I uploaded this draft about a service for translating Kerberos tickets to JWTs. This allows sites to leverage existing Kerberos infrastructures to support authentication to OAuth services. Among other things, it specifies a generally useful mapping between Kerberos tickets and JWT, which could be used bidirectionally. The draft currently focuses on proof of possession tokens, but could be readily modified to support bearer tokens as well.
Is there interest in making progress on this draft or in related work? <internet-dra...@ietf.org> writes: > A new version of I-D, draft-yu-oauth-token-translation-00.txt > has been successfully submitted by Tom Yu and posted to the > IETF repository. > > Name: draft-yu-oauth-token-translation > Revision: 00 > Title: A Kerberos Token Translation Service for OAuth > Document date: 2014-09-30 > Group: Individual Submission > Pages: 5 > URL: > http://www.ietf.org/internet-drafts/draft-yu-oauth-token-translation-00.txt > Status: > https://datatracker.ietf.org/doc/draft-yu-oauth-token-translation/ > Htmlized: http://tools.ietf.org/html/draft-yu-oauth-token-translation-00 > > > Abstract: > This document describes a Token Translation Service that allows a > site to use an existing Kerberos infrastructure to provide > authentication in an OAuth 2.0 web service environment. > > > > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
