[OAUTH-WG] Re: Rtgdir last call review of draft-ietf-oauth-browser-based-apps-22

Thanks for your review, Matthew, we appreciate the time! On Tue, Feb 4, 2025 at 5:13 AM Matthew Bocci via Datatracker < nore...@ietf.org> wrote: > Reviewer: Matthew Bocci > Review result: Ready > > Hi, > > I am the designated Routing Area Directorate reviewer for this draft. The > draft > provid

[OAUTH-WG] Re: Artart last call review of draft-ietf-oauth-browser-based-apps-22

Thanks for your review, Marc, we've published a new version addressing your feedback. https://www.ietf.org/archive/id/draft-ietf-oauth-browser-based-apps-23.html You can also see the more detailed commits and discussion on GitHub: https://github.com/oauth-wg/oauth-browser-based-apps/issues/72 Re

[OAUTH-WG] Re: Secdir last call review of draft-ietf-oauth-browser-based-apps-22

Thanks for your review, Watson. We've published a new version of the draft addressing your and others' feedback. https://www.ietf.org/archive/id/draft-ietf-oauth-browser-based-apps-23.html You can also see the more detailed commits and discussion on GitHub: https://github.com/oauth-wg/oauth-brows

[OAUTH-WG] Re: Httpdir last call review of draft-ietf-oauth-browser-based-apps-22

Thanks for your thorough review Martin! We've published version 23 of the draft addressing your feedback. https://www.ietf.org/archive/id/draft-ietf-oauth-browser-based-apps-23.html Notes on your feedback are inline. You can also see the specific feedback and commits by following this GitHub issu

[OAUTH-WG] I-D Action: draft-ietf-oauth-browser-based-apps-23.txt

Internet-Draft draft-ietf-oauth-browser-based-apps-23.txt is now available. It is a work item of the Web Authorization Protocol (OAUTH) WG of the IETF. Title: OAuth 2.0 for Browser-Based Applications Authors: Aaron Parecki David Waite Philippe De Ryck Name:dr

[OAUTH-WG] Re: Status List Feature Request

I agree with Hannes that X.509 extensions need to be done in LAMPS, because that is where the expertise is. thanks, -rohan On Wed, Feb 26, 2025, 08:48 Hannes Tschofenig wrote: > (chair hat off) > > Hi Filip, Hi all, > > this sounds like feature creep to me. I brought this work on status > lists

[OAUTH-WG] Re: I-D Action: draft-ietf-oauth-selective-disclosure-jwt-17.txt

Below is my feedback about draft-ietf-oauth-selective-disclosure-jwt-17, grouped into four categories (A to D). Six issues have been opened about 3 weeks ago, but no reply has been posted on them on github. There are still open. A – *KB-JWT replay detection* a) About KB-JWT replay detectio

[OAUTH-WG] IETF122 - Draft OAuth WG Agenda for Bangkok

All, The following link has our draft agenda for the two OAuth WG sessions in the coming IETF meeting in Bangkok. https://datatracker.ietf.org/doc/agenda-122-oauth/ Take a look and let us know if you have any questions or comments. Regards, Rifaat & Hannes __

[OAUTH-WG] Re: Status List Feature Request

Thanks, this looks like a good and reasonable conclusion. Allowing for extensions is okay. Adding X.509 support, and this isn't exactly a backwards compatibility or bridging kind of feature, as an OAuth WG document would not be appropriate. Vladimir Dzhuvinov On 27/02/2025 17:41, Christian B

[OAUTH-WG] I-D Action: draft-ietf-oauth-selective-disclosure-jwt-17.txt

Internet-Draft draft-ietf-oauth-selective-disclosure-jwt-17.txt is now available. It is a work item of the Web Authorization Protocol (OAUTH) WG of the IETF. Title: Selective Disclosure for JWTs (SD-JWT) Authors: Daniel Fett Kristina Yasuda Brian Campbell Name: