[OAUTH-WG] Weekly github digest (OAuth Activity Summary)

[Repository Activity Summary Bot]

Events without label "editorial"

Issues
------
* oauth-wg/oauth-identity-chaining (+2/-1/💬2)
 2 issues created:
 - Question: DPoP proof handling across trust domain boundaries (by cbchhaya)
   https://github.com/oauth-wg/oauth-identity-chaining/issues/181 
 - Question: DPoP proof handling across trust domain boundaries (by vantage-grc)
   https://github.com/oauth-wg/oauth-identity-chaining/issues/180 

 1 issues received 2 new comments:
 - #181 Question: DPoP proof handling across trust domain boundaries (2 by 
cbchhaya, mcguinness)
   https://github.com/oauth-wg/oauth-identity-chaining/issues/181 

 1 issues closed:
 - Question: DPoP proof handling across trust domain boundaries https://github.com/oauth-wg/oauth-identity-chaining/issues/180 

* oauth-wg/oauth-transaction-tokens (+2/-1/💬0)
 2 issues created:
 - Clarification required regarding 'sub' field in Txn-Token (by ashayraut)
   https://github.com/oauth-wg/oauth-transaction-tokens/issues/314 
 - https://modelcontextprotocol.io/docs/develop/build-server#what-we’ll-be-building (by NaungYoe2)
   https://github.com/oauth-wg/oauth-transaction-tokens/issues/313 

 1 issues closed:
 - https://modelcontextprotocol.io/docs/develop/build-server#what-we’ll-be-building https://github.com/oauth-wg/oauth-transaction-tokens/issues/313 

* oauth-wg/oauth-v2-1 (+1/-1/💬2)
 1 issues created:
 - PKCE verifier generation for confidential clients (by functasti)
   https://github.com/oauth-wg/oauth-v2-1/issues/237 

 1 issues received 2 new comments:
 - #237 PKCE verifier generation for confidential clients (2 by aaronpk, 
functasti)
   https://github.com/oauth-wg/oauth-v2-1/issues/237 

 1 issues closed:
 - PKCE verifier generation for confidential clients https://github.com/oauth-wg/oauth-v2-1/issues/237 

* oauth-wg/draft-ietf-oauth-status-list (+1/-0/💬1)
 1 issues created:
 - ISO Reference (by c2bo)
   https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/352 

 1 issues received 1 new comments:
 - #352 ISO Reference (1 by bc-pi)
   https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/352 

* oauth-wg/draft-ietf-oauth-attestation-based-client-auth (+0/-2/💬2)
 2 issues received 2 new comments:
 - #162 It is proposed to remove use self-contained challenges (1 by tplooker)
   https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/162 
 - #158 The description of the flows should be reconsidered (1 by tplooker)
   https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/158 

 2 issues closed:
 - It is proposed to remove use self-contained challenges https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/162 
 - The description of the flows should be reconsidered https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/158 

* oauth-wg/oauth-first-party-apps (+0/-8/💬14)
 14 issues received 14 new comments:
 - #138 Questions to draft (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/138 
 - #137 Adopting the reference MCP Tools specs for the discovery and execution of supported authenticators (a.k.a. tools) (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/137 
 - #135 Alternative approach suggestion: application/device centered, not user (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/135 
 - #134 Collect things that would need to happen to use the PAR endpoint (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/134 [discuss] 
 - #133 insufficient_authorization vs custom errors (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/133 
 - #130 The need for "Resource Server Error Response" section (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/130 
 - #128 Requirement of having an opaque auth_session value (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/128 
 - #127 Two standard endpoints for PAR (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/127 
 - #126 Possibility to use the auth_session in new authorization request when redirect to web (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/126 
 - #123 Ordering of operations in Appendix A.1 (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/123 
 - #122 Determining the first-partyness of an application (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/122 
 - #120 Device binding of the auth_session (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/120 [discuss] 
 - #113 parameters that must not be present in authorization challenge request (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/113 
 - #105 For PAR, PAR endpoint should be used. (1 by aaronpk)
   https://github.com/oauth-wg/oauth-first-party-apps/issues/105 

 8 issues closed:
 - Initial WebAuthn response: success or error https://github.com/oauth-wg/oauth-first-party-apps/issues/136 
 - The need for "Resource Server Error Response" section https://github.com/oauth-wg/oauth-first-party-apps/issues/130 
 - insufficient_authorization vs custom errors https://github.com/oauth-wg/oauth-first-party-apps/issues/133 
 - Two standard endpoints for PAR https://github.com/oauth-wg/oauth-first-party-apps/issues/127 
 - Mentioning of PKCE related parameters https://github.com/oauth-wg/oauth-first-party-apps/issues/125 
 - Protocol overview - forward references https://github.com/oauth-wg/oauth-first-party-apps/issues/67 
 - Limitations of this spec https://github.com/oauth-wg/oauth-first-party-apps/issues/65 
 - Endpoint name https://github.com/oauth-wg/oauth-first-party-apps/issues/62 

* oauth-wg/draft-ietf-oauth-client-id-metadata-document (+0/-0/💬1)
 1 issues received 1 new comments:
 - #57 Changes in Client Keys can happen for non-nefarious reasons (1 by bc-pi)
   https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document/issues/57 



Pull requests
-------------
* oauth-wg/draft-ietf-oauth-status-list (+1/-0/💬2)
 1 pull requests submitted:
 -  (by bc-pi)
    

 2 pull requests received 2 new comments:
 - #353 add target with github ISO 18013 to ISO.mdoc informative reference (1 
by bc-pi)
   https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/353 
 - #350 Pb/all examples (1 by c2bo)
   https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/350 

* oauth-wg/oauth-first-party-apps (+12/-0/💬0)
 12 pull requests submitted:
 -  (by aaronpk)
    
 -  (by aaronpk)
    
 -  (by aaronpk)
    
 -  (by aaronpk)
    
 -  (by aaronpk)
    
 -  (by aaronpk)
    
 -  (by aaronpk)
    
 -  (by PieterKas)
    
 -  (by PieterKas)
    
 -  (by PieterKas)
    
 -  (by PieterKas)
    
 -  (by PieterKas)
    


Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
* https://github.com/oauth-wg/draft-ietf-oauth-status-list
* https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth
* https://github.com/oauth-wg/oauth-identity-assertion-authz-grant
* https://github.com/oauth-wg/draft-ietf-oauth-rfc8725bis
* https://github.com/oauth-wg/draft-ietf-oauth-rfc7523bis
* https://github.com/oauth-wg/oauth-first-party-apps
* https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document


--
To have a summary like this sent to your list, see: 
https://github.com/ietf-github-services/activity-summary
_______________________________________________
OAuth mailing list -- oauth@ietf.org
To unsubscribe send an email to oauth-le...@ietf.org