Re: [OAUTH-WG] Call for Adoption: OAuth 2.0 Discovery

+1 for adoption. However I would like a rel value distinct from OpenID (see separate email). While the mechanics of discovery is the same, I believe some clients will want to distinguish between OAuth AS’s and OIDC OPs. Further, I would expect over time that different discovery features may

Re: [OAUTH-WG] Call for Adoption: Stateless Client Identifier for OAuth 2

I support adoption of this document by the working group as either an experimental or information specification. -- Mike -Original Message- From: OAuth [mailto:oauth-boun...@ietf.org] On Behalf Of Hannes Tschofenig Sent: Tuesday, January 19, 2016 4:05 AM T

Re: [OAUTH-WG] Call for Adoption: Encoding claims in the OAuth 2 state parameter using a JWT

I support adoption of this document by the working group as either an experimental or informational specification. -- Mike -Original Message- From: OAuth [mailto:oauth-boun...@ietf.org] On Behalf Of Hannes Tschofenig Sent: Tuesday, January 19, 2016 3:50 AM

Re: [OAUTH-WG] Call for Adoption: OAuth 2.0 Mix-Up Mitigation

I support adoption of this document by the working group. -- Mike -Original Message- From: OAuth [mailto:oauth-boun...@ietf.org] On Behalf Of Hannes Tschofenig Sent: Tuesday, January 19, 2016 3:50 AM To: oauth@ietf.org Subject: [OAUTH-WG] Call for Adoption:

Re: [OAUTH-WG] Call for Adoption: OAuth 2.0 Discovery

I support adoption of this document by the working group. I'll note that elements of this specification are already in production use by multiple parties. -- Mike -Original Message- From: OAuth [mailto:oauth-boun...@ietf.org] On Behalf Of Hannes Tschofen

Re: [OAUTH-WG] Call for Adoption: Authentication Method Reference Values

I support adoption of this document by the working group. I'll note that elements of this specification are already in production use and that it is normatively referenced by the OpenID MODRNA specifications. -- Mike -Original Message- From: OAuth [mailt

Re: [OAUTH-WG] Call for Adoption: OAuth 2.0 Device Flow

I support adoption of this document by the working group. -- Mike -Original Message- From: OAuth [mailto:oauth-boun...@ietf.org] On Behalf Of Hannes Tschofenig Sent: Tuesday, January 19, 2016 3:48 AM To: oauth@ietf.org Subject: [OAUTH-WG] Call for Adoption:

Re: [OAUTH-WG] Call for Adoption: OAuth 2.0 Security: OAuth Open Redirector

I support adoption of this document by the working group. -- Mike -Original Message- From: OAuth [mailto:oauth-boun...@ietf.org] On Behalf Of Hannes Tschofenig Sent: Tuesday, January 19, 2016 3:48 AM To: oauth@ietf.org Subject: [OAUTH-WG] Call for Adoption:

[OAUTH-WG] OAuth PoP Implementation

Hi Everyone, I recently decided to put together an end to end implementation of at least part of the proposed OAuth specs. I haven’t seen any other implementations of the whole system, so I wanted to see how viable this whole idea really. It’s done in Node.js (using Express.js) and it’s on GitH

[OAUTH-WG] I-D Action: draft-ietf-oauth-signed-http-request-02.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Web Authorization Protocol Working Group of the IETF. Title : A Method for Signing HTTP Requests for OAuth Authors : Justin Richer