Hi all, the Financial-grade API WG at the OpenID Foundation has published a mechanism for signing and encrypting OAuth authorization responses that I would like to bring to your attention.
The draft https://openid.net//specs/openid-financial-api-jarm-wd-01.html went already through Implementations Draft voting. I presented the draft in the session today at IETF-103 and perceived positive feedback on making this draft usable in a broader OAuth context. For the time being we would like the draft to stay in the FAPI WG. If you want to give feedback, please do so either here or at the FAPI mailing list (http://lists.openid.net/mailman/listinfo/openid-specs-fapi). kind regards, Torsten.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
