Re: [OAUTH-WG] Info on how to implement a server

2019-08-18 Thread Salz, Rich
>Then you want OpenID Connect great, thank you for the pointer. ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth

Re: [OAUTH-WG] Info on how to implement a server

2019-08-18 Thread Dick Hardt
On Sun, Aug 18, 2019 at 2:29 PM Salz, Rich wrote: > Not to be pedantic, but adding OAuth support is a mechanism in support > of a goal. What's the end goal? > > * Letting third party apps use the datatracker API? > * Letting people sign in to other apps with a datatracker account?

Re: [OAUTH-WG] Info on how to implement a server

2019-08-18 Thread Salz, Rich
Not to be pedantic, but adding OAuth support is a mechanism in support of a goal. What's the end goal? * Letting third party apps use the datatracker API? * Letting people sign in to other apps with a datatracker account? The latter. __

Re: [OAUTH-WG] Info on how to implement a server

2019-08-18 Thread Salz, Rich
>Do you want to enable applications to call datatracker APIs? Not me, no. But I know of a couple that will be able to benefit ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth

Re: [OAUTH-WG] Info on how to implement a server

2019-08-18 Thread Aaron Parecki
Not to be pedantic, but adding OAuth support is a mechanism in support of a goal. What's the end goal? * Letting third party apps use the datatracker API? * Letting people sign in to other apps with a datatracker account? Aaron Parecki aaronparecki.com On Sun, Aug 18, 2019 at 2:05 PM Salz,

Re: [OAUTH-WG] Info on how to implement a server

2019-08-18 Thread Dick Hardt
That sounds like a means to an end. Do you want to enable applications to call datatracker APIs? On Sun, Aug 18, 2019 at 2:05 PM Salz, Rich wrote: > As I said at the start of the thread: I want to add OAUTH support to the > datatracker. > > > > *From: *Dick Hardt > *Date: *Sunday, August 18, 2

Re: [OAUTH-WG] Info on how to implement a server

2019-08-18 Thread Salz, Rich
As I said at the start of the thread: I want to add OAUTH support to the datatracker. From: Dick Hardt Date: Sunday, August 18, 2019 at 4:47 PM To: Rich Salz Cc: Hans Zandbelt , John Bradley , "oauth@ietf.org" Subject: Re: [OAUTH-WG] Info on how to implement a server What is the goal? On Su

Re: [OAUTH-WG] Info on how to implement a server

2019-08-18 Thread Dick Hardt
What is the goal? On Sun, Aug 18, 2019 at 12:41 PM Salz, Rich wrote: > Thanks for the links, folks. I’m aware, and sorry for my sloppy > terminology. > > > > Imagine a service where anyone with a valid identity is authorized. There > are many of these on the net. Collapsing authentication to au

Re: [OAUTH-WG] Info on how to implement a server

2019-08-18 Thread Salz, Rich
Thanks for the links, folks. I’m aware, and sorry for my sloppy terminology. Imagine a service where anyone with a valid identity is authorized. There are many of these on the net. Collapsing authentication to authorization (“everyone authenticated is authorized”) seems not unreasonable. But I