Dear all,As anticipated during the presentation "Follow-Up Activities" at IETF 116, we have recently submitted a new Internet Draft draft-tiloca-ace-workflow-and-params [1].
The document describes an update to the ACE framework (RFC9200), for which it specifies:
* An alternative protocol workflow, where the Authorization Server (AS) uploads the Access Token to the Resource Server (RS) on behalf of the Client (C); and
* Some additional parameters for the /token endpoint at the Authorization Server. These allow the Token Response from the AS to provide C with: an explicit feedback about the upload of the Access Token per the alternative workflow (see above); the public keys of the multiple Resource Servers that take part in the group-audience for which the Access Token is issued.
Comments are welcome! Best, /Marco [1] https://datatracker.ietf.org/doc/draft-tiloca-ace-workflow-and-params/ -------- Forwarded Message --------Subject: New Version Notification for draft-tiloca-ace-workflow-and-params-00.txt
Date: Mon, 10 Jul 2023 09:34:02 -0700 From: [email protected]To: Göran Selander <[email protected]>, Goeran Selander <[email protected]>, Marco Tiloca <[email protected]>
A new version of I-D, draft-tiloca-ace-workflow-and-params-00.txt has been successfully submitted by Marco Tiloca and posted to the IETF repository. Name: draft-tiloca-ace-workflow-and-params Revision: 00Title: Alternative Workflow and OAuth Parameters for the Authentication and Authorization for Constrained Environments (ACE) Framework
Document date: 2023-07-10 Group: Individual Submission Pages: 22URL: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-tiloca-ace-workflow-and-params-00.txt&data=05%7C01%7Cmarco.tiloca%40ri.se%7C5e0fa7b979ca414728d708db81638f09%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246036827076433%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=prcHvYbEIhl8l%2B65P3oK06K%2BDZ4KVSnEZFNaG7EyWGk%3D&reserved=0 Status: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-tiloca-ace-workflow-and-params%2F&data=05%7C01%7Cmarco.tiloca%40ri.se%7C5e0fa7b979ca414728d708db81638f09%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246036827076433%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=rkW7S99UXCjkjFy1hXEIWuaQf5COEtqocM7%2FCX9nPN4%3D&reserved=0 Html: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-tiloca-ace-workflow-and-params-00.html&data=05%7C01%7Cmarco.tiloca%40ri.se%7C5e0fa7b979ca414728d708db81638f09%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246036827076433%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=vd2WePHYhZ2bfqmilUUiTB9EKyLgYcuqIXvLxchv4aA%3D&reserved=0 Htmlized: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-tiloca-ace-workflow-and-params&data=05%7C01%7Cmarco.tiloca%40ri.se%7C5e0fa7b979ca414728d708db81638f09%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246036827231895%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=6u2xyYs5%2BMWQIaNI2Ff7wKOrBy%2FhKOVsmHPH9gr%2BxaI%3D&reserved=0
Abstract: This document updates the Authentication and Authorization for Constrained Environments Framework (ACE, RFC 9200) as follows. First, it defines a new, alternative workflow that the Authorization Server can use for uploading an access token to a Resource Server on behalf of the Client. Second, it defines new parameters and encodings for the OAuth 2.0 token endpoint at the Authorization Server. The IETF Secretariat
OpenPGP_0xEE2664B40E58DA43.asc
Description: OpenPGP public key
OpenPGP_signature
Description: OpenPGP digital signature
_______________________________________________ Ace mailing list [email protected] https://www.ietf.org/mailman/listinfo/ace
