Re: [OAUTH-WG] Call for Adoption: OAuth 2.0 Security: OAuth Open Redirector

Mon, 25 Jan 2016 10:45:50 -0800 

+1

On 1/25/16 1:41 PM, Phil Hunt wrote:
Also, I would like to have a discussion in the WG around organization of the docs. What can we amend as errata (to give some of this stuff more prominence), and what new docs we should have? With PKCE, mix-up, and this, we may end up causing more confusion or at the very least by having multiple “point” issue specs. 

Phil

@independentid
www.independentid.com <http://www.independentid.com>
phil.h...@oracle.com <mailto:phil.h...@oracle.com>






On Jan 21, 2016, at 6:28 AM, Nat Sakimura <sakim...@gmail.com 
<mailto:sakim...@gmail.com>> wrote:



+1 apart from the title... It sounds like the spec is implementing 
OAuth Open Redirector...
Something like "preventing OAuth open redirector" or so might be more 
descriptive.


Nat


2016年1月21日(木) 23:08 John Bradley <ve7...@ve7jtb.com 
<mailto:ve7...@ve7jtb.com>>:


    +1 for adoption


    On Jan 21, 2016, at 3:18 AM, William Denniss
    <wdenn...@google.com <mailto:wdenn...@google.com>> wrote:

    +1 for adoption.

    On Tue, Jan 19, 2016 at 7:47 PM, Hannes Tschofenig
    <hannes.tschofe...@gmx.net <mailto:hannes.tschofe...@gmx.net>>
    wrote:

        Hi all,

        this is the call for adoption of OAuth 2.0 Security: OAuth Open
        Redirector, see
        https://tools.ietf.org/html/draft-bradley-oauth-open-redirector-02

        Please let us know by Feb 2nd whether you accept / object to the
        adoption of this document as a starting point for work in
        the OAuth
        working group.

        Note: At the IETF Yokohama we asked for generic feedback
        about doing
        security work in the OAuth working group and there was very
        positive
        feedback. However, for the adoption call we need to ask for
        individual
        documents. Hence, you need to state your view again.

        Ciao
        Hannes & Derek





        _______________________________________________
        OAuth mailing list
        OAuth@ietf.org <mailto:OAuth@ietf.org>
        https://www.ietf.org/mailman/listinfo/oauth


    _______________________________________________
    OAuth mailing list
    OAuth@ietf.org <mailto:OAuth@ietf.org>
    https://www.ietf.org/mailman/listinfo/oauth


    _______________________________________________
    OAuth mailing list
    OAuth@ietf.org <mailto:OAuth@ietf.org>
    https://www.ietf.org/mailman/listinfo/oauth

_______________________________________________
OAuth mailing list
OAuth@ietf.org <mailto:OAuth@ietf.org>
https://www.ietf.org/mailman/listinfo/oauth




_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth


--
Chief Architect
Identity Services Engineering     Work: george.fletc...@teamaol.com
AOL Inc.                          AIM:  gffletch
Mobile: +1-703-462-3494           Twitter: http://twitter.com/gffletch
Office: +1-703-265-2544           Photos: http://georgefletcher.photography


_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth






















					Reply via email to