Hi all, In the upcoming conference calls we will continue the conversation from the Singapore IETF meeting where Dick presented his documents about mutual and distributed OAuth. There was a fair amount of interest in addressing the problems raised in the two documents (namely https://datatracker.ietf.org/doc/draft-hardt-oauth-distributed/ https://datatracker.ietf.org/doc/draft-hardt-oauth-mutual/). However, some participants also noted that there are other solution approaches and prior work that has to be considered.
In the conference calls we would like to get an agreement on the problem statements and also talk about the solution directions. For this reason we would like to get a good idea what folks in the group consider valid solution approaches. From the meeting minutes we noted that UMA was highlighted as a solution approach for the distributed OAuth topic and token exchange as a solution for mutual OAuth. More needs to be provided to have something to investigate and to compare. Ciao Hannes & Rifaat IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you. _______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
