[GNAP] Gathering Consent and Authorization

Justin Richer <jricher@mit.edu> Fri, 09 April 2021 12:28 UTC

Return-Path: <jricher@mit.edu>
X-Original-To: txauth@ietfa.amsl.com
Delivered-To: txauth@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id 6250A3A1F86 for <txauth@ietfa.amsl.com>; Fri, 9 Apr 2021 05:28:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.498
X-Spam-Status: No, score=-0.498 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, KHOP_HELO_FCRDNS=0.399, RCVD_DOTEDU_SHORT=1, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id CKNl1iDgZJE4 for <txauth@ietfa.amsl.com>; Fri, 9 Apr 2021 05:28:17 -0700 (PDT)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 48AF63A1F7E for <txauth@ietf.org>; Fri, 9 Apr 2021 05:28:16 -0700 (PDT)
Received: from [] (static-71-174-62-56.bstnma.fios.verizon.net []) (authenticated bits=0) (User authenticated as jricher@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id 139CSDZP028830 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for <txauth@ietf.org>; Fri, 9 Apr 2021 08:28:14 -0400
From: Justin Richer <jricher@mit.edu>
Content-Type: multipart/alternative; boundary="Apple-Mail=_A3E36858-F792-46E4-95B3-8E6375D2AD6B"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.\))
Message-Id: <40D2CDB6-9EF7-42B1-8926-CDDC3523A5AE@mit.edu>
Date: Fri, 9 Apr 2021 08:28:13 -0400
To: GNAP Mailing List <txauth@ietf.org>
X-Mailer: Apple Mail (2.3608.
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/KTXvaW0jF8XZRoDNFCVVZNtx0rc>
Subject: [GNAP] Gathering Consent and Authorization
X-BeenThere: txauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: GNAP <txauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/txauth>, <mailto:txauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/txauth/>
List-Post: <mailto:txauth@ietf.org>
List-Help: <mailto:txauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/txauth>, <mailto:txauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Apr 2021 12:28:19 -0000

We’ve recently had a lot of good discussion about the nature and role of the AS within GNAP, and the editors stated that we would be working on new text to incorporate this discussion. With that in mind, I wanted to bring everyone’s attention to a PR that makes some big changes to the core spec, though mostly in the description of how components work and less with the normative syntax of the protocol itself.

https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/242 <https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/242>

This rewrites the section that is currently “Interaction at the AS” to better describe the wider range of possibilities for the authorization process. Note that this PR hasn’t been tagged as “pending merge” by the editors yet, which means there’s not a review deadline in place yet, but since it’s such a big change we’d like to get it in somewhat soon. Please go read through the new text and help improve it!

Thank you,
 — Justin