The erratum looks correct to me.
-Daniel
Am 18.09.23 um 08:57 schrieb RFC Errata System:
The following errata report has been submitted for RFC9449,
"OAuth 2.0 Demonstrating Proof of Possession (DPoP)".
--------------------------------------
You may review the report below and at:
https://www.rfc-editor.org/errata/eid7646
--------------------------------------
Type: Editorial
Reported by: Michiel Albracht<michielalbra...@me.com>
Section: 4.2
Original Text
-------------
When the authentication server or resource server provides a DPoP-Nonce
Corrected Text
--------------
When the authorization server or resource server provides a DPoP-Nonce
Notes
-----
authentication server must be authorization server
Instructions:
-------------
This erratum is currently posted as "Reported". If necessary, please
use "Reply All" to discuss whether it should be verified or
rejected. When a decision is reached, the verifying party
can log in to change the status and edit the report, if necessary.
--------------------------------------
RFC9449 (draft-ietf-oauth-dpop-16)
--------------------------------------
Title : OAuth 2.0 Demonstrating Proof of Possession (DPoP)
Publication Date : September 2023
Author(s) : D. Fett, B. Campbell, J. Bradley, T. Lodderstedt, M.
Jones, D. Waite
Category : PROPOSED STANDARD
Source : Web Authorization Protocol
Area : Security
Stream : IETF
Verifying Party : IESG
_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
