IETF Logo Mail Archive

[GNAP] Weekly github digest (GNAP Weekly GitHub Activity Summary)

Repository Activity Summary Bot <do_not_reply@mnot.net> Sun, 09 October 2022 07:46 UTC

Return-Path: <do_not_reply@mnot.net>
X-Original-To: txauth@ietfa.amsl.com
Delivered-To: txauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D857AC1524A5 for <txauth@ietfa.amsl.com>; Sun, 9 Oct 2022 00:46:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.707
X-Spam-Level:
X-Spam-Status: No, score=-6.707 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=mnot.net header.b=QkInyT3w; dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=messagingengine.com header.b=cPejQGDl
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DE7p6caxQm9N for <txauth@ietfa.amsl.com>; Sun, 9 Oct 2022 00:46:26 -0700 (PDT)
Received: from wout4-smtp.messagingengine.com (wout4-smtp.messagingengine.com [64.147.123.20]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6076DC14CE23 for <txauth@ietf.org>; Sun, 9 Oct 2022 00:45:58 -0700 (PDT)
Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.west.internal (Postfix) with ESMTP id B7EDB32008C3 for <txauth@ietf.org>; Sun, 9 Oct 2022 03:45:57 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute4.internal (MEProxy); Sun, 09 Oct 2022 03:45:57 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h=cc :content-type:date:from:from:in-reply-to:mime-version:reply-to :sender:subject:subject:to:to; s=fm1; t=1665301557; x= 1665387957; bh=aueVAAt5ZwJFkSc6IeU1GYgPVMCnd8SMjII2fZehwJQ=; b=Q kInyT3wbel9eXc0CEteze8vjh6xL9UFM9P+pH5x746Js2wv3j+xWkkBWTvFKQKbW bAbzM1aZ1ZMTY3pR6k/tGYBZ3p74ySpIreuEfl0hkUBdbWaajMvVoolevWIAncip 8AlwLb2RmP05OFR7kFmjvb63Vc+fLxlReZ+vo08qrP8QMF/euMIXchqCPBObww4b xsHwMNQmS8zoQoDQVlgwHAy/JbQzGEZVF75Gf1XB9/A6yS9flQWLb9vI2wB/tBAK HKYogi2UMW7BLsed5IsUg6IPIhNxPHJ5PBp6LK4n4mwVZm+j2EP5uALy8+wsq5fw yuLGHJZx+7frieXiUB5lg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:feedback-id :feedback-id:from:from:in-reply-to:mime-version:reply-to:sender :subject:subject:to:to:x-me-proxy:x-me-proxy:x-me-sender :x-me-sender:x-sasl-enc; s=fm3; t=1665301557; x=1665387957; bh=a ueVAAt5ZwJFkSc6IeU1GYgPVMCnd8SMjII2fZehwJQ=; b=cPejQGDl00eVCVHIM lkHpEVskwOyVedCPzzBdVidt9oPCO/lQAsBFX/HnbQ9iK/Wa0y49YjKMIgIQ0kxk 7idtCx4eXQNSriYfHDxjiHlkB7F4+nFnmbm9V0ookT2qe/izGFUW3EHYHXShkZ/Y SZWGv7J4AZ19567b7mpYvGZ7tZ7+GiScWiR7uaxV4AN+SBoB5H7nEG+O/0BnY6uE uIo0VSkTxvam8YB35XWogZlljqxSpKgRaT11Z+iWwVfMJsU3jKDScCPi4vFN3mvw XKn8uF6pkB+WnN6gB3/YyhA2hROkBkvbN8qq7ZU1NJkXbzvV9WqL5NEsV54ZTi8X KhYqw==
X-ME-Sender: <xms:NXxCYwp8aZOi03UvD9I57iH2KQA5iD3LSL3d9rxh62YXUmzp6h8VJw> <xme:NXxCY2roiNbXkJ76wzUCPqfXTM1piqvb9JLgcRVIMUnWx5jchuszU9w6EGCh4i4hM FfrEjV5bVxav43hKQ>
X-ME-Received: <xmr:NXxCY1OJMn4Ph8ODdEWe7fBccw44K9fn5icq6n6Z8jRxpWyA_k7ohYeHRP6Bm3YOBJY_e6mBKUnZBP3P-0WgIOW9uvyQX3TJ5hh3-ugLS_RljUaBqI_coLdRt9yBphOIiXl->
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvfedrfeejtddguddvfecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecupfhoucgurghtvgcufhhivghlugculdegledmne cujfgurheptggghffvufesrgdttdertddtjeenucfhrhhomheptfgvphhoshhithhorhih ucettghtihhvihhthicuufhumhhmrghrhicuuehothcuoeguohgpnhhothgprhgvphhlhi esmhhnohhtrdhnvghtqeenucggtffrrghtthgvrhhnpeekfedvudetjedvfeekheeiveeu gfefhfetteevgeffkefffeetffdvleehudeiteenucffohhmrghinhepghhithhhuhgsrd gtohhmnecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhep ughopghnohhtpghrvghplhihsehmnhhothdrnhgvth
X-ME-Proxy: <xmx:NXxCY352TPqSj1LGjB7wp9EiOCo0O39418YDeOa5UzsqwaW-lWsJJw> <xmx:NXxCY_5rbwGcbeq8ddTgSBdQNhkA0iVstcCPllc7SnyG9G3Ip6VpzQ> <xmx:NXxCY3jLhQqmxBHGKmJxc37FWgbrz5ZYkLi_hwTO0wrKSAHVUJ2m_g> <xmx:NXxCY4X-FY3VpwgqHuJ85dWz9x4Mkm6zGgVkqEokNUJofarldUzwCQ>
Feedback-ID: i1c3946f2:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA for <txauth@ietf.org>; Sun, 9 Oct 2022 03:45:56 -0400 (EDT)
Content-Type: multipart/alternative; boundary="===============2078251823811388593=="
MIME-Version: 1.0
From: Repository Activity Summary Bot <do_not_reply@mnot.net>
To: txauth@ietf.org
Message-Id: <20221009074558.6076DC14CE23@ietfa.amsl.com>
Date: Sun, 09 Oct 2022 00:45:58 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/7NyHjjJi0meZpsOptYuiW200u40>
Subject: [GNAP] Weekly github digest (GNAP Weekly GitHub Activity Summary)
X-BeenThere: txauth@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: GNAP <txauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/txauth>, <mailto:txauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/txauth/>
List-Post: <mailto:txauth@ietf.org>
List-Help: <mailto:txauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/txauth>, <mailto:txauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 09 Oct 2022 07:46:32 -0000



