ntation it actually aligns a little bit with
something we have been thinking about, but haven't taken it further than that.
I would very much like to be involved in defining a Draft for that.
On Mon, May 20, 2024 at 12:55 PM Igor Janicijevic
mailto:i...@ivagor.com>> wrote:
Hi Warren,
,
and in my experience that could be a problem… it is much easier for ROs to make
calls to other people’s endpoints ☺
Regards,
Igor
From: Warren Parad [mailto:wpa...@rhosys.ch]
Sent: Sunday, 19 May 2024 11:41 PM
To: Igor Janicijevic
Cc: Aaron Parecki ;
Subject: Re: [OAUTH-WG] Re: New Internet
policies are
needed at AS.
From: Aaron Parecki [mailto:aa...@parecki.com]
Sent: Sunday, 19 May 2024 10:23 PM
To: Igor Janicijevic
Cc: Warren Parad ;
Subject: Re: [OAUTH-WG] Re: New Internet Draft: OAuth 2.0 Delegated B2B
Authorization
Yeah this just sounds like the client credentials grant with
the RO wants to delegate to
the third party.
From: Warren Parad [mailto:wpa...@rhosys.ch]
Sent: Sunday, 19 May 2024 10:21 PM
To: Igor Janicijevic
Cc: Thomas Broyer ;
Subject: Re: [OAUTH-WG] Re: New Internet Draft: OAuth 2.0 Delegated B2B
Authorization
Okay but that just creates more unanswered
” scope. This means that
the third party client will only be able to obtain read only access to that
resource and will not be able to update the resource.
From: Warren Parad [mailto:wpa...@rhosys.ch]
Sent: Sunday, 19 May 2024 9:57 PM
To: Igor Janicijevic
Cc: Thomas Broyer ;
Subject: Re: [OAUTH-WG
to its own resources – there is no delegation
and no “on behalf of access”…
There is no delegated flow for system to system access in the standard OAuth,
as far as I know…
From: Warren Parad [mailto:wpa...@rhosys.ch]
Sent: Sunday, 19 May 2024 9:18 PM
To: Igor Janicijevic
Cc: Thomas Broyer
[mailto:wpa...@rhosys.ch]
Sent: Sunday, 19 May 2024 7:14 PM
To: Igor Janicijevic
Cc: Thomas Broyer ;
Subject: Re: [OAUTH-WG] Re: New Internet Draft: OAuth 2.0 Delegated B2B
Authorization
But the AS is already governing the access between clients, so at the surface
at least I'm not able to wrap my
access between the clients.
Regards,
Igor
From: Warren Parad [mailto:wpa...@rhosys.ch]
Sent: Sunday, 19 May 2024 1:36 AM
To: Thomas Broyer
Cc: Igor Janicijevic ;
Subject: Re: [OAUTH-WG] Re: New Internet Draft: OAuth 2.0 Delegated B2B
Authorization
That was my first thought, but since we only
Dear All,
I have published an Internet Draft document that I would like to introduce to
the OAuth working group for consideration. Here is the link for your reference:
https://www.ietf.org/archive/id/draft-janicijevic-oauth-b2b-authorization-00.html
Abstract
Delegated B2B Authorization enable
