Events without label "editorial"
Issues
------
* oauth-wg/oauth-transaction-tokens (+4/-7/💬6)
4 issues created:
- Update Transaction Token Lifetime Guidance (by PieterKas)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/277
- Replacement token lifetime extension warning (by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/273 [WGLC Feedback]
- Replacement flow needs to be replaced (by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/272 [WGLC Feedback]
- Lack in normative language for workloads to validate Txn-Tokens and authorization context (by obfuscoder)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/270
6 issues received 6 new comments:
- #272 Replacement flow needs to be replaced (1 by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/272 [WGLC Feedback]
- #227 Clarify Normative Language (1 by PieterKas)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/227 [help wanted] [WGLC Feedback]
- #226 Clarify "determining" (1 by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/226 [WGLC Feedback]
- #217 Transaction token Lifetime extension (1 by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/217 [WGLC Feedback] [WGLC Discuss]
- #215 Request context validation (1 by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/215 [WGLC Feedback] [WGLC Discuss]
- #190 Do we need ReplacementTx-Tokens (1 by tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/issues/190 [WGLC Feedback] [WGLC Discuss]
7 issues closed:
- BASE64URL Parameter Encoding https://github.com/oauth-wg/oauth-transaction-tokens/issues/196 [WGLC Feedback]
- Is subject_token always Base64 URL format? https://github.com/oauth-wg/oauth-transaction-tokens/issues/180
- Do we need ReplacementTx-Tokens https://github.com/oauth-wg/oauth-transaction-tokens/issues/190 [WGLC Feedback] [WGLC Discuss]
- Transaction token Lifetime extension https://github.com/oauth-wg/oauth-transaction-tokens/issues/217 [WGLC Feedback] [WGLC Discuss]
- Request context validation https://github.com/oauth-wg/oauth-transaction-tokens/issues/215 [WGLC Feedback] [WGLC Discuss]
- Clarify "determining" https://github.com/oauth-wg/oauth-transaction-tokens/issues/226 [WGLC Feedback]
- Constrain txn-token header field to a single value https://github.com/oauth-wg/oauth-transaction-tokens/issues/200 [WGLC Feedback]
* oauth-wg/oauth-sd-jwt-vc (+1/-1/💬1)
1 issues created:
- Other Issuer Signature Mechanisms using https scheme (by yaromin)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/377
1 issues received 1 new comments:
- #377 Other Issuer Signature Mechanisms using https scheme (1 by selfissued)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/377
1 issues closed:
- 8.1.2. Rendering Method "svg_template" differs from Example B.2 https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/374
* oauth-wg/oauth-v2-1 (+2/-1/💬4)
2 issues created:
- Sender-constrained refresh tokens examples improvement (by sakimura)
https://github.com/oauth-wg/oauth-v2-1/issues/232
- Protocol Flow Diagram (by jricher)
https://github.com/oauth-wg/oauth-v2-1/issues/231
3 issues received 4 new comments:
- #231 Protocol Flow Diagram (1 by aaronpk)
https://github.com/oauth-wg/oauth-v2-1/issues/231
- #214 Make PKCE optional when DPoP + PAR are used (2 by aaronpk, matthieusieben)
https://github.com/oauth-wg/oauth-v2-1/issues/214
- #201 Relations with COAP / RFC9200 (1 by aaronpk)
https://github.com/oauth-wg/oauth-v2-1/issues/201 [ietf-122]
1 issues closed:
- Relations with COAP / RFC9200 https://github.com/oauth-wg/oauth-v2-1/issues/201 [ietf-122]
* oauth-wg/draft-ietf-oauth-status-list (+1/-0/💬0)
1 issues created:
- Wording section "Referenced token in COSE" (by atezet)
https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/308
* oauth-wg/draft-ietf-oauth-attestation-based-client-auth (+1/-0/💬2)
1 issues created:
- Client authentication method or not? (by fkj)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/167
2 issues received 2 new comments:
- #167 Client authentication method or not? (1 by c2bo)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/167
- #152 Attestation-based authenticated Client. Public or Confidential? (1 by tlodderstedt)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/152 [discuss]
* oauth-wg/oauth-identity-assertion-authz-grant (+0/-0/💬6)
4 issues received 6 new comments:
- #58 Add Token Exchange support for refresh token instead of id token for
ID-JAG (1 by meghnadubey)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/58
