Surprisingly ;-), I kind of agree with Tony. We need to hash out the requirements more fully.
Nat 2016-04-06 17:16 GMT-03:00 Anthony Nadalin <tony...@microsoft.com>: > I don’t see anything in the document that allows multiple resource servers > where the token can be used. Token Exchange allows delegation and > impersonation, so I have no idea of the semantics when I use both of these > together > > > > *From:* Brian Campbell [mailto:bcampb...@pingidentity.com] > *Sent:* Wednesday, April 6, 2016 1:13 PM > *To:* Anthony Nadalin <tony...@microsoft.com> > *Cc:* Phil Hunt (IDM) <phil.h...@oracle.com>; oauth@ietf.org > *Subject:* Re: [OAUTH-WG] Call for Adoption: Resource Indicators for > OAuth 2.0 > > > > Multiple resources are there now. > > I have no idea what "interaction with Token Exchange" means. Can you > please explain? > > > > On Wed, Apr 6, 2016 at 5:04 PM, Anthony Nadalin <tony...@microsoft.com> > wrote: > > I would like to see the multiple resources servers, interaction with Token > Exchange resolved before this is adopted to see if this will actually solve > the problems > > > > *From:* OAuth [mailto:oauth-boun...@ietf.org] *On Behalf Of *Brian > Campbell > *Sent:* Wednesday, April 6, 2016 12:52 PM > *To:* Phil Hunt (IDM) <phil.h...@oracle.com> > *Cc:* oauth@ietf.org > *Subject:* Re: [OAUTH-WG] Call for Adoption: Resource Indicators for > OAuth 2.0 > > > > I support the adoption of this draft by the working group. > > I don't think an immediate WGLC was expected here. > > > > On Wed, Apr 6, 2016 at 4:06 PM, Phil Hunt (IDM) <phil.h...@oracle.com> > wrote: > > With the process of immediate wglc I think we should review all documents > more thoroughly before adoption. > > As I said I support the work. > > Phil > > > > On Apr 6, 2016, at 16:02, Hannes Tschofenig <hannes.tschofe...@gmx.net> > wrote: > > > > Phil, > > > > we have discussed this concept already for years. In fact, it dates back > > to the days of the OAuth base specification and the security > > consideration section even talks about it. > > > > We have had the content of this in the PoP key distribution draft and we > > are now moving it into a separate document. > > > > I am not sure how much longer you want to discuss it. > > > > Ciao > > Hannes > > > > > >> On 04/06/2016 08:07 PM, Phil Hunt (IDM) wrote: > >> I would like to have more discussion before wg adoption. > >> > >> I support the work and am willing to help. > >> > >> Phil > >> > >>> On Apr 6, 2016, at 14:25, Hannes Tschofenig <hannes.tschofe...@gmx.net> > wrote: > >>> > >>> Hi all, > >>> > >>> this is the call for adoption of 'Resource Indicators for OAuth 2.0', > see > >>> > http://datatracker.ietf.org/doc/draft-campbell-oauth-resource-indicators/ > <https://na01.safelinks.protection.outlook.com/?url=http%3a%2f%2fdatatracker.ietf.org%2fdoc%2fdraft-campbell-oauth-resource-indicators%2f&data=01%7c01%7ctonynad%40microsoft.com%7c0db8d93df16c4462a54508d35e550020%7c72f988bf86f141af91ab2d7cd011db47%7c1&sdata=byM3LOXoRTVhgT8pECwr18fH8mpi69bReWGFiuOEbMA%3d> > >>> > >>> Please let us know by April 20th whether you accept / object to the > >>> adoption of this document as a starting point for work in the OAuth > >>> working group. > >>> > >>> Note: If you already stated your opinion at the IETF meeting in Buenos > >>> Aires then you don't need to re-state your opinion, if you want. > >>> > >>> The feedback at the BA IETF meeting was the following: ~10 persons > >>> for accepting the document and 0 persons against. > >>> > >>> Ciao > >>> Hannes & Derek > >>> > >>> _______________________________________________ > >>> OAuth mailing list > >>> OAuth@ietf.org > >>> https://www.ietf.org/mailman/listinfo/oauth > <https://na01.safelinks.protection.outlook.com/?url=https%3a%2f%2fwww.ietf.org%2fmailman%2flistinfo%2foauth&data=01%7c01%7ctonynad%40microsoft.com%7c0db8d93df16c4462a54508d35e550020%7c72f988bf86f141af91ab2d7cd011db47%7c1&sdata=ITHT4xb2D%2bsq4auvEuOv1VUwqFl9lRON5aOL6oOst8U%3d> > > > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth > <https://na01.safelinks.protection.outlook.com/?url=https%3a%2f%2fwww.ietf.org%2fmailman%2flistinfo%2foauth&data=01%7c01%7ctonynad%40microsoft.com%7c0db8d93df16c4462a54508d35e550020%7c72f988bf86f141af91ab2d7cd011db47%7c1&sdata=ITHT4xb2D%2bsq4auvEuOv1VUwqFl9lRON5aOL6oOst8U%3d> > > > > > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth > > -- Nat Sakimura (=nat) Chairman, OpenID Foundation http://nat.sakimura.org/ @_nat_en
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
