Events without label "editorial"
Issues
------
* oauth-wg/oauth-browser-based-apps (+1/-2/💬2)
1 issues created:
- Follow up on review for merged PR (by philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/issues/35
1 issues received 2 new comments:
- #25 6.1.4.3 Suggestion: change text and remove significant burden (2 by
aaronpk, philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/issues/25
2 issues closed:
- 6.1.4.3 Suggestion: change text and remove significant burden https://github.com/oauth-wg/oauth-browser-based-apps/issues/25
- Suggestion: add new section 6.1.3.3.3. Use Anti-forgery cookies https://github.com/oauth-wg/oauth-browser-based-apps/issues/26
* oauth-wg/oauth-identity-chaining (+1/-1/💬4)
1 issues created:
- relax recommendation aganst requested_token_type use (by bc-pi)
https://github.com/oauth-wg/oauth-identity-chaining/issues/82
3 issues received 4 new comments:
- #82 relax recommendation against requested_token_type use (1 by aaronpk)
https://github.com/oauth-wg/oauth-identity-chaining/issues/82
- #79 Should we allow identity chaining with DPoP tokens? (1 by bc-pi)
https://github.com/oauth-wg/oauth-identity-chaining/issues/79
- #31 Additional profile of Token Exchange (2 by kburgin3)
https://github.com/oauth-wg/oauth-identity-chaining/issues/31
1 issues closed:
- Additional profile of Token Exchange https://github.com/oauth-wg/oauth-identity-chaining/issues/31
* oauth-wg/oauth-transaction-tokens (+0/-0/💬1)
1 issues received 1 new comments:
- #53 Transaction Tokens for S2S calls (1 by gffletch)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/53
* oauth-wg/oauth-sd-jwt-vc (+0/-1/💬4)
2 issues received 4 new comments:
- #205 defining how DID can be used as user's indetifier (3 by awoie, bc-pi,
paulbastian)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/205
- #196 Consider making cnf optional (1 by bc-pi)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/196
1 issues closed:
- What is the benefit of defining a VC-like data model with JWT claims? https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/128 [NEEDS PR] [wg-02]
* oauth-wg/oauth-selective-disclosure-jwt (+1/-2/💬6)
1 issues created:
- Redesign JWS JSON Serialization (by danielfett)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/403
4 issues received 6 new comments:
- #393 Provide ABNF (1 by Sakurann)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/393 [ready-for-PR]
- #392 JSON serialization doesn't cover key binding (2 by Sakurann, danielfett)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/392
- #383 Remove mention of unspecified key binding methods (2 by Sakurann, bc-pi)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/383 [ready-for-PR]
- #369 Allow HMAC-based Issuer-signed JWTs and KB-JWTs to support different aspects of repudiation (1 by danielfett)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/369
2 issues closed:
- Allow HMAC-based Issuer-signed JWTs and KB-JWTs to support different aspects of repudiation https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/369
- Definitively distinguishing SD-JWT https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/345 [question] [pending-close]
* oauth-wg/oauth-v2-1 (+0/-0/💬3)
1 issues received 3 new comments:
- #39 clarify case sensitivity of redirect URI string matching (3 by aaronpk,
adeinega)
https://github.com/oauth-wg/oauth-v2-1/issues/39 [draft-00-feedback]
Pull requests
-------------
* oauth-wg/oauth-browser-based-apps (+3/-5/💬1)
3 pull requests submitted:
- Moved new section on in-browser flows (by philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/pull/38
- Addressed comments from Elar Lang (by philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/pull/37
- Reworded *significant burden* (by philippederyck)
https://github.com/oauth-wg/oauth-browser-based-apps/pull/36
1 pull requests received 1 new comments:
- #34 6.1.3.3.3. Use Anti-forgery/double submit cookies (1 by damienbod)
https://github.com/oauth-wg/oauth-browser-based-apps/pull/34
5 pull requests merged:
- Reworded *significant burden*
https://github.com/oauth-wg/oauth-browser-based-apps/pull/36
- Addressed comments from Elar Lang
https://github.com/oauth-wg/oauth-browser-based-apps/pull/37
- Moved new section on in-browser flows
https://github.com/oauth-wg/oauth-browser-based-apps/pull/38
- 6.1.3.3.3. Use Anti-forgery/double submit cookies
https://github.com/oauth-wg/oauth-browser-based-apps/pull/34
- more silent frame edits
https://github.com/oauth-wg/oauth-browser-based-apps/pull/33
* oauth-wg/oauth-identity-chaining (+1/-0/💬0)
1 pull requests submitted:
- remove recommendation to not use requested_token_type (by bc-pi)
https://github.com/oauth-wg/oauth-identity-chaining/pull/83
* oauth-wg/oauth-transaction-tokens (+0/-1/💬1)
1 pull requests received 1 new comments:
- #67 Clarify and align audience claim value format (1 by obfuscoder)
https://github.com/oauth-wg/oauth-transaction-tokens/pull/67
1 pull requests merged:
- Addressing issue #44 - updating rules for the `sub` claim when requesting
replacement transaction tokens
https://github.com/oauth-wg/oauth-transaction-tokens/pull/71
* oauth-wg/oauth-sd-jwt-vc (+1/-1/💬15)
1 pull requests submitted:
- Clarify the optionality of the cnf claim (by bc-pi)
https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/213
2 pull requests received 15 new comments:
- #213 Clarify the optionality of the cnf claim (14 by Sakurann, awoie, bc-pi,
paulbastian)
https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/213
- #210 feat: add relationships to other docs section (1 by awoie)
https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/210
1 pull requests merged:
- feat: add relationships to other docs section
https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/210
* oauth-wg/oauth-selective-disclosure-jwt (+2/-3/💬1)
2 pull requests submitted:
- Remove mention of unspecified key binding methods (by bc-pi)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/404
- changed the section title to "Key Binding" (by Sakurann)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/402
1 pull requests received 1 new comments:
- #394 Distinguish SD-JWT from SD-JWT+KB (1 by danielfett)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/394
3 pull requests merged:
- changed the section title to "Key Binding"
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/402
- Move 'Improve unlinkability considerations' doc history entry to the correct draft (-08)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/401
- Do not disallow HMAC any longer.
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/400
Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