- #51 Support for Multi-Instance Apps (2 by aaronpk, mcguinness)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/51
- #46 Add metadata recommendation and example for protected resource (2 by mcguinness, meghnadubey)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/46
- #38 IdP metadata recommendation (1 by meghnadubey)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/38
* oauth-wg/draft-ietf-oauth-rfc8725bis (+0/-2/💬5)
2 issues received 5 new comments:
- #17 Review by Aaron Parecki (2 by aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-rfc8725bis/issues/17
- #5 Key Identification guidance (3 by hannestschofenig, yaronf)
https://github.com/oauth-wg/draft-ietf-oauth-rfc8725bis/issues/5
2 issues closed:
- Acknowledgements https://github.com/oauth-wg/draft-ietf-oauth-rfc8725bis/issues/13
- Review by Aaron Parecki https://github.com/oauth-wg/draft-ietf-oauth-rfc8725bis/issues/17
* oauth-wg/draft-ietf-oauth-client-id-metadata-document (+1/-2/💬4)
1 issues created:
- Changes in Client Keys can happen for non-nefarious reasons (by bc-pi)
https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/issues/57
2 issues received 4 new comments:
- #38 Use base URL as client ID, AS should add on
`.well-known/oauth-client-metadata` itself (2 by OllieJC, aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/issues/38
- #22 Address security contradiction of user-supplied client_id values (2 by ThisIsMissEm, aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/issues/22
2 issues closed:
- Use base URL as client ID, AS should add on `.well-known/oauth-client-metadata` itself https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/issues/38
- nit: 1. Introduction section https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/issues/53
Pull requests
-------------
* oauth-wg/oauth-transaction-tokens (+5/-0/💬2)
5 pull requests submitted:
- (by PieterKas)
- (by PieterKas)
- (by tulshi)
- (by tulshi)
- (by gffletch)
1 pull requests received 2 new comments:
- #274 Fix reference to Base64 encoding RFC (2 by PieterKas, tulshi)
https://github.com/oauth-wg/oauth-transaction-tokens/pull/274
* oauth-wg/oauth-sd-jwt-vc (+1/-0/💬3)
1 pull requests submitted:
- (by bc-pi)
1 pull requests received 3 new comments:
- #375 Updated svg_template to match pluralised appendix example (3 by awoie,
queekusme)
https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/375
* oauth-wg/oauth-v2-1 (+1/-0/💬1)
1 pull requests submitted:
- (by JonasPrimbs)
1 pull requests received 1 new comments:
- #230 Browser-Swapping (1 by OllieJC)
https://github.com/oauth-wg/oauth-v2-1/pull/230
* oauth-wg/oauth-identity-assertion-authz-grant (+1/-0/💬1)
1 pull requests submitted:
- (by aaronpk)
1 pull requests received 1 new comments:
- #64 Split IdP and Enterprise Authorization Server roles (1 by aaronpk)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/pull/64
* oauth-wg/draft-ietf-oauth-rfc8725bis (+2/-0/💬3)
2 pull requests submitted:
- (by selfissued)
- (by selfissued)
1 pull requests received 3 new comments:
- #27 Incorporate Aaron Parecki's review suggestions (3 by aaronpk, selfissued)
https://github.com/oauth-wg/draft-ietf-oauth-rfc8725bis/pull/27
* oauth-wg/draft-ietf-oauth-client-id-metadata-document (+1/-0/💬9)
1 pull requests submitted:
- (by ThisIsMissEm)
3 pull requests received 9 new comments:
- #56 Clarify requirements for Client ID Metadata Document Services (3 by
OllieJC, ThisIsMissEm)
https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/pull/56
- #50 Restrict URI properties to absolute URIs using the https: scheme (1 by OllieJC)
https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/pull/50
- #46 Prohibit following redirects whilst fetching Client Metadata (5 by ThisIsMissEm, aaronpk)
https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/pull/46
Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
* https://github.com/oauth-wg/draft-ietf-oauth-status-list
* https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth
* https://github.com/oauth-wg/oauth-identity-assertion-authz-grant
* https://github.com/oauth-wg/draft-ietf-oauth-rfc8725bis
* https://github.com/oauth-wg/draft-ietf-oauth-rfc7523bis
* https://github.com/oauth-wg/oauth-first-party-apps
* https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document
--
To have a summary like this sent to your list, see:
https://github.com/ietf-github-services/activity-summary
_______________________________________________
OAuth mailing list -- [email protected]
To unsubscribe send an email to [email protected]
