FWIW, I've prepared this PR with those changes
https://github.com/httpwg/http-extensions/pull/2425
A preview can be seen here
https://httpwg.org/http-extensions/cert/genart-review/draft-ietf-httpbis-client-cert-field.html
As well as a diff
Thank you Peter for the thorough review!
I'll make those clarifications re: Client-Cert and Client-Cert-Chain in sec
2 and the appx. Although I think adding the root certificate to
Client-Cert-Chain is more of a 'can' than a 'should' depending on
deployment needs. Regardless, I'll add some text
Thanks Christer for your thorough review!
A new draft (
https://www.ietf.org/archive/id/draft-ietf-oauth-step-up-authn-challenge-12.html)
reflecting changes resulting from the feedback has been published.
Comments inline
On Thu, Feb 23, 2023 at 9:13 AM Christer Holmberg via Datatracker <
Reviewer: Peter Yee
Review result: Ready with Issues
I am the assigned Gen-ART reviewer for this draft. The General Area
Review Team (Gen-ART) reviews all IETF documents being processed
by the IESG for the IETF Chair. Please treat these comments just
like any other last call comments.
For more