Am 09.11.22 um 18:47 schrieb Marc Blanchet:
There was a very good presentation today in the OAuth group about it,
along the lines "don't use multi-device flows on the same device" and
I think there is a point about it.
In my eyes a mobile app is more like a web app.
Yes. It is an http clien
> Le 9 nov. 2022 à 18:39, Pawel Kowalik a écrit :
>
> Hi Marc,
>
> Great point about the mobile app. This was not yet discussed and I must admit
> I don't have a lot of practical experience in this area.
>
> I don't think the CLI use-case would be the fitting one, as you won't get the
> bes
Hi Marc,
Great point about the mobile app. This was not yet discussed and I must
admit I don't have a lot of practical experience in this area.
I don't think the CLI use-case would be the fitting one, as you won't
get the best experience with the device flow in the web app, unless you
are fi
Sorry I was not able to attend. But reading the slides, I just want to make
sure the mobile app RDAP client is properly taken into account. I think this is
the « CLI » use case described, but just want to make sure we properly cover
the mobile app RDAP client (I wrote one… and intend to implemen
Hi Mario,
Am 07.11.22 um 11:27 schrieb Mario Loffredo:
I'm very busy Wednesday but, hopefully, I should be free for that time.
Great you can make it.
After a quick reading, a first big doubt from my side is about what is
stated in section 4 regarding "redirect URIs".
Browser-based appli
Hi Pawel,
thanks for the invitation.
I'm very busy Wednesday but, hopefully, I should be free for that time.
In addition to the opportunity to have a separate draft about some kind
of clients (as you may remember, this was my first recommendation), I
would like to put something else on the ta
Hi,
If anyone is interested in discussing this draft and the current issues
in more depth than than the WG session time would allow on Thursday
Scott and I will be setting up a public side meeting during IETF 115.
Wednesday 9 November 16:30 - 17.00 (UTC +0) in Richmond 6.
Online Link
http
Hi Mario,
Am 29.10.22 um 16:41 schrieb Mario Loffredo:
Apart from that, based on my interpretation of GDPR, a generic
third-party client application processing the PII coming from the
RDAP server as claims should be authorized by the end user through a
specific request for consent.
[PK]
Hi Pavel,
Il 29/10/2022 10:59, Pawel Kowalik ha scritto:
Hi Mario,
Am 28.10.22 um 16:36 schrieb Mario Loffredo:
[PK] There is quite relevant drawback from this scenario, that there
is no assurance the identity provided to the RDAP client by the IdP
would be the same as the one used towards
Hi Mario,
Am 28.10.22 um 16:36 schrieb Mario Loffredo:
[PK] There is quite relevant drawback from this scenario, that there
is no assurance the identity provided to the RDAP client by the IdP
would be the same as the one used towards the RDAP server if there is
no relation. An IdP may hold m
Il 28/10/2022 12:25, Pawel Kowalik ha scritto:
Am 28.10.22 um 11:35 schrieb Mario Loffredo:
[PK] The text was proposed in the way which does not exclude certain
valid use-cases but still allows the RDAP server to set its own
policy on sharing data.
This is clear that RDAP server is acting as
Am 28.10.22 um 11:35 schrieb Mario Loffredo:
[PK] The text was proposed in the way which does not exclude certain
valid use-cases but still allows the RDAP server to set its own
policy on sharing data.
This is clear that RDAP server is acting as sort of Identity Provider
towards its clients,
Hi Pavel,
please find my comments embedded below.
Il 26/10/2022 17:56, Pawel Kowalik ha scritto:
Am 26.10.22 um 15:48 schrieb Mario Loffredo:
[ML] Before going into detail with technical aspects, think we should
address some privacy implications connected with the following sentence:
RDAP s
Am 27.10.22 um 14:11 schrieb Hollenbeck, Scott:
1. How do we address web service clients?
[PK] Please find attached my draft on Web Service Clients. Most of it is
based
on the concepts of the version 9. Scope "feature" is also included in the
proposal.
[SAH] I've been testing the proposed a
> -Original Message-
> From: Pawel Kowalik
> Sent: Monday, October 24, 2022 10:58 AM
> To: Hollenbeck, Scott ; regext@ietf.org
> Subject: [EXTERNAL] Re: [regext] I-D Action: draft-ietf-regext-rdap-openid-
> 18.txt
>
> Caution: This email originated from outside
Am 26.10.22 um 15:48 schrieb Mario Loffredo:
[ML] Before going into detail with technical aspects, think we should
address some privacy implications connected with the following sentence:
RDAP server SHOULD merge the scopes requested by the client with the
scopes needed for authorization pu
Hi Scott and Pavel,
please find my comments below.
