgya4IQoMxVDvAbZIbarTVu2FXWhjmqSDzoegczx8e+OSYCqLWxwzEm1/1vWd92WU hDvDr7ZdXScEEPkt3Owi03tzQ8obuWnMOFVKD4TL9JzToyx9SfLIxBQkULjpN6VBSi3E XpvZB0iZQoKphw2VC5IKcIsWdgqmRQE9jvdautW2mBF4Qs+5btYVODjV9nNiWYn0a31S xyiEch4Zyb7ndv5yh9OSLGuP4Tfj/LN+yKIblfI3cdZ0kMt/i5LI9PHGIxf9hiWgoiSp wPCA==
X-Gm-Message-State: AOAM533X5s6gv5vTepsGjw0cENiDP23SvG/CnW5wSRV+WtMhii0w2rQQ Ft/KSveAnCKfG9Qv57lwgy1xrdHVThqVPhJrylw=
X-Google-Smtp-Source: ABdhPJwsuzXFeCmy9qzCeE2OfKOWzUEOsYPhdKL/DjQDRyZbPHeZMCRGu/4pA9zxAPRF5Ergvta7pdjoVHldCTiKj/s=
X-Received: by 2002:a2e:80c9:: with SMTP id r9mr5215843ljg.69.1595009537806; Fri, 17 Jul 2020 11:12:17 -0700 (PDT)
MIME-Version: 1.0
References: <CAOW4vyPqjcWz7njW9cVb6wejY+KaASnskefSpwMqCPs+3WPmfg@mail.gmail.com> <CAD9ie-vV4oh9Qk3Y0sPeewo4jby_S6a=HKTZnoqByxJ6tCHJ+Q@mail.gmail.com> <CAOW4vyOQYvHBBPjMSNx9=S66_JY4RVcVi2DiqL8OjXUyvzxg=w@mail.gmail.com> <CAD9ie-tou5mTnWVguNygj-D6xUdTRjqvxi-+jhC6NbDFY8ZVJQ@mail.gmail.com> <CAOW4vyM0LycEf8q1T4jF=1g8aFyeLw1b4z9emNKWOG=+4iGgzw@mail.gmail.com> <CAM8feuSWeianPu=BD0WVTv5oB+U4ZkjhtKjnAG9RFk15VqJqWA@mail.gmail.com> <CAOW4vyNTXso=tusCrzDVgM63xH4hDsx6epO6tAhh1YekbWBA0A@mail.gmail.com> <f00c75a5-f930-81a6-a50e-2eeffedac691@free.fr> <CAOW4vyOHO1We4UpCPJBKYvj22rsFd1EN6fAXw8w6YOYTUDhF=g@mail.gmail.com> <aa1381a2-5b11-f7c7-a547-cddb36732c0b@free.fr> <CAD9ie-t7ZFrODeXy=Xzvsv-6gvUY=KjW0ETf8vJYkW2p=G4boQ@mail.gmail.com> <CAOW4vyN26rnOFb+vsaxgaMzeBOsyeSUBougvjHuhQkHyYhnn2w@mail.gmail.com> <b8a83294-771f-c1d7-0956-d0a50accbbb3@free.fr>
In-Reply-To: <b8a83294-771f-c1d7-0956-d0a50accbbb3@free.fr>
From: Dick Hardt <dick.hardt@gmail.com>
Date: Fri, 17 Jul 2020 11:11:41 -0700
Message-ID: <CAD9ie-soUmghr-qxWFRhHkX3rx3qaf3wBqxkwRZ=ZfQaSoDwbw@mail.gmail.com>
To: Denis <denis.ietf@free.fr>
Cc: Francis Pouatcha <fpo@adorsys.de>, txauth@ietf.org
Content-Type: multipart/alternative; boundary="000000000000ea1ab705aaa7182e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/7NIau83zULc0u4C_KLbISuMox34>
Subject: Re: [Txauth] Reviewing draft-hardt-xauth-protocol-11
X-BeenThere: txauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <txauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/txauth>, <mailto:txauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/txauth/>
List-Post: <mailto:txauth@ietf.org>
List-Help: <mailto:txauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/txauth>, <mailto:txauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Jul 2020 18:12:21 -0000

On Fri, Jul 17, 2020 at 9:21 AM Denis <denis.ietf@free.fr> wrote:

> Hello Francis and Dick,
>
> The good news first: we are making some progress. We are now close to an
> agreement with steps (1) up to (3),
> ... except that the place where the user consent is captured is not
> mentioned/indicated.
>
> If a RO needs to be involved and since a RO is directly associated with a
> RS, why can't it be directly queried
> by the appropriate RS after step (2) or later on ?
>

Good question. Perhaps you can expand on a use case where that would be
useful?


>
> Which information is supposed to be presented to the RO ?
> Which information is supposed to be returned by the RO ?
>

Just like how the user authenticates to an AS, how the AS and RO
communicate is out of scope. For many use cases, the User is the RO, and
the interaction is through a user interface, not a machine protocol.
ᐧ