1 / 10

Summary of OAuth Working Group Meeting Overview and Important Contributions

This document summarizes the agenda and discussions from an OAuth Working Group meeting. Participants were reminded of their obligations under the IETF's IPR Policy, including the need to disclose any patent-related contributions. Discussions covered various drafts, including stateless OAuth clients, proof of possession, and dynamic client registration. Key updates on draft statuses were shared, and significant time was allocated for collaborative discussion on open issues. For further details, attendees are encouraged to refer to specific BCP documents related to the IETF processes.

petra-sutton
Download Presentation

Summary of OAuth Working Group Meeting Overview and Important Contributions

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Derek Atkins <derek@ihtfp.com> HannesTschofenig <hannes.tschofenig@gmx.net> Web Authorization Protocol (OAUTH-WG)

  2. Note Well • This summary is only meant to point you in the right direction, and doesn't have all the nuances. The IETF's IPR Policy is set forth in BCP 79; please read it carefully. • The brief summary: • By participating with the IETF, you agree to follow IETF processes. • If you are aware that a contribution of yours (something you write, say, or discuss in any IETF context) is covered by patents or patent applications, you must disclose that fact. • You understand that meetings might be recorded, broadcast, photographed, and publicly archived. For further information, talk to a chair, ask an Area Director, or review the following: BCP 9 (on the Internet Standards Process) BCP 25 (on the Working Group processes) BCP 78 (on the IETF Trust) BCP 79 (on Intellectual Property Rights in the IETF)

  3. Agenda • Welcome & Agenda Bashing (10 minutes) • Draft Statuses (20 minutes) • Discussion (2 hours) • draft-bradley-stateless-oauth-client (30 min max) • Proof of Possession (15 min max) • ActAs-OnBehalfOf (15 min max) • Dynamic Client Registration (remainder, 60+min) • draft-richer-oauth-dyn-reg-core • draft-richer-oauth-dyn-reg-management • etc...

  4. Draft Statuses • draft-ietf-oauth-assertions-12 and draft-ietf-oauth-saml2-bearer-17 • Will get sent back to the IESG once Barry and Hannes have reviewed the changes • draft-ietf-oauth-jwt-bearer-06 • Mike: have you incorporated the feedback? • draft-ietf-oauth-v2-http-mac-04 • Waiting on Hannes

  5. Draft Statuses • draft-ietf-oauth-use-cases • Stalled – We need an updated draft. • draft-ietf-oauth-dyn-reg-14, draft-hunt-oauth-client-association-00, draft-hunt-oauth-software-statement-00: • Still need to come to consensus on what we want to do. (Most of today will be in discussion)

  6. Discussion • draft-bradley-stateless-oauth-client (max 30 min)

  7. Discussion • Proof of Possession (max 15 min)

  8. Discussion • ActAs-OnBehalfOf (max 15 min)

  9. Discussion • DynReg (60+ min)

  10. Thank you • See you on the list and in London

More Related