Il 2022-10-24 16:57 Pawel Kowalik ha scritto:
Hi Scott,
Am 19.10.22 um 14:13 schrieb Hollenbeck, Scott:
1. How do we address web service clients?
[PK] I think the elements we need for web service clients were
already
elaborated in the disc
> -Original Message-
> From: mario.loffr...@iit.cnr.it
> Sent: Tuesday, October 25, 2022 3:15 AM
> To: Hollenbeck, Scott
> Cc: kowa...@denic.de; regext@ietf.org
> Subject: [EXTERNAL] Re: [regext] I-D Action: draft-ietf-regext-rdap-openid-
> 18.txt
>
[SAH] [sn
Hi Scott,
Il 2022-10-21 15:46 Hollenbeck, Scott ha scritto:
-Original Message-
From: Pawel Kowalik
Sent: Friday, October 21, 2022 5:18 AM
To: Hollenbeck, Scott ; regext@ietf.org
Subject: [EXTERNAL] Re: [regext] I-D Action:
draft-ietf-regext-rdap-openid-
18.txt
Caution: This email
> -Original Message-
> From: Pawel Kowalik
> Sent: Monday, October 24, 2022 10:58 AM
> To: Hollenbeck, Scott ; regext@ietf.org
> Subject: [EXTERNAL] Re: [regext] I-D Action: draft-ietf-regext-rdap-openid-
> 18.txt
>
> Caution: This email originated from outside
Am 21.10.22 um 15:46 schrieb Hollenbeck, Scott
[SAH] OK, if we keep the "userClaims" I probably need to add text to the
Security Considerations section. How about this:
"Some of the responses described in this specification return information to a client from an
RDAP server that is intended to
> -Original Message-
> From: Pawel Kowalik
> Sent: Friday, October 21, 2022 5:18 AM
> To: Hollenbeck, Scott ; regext@ietf.org
> Subject: [EXTERNAL] Re: [regext] I-D Action: draft-ietf-regext-rdap-openid-
> 18.txt
>
> Caution: This email originated from outside
Hi Scott,
Am 20.10.22 um 21:02 schrieb Hollenbeck, Scott:
Am 19.10.22 um 14:13 schrieb Hollenbeck, Scott:
[SAH] If the PII data you're referring to is what's included in the
userClaims, this might not be an issue if the claims aren't returned,
correct?
Correct
[SAH] Does anyone object to remo
> -Original Message-
> From: regext On Behalf Of Pawel Kowalik
> Sent: Wednesday, October 19, 2022 10:00 AM
> To: regext@ietf.org
> Subject: [EXTERNAL] Re: [regext] I-D Action: draft-ietf-regext-rdap-openid-
> 18.txt
>
> Caution: This email originated from outside
Am 19.10.22 um 14:13 schrieb Hollenbeck, Scott:
[SAH] If the PII data you're referring to is what's included in the
userClaims, this might not be an issue if the claims aren't returned,
correct?
Correct
Kind Regards,
Pawel
___
regext mailing lis
From: Mario Loffredo
Sent: Wednesday, October 19, 2022 5:13 AM
To: Pawel Kowalik ; regext@ietf.org; Hollenbeck, Scott
Subject: [EXTERNAL] Re: [regext] I-D Action:
draft-ietf-regext-rdap-openid-18.txt
Caution: This email originated from outside the organization. Do not click
links or open
> -Original Message-
> From: regext On Behalf Of Pawel Kowalik
> Sent: Tuesday, October 18, 2022 3:19 AM
> To: regext@ietf.org
> Subject: [EXTERNAL] Re: [regext] I-D Action: draft-ietf-regext-rdap-openid-
> 18.txt
>
> Caution: This email originated from outside
Il 18/10/2022 09:27, Pawel Kowalik ha scritto:
Am 17.10.22 um 15:32 schrieb Hollenbeck, Scott:
[SAH] This update addresses most of the feedback received during the
recent WG last call. There are still a few open issues for which I'm
hoping to see WG discussion:
Thank you Scott.
1. How do we
I'm really sorry for flooding the list. Connection issues in the train
made my email client send it 3 times unnoticed.
Kind Regards,
Pawel
___
regext mailing list
regext@ietf.org
https://www.ietf.org/mailman/listinfo/regext
Am 17.10.22 um 15:32 schrieb Hollenbeck, Scott:
[SAH] This update addresses most of the feedback received during the recent WG
last call. There are still a few open issues for which I'm hoping to see WG
discussion:
Thank you Scott.
1. How do we address web service clients?
[PK] I think the
Am 17.10.22 um 15:32 schrieb Hollenbeck, Scott:
[SAH] This update addresses most of the feedback received during the recent WG
last call. There are still a few open issues for which I'm hoping to see WG
discussion:
Thank you Scott.
1. How do we address web service clients?
[PK] I think the
Am 17.10.22 um 15:32 schrieb Hollenbeck, Scott:
[SAH] This update addresses most of the feedback received during the recent WG
last call. There are still a few open issues for which I'm hoping to see WG
discussion:
Thank you Scott.
1. How do we address web service clients?
[PK] I think the
> -Original Message-
> From: I-D-Announce On Behalf Of internet-
> dra...@ietf.org
> Sent: Monday, October 17, 2022 9:02 AM
> To: i-d-annou...@ietf.org
> Cc: regext@ietf.org
> Subject: [EXTERNAL] I-D Action: draft-ietf-regext-rdap-openid-18.txt
>
> Caution: This email originated from outsi
33 matches
Mail list logo
