Re: [Txauth] Barry Leiba's No Objection on charter-ietf-gnap-00-01: (with COMMENT)
Roman Danyliw <rdd@cert.org> Thu, 25 June 2020 13:36 UTC
Return-Path: <rdd@cert.org>
X-Original-To: txauth@ietfa.amsl.com
Delivered-To: txauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 31ED73A0B9B; Thu, 25 Jun 2020 06:36:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Q1KNEO_CY5bC; Thu, 25 Jun 2020 06:36:33 -0700 (PDT)
Received: from taper.sei.cmu.edu (taper.sei.cmu.edu [147.72.252.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D93353A0B91; Thu, 25 Jun 2020 06:36:32 -0700 (PDT)
Received: from korb.sei.cmu.edu (korb.sei.cmu.edu [10.64.21.30]) by taper.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 05PDaUet005364; Thu, 25 Jun 2020 09:36:30 -0400
DKIM-Filter: OpenDKIM Filter v2.11.0 taper.sei.cmu.edu 05PDaUet005364
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=yc2bmwvrj62m; t=1593092191; bh=E8nK0a+JVv7q6MjsyRRQyIN5KHsuNE4hqzFKQ2aShLg=; h=From:To:CC:Subject:Date:References:In-Reply-To:From; b=Fbqf3HBaDpRGlVKvArQZTki6II9MBu62CKCByZMXK5pREnd6uJojKUu8RAsbRJw/2 mAr0/25lyS1EVSUOzAIfW9XDr/DdAjdvsEn2qErQxeNhwI7miJ1IBO+zHa+EsK4gH6 m6ao6l5pXGPlOHHJgeBW/NdJOQjejS997IPXPwPQ=
Received: from CASSINA.ad.sei.cmu.edu (cassina.ad.sei.cmu.edu [10.64.28.249]) by korb.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 05PDaSTJ004629; Thu, 25 Jun 2020 09:36:28 -0400
Received: from MORRIS.ad.sei.cmu.edu (147.72.252.46) by CASSINA.ad.sei.cmu.edu (10.64.28.249) with Microsoft SMTP Server (TLS) id 14.3.487.0; Thu, 25 Jun 2020 09:36:27 -0400
Received: from MORRIS.ad.sei.cmu.edu (147.72.252.46) by MORRIS.ad.sei.cmu.edu (147.72.252.46) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1979.3; Thu, 25 Jun 2020 09:36:27 -0400
Received: from MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb]) by MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb%13]) with mapi id 15.01.1979.003; Thu, 25 Jun 2020 09:36:27 -0400
From: Roman Danyliw <rdd@cert.org>
To: Barry Leiba <barryleiba@computer.org>, The IESG <iesg@ietf.org>
CC: "gnap-chairs@ietf.org" <gnap-chairs@ietf.org>, "txauth@ietf.org" <txauth@ietf.org>
Thread-Topic: Barry Leiba's No Objection on charter-ietf-gnap-00-01: (with COMMENT)
Thread-Index: AQHWSlLjWdG1mBhDmkiU0o1qb0lODKjpTqig
Date: Thu, 25 Jun 2020 13:36:26 +0000
Message-ID: <a09d8bf938c3400d94d034594a0ced46@cert.org>
References: <159302228054.20699.8970656798339535215@ietfa.amsl.com>
In-Reply-To: <159302228054.20699.8970656798339535215@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.64.201.72]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/80C5OHtxceKAZ4r6VgAP4K-RYP4>
Subject: Re: [Txauth] Barry Leiba's No Objection on charter-ietf-gnap-00-01: (with COMMENT)
X-BeenThere: txauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <txauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/txauth>, <mailto:txauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/txauth/>
List-Post: <mailto:txauth@ietf.org>
List-Help: <mailto:txauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/txauth>, <mailto:txauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jun 2020 13:36:39 -0000
Hi Barry, A few quick responses/edits before the telechat. > -----Original Message----- > From: iesg <iesg-bounces@ietf.org> On Behalf Of Barry Leiba via Datatracker > Sent: Wednesday, June 24, 2020 2:11 PM > To: The IESG <iesg@ietf.org> > Cc: gnap-chairs@ietf.org; txauth@ietf.org > Subject: Barry Leiba's No Objection on charter-ietf-gnap-00-01: (with > COMMENT) > > Barry Leiba has entered the following ballot position for > charter-ietf-gnap-00-01: No Objection > > When responding, please keep the subject line intact and reply to all email > addresses included in the To and CC lines. (Feel free to cut this introductory > paragraph, however.) > > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/charter-ietf-gnap/ > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > > (in contrast > > with OAuth 2.0 which is initiated by the client redirecting the user’s > > browser) > > Editorial nit: This needs a comma after “OAuth 2.0”. Fixed. > > The client and Authorization Server (AS) will involve a user to make > > an authorization decision as necessary through interaction mechanisms > > indicated by the protocol. > > This sentence seems very clumsy and unclear. The primary thing that bothers > me is “mechanisms indicated by the protocol”: can we rephrase that to make it > clearThe primary thing that bothers me is “mechanisms indicated by the > protocol”: can we rephrase that to make it clearer what we’re talking about, > perhaps by splitting the sentence, explaining what this means first, and then > putting the rest of the sentence after it? Maybe something like this: > > NEW > The protocol will include interaction mechanisms that <some brief > explanation>. > The client and Authorization Server (AS) will use those mechanisms to involve > a user, as necessary, to make authorization decisions. END Todo. > > - Support for directed, audience-restricted access tokens > > What does “audience-restricted” mean? Maybe this would be better phrased > as, “Support for directed access tokens that restrict <explanation>” ? I'd prefer we not change this text too much. "Audience restricted" is a term of art in this space. See Section 4.8.1.3 of draft-ietf-oauth-security-topics, draft-ietf-oauth-resource-indicators and draft-ietf-oauth-rar. > > - Optimized inclusion of additional information through the delegation > > process (including identifiers and identity assertions) > > Editorial nit: the parenthetical is misplaced: > > NEW > - Optimized inclusion of additional information (including identifiers and > identity assertions) through the delegation process END Fixed. > > The group is chartered to develop mechanisms for conveying identity > information > within the protocol including identifiers […] and assertions > […] > > The group is > not chartered to develop new formats for identifiers or > assertions > > It would be good to add “existing” after “including”, for emphasis. Fixed. Regards, Roman
- [Txauth] Barry Leiba's No Objection on charter-ie… Barry Leiba via Datatracker
- Re: [Txauth] Barry Leiba's No Objection on charte… Roman Danyliw
- Re: [Txauth] Barry Leiba's No Objection on charte… Justin Richer
- Re: [Txauth] Barry Leiba's No Objection on charte… Barry Leiba
- Re: [Txauth] Barry Leiba's No Objection on charte… Roman Danyliw
- Re: [Txauth] Barry Leiba's No Objection on charte… Barry Leiba