Events without label "editorial"
Issues
------
* oauth-wg/oauth-identity-chaining (+0/-4/💬5)
5 issues received 5 new comments:
- #69 Add Aaron Parecki to acknowledgements section (1 by bc-pi)
https://github.com/oauth-wg/oauth-identity-chaining/issues/69
- #67 Change spec name to focus on Authz (1 by bc-pi)
https://github.com/oauth-wg/oauth-identity-chaining/issues/67
- #61 authorization grant type can't be the same as the issued token type (1 by bc-pi)
https://github.com/oauth-wg/oauth-identity-chaining/issues/61
- #60 example response missing issued_token_type (1 by bc-pi)
https://github.com/oauth-wg/oauth-identity-chaining/issues/60
- #45 Consider limiting token formats to JWT (1 by bc-pi)
https://github.com/oauth-wg/oauth-identity-chaining/issues/45
4 issues closed:
- Add Aaron Parecki to acknowledgements section https://github.com/oauth-wg/oauth-identity-chaining/issues/69
- authorization grant type can't be the same as the issued token type https://github.com/oauth-wg/oauth-identity-chaining/issues/61
- example response missing issued_token_type https://github.com/oauth-wg/oauth-identity-chaining/issues/60
- Consider limiting token formats to JWT https://github.com/oauth-wg/oauth-identity-chaining/issues/45
* oauth-wg/oauth-transaction-tokens (+2/-11/💬22)
2 issues created:
- Do we still need replacement transaction tokens. (by PieterKas)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/69
- Trust domain/audience claim format URI or StringOrUri? (by obfuscoder)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/66
9 issues received 22 new comments:
- #69 Do we still need replacement transaction tokens. (1 by PieterKas)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/69
- #63 audience REQUIRED for just one trust domain? (4 by gffletch, obfuscoder, tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/63
- #62 Long-living Access Token needed for internal batch processes/offline tasks? (4 by gffletch, obfuscoder, tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/62
- #58 Authorization details presentation and processing (1 by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/58 [PR57]
- #56 RFC 9493 and sub_id formats (3 by obfuscoder, tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/56 [PR57]
- #53 Transaction Tokens for S2S calls (5 by dteleguin, obfuscoder, tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/53
- #52 Should the azd claim be mandatory or optional (1 by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/52 [pre-adoption]
- #35 How do internal services authorize the Transaction Tokens? (2 by obfuscoder, tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/35
- #21 Txt token Header (1 by obfuscoder)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/21
11 issues closed:
- Trust domain/audience claim format URI or StringOrUri? https://github.com/oauth-wg/oauth-transaction-tokens/issues/66
- audience REQUIRED for just one trust domain? https://github.com/oauth-wg/oauth-transaction-tokens/issues/63
- "sender constrained" language needs improvement https://github.com/oauth-wg/oauth-transaction-tokens/issues/48
- Txt token Header https://github.com/oauth-wg/oauth-transaction-tokens/issues/21
- How do internal services authorize the Transaction Tokens? https://github.com/oauth-wg/oauth-transaction-tokens/issues/35
- RFC 9493 and sub_id formats https://github.com/oauth-wg/oauth-transaction-tokens/issues/56 [PR57]
- Should the azd claim be mandatory or optional https://github.com/oauth-wg/oauth-transaction-tokens/issues/52 [pre-adoption]
- Authorization details presentation and processing https://github.com/oauth-wg/oauth-transaction-tokens/issues/58 [PR57]
- Use of `actor_token` and `actor_token_type` https://github.com/oauth-wg/oauth-transaction-tokens/issues/60 [PR57]
- How is the `purp` claim of the Txn-Token defined? https://github.com/oauth-wg/oauth-transaction-tokens/issues/61 [PR57]
- Using Txn-Tokens securely https://github.com/oauth-wg/oauth-transaction-tokens/issues/49 [pre-adoption]
* oauth-wg/oauth-sd-jwt-vc (+1/-0/💬3)
1 issues created:
- metadata path description (by c2bo)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/203
1 issues received 3 new comments:
- #203 metadata path description (3 by bc-pi)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/203
Pull requests
-------------
* oauth-wg/oauth-identity-chaining (+3/-4/💬1)
3 pull requests submitted:
- use more specific term "JWT authorization grant" (by aaronpk)
https://github.com/oauth-wg/oauth-identity-chaining/pull/74
- Renamed the "Authorization Grant" header to "Access Token Request" (by aaronpk)
https://github.com/oauth-wg/oauth-identity-chaining/pull/73
- limit authorization grant format to RFC7523 JWT (by bc-pi)
https://github.com/oauth-wg/oauth-identity-chaining/pull/72
1 pull requests received 1 new comments:
- #73 Renamed the "Authorization Grant" header to "Access Token Request" (1 by
aaronpk)
https://github.com/oauth-wg/oauth-identity-chaining/pull/73
4 pull requests merged:
- use more specific term "JWT authorization grant"
https://github.com/oauth-wg/oauth-identity-chaining/pull/74
- More specific headers
https://github.com/oauth-wg/oauth-identity-chaining/pull/73
- Added acknowledgement for Aaron Parecki
https://github.com/oauth-wg/oauth-identity-chaining/pull/71
- limit authorization grant format to RFC7523 JWT
https://github.com/oauth-wg/oauth-identity-chaining/pull/72
* oauth-wg/oauth-transaction-tokens (+4/-5/💬0)
4 pull requests submitted:
- clarified that aud claim should have the same format as in the JWT spec (by
tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/pull/70
- removed sender constrained text as discussed on 12/08 (by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/pull/68
- Clarify and align audience claim value format (by obfuscoder)
https://github.com/oauth-wg/oauth-transaction-tokens/pull/67
- updated HTTP reference (by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/pull/65
5 pull requests merged:
- clarified that aud claim should have the same format as in the JWT spec
https://github.com/oauth-wg/oauth-transaction-tokens/pull/70
- removed sender constrained text as discussed on 12/08
https://github.com/oauth-wg/oauth-transaction-tokens/pull/68
- updated HTTP reference
https://github.com/oauth-wg/oauth-transaction-tokens/pull/65
- Token exchange profile update
https://github.com/oauth-wg/oauth-transaction-tokens/pull/57
- Add header
https://github.com/oauth-wg/oauth-transaction-tokens/pull/64
* oauth-wg/oauth-sd-jwt-vc (+1/-0/💬0)
1 pull requests submitted:
- Fix inconstancy in the well-known path construction (by bc-pi)
https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/204
* oauth-wg/draft-ietf-oauth-resource-metadata (+0/-1/💬0)
1 pull requests merged:
- fix bearer_methods_supported
https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/22
Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
* https://github.com/oauth-wg/oauth-browser-based-apps
_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
