Hi George,
Is is unclear whether you are considering the OAuth 2.X Framework
or the three roles model (i.e., with the Holder, the Issuer and the
Verifier).
Denis
Hi,
Are there any best practices for clients that want to use Dynamic
Client Registration and plan to register a public key
(rat
I support adoption
-DW
> On Nov 14, 2023, at 4:59 AM, Rifaat Shekh-Yusef
> wrote:
>
>
> All,
>
> This is an official call for adoption for the Identity Chaining draft:
> https://datatracker.ietf.org/doc/draft-schwenkschuster-oauth-identity-chaining/
>
> Please, reply on the mailing list an
I support adoption
___
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
I support adoption
___
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
An issue was filed in the OpenID Connect repository at
https://bitbucket.org/openid/connect/issues/2074/parameter-pollution-with-redirect_uri
that the working group believes is actually about OAuth and not specific to
OpenID Connect. The description of the issue is:
We have researched the OAu
I support adoption.
On Wed, Nov 15, 2023 at 3:10 PM Brian Campbell wrote:
> I support adoption.
>
> On Tue, Nov 14, 2023 at 5:59 AM Rifaat Shekh-Yusef <
> rifaat.s.i...@gmail.com> wrote:
>
>> All,
>>
>> This is an *official* call for adoption for the *Identity Chaining *
>> draft:
>>
>> https://
Hi,
Are there any best practices for clients that want to use Dynamic Client
Registration and plan to register a public key (rather than receiving back
a shared client_secret), to use DPoP to prove possession of the
matching private key and also integrity protect the JSON object passed to
the regi
