[OAUTH-WG] Weekly github digest (OAuth Activity Summary)

Repository Activity Summary Bot Sun, 28 Apr 2024 00:39:45 -0700



Events without label "editorial"

Issues
------
* oauth-wg/oauth-identity-chaining (+0/-2/💬3)
 3 issues received 3 new comments:
 - #86 Add sender constraining mechanisms (1 by bc-pi)

https://github.com/oauth-wg/oauth-identity-chaining/issues/86- #84 How does the AS know it should generate a JWT Authorization Grant formatted token? (1 by bc-pi)https://github.com/oauth-wg/oauth-identity-chaining/issues/84- #79 Should we allow identity chaining with DPoP tokens? (1 by bc-pi)https://github.com/oauth-wg/oauth-identity-chaining/issues/79

 2 issues closed:

- How does the AS know it should generate a JWT Authorization Grant formatted token? https://github.com/oauth-wg/oauth-identity-chaining/issues/84- relax recommendation against requested_token_type use https://github.com/oauth-wg/oauth-identity-chaining/issues/82

* oauth-wg/oauth-transaction-tokens (+1/-0/💬0)
 1 issues created:
 - Clarification on additional signatures (by dteleguin)

https://github.com/oauth-wg/oauth-transaction-tokens/issues/91

* oauth-wg/draft-ietf-oauth-resource-metadata (+0/-10/💬5)
 2 issues received 5 new comments:
 - #31 Add flow diagrams (2 by aaronpk, selfissued)

https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/31- #28 Section 3 Change "applications" to "deployment" (3 by PieterKas, selfissued)https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/28

 10 issues closed:

- Add flow diagrams https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/31- Section 3 Change "applications" to "deployment" https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/28- Update description of resource_signing_alg_values_supported https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/26- resource alg properties https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/24- Section 5 https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/32- Section 4 AS metadata https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/30- Add reference to attack https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/29- Add reference to example path construction in section 3 intro https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/27- Rephrase description of `bearer_methods_supported` https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/25- Reorder paragraphs in 7.6 https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/33

* oauth-wg/oauth-cross-device-security (+11/-6/💬7)
 11 issues created:
 - Editorial updates for FIDO Section (by PieterKas)

https://github.com/oauth-wg/oauth-cross-device-security/issues/138- Consistent use of Smart TV (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/137- Editorial update: Remove etc. (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/131- Update Guidance on using FIDO (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/129- FIDO Reference update (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/128- Editorial updates (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/127- Clarify origin of QR Code (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/126- Make examples consistent for Section 3.1.3 (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/125- Add verbiage to diagrams (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/124- Highlight edge cases of geolocation based on IP Address (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/123- Same device flow prevention (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/122

 6 issues received 7 new comments:
 - #129 Update Guidance on using FIDO (1 by PieterKas)

https://github.com/oauth-wg/oauth-cross-device-security/issues/129- #128 FIDO Reference update (2 by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/128- #127 Editorial updates (1 by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/127- #126 Clarify origin of QR Code (1 by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/126- #125 Make examples consistent for Section 3.1.3 (1 by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/125- #124 Add verbiage to diagrams (1 by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/issues/124

 6 issues closed:

- Clarify origin of QR Code https://github.com/oauth-wg/oauth-cross-device-security/issues/126- Update Guidance on using FIDO https://github.com/oauth-wg/oauth-cross-device-security/issues/129- FIDO Reference update https://github.com/oauth-wg/oauth-cross-device-security/issues/128- Add verbiage to diagrams https://github.com/oauth-wg/oauth-cross-device-security/issues/124- Make examples consistent for Section 3.1.3 https://github.com/oauth-wg/oauth-cross-device-security/issues/125- Editorial updates https://github.com/oauth-wg/oauth-cross-device-security/issues/127



Pull requests
-------------
* oauth-wg/oauth-identity-chaining (+0/-2/💬0)
 2 pull requests merged:
 - remove recommendation to not use requested_token_type

https://github.com/oauth-wg/oauth-identity-chaining/pull/83- Nitpick - referrers -> refers in the introhttps://github.com/oauth-wg/oauth-identity-chaining/pull/87

