Internet-Draft draft-ietf-ace-revoked-token-notification-07.txt is now
available. It is a work item of the Authentication and Authorization for
Constrained Environments (ACE) WG of the IETF.
Title: Notification of Revoked Access Tokens in the Authentication and
Authorization for Constrained Environments (ACE) Framework
Authors: Marco Tiloca
Francesca Palombini
Sebastian Echeverria
Grace Lewis
Name: draft-ietf-ace-revoked-token-notification-07.txt
Pages: 74
Dates: 2024-05-27
Abstract:
This document specifies a method of the Authentication and
Authorization for Constrained Environments (ACE) framework, which
allows an Authorization Server to notify Clients and Resource Servers
(i.e., registered devices) about revoked access tokens. As specified
in this document, the method allows Clients and Resource Servers to
access a Token Revocation List on the Authorization Server by using
the Constrained Application Protocol (CoAP), with the possible
additional use of resource observation. Resulting (unsolicited)
notifications of revoked access tokens complement alternative
approaches such as token introspection, while not requiring
additional endpoints on Clients and Resource Servers.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-ace-revoked-token-notification/
There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-ace-revoked-token-notification-07.html
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-ace-revoked-token-notification-07
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
_______________________________________________
Ace mailing list -- ace@ietf.org
To unsubscribe send an email to ace-le...@ietf.org