Events without label "editorial"

Issues
------
* ietf-wg-gnap/core-protocol (+0/-37/💬33)
  25 issues received 33 new comments:
  - #431 Meaning of “delegated access” and guidance on data minimization for privacy (4 by agropper, fimbault)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/431 
  - #374 Draft-08 makes a general assumption that an end-user and a RO are the same entity (1 by fimbault)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/374 
  - #373 Bearer access tokens and key-bound access tokens are not the single types of access tokens (1 by fimbault)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/373 
  - #372 A RS is currently only able to trust a single AS (1 by fimbault)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/372 
  - #371 Both attributes (ABAC) and capabilities (CBAC) SHOULD be supported (1 by fimbault)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/371 
  - #370 Rights and attributes SHOULD be equally supported (1 by fimbault)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/370 
  - #369 The Authentication of end-users by an AS is currently not required (1 by fimbault)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/369 
  - #368 Trust relationships are still left undefined in GNAP draft-08 (1 by fimbault)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/368 
  - #147 rotation of tokens related to Continuation Request? (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/147 
  - #135 security assessment of the protocol (1 by fimbault)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/135 
  - #105 Rotation of bound client keys (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/105 
  - #104 Token presentation headers (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/104 
  - #103 Rotating the token's bound key (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/103 
  - #89 Multi-step interaction methods (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/89 
  - #88 Combining post-interaction updates (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/88 
  - #85 Key rotation within continuation (6 by adeinega, fimbault, jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/85 
  - #78 Dynamic RC instance management (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/78 [Needs Text] 
  - #71 Expand the application launch response (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/71 
  - #54 Application-specific URL (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/54 [Pending Close] 
  - #23 Unknown Extensions (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/23 
  - #21 The App Option (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/21 
  - #19 References and Their Lifecycle (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/19 
  - #17 Security of AC-provided Identifiers (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/17 
  - #15 Token Binding (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/15 
  - #11 Semantics of Location, Type, Identifier (1 by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/11 

