Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-http-mac-01.txt

Wed, 08 Feb 2012 10:41:15 -0800 

Might be worthwhile to ask to have the previous draft marked as superceded by 
this one.



________________________________
 From: Eran Hammer <[email protected]>
To: "[email protected]" <[email protected]> 
Sent: Wednesday, February 8, 2012 9:54 AM
Subject: Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-http-mac-01.txt
 
Main changes:

Removed cookies support
Removed body hash
Clarified timestamp verification

I still have more comments to process but wanted to get a new draft out first 
as the current one expired.

Please review the new timestamp prose and let me know what you think. I'm 
trying to allow the client to use any timestamp it can easily produce, and move 
the verification logic to the server as much as possible.

EH

> -----Original Message-----
> From: [email protected] [mailto:[email protected]] On Behalf
> Of [email protected]
> Sent: Wednesday, February 08, 2012 9:52 AM
> To: [email protected]
> Cc: [email protected]
> Subject: [OAUTH-WG] I-D Action: draft-ietf-oauth-v2-http-mac-01.txt
> 
> 
> A New Internet-Draft is available from the on-line Internet-Drafts 
> directories.
> This draft is a work item of the Web Authorization Protocol Working Group of
> the IETF.
> 
>     Title           : HTTP Authentication: MAC Access Authentication
>     Author(s)       : Eran Hammer-Lahav
>     Filename        : draft-ietf-oauth-v2-http-mac-01.txt
>     Pages           : 20
>     Date            : 2012-02-08
> 
>    This document specifies the HTTP MAC access authentication scheme, an
>    HTTP authentication method using a message authentication code (MAC)
>    algorithm to provide cryptographic verification of portions of HTTP
>    requests.  The document also defines an OAuth 2.0 binding for use as
>    an access-token type.
> 
> 
> A URL for this Internet-Draft is:
> http://www.ietf.org/internet-drafts/draft-ietf-oauth-v2-http-mac-01.txt
> 
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
> 
> This Internet-Draft can be retrieved at:
> ftp://ftp.ietf.org/internet-drafts/draft-ietf-oauth-v2-http-mac-01.txt
> 
> _______________________________________________
> OAuth mailing list
> [email protected]
> https://www.ietf.org/mailman/listinfo/oauth
_______________________________________________
OAuth mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/oauth
_______________________________________________
OAuth mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/oauth

Reply via email to