* oauth-wg/oauth-transaction-tokens (+2/-1/💬9)
 2 pull requests submitted:
 - fix typo/spellng (by bc-pi)

https://github.com/oauth-wg/oauth-transaction-tokens/pull/93- clarified fields versus claims and IANA registry name (by tulshi)https://github.com/oauth-wg/oauth-transaction-tokens/pull/92

 2 pull requests received 9 new comments:
 - #90 specified language for self-signed JWTs as subject_tokens (8 by 
PieterKas, bc-pi, obfuscoder, tulshi, yaronf)

https://github.com/oauth-wg/oauth-transaction-tokens/pull/90- #89 Update draft-ietf-oauth-transaction-tokens.md (1 by gffletch)https://github.com/oauth-wg/oauth-transaction-tokens/pull/89

 1 pull requests merged:
 - fix typo/spellng

https://github.com/oauth-wg/oauth-transaction-tokens/pull/93

* oauth-wg/draft-ietf-oauth-resource-metadata (+9/-9/💬6)
 9 pull requests submitted:
 - add sequence diagram (by aaronpk)

https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/42- Define term "application" as used by the specification (by selfissued)https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/41- Reorder Authorization Servers security considerations (by selfissued)https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/40- Enhance WWW-Authenticate description (by selfissued)https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/39- Improve protected_resources description (by selfissued)https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/38- Cross-reference impersonation attack text (by selfissued)https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/37- Reference examples of .well-known construction (by selfissued)https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/36- Improved bearer_methods_supported wording (by selfissued)https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/35- Clarify use of algorithms (by selfissued)https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/34

 2 pull requests received 6 new comments:
 - #42 add sequence diagram (5 by PieterKas, aaronpk, selfissued)

https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/42- #41 Define term "application" as used by the specification (1 by aaronpk)https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/41

 9 pull requests merged:
 - add sequence diagram

https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/42- Define term "application" as used by the specificationhttps://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/41- Clarify use of algorithmshttps://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/34- Enhance WWW-Authenticate descriptionhttps://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/39- Improve protected_resources descriptionhttps://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/38- Cross-reference impersonation attack texthttps://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/37- Reference examples of .well-known constructionhttps://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/36- Improved bearer_methods_supported wordinghttps://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/35- Reorder Authorization Servers security considerationshttps://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/40

* oauth-wg/oauth-cross-device-security (+10/-6/💬1)
 10 pull requests submitted:
 - Added guidance on geo-location inaccuracies (by PieterKas)

https://github.com/oauth-wg/oauth-cross-device-security/pull/142- Clarify authz server role (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/pull/141- Editorial updates for FIDO section (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/pull/140- Consistent use of smart TV (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/pull/139- Updated FIDO Section (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/pull/136- Added reference to CTAP 2.2 Draft (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/pull/135- Update verbiage in diagrams (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/pull/134- Made examples more consistent (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/pull/133- Clarify Example A1 (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/pull/132- Editorial update (by PieterKas)https://github.com/oauth-wg/oauth-cross-device-security/pull/130

 1 pull requests received 1 new comments:
 - #130 Editorial update (1 by PieterKas)

https://github.com/oauth-wg/oauth-cross-device-security/pull/130

 6 pull requests merged:
 - Updated FIDO Section

https://github.com/oauth-wg/oauth-cross-device-security/pull/136- Added reference to CTAP 2.2 Drafthttps://github.com/oauth-wg/oauth-cross-device-security/pull/135- Update verbiage in diagramshttps://github.com/oauth-wg/oauth-cross-device-security/pull/134- Made examples more consistenthttps://github.com/oauth-wg/oauth-cross-device-security/pull/133- Clarify Example A1https://github.com/oauth-wg/oauth-cross-device-security/pull/132- Editorial updatehttps://github.com/oauth-wg/oauth-cross-device-security/pull/130

* oauth-wg/oauth-v2-1 (+0/-3/💬0)
 3 pull requests merged:
 - Minor fix

https://github.com/oauth-wg/oauth-v2-1/pull/173- clarify expires_in is a JSON numberhttps://github.com/oauth-wg/oauth-v2-1/pull/172- Remove duplicate "are"https://github.com/oauth-wg/oauth-v2-1/pull/175


Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1

_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

[OAUTH-WG] Weekly github digest (OAuth Activity Summary)

Reply via email to