OAuth WG Monday March 23 2015 1300 1500

  • Slides: 10
Download presentation
OAuth WG Monday, March 23, 2015 1300 -1500 oauth@ietf. org Chairs: Derek Atkins and

OAuth WG Monday, March 23, 2015 1300 -1500 oauth@ietf. org Chairs: Derek Atkins and Hannes Tschofenig

Note Well Any submission to the IETF intended by the Contributor for publication as

Note Well Any submission to the IETF intended by the Contributor for publication as all or part of an IETF Internet-Draft or RFC and any statement made within the context of an IETF activity is considered an "IETF Contribution". Such statements include oral statements in IETF sessions, as well as written and electronic communications made at any time or place, which are addressed to: The IETF plenary session The IESG, or any member thereof on behalf of the IESG Any IETF mailing list, including the IETF list itself, any working group or design team list, or any other list functioning under IETF auspices Any IETF working group or portion thereof Any Birds of a Feather (BOF) session The IAB or any member thereof on behalf of the IAB The RFC Editor or the Internet-Drafts function All IETF Contributions are subject to the rules of RFC 5378 and RFC 3979 (updated by RFC 4879). Statements made outside of an IETF session, mailing list or other function, that are clearly not intended to be input to an IETF activity, group or function, are not IETF Contributions in the context of this notice. Please consult RFC 5378 and RFC 3979 for details. A participant in any IETF activity is deemed to accept all IETF rules of process, as documented in Best Current Practices RFCs and IESG Statements.

Agenda Welcome and Agenda Bashing WG Status Token Introspection Proof of Possession Semantics for

Agenda Welcome and Agenda Bashing WG Status Token Introspection Proof of Possession Semantics for JWTs Po. P AS to Client Key Distribution Signing HTTP Requests Open Redirector Destination Claim for JWT OAuth 2. 0 Token Exchange

WG Status OAuth Assertion Framework RFC Editor JWT Bearer RFC Editor SAML Bearer RFC

WG Status OAuth Assertion Framework RFC Editor JWT Bearer RFC Editor SAML Bearer RFC Editor Dyn. Req IESG Processing Dyn. Reg. Management IESG Processing

WG Status, cont. • Proof Key for Code Exchange (PKCE) Will go to the

WG Status, cont. • Proof Key for Code Exchange (PKCE) Will go to the IESG this week • Po. P Architecture Will go to the IESG this week • Po. P Semantics for JWTs WGLC in progress (till Tuesday) • Token Introspection Shepherd Write-Up in progress

WG Status, cont. • Work in progress (will be discussed later) • Token Exchange

WG Status, cont. • Work in progress (will be discussed later) • Token Exchange • Po. P Key Distribution and Po. P Usage / Signed Requests • Request by JWS

Draft Updates Token Introspection (Justin) http: //datatracker. ietf. org/doc/draft-ietf-oauthintrospection/ Proof-Of-Possession Semantics for JSON Web

Draft Updates Token Introspection (Justin) http: //datatracker. ietf. org/doc/draft-ietf-oauthintrospection/ Proof-Of-Possession Semantics for JSON Web Tokens (JWTs) (Mike) http: //datatracker. ietf. org/doc/draft-ietf-oauth-proofof-possession/

Draft Updates OAuth 2. 0 Proof-of-Possession: Authorization Server to Client Key Distribution (Hannes) A

Draft Updates OAuth 2. 0 Proof-of-Possession: Authorization Server to Client Key Distribution (Hannes) A Method for Signing an HTTP Requests for OAuth (Justin) http: //datatracker. ietf. org/doc/draft-ietf-oauth-popkey-distribution/ http: //datatracker. ietf. org/doc/draft-ietf-oauth-signed -http-request/ OAuth 2. 0 Token Exchange (Mike) http: //datatracker. ietf. org/doc/draft-ietf-oauth-tokenexchange/

New Drafts OAuth Open Redirector (John) http: //datatracker. ietf. org/doc/draft-bradley-oauthopen-redirector/ Destination Claim for JSON

New Drafts OAuth Open Redirector (John) http: //datatracker. ietf. org/doc/draft-bradley-oauthopen-redirector/ Destination Claim for JSON Web Token (Brian) http: //datatracker. ietf. org/doc/draft-campbell-oauthdst 4 jwt/

Open Mic

Open Mic