Hi On 10/09/14 09:57, Rex Albert wrote:
Hi, We are looking at implementing OAUTHV2-HTTP-MAC whose draft is in an expired state.(http://tools.ietf.org/html/draft-ietf-oauth-v2-http-mac-05) Is it dead or is it going to be a standard anytime? or are we going to implement at our own risk? or is there a better standard/draft ( alive ) which might supersede this draft ?
It's not going to be revived. Does not mean though one can not use the idea for implementing custom OAuth2 token schemes, IMHO it was a very simple and effective 'PoP' approach, and it is easy to document and support. FYI, we support a Hawk scheme (not part of OAuth2 work at all, kind of 'draft-ietf-oauth-v2-http-mac-06') as an access token scheme in our project.
As far as I understand new proof-of-possession documents the group is working upon will offer the alternative standard solutions.
Cheers, Sergey
thank you for your time. I am a newbie to the IETF draft process and kindly excuse my naivety. -rex _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
