Microsoft recently offered to sponsor me to work on OAuth. For the past few months I have participated in the WG on my own time, but I am now able to devote a significant amount of time to this WG.
I'd be happy to work on merging client signature support with WRAP. My preference would be to start with that draft rather than draft-recordon-oauth2 given all the capabilities that David decided to drop. Alternatively I will continue to provide criticism and author chunks of text if David is willing to include them in draft-recordon-oauth2. At the IETF post meeting this week, there was discussion of working on both draft-hardt-oauth and draft-recordon-oauth2. David's draft has garnered much discussion, much of it comments on what was dropped from WRAP. Similarly, if draft-hardt-oauth was revised to include signatures, it likely would also generate discussion. Seems like a waste for the WG to be providing comments on two documents. I'm unsure of the correct process: is it the chairs, the editor or a WG consensus call to decide where to start. _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
