Events without label "editorial"
Issues
------
* oauth-wg/oauth-browser-based-apps (+1/-0/💬0)
1 issues created:
- Clarification on refresh token requirements for browser-based clients (by
devinivy)
https://github.com/oauth-wg/oauth-browser-based-apps/issues/105
* oauth-wg/oauth-sd-jwt-vc (+1/-1/💬10)
1 issues created:
- Recommend against using the x5u parameter in JWK (by nikosft)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/315
7 issues received 10 new comments:
- #314 Declaration of arrays to the type metadata. (2 by babisRoutis,
danielfett)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/314 [Ready-for-PR]
- #311 Clarification on extend (2 by babisRoutis, danielfett)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/311 [discuss]
- #310 Should `mandatory` be added to claim metadata? (2 by babisRoutis, danielfett)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/310 [enhancement] [discuss]
- #308 Document integrity examples use wrong Base64url encoding (1 by awoie)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/308
- #305 Support PNG background besides just color or SVG (1 by danielfett)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/305 [enhancement]
- #302 Add security consideration: Extending a type doesn't imply authorization to issue the type (1 by awoie)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/302
- #301 Claim vocabulary for PID? (1 by danielfett)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/301
1 issues closed:
- Claim vocabulary for PID? https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/301
* oauth-wg/oauth-selective-disclosure-jwt (+1/-0/💬0)
1 issues created:
- Issuer/Verifier unlinkability with an honest Verifier can be broken if
certain JWS headers are used (by nikosft)
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/581
* oauth-wg/oauth-v2-1 (+1/-0/💬0)
1 issues created:
- Make PKCE optional when DPoP + PAR are used (by matthieusieben)
https://github.com/oauth-wg/oauth-v2-1/issues/214
* oauth-wg/draft-ietf-oauth-attestation-based-client-auth (+2/-1/💬17)
2 issues created:
- Similar proposal in AT Protocol: DPoP-bound private_key_jwt client
authentication (by devinivy)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/123
- Create section on Processing and Verification (by c2bo)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/122
8 issues received 17 new comments:
- #118 Client Attestation HTTP Headers (3 by Macke, paulbastian, tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/118 [discuss]
- #117 Editorial - what is a "traditional OAuth2 ecosystem" (2 by Macke, tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/117
- #116 "transaction" is easily misunderstood (2 by Macke, tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/116 [has-pr]
- #111 Add option without PoP but with ad-hoc client attetation and nonce (2 by tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/111
- #109 Add Authorization Server policy section about "Reuse of a Client Attestation JWT" (2 by Macke, tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/109 [has-pr]
- #105 Steps (1) to (4) should be moved into an informative annex (1 by paulbastian)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/105
- #95 Add section to consider usage at RS (2 by c2bo, tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/95 [discuss]
- #81 client_id optional in the request body (3 by c2bo, tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/81 [discuss]
1 issues closed:
- Editorial - "## Rotation of Client Instance Key" https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/119 [has-pr]
Pull requests
-------------
* oauth-wg/oauth-identity-chaining (+0/-1/💬0)
1 pull requests merged:
- Editorial pass for consistency with the main document.
https://github.com/oauth-wg/oauth-identity-chaining/pull/149
* oauth-wg/oauth-transaction-tokens (+1/-1/💬0)
1 pull requests submitted:
- Added Tokenetes link in the readme. (by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/pull/177
1 pull requests merged:
- Added Tokenetes link in the readme.
https://github.com/oauth-wg/oauth-transaction-tokens/pull/177
* oauth-wg/oauth-cross-device-security (+3/-1/💬2)
3 pull requests submitted:
- Informative/Normative split (by PieterKas)
https://github.com/oauth-wg/oauth-cross-device-security/pull/161
- Formatting (by PieterKas)
https://github.com/oauth-wg/oauth-cross-device-security/pull/160
- Normative/Informative reference split (by PieterKas)
https://github.com/oauth-wg/oauth-cross-device-security/pull/159
1 pull requests received 2 new comments:
- #161 Informative/Normative split (2 by PieterKas, panva)
https://github.com/oauth-wg/oauth-cross-device-security/pull/161
1 pull requests merged:
- Formatting
https://github.com/oauth-wg/oauth-cross-device-security/pull/160
* oauth-wg/draft-ietf-oauth-status-list (+1/-1/💬0)
1 pull requests submitted:
- Update Paul's affiliation (by paulbastian)
https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/290
1 pull requests merged:
- Update Paul's affiliation
https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/290
* oauth-wg/draft-ietf-oauth-attestation-based-client-auth (+2/-2/💬7)
2 pull requests submitted:
- Add missing +jwt in Client Attestation PoP JWT example (by thomasdarimont)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/pull/121
- Minor tweak to implementation considerations formatting (by tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/pull/120
3 pull requests received 7 new comments:
- #120 Minor tweak to implementation considerations formatting (2 by c2bo,
tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/pull/120
- #115 update example attestation jwt iss (1 by c2bo)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/pull/115
- #112 initial draft for challenge endpoint (4 by tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/pull/112
2 pull requests merged:
- Minor tweak to implementation considerations formatting
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/pull/120
- update example attestation jwt iss
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/pull/115
Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
* https://github.com/oauth-wg/draft-ietf-oauth-status-list
* https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth
--
To have a summary like this sent to your list, see:
https://github.com/ietf-github-services/activity-summary
_______________________________________________
OAuth mailing list -- [email protected]
To unsubscribe send an email to [email protected]
