I don’t see anything in the document that allows multiple resource servers where the token can be used. Token Exchange allows delegation and impersonation, so I have no idea of the semantics when I use both of these together
From: Brian Campbell [mailto:bcampb...@pingidentity.com] Sent: Wednesday, April 6, 2016 1:13 PM To: Anthony Nadalin <tony...@microsoft.com> Cc: Phil Hunt (IDM) <phil.h...@oracle.com>; oauth@ietf.org Subject: Re: [OAUTH-WG] Call for Adoption: Resource Indicators for OAuth 2.0 Multiple resources are there now. I have no idea what "interaction with Token Exchange" means. Can you please explain? On Wed, Apr 6, 2016 at 5:04 PM, Anthony Nadalin <tony...@microsoft.com<mailto:tony...@microsoft.com>> wrote: I would like to see the multiple resources servers, interaction with Token Exchange resolved before this is adopted to see if this will actually solve the problems From: OAuth [mailto:oauth-boun...@ietf.org<mailto:oauth-boun...@ietf.org>] On Behalf Of Brian Campbell Sent: Wednesday, April 6, 2016 12:52 PM To: Phil Hunt (IDM) <phil.h...@oracle.com<mailto:phil.h...@oracle.com>> Cc: oauth@ietf.org<mailto:oauth@ietf.org> Subject: Re: [OAUTH-WG] Call for Adoption: Resource Indicators for OAuth 2.0 I support the adoption of this draft by the working group. I don't think an immediate WGLC was expected here. On Wed, Apr 6, 2016 at 4:06 PM, Phil Hunt (IDM) <phil.h...@oracle.com<mailto:phil.h...@oracle.com>> wrote: With the process of immediate wglc I think we should review all documents more thoroughly before adoption. As I said I support the work. Phil > On Apr 6, 2016, at 16:02, Hannes Tschofenig > <hannes.tschofe...@gmx.net<mailto:hannes.tschofe...@gmx.net>> wrote: > > Phil, > > we have discussed this concept already for years. In fact, it dates back > to the days of the OAuth base specification and the security > consideration section even talks about it. > > We have had the content of this in the PoP key distribution draft and we > are now moving it into a separate document. > > I am not sure how much longer you want to discuss it. > > Ciao > Hannes > > >> On 04/06/2016 08:07 PM, Phil Hunt (IDM) wrote: >> I would like to have more discussion before wg adoption. >> >> I support the work and am willing to help. >> >> Phil >> >>> On Apr 6, 2016, at 14:25, Hannes Tschofenig >>> <hannes.tschofe...@gmx.net<mailto:hannes.tschofe...@gmx.net>> wrote: >>> >>> Hi all, >>> >>> this is the call for adoption of 'Resource Indicators for OAuth 2.0', see >>> http://datatracker.ietf.org/doc/draft-campbell-oauth-resource-indicators/<https://na01.safelinks.protection.outlook.com/?url=http%3a%2f%2fdatatracker.ietf.org%2fdoc%2fdraft-campbell-oauth-resource-indicators%2f&data=01%7c01%7ctonynad%40microsoft.com%7c0db8d93df16c4462a54508d35e550020%7c72f988bf86f141af91ab2d7cd011db47%7c1&sdata=byM3LOXoRTVhgT8pECwr18fH8mpi69bReWGFiuOEbMA%3d> >>> >>> Please let us know by April 20th whether you accept / object to the >>> adoption of this document as a starting point for work in the OAuth >>> working group. >>> >>> Note: If you already stated your opinion at the IETF meeting in Buenos >>> Aires then you don't need to re-state your opinion, if you want. >>> >>> The feedback at the BA IETF meeting was the following: ~10 persons >>> for accepting the document and 0 persons against. >>> >>> Ciao >>> Hannes & Derek >>> >>> _______________________________________________ >>> OAuth mailing list >>> OAuth@ietf.org<mailto:OAuth@ietf.org> >>> https://www.ietf.org/mailman/listinfo/oauth<https://na01.safelinks.protection.outlook.com/?url=https%3a%2f%2fwww.ietf.org%2fmailman%2flistinfo%2foauth&data=01%7c01%7ctonynad%40microsoft.com%7c0db8d93df16c4462a54508d35e550020%7c72f988bf86f141af91ab2d7cd011db47%7c1&sdata=ITHT4xb2D%2bsq4auvEuOv1VUwqFl9lRON5aOL6oOst8U%3d> > _______________________________________________ OAuth mailing list OAuth@ietf.org<mailto:OAuth@ietf.org> https://www.ietf.org/mailman/listinfo/oauth<https://na01.safelinks.protection.outlook.com/?url=https%3a%2f%2fwww.ietf.org%2fmailman%2flistinfo%2foauth&data=01%7c01%7ctonynad%40microsoft.com%7c0db8d93df16c4462a54508d35e550020%7c72f988bf86f141af91ab2d7cd011db47%7c1&sdata=ITHT4xb2D%2bsq4auvEuOv1VUwqFl9lRON5aOL6oOst8U%3d>
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
