Hello,
I have a short comment about error responses from an RS in
draft-ietf-ace-oauth-authz-21. More specifically, my question is about section
5.8.2. In the second paragraph, it states “The response code MUST be 4.01
(Unauthorized) in case the client has not performed the proof-of-possession,
> On Feb 18, 2019, at 15:59, Sebastian Echeverria
> wrote:
>
> Hello,
>
> I have a short comment about error responses from an RS in
> draft-ietf-ace-oauth-authz-21. More specifically, my question is about
> section 5.8.2. In the second paragraph, it states “The response code MUST be
> 4.
true
if I attempted to do a GET on a different resource.
Jim
From: Ace On Behalf Of Sebastian Echeverria
Sent: Monday, February 18, 2019 6:59 AM
To: ace@ietf.org
Subject: [Ace] Comment about error responses in draft-ietf-ace-oauth-authz-21
Hello,
I have a short comment about
situation where 4.01
could be returned.
Sebastian
From: Jim Schaad
Date: Tuesday, February 19, 2019 at 6:17 PM
To: Sebastian Echeverria , "ace@ietf.org"
Subject: RE: [Ace] Comment about error responses in
draft-ietf-ace-oauth-authz-21
Sebastian,
The 4.01 is not restricted to jus
On 18/02/2019 15:59, Sebastian Echeverria wrote:
Hello,
I have a short comment about error responses from an RS in
draft-ietf-ace-oauth-authz-21. More specifically, my question is about
section 5.8.2. In the second paragraph, it states “The response code
MUST be 4.01 (Unauthorized) in case th