Re: [OAUTH-WG] New Version Notification for draft-hunt-oauth-bound-config-00.txt

George Fletcher Sat, 19 Mar 2016 10:58:45 -0700

+1 for a list of use cases :)

On 3/17/16 2:30 AM, Nat Sakimura wrote:

A disadvantage of this method is that it cannot be used in the casewhere concrete resource uri is unknown to the client until the usergives permission.
Right, this is a different use case. That’s why we need a use-casedriven Requirement document to start with.
Nat

*From:*OAuth [mailto:oauth-boun...@ietf.org] *On Behalf Of *John Bradley
*Sent:* Wednesday, March 16, 2016 2:57 AM
*To:* Brian Campbell <bcampb...@pingidentity.com>
*Cc:* <oauth@ietf.org> <oauth@ietf.org>
*Subject:* Re: [OAUTH-WG] New Version Notification fordraft-hunt-oauth-bound-config-00.txt
(..snip..)
The advantage of always sending it in the token request is that itallows the AS to do the mapping from a resource URI to one or moreabstract audience for the token.
That might help address George’s concern.

John B.

--

PLEASE READ :This e-mail is confidential and intended for the

named recipient only. If you are not an intended recipient,

please notify the sender  and delete this e-mail.



_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

Re: [OAUTH-WG] New Version Notification for draft-hunt-oauth-bound-config-00.txt

Reply via email to