  37 issues closed:
  - Rotation of bound client keys https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/105 
  - Dynamic RC instance management https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/78 [Needs Text] 
  - Generic HTTP access control https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/303 [Needs Text] 
  - Client instance general purpose push/back channel https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/424 [Needs Text] 
  - Persistent Grant Identifier https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/146 [Needs Text] 
  - Generic claim extension mechanism https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/131 [Needs Text] 
  - Communicating User State During Pending Interaction https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/91 [Needs Text] 
  - Client using a different signing mechanism for AS (request) vs. RS (access token) https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/38 [Needs Text] 
  - Client attestation and posture https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/44 [Needs Text] 
  - Directed access tokens https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/69 [Needs Text] 
  - Asynchronous Authorization https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/31 
  - delayed responses from the AS and the HTTP long polling mechanism https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/404 
  - Are relative URLs allowed? https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/439 
  - RS Response for Speculative Access https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/27 
  - security assessment of the protocol https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/135 
  - Rights and attributes SHOULD be equally supported https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/370 
  - The Authentication of end-users by an AS is currently not required https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/369 
  - Trust relationships are still left undefined in GNAP draft-08 https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/368 
  - Both attributes (ABAC) and capabilities (CBAC) SHOULD be supported https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/371 
  - A RS is currently only able to trust a single AS https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/372 
  - Bearer access tokens and key-bound access tokens are not the single types of access tokens https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/373 
  - Draft-08 makes a general assumption that an end-user and a RO are the same entity https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/374 
  - rotation of tokens related to Continuation Request? https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/147 
  - Require return of "resources" in token response https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/141 
  - Token presentation headers https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/104 
  - Rotating the token's bound key https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/103 
  - Combining post-interaction updates https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/88 
  - Multi-step interaction methods https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/89 
  - Key rotation within continuation https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/85 
  - Expand the application launch response https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/71 
  - Application-specific URL https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/54 [Pending Close] 
  - Unknown Extensions https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/23 
  - The App Option https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/21 
  - References and Their Lifecycle https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/19 
  - Security of AC-provided Identifiers https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/17 
  - Token Binding https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/15 
  - Semantics of Location, Type, Identifier https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/11 



Pull requests
-------------
* ietf-wg-gnap/core-protocol (+4/-3/💬4)
  4 pull requests submitted:
  - upgrade rs response to should (by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/445 
  - make token character set strict (by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/444 
  - add security considerations on equivalent keys (by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/443 
  - Address long polling (by jricher)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/442 

  4 pull requests received 4 new comments:
  - #445 upgrade rs response to should (1 by netlify)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/445 
  - #444 make token character set strict (1 by netlify)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/444 
  - #443 add security considerations on equivalent keys (1 by netlify)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/443 
  - #442 Address long polling (1 by netlify)
    https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/442 

  3 pull requests merged:
  - Address long polling
    https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/442 
  - Require Absolute URIs
    https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/441 
  - upgrade rs response to should
    https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/445 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/ietf-wg-gnap/core-protocol
* https://github.com/ietf-wg-gnap/gnap-resource-servers

v2.23.0 | Report a Bug | By Email