Events without label "editorial"
Issues
------
* oauth-wg/oauth-identity-chaining (+0/-1/💬2)
1 issues received 2 new comments:
- #168 Consider making Authorization Grant JWTs single use and sender
constrained (2 by bc-pi)
https://github.com/oauth-wg/oauth-identity-chaining/issues/168
1 issues closed:
- Consider making Authorization Grant JWTs single use and sender constrained https://github.com/oauth-wg/oauth-identity-chaining/issues/168
* oauth-wg/oauth-sd-jwt-vc (+0/-2/💬4)
3 issues received 4 new comments:
- #355 A new field called "Issuer Authorization URI - "iss_auth"" (2 by awoie,
danielfett)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/355 [pending close] [future-extension] [policy]
- #325 Add a new claim called "credential_issuance_policy" (1 by danielfett)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/325 [pending close] [future-extension] [policy]
- #145 how cnf claim can be used with any other types of "binding" (1 by danielfett)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/145 [pending close] [future-extension]
2 issues closed:
- Add a new claim called "credential_issuance_policy" https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/325 [pending close] [future-extension] [policy]
- how cnf claim can be used with any other types of "binding" https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/145 [pending close] [future-extension]
* oauth-wg/oauth-v2-1 (+0/-3/💬2)
1 issues received 2 new comments:
- #216 clarity on refresh_token response and reuse (2 by dvanmali, njwatson32)
https://github.com/oauth-wg/oauth-v2-1/issues/216
3 issues closed:
- clarity on refresh_token response and reuse https://github.com/oauth-wg/oauth-v2-1/issues/216
- Problems with authorization servers that don't support public clients https://github.com/oauth-wg/oauth-v2-1/issues/161
- Native apps differences between mobile and desktop apps https://github.com/oauth-wg/oauth-v2-1/issues/142 [draft-00-feedback]
* oauth-wg/draft-ietf-oauth-status-list (+0/-1/💬1)
1 issues received 1 new comments:
- #304 Feedback from AD review (1 by c2bo)
https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/304
1 issues closed:
- Feedback from AD review https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/304
* oauth-wg/draft-ietf-oauth-attestation-based-client-auth (+1/-4/💬11)
1 issues created:
- Consider challenges taken from the session (by paulbastian)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/166
11 issues received 11 new comments:
- #150 Challenges on Previous Responses. Do we need this? (1 by c2bo)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/150
- #123 Similar proposal in AT Protocol: DPoP-bound private_key_jwt client authentication (1 by tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/123 [pending-close]
- #113 Public clients and their interaction with existing OAuth 2.0 extensions vs attest_jwt_client_auth clients (1 by tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/113 [ready-for-pr]
- #107 Further implementer guidance on Client Instance Attestations (1 by tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/107 [ready-for-pr]
- #95 Add section to consider usage at RS (1 by tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/95 [ready-for-pr]
- #79 Usage of "public clients" / "deployments traditionally viewed as a public client" (1 by paulbastian)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/79 [ready-for-pr]
- #62 IETF 118: Overlap/Synergies with "Attestation in Dynamic Client Registration Draft" (1 by tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/62
- #61 IETF 118 : Should this mechanism be used in parallel with Client Authentication /with Dynamic Client Registration (1 by paulbastian)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/61 [ready-for-pr]
- #56 Authorization code binding to client instance (1 by tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/56 [has-pr]
- #47 PoP attestation binding (1 by tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/47 [discuss]
- #13 Client Key Attestation JWT Example (1 by tplooker)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/13
4 issues closed:
- IETF 118: Overlap/Synergies with "Attestation in Dynamic Client Registration Draft" https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/62
- Client Key Attestation JWT Example https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/13
- Introducing a general purpose assertion-based client authentication with holder-of-key JWT https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/68 [pending-close]
- `sub` value https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/4 [pending-close]
* oauth-wg/oauth-identity-assertion-authz-grant (+2/-5/💬15)
2 issues created:
- Clarify subject identifier in ID-JAG (by aaronpk)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/59
- Add Token Exchange support for refresh token instead of id token for ID-JAG (by mcguinness)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/58
7 issues received 15 new comments:
- #59 Clarify subject identifier in ID-JAG (2 by aaronpk, mcguinness)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/59
- #58 Add Token Exchange support for refresh token instead of id token for ID-JAG (6 by mcguinness, sdesen)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/58
- #51 Support for Multi-Instance Apps (2 by dlozlla, mcguinness)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/51
- #45 Clarify that IdP client can be mapped via ID-JAG to AS specific client (1 by meghnadubey)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/45
- #39 Adopt Tenant Claim from OpenID Enterprise Extensions for ID-JAG (2 by mcguinness, sdesen)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/39
- #33 Define error code to indicate the client should *not* fall back to redirect-based OAuth flow (1 by mcguinness)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/33
- #31 Burst requests (1 by sdesen)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/31
5 issues closed:
- Burst requests https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/31
- Client ID Registration https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/17
- Clarify that IdP client can be mapped via ID-JAG to AS specific client https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/45
- Discuss the need for client_id mapping https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/14
- Refresh tokens https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/35
* oauth-wg/oauth-first-party-apps (+0/-1/💬1)
1 issues received 1 new comments:
- #125 Mentioning of PKCE related parameters (1 by aaronpk)
https://github.com/oauth-wg/oauth-first-party-apps/issues/125
1 issues closed:
- Possible miswording in section 9.5.1. https://github.com/oauth-wg/oauth-first-party-apps/issues/131
Pull requests
-------------
* oauth-wg/oauth-sd-jwt-vc (+1/-0/💬1)
1 pull requests submitted:
- (by danielfett)
1 pull requests received 1 new comments:
- #371 Change PID example to make clear that it is not normative in any way (1
by babisRoutis)
https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/371
* oauth-wg/oauth-v2-1 (+3/-0/💬0)
3 pull requests submitted:
- (by adeinega)
- (by aaronpk)
- (by aaronpk)
* oauth-wg/draft-ietf-oauth-status-list (+2/-0/💬3)
2 pull requests submitted:
- (by peppelinux)
- (by c2bo)
1 pull requests received 3 new comments:
- #306 Update tooling again (3 by aaronpk, c2bo)
https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/306
* oauth-wg/oauth-identity-assertion-authz-grant (+2/-0/💬0)
2 pull requests submitted:
- (by mcguinness)
- (by mcguinness)
* oauth-wg/draft-ietf-oauth-rfc8725bis (+1/-0/💬0)
1 pull requests submitted:
- (by yaronf)
Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
* https://github.com/oauth-wg/draft-ietf-oauth-status-list
* https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth
* https://github.com/oauth-wg/oauth-identity-assertion-authz-grant
* https://github.com/oauth-wg/draft-ietf-oauth-rfc8725bis
* https://github.com/oauth-wg/draft-ietf-oauth-rfc7523bis
* https://github.com/oauth-wg/oauth-first-party-apps
* https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document
--
To have a summary like this sent to your list, see:
https://github.com/ietf-github-services/activity-summary
_______________________________________________
OAuth mailing list -- [email protected]
To unsubscribe send an email to [email protected]
