[GNAP] Token Rotation
Justin Richer <jricher@mit.edu> Wed, 03 May 2023 17:57 UTC
Return-Path: <jricher@mit.edu>
X-Original-To: txauth@ietfa.amsl.com
Delivered-To: txauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9C44FC14CF1A for <txauth@ietfa.amsl.com>; Wed, 3 May 2023 10:57:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.398
X-Spam-Level:
X-Spam-Status: No, score=-4.398 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mit.edu
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NYcSzgyTllay for <txauth@ietfa.amsl.com>; Wed, 3 May 2023 10:57:02 -0700 (PDT)
Received: from outgoing-exchange-5.mit.edu (outgoing-exchange-5.mit.edu [18.9.28.59]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0D570C14CE42 for <txauth@ietf.org>; Wed, 3 May 2023 10:57:01 -0700 (PDT)
Received: from w92exedge4.exchange.mit.edu (W92EXEDGE4.EXCHANGE.MIT.EDU [18.7.73.16]) by outgoing-exchange-5.mit.edu (8.14.7/8.12.4) with ESMTP id 343HuQbD005889 for <txauth@ietf.org>; Wed, 3 May 2023 13:57:00 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mit.edu; s=outgoing; t=1683136620; bh=4+amqkDrTCfg/rrZNqxHap2gEdY554YWcgzsQeUCDgw=; h=From:To:Subject:Date; b=T3P3SL4UQem0998iYDqYGDAviMVwDF4p2huwhbTRY4lxy9eV+eabhtgaarkPKb2OC hZbW3JdUL8u1migzJ55IL/MV13Z8CxHL9EPlZL1xupoiKpl4ITtz4X0Hd0rQSoFW3e +/x0j+PoW9fZWG0yViYfoW+ce5SoioENtbmnnk3RFgm9zPA0UuWuRuqkfk9wFY9IgT uPYy394ilNms1AC9ofP9Z8e/LcW7pBTPTtO8Rc4LI1vMbz1gTsaQE8vRcEqCzR5k9k kg7rKVvYTHeJS1OUO3xQB7MD26T0Oo1UTokmfUVQGFkvFXdh2VYMikvGJ3KR1npQ3C lOOywb7fSdVGA==
Received: from oc11exhyb3.exchange.mit.edu (18.9.1.99) by w92exedge4.exchange.mit.edu (18.7.73.16) with Microsoft SMTP Server (TLS) id 15.0.1497.48; Wed, 3 May 2023 13:55:50 -0400
Received: from oc11exhyb8.exchange.mit.edu (18.9.1.113) by oc11exhyb3.exchange.mit.edu (18.9.1.99) with Microsoft SMTP Server (TLS) id 15.0.1497.48; Wed, 3 May 2023 13:56:23 -0400
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (104.47.70.103) by oc11exhyb8.exchange.mit.edu (18.9.1.113) with Microsoft SMTP Server (TLS) id 15.0.1497.48 via Frontend Transport; Wed, 3 May 2023 13:56:22 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BpGCILv88mIxCqykJngFvKpQctTt4UOIswj9aUVWSbJmhWZu6PpuHN8o78YBQdFbp2TW5+d771/d1aXdRqjIu1wxO34MDCPm4oLKaDH3lkwHjDUrqAPmhFToPgY68Q5RDb33L71NPmqxYzHf/jBQlaFG20zNnQNAmf1LJ3C3nE0vhw8mnep0AC5ThNKlpOEHMDMYS0zYCZ8KnB72RqgCcB4cv65rxjcCcAgJ26kbbXl6qXNzyY2K5m7UIz6OMBEFJfFLqfVzThFLesfIEc5wgDQ3TVzJ79Ey/P7CxeRTAF6nMnqyoEk0sDcdalimu6q2KhTh1A3uxNmfOUE+MOqemg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=4+amqkDrTCfg/rrZNqxHap2gEdY554YWcgzsQeUCDgw=; b=BKOWw1tThL2IS09BjNTsATqf4z+DWid7bNAFnOdnt2iSOpEqfQa9vcfHhbd1vuLesfz8N5mqrFjdn2VYNR5o6zxvO+cBGEWbnBGs0KIHxPZ100IjrKEXXIPS3nCCa6RDIX/fyLZ4vj0c5+jt4pSuE25cofNtAld2LnJKTgAA85IUlm1ZcK6tUdUiE3SKUn8vGHw5fadDVfEYW5O40EUidDdL2j1+7vKdYxRXfjUfk95ImaK+W+L8tEvwprPrbG7R6KHy/E8tt6vT0cD08jZkbkdCCFdmlN/soWGjLxzAsVU+5Mh8kbdBqTabxdU+Jlt2GhH65zfJkOylL/psiVJdRA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=mit.edu; dmarc=pass action=none header.from=mit.edu; dkim=pass header.d=mit.edu; arc=none
Received: from DM6PR01MB4444.prod.exchangelabs.com (2603:10b6:5:78::15) by MN0PR01MB7732.prod.exchangelabs.com (2603:10b6:208:37c::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6363.22; Wed, 3 May 2023 17:56:21 +0000
