[OAUTH-WG] Weekly github digest (OAuth Activity Summary)

Sun, 29 Jun 2025 00:46:01 -0700 



Events without label "editorial"

Issues
------
* oauth-wg/oauth-identity-chaining (+0/-1/💬0)
 1 issues closed:

 - Add security consideration on refresh tokens? https://github.com/oauth-wg/oauth-identity-chaining/issues/130 


* oauth-wg/oauth-sd-jwt-vc (+2/-1/💬7)
 2 issues created:
 - Glue document to the protected header? (by babisRoutis)

   https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/320 
 - Mapping for 'termsOfUse' from VCDM (by tweeddalex)
   https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/319 


 3 issues received 7 new comments:
 - #319 Mapping for 'termsOfUse' from VCDM (3 by bc-pi, bumblefudge, tweeddalex)

   https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/319 
 - #315 Recommend against  using the x5u parameter in JWK (2 by bc-pi, nikosft)
   https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/315 
 - #308 Document integrity examples use wrong Base64url encoding (2 by bc-pi)
   https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/308 [good first issue] [Ready-for-PR] 


 1 issues closed:

 - Document integrity examples use wrong Base64url encoding https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/308 [good first issue] [Ready-for-PR] 


* oauth-wg/draft-ietf-oauth-status-list (+0/-1/💬0)
 1 issues closed:

 - Mailinglist Feedback from Dan Moore https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/291 


* oauth-wg/draft-ietf-oauth-attestation-based-client-auth (+1/-1/💬6)
 1 issues created:
 - Remote `exp` from the PoP (by paulbastian)

   https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/124 


 5 issues received 6 new comments:
 - #123 Similar proposal in AT Protocol: DPoP-bound private_key_jwt client 
authentication (2 by c2bo, paulbastian)

   https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/123 
 - #108 What is "unreasonably far in the past"? (1 by tplooker)
   https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/108 [pending-close] 
 - #105 Steps (1) to (4) should be moved into an informative annex (1 by tplooker)
   https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/105 [pending-close] 
 - #81 client_id optional in the request body (1 by paulbastian)
   https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/81 [discuss] 
 - #71 Propose to change the draft name (1 by tplooker)
   https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/71 [discuss] 


 1 issues closed:

 - Steps (1) to (4) should be moved into an informative annex https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/105 [pending-close] 




Pull requests
-------------
* oauth-wg/oauth-identity-chaining (+1/-2/💬0)
 1 pull requests submitted:
 - Regenerate files (by arndt-s)

   https://github.com/oauth-wg/oauth-identity-chaining/pull/157 


 2 pull requests merged:
 - Add refresh token consideration

   https://github.com/oauth-wg/oauth-identity-chaining/pull/151 
 - Regenerate files
   https://github.com/oauth-wg/oauth-identity-chaining/pull/157 


* oauth-wg/oauth-transaction-tokens (+0/-0/💬1)
 1 pull requests received 1 new comments:
 - #176 added structured type to HTTP header (1 by bc-pi)

   https://github.com/oauth-wg/oauth-transaction-tokens/pull/176 


* oauth-wg/oauth-sd-jwt-vc (+1/-1/💬0)
 1 pull requests submitted:
 - Fix `[...]#integrity` claim values in examples  (by bc-pi)

   https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/318 


 1 pull requests merged:

 - Fix `[...]#integrity` claim values in examples 
   https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/318 


* oauth-wg/draft-ietf-oauth-status-list (+0/-1/💬0)
 1 pull requests merged:
 - add feedback from Dan Moore

   https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/293 


* oauth-wg/draft-ietf-oauth-attestation-based-client-auth (+0/-1/💬1)
 1 pull requests received 1 new comments:
 - #112 new proposal for challenge endpoint (1 by paulbastian)

   https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/pull/112 


 1 pull requests merged:
 - Add missing +jwt in Client Attestation PoP JWT example

   https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/pull/121 



Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
* https://github.com/oauth-wg/draft-ietf-oauth-status-list
* https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth


--
To have a summary like this sent to your list, see: 
https://github.com/ietf-github-services/activity-summary

_______________________________________________
OAuth mailing list -- oauth@ietf.org
To unsubscribe send an email to oauth-le...@ietf.org























					Reply via email to