[OAUTH-WG] OAuth WG Virtual Office Hours cancelled this week

All, Hannes and I are both traveling this week, and cannot host the OAuth WG virtual office hours meeting. Regards, Rifaat ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth

Re: [OAUTH-WG] AD review of draft-ietf-oauth-rar-12

Hi Justin! https://github.com/oauthstuff/draft-oauth-rar/pull/88 looks good to me. Thanks. Roman From: Justin Richer Sent: Monday, October 17, 2022 4:35 PM To: Roman Danyliw Cc: oauth@ietf.org Subject: Re: [OAUTH-WG] AD review of draft-ietf-oauth-rar-12 Thank you, that’s a much better way to

Re: [OAUTH-WG] AD review of draft-ietf-oauth-rar-12

Thank you, that’s a much better way to say that. I think more of that paragraph can actually be pulled back, so I’m proposing this as the opening paragraph to that section: This specification defines a set of common data fields that are designed to be usable across different types of APIs. This

Re: [OAUTH-WG] WGLC for Step-up Authentication

Thanks Jaimandeep, There are certainly some complementary aspects of the step-up work and adaptive risk based approaches. Both in conveying information in/with an access token that might be input into a risk score calculation and in signaling that a more recent and/or stronger user authentication

[OAUTH-WG] Fwd: New Version Notification for draft-schwartz-httpapi-popup-authentication-00.txt

Hi HTTPAPI and OAUTH, This is a new draft that attempts to define a useful convention for HTTP authentication: a way to tell the client to open a browser window to start authentication, and to close that window when authentication is complete. I think this might be a good fit for HTTPAPI, since i