Received: from DM6PR01MB4444.prod.exchangelabs.com ([fe80::97b:a2f0:ec7d:c25f]) by DM6PR01MB4444.prod.exchangelabs.com ([fe80::97b:a2f0:ec7d:c25f%6]) with mapi id 15.20.6363.020; Wed, 3 May 2023 17:56:21 +0000
From: Justin Richer <jricher@mit.edu>
To: GNAP Mailing List <txauth@ietf.org>
Thread-Topic: Token Rotation
Thread-Index: AQHZfeiR23KrUPLMM0e81TkyJDjElg==
Date: Wed, 03 May 2023 17:56:21 +0000
Message-ID: <A1D14598-8960-47DB-BE38-C1EF82A1C0DF@mit.edu>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=mit.edu;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DM6PR01MB4444:EE_|MN0PR01MB7732:EE_
x-ms-office365-filtering-correlation-id: 3a487136-35dc-4997-207f-08db4bffb3fa
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: ecpO/olCwfmDD/jeEcBoqH8YamCwW4pqZsZ6yGz4Oo68MZwKa8VCo8Kdu9Fkk914HMeQ6pehjLmbKoKxEIlwiLVUA3XjaFsV9ynwXdlpQFzwcbG2CeQdM7fxQ8sckDL52cDrVWXbf1dD+vP8JMuWiQ2viwi4gO4DEwe8Kld8qF6RV37w3L1tNBhe3fpWkpJu73EvxS9ES5MgYd/jO2lqvd4DvlHKh14Hy/5bxAAs7rg0ODsUR2WsBVBl8plMEcdJ665Tz5unjfpRlnIf9uVbVGZToiNY1GFb4bVExlnXglHnYuK/ym6Cq4Xe8VlMKgOHOkeNHwQ4CExJ+lPci95UqJH/i9+sdKwL0xxFUT5Tmb+qxjiU36FPOmrOFYq7RZcCja9BMPHA54/eYOse2VG7NqYhH1L7HCsvGrt8gAsU2wuum0Hcgu1ugFayrQ73iBhQBCxhS84/gW+Hy0kjV0v93JQpnSiJ7VNd5gyopFQoncUoD1b0Xyb2TB1HKz5P5Vk4Pd88KpvDg8Mvvga+8loLf/vR9Sr/SHuiwRpYFZj4NsoIneMyXaZY7Ae3e4/297XSXyGZXq1lZ0NoqlYEJrKdl84KJ+QtcjRqhNyMDSYNpuI=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR01MB4444.prod.exchangelabs.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(396003)(346002)(136003)(39860400002)(366004)(376002)(451199021)(966005)(6486002)(71200400001)(36756003)(2616005)(186003)(3480700007)(38100700002)(122000001)(166002)(38070700005)(86362001)(33656002)(75432002)(26005)(6512007)(6506007)(66446008)(66476007)(66556008)(64756008)(4744005)(2906002)(6916009)(66946007)(76116006)(786003)(316002)(91956017)(8676002)(8936002)(478600001)(5660300002)(41300700001)(7116003); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_A1D14598896047DBBE38C1EF82A1C0DFmitedu_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR01MB4444.prod.exchangelabs.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 3a487136-35dc-4997-207f-08db4bffb3fa
X-MS-Exchange-CrossTenant-originalarrivaltime: 03 May 2023 17:56:21.0814 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: XLlRcNROFWTY5uVeVqwreoAF8ZBJITHV/hkAeJ3uapQr2wh7bVVxIa+JdzQuCsOR
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN0PR01MB7732
X-OriginatorOrg: mit.edu
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/FgGYSwwVelw9K7UZykA-f7VaFxQ>
Subject: [GNAP] Token Rotation
X-BeenThere: txauth@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: GNAP <txauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/txauth>, <mailto:txauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/txauth/>
List-Post: <mailto:txauth@ietf.org>
List-Help: <mailto:txauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/txauth>, <mailto:txauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 May 2023 17:57:04 -0000
After the discussion at IETF116, we’ve just added the “token management token” to the token management API, which should address the last handful of comments from the WGLC reviews: https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/505 Please go read through the text, we plan to merge and publish a new version with this text by the end of the week. — Justin
- [GNAP] Token Rotation Justin Richer