Re: [Txauth] Additional implementation

Benjamin Kaduk <kaduk@mit.edu> Sun, 05 July 2020 22:53 UTC

Date: Sun, 05 Jul 2020 15:53:43 -0700
From: Benjamin Kaduk <kaduk@mit.edu>
To: Dick Hardt <dick.hardt@gmail.com>
Cc: Fabien Imbault <fabien.imbault@gmail.com>, txauth@ietf.org
Message-ID: <20200705225343.GQ16335@kduck.mit.edu>
References: <CAM8feuRA1VfPs6bdrGgssBeBNe4wPySHjKcjiP6HexKMUff4DQ@mail.gmail.com> <CAD9ie-t7Lzt8S09YKPqwhc__7fKU6XpsyL1m8CGYUqfQwj8+ww@mail.gmail.com> <CAM8feuQK7HnKWd4TuusKy6z5q0K8V1+fO7xdqnLwOckThgtfNw@mail.gmail.com> <CAM8feuT5VO3w-PJWX-SWL0tdoCH4TfzfTnabD5kNLfZ=T8nAZw@mail.gmail.com> <CAD9ie-vUGGRcsv2mC6OD=p2P-jRLbpWo1dOfq3AVYc9gU1S8hA@mail.gmail.com> <CAM8feuRc_arjH-mKyXo+4k_PzRZ0Pq83fkNsN3_YM0mZ8VmmMg@mail.gmail.com> <CAD9ie-un7KEtreop+CYgkds5R89Xc26qCxt5Zd9zHRzY9UEH5Q@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CAD9ie-un7KEtreop+CYgkds5R89Xc26qCxt5Zd9zHRzY9UEH5Q@mail.gmail.com>
User-Agent: Mutt/1.12.1 (2019-06-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/p-JW-jOd6fHM2BzA78PSxEo-s2o>
Subject: Re: [Txauth] Additional implementation
Precedence: list

Hi Dick, Fabien,

Just to clarify on one point, and check whether I'm confused:

On Fri, Jul 03, 2020 at 06:32:44PM -0700, Dick Hardt wrote:
> On Fri, Jul 3, 2020 at 1:19 AM Fabien Imbault <fabien.imbault@gmail.com>
> wrote:
> 
> > On Thu, Jul 2, 2020 at 7:34 PM Dick Hardt <dick.hardt@gmail.com> wrote:
> >
> >> On Wed, Jun 17, 2020 at 3:47 AM Fabien Imbault <fabien.imbault@gmail.com>
> >> wrote:
> 
> >
> >> Just like OAuth 2.0, the access token is opaque to the client, and it is
> >> not specified, so I'm confused what you mean by "other types of tokens than
> >> JWT"?
> >>
> >> FI : I mean, for instance, linked data proofs, macaroons, and so on.
> >
> 
> I see. When I read 'token', I think of access tokens. You are referring to
> what I would call a claims, which per above are defined somewhere else.

My understanding was that macaroons, at least, were complete tokens that
incorporate (at least by reference) multiple claims.  So a macaroon and a
JWT would be analogous in that sense (container holding many claims).  I'm
not sure whether the same holds for a linked data proof (or if it's just a
way to represent a single claim), though.

Am I confused?

Thanks,

Ben

[Txauth] Additional implementation Fabien Imbault
Re: [Txauth] Additional implementation Dick Hardt
Re: [Txauth] Additional implementation Fabien Imbault
Re: [Txauth] Additional implementation Fabien Imbault
Re: [Txauth] Additional implementation Dick Hardt
Re: [Txauth] Additional implementation Fabien Imbault
Re: [Txauth] Additional implementation Dick Hardt
Re: [Txauth] Additional implementation Fabien Imbault
Re: [Txauth] Additional implementation Justin Richer
Re: [Txauth] Additional implementation Benjamin Kaduk
Re: [Txauth] Additional implementation Fabien Imbault
Re: [Txauth] Additional implementation Fabien Imbault
Re: [Txauth] Additional implementation Dick Hardt
Re: [Txauth] Additional implementation Wayne Chang
Re: [Txauth] Additional implementation Dick Hardt
Re: [Txauth] Additional implementation Fabien Imbault
Re: [Txauth] Additional implementation Fabien Imbault
Re: [Txauth] Additional implementation Justin Richer