I support adoption
Christian
From: OAuth On Behalf Of Rifaat Shekh-Yusef
Sent: Tuesday, November 14, 2023 1:59 PM
To: oauth
Subject: [OAUTH-WG] Call for adoption - Identity Chaining
All,
This is an official call for adoption for the Identity Chaining draft:
https://datatracker.ietf.org/
Hi and thanks for the feedback!
Here are my thoughts on the comments:
Should at least one of ttl and exp be required? Why is ttl not listed for
CBOR? Are both mechanisms needed?
- I would say no - right now we require “iat” which allows a relying party to
make an informed decision on wh
-status-list-05.txt
Internet-Draft draft-ietf-oauth-status-list-05.txt is now available. It is a
work item of the Web Authorization Protocol (OAUTH) WG of the IETF.
Title: Token Status List
Authors: Tobias Looker
Paul Bastian
Christian Bormann
Name:draft-ietf
ble. It is awork item of the Web Authorization Protocol (OAUTH) WG of the IETF. Title: Token Status List Authors: Tobias LookerPaul Bastian Christian Bormann Name:draft-ietf-oauth-status-list-07.txt Pages: 69 Dates: 2025-02-02 Abstract: This specificati
Hi all, While going through the feedback and issues on github, there was one bigger discussion point that we would like to bring to the mailing list. Steffen Schwalm asked for support for X.509 Certificate revocation with the Status List - in that case the Status List describing the status of an X.
Hi Watson, We tried to bring your points into the OAuth interim meeting. Here my attempt to reflect the major parts of the discussion that happened there and the perspective from the editors: The allocation of status types in the registry has implications, and Idon't think they are the right ones.
her proofs etc.). > It's more advice on how to set them up, which that sentance doesn't give. Does https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/230 work for you? Best Regards,Christian On 17.01.25, 01:54, "Watson Ladd" wrote:On Thu, Jan 16, 2025 at 12:49
Hi, Paul, Tobias, and I would like to request 2 sessions for Token Status List (https://datatracker.ietf.org/doc/draft-ietf-oauth-status-list/):A short update on current state, latest updates and remaining discussion point(s). Roughly 20 minutes would probably be good? Attestation Based Client Aut
=id.g33a15d709f8_0_331 Best Regards,Christian From: Michael Jones Date: Wednesday, 26. February 2025 at 18:05To: Brian Campbell , Filip Skokan Cc: Christian Bormann , oauth Subject: RE: [OAUTH-WG] Re: Status List Feature RequestX.509 already has its own revocation infrastructure (in fact, more than one kind!). We
Hi All, We had a discussion about a nonce fetching mechanism for the Attestation-Based Client Authentication draft at theIETF 122 session. Since we didn’t really reach a consensus there, we’d like to continue the discussion on the mailing list. To summarize the problem briefly: The draft specifies
Hi Denis, We went through your feedback and each point individually in https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/281. We didn’t agree with all points you made, but did a small editorial PR fixing some of them. Best Regards,Christian From: Denis Date: Monday, 7. April 2025 at 1
11 matches
Mail list logo
