IETF
GNAP
gnap@jabber.ietf.org
Thursday, November 11, 2021< ^ >
Room Configuration
Room Occupants

GMT+0
[02:08:10] cabo joins the room
[02:18:50] cabo leaves the room
[11:16:12] Meetecho joins the room
[11:41:06] alexamirante joins the room
[11:45:07] Roman Danyliw_web_642 joins the room
[11:45:07] Michael Jenkins_web_256 joins the room
[11:45:07] Pedram Hosseyni_web_998 joins the room
[11:45:07] Justin Richer_web_963 joins the room
[11:45:07] Lorenzo Miniero_web_539 joins the room
[11:45:07] Denis PINKAS_web_745 joins the room
[11:45:48] Alessandro Toppi_web_640 joins the room
[11:48:50] Ken Takayama_web_432 joins the room
[11:49:16] Pedram Hosseyni_web_998 leaves the room
[11:50:46] Pedram Hosseyni_web_931 joins the room
[11:51:23] Kohei Isobe_web_122 joins the room
[11:51:24] Justin Richer_web_963 leaves the room
[11:51:28] Justin Richer_web_565 joins the room
[11:52:56] Yaron Sheffer_web_344 joins the room
[11:53:58] Florian Helmschmidt_web_714 joins the room
[11:54:35] Kelley Burgin_web_634 joins the room
[11:55:38] Natalie Ennis_web_482 joins the room
[11:56:16] Leif Johansson_web_678 joins the room
[11:56:20] Jurgen Sonnenmoser_web_244 joins the room
[11:56:56] Leif Johansson_web_678 leaves the room
[11:57:02] Leif Johansson_web_514 joins the room
[11:57:06] Leif Johansson_web_514 leaves the room
[11:57:07] Leif Johansson_web_171 joins the room
[11:57:22] Leif Johansson_web_171 leaves the room
[11:57:26] Leif Johansson_web_270 joins the room
[11:57:35] Leif Johansson_web_270 leaves the room
[11:57:39] Leif Johansson_web_262 joins the room
[11:57:40] Leif Johansson_web_262 leaves the room
[11:57:44] Leif Johansson_web_484 joins the room
[11:57:48] Leif Johansson_web_484 leaves the room
[11:57:52] Leif Johansson_web_560 joins the room
[11:58:59] Leif Johansson_web_560 leaves the room
[11:59:03] Leif Johansson_web_904 joins the room
[11:59:11] fabien imbault_web_739 joins the room
[11:59:18] Leif Johansson_web_904 leaves the room
[11:59:22] Leif Johansson_web_573 joins the room
[11:59:25] Leif Johansson_web_573 leaves the room
[11:59:29] Leif Johansson_web_782 joins the room
[11:59:30] Leif Johansson_web_782 leaves the room
[11:59:34] Leif Johansson_web_162 joins the room
[11:59:47] Leif Johansson_web_162 leaves the room
[11:59:51] Leif Johansson_web_146 joins the room
[11:59:53] Leif Johansson_web_146 leaves the room
[11:59:57] Leif Johansson_web_111 joins the room
[12:00:27] Leif Johansson_web_111 leaves the room
[12:00:33] Leif Johansson_web_835 joins the room
[12:00:37] Leif Johansson_web_835 leaves the room
[12:00:39] Leif Johansson_web_804 joins the room
[12:00:43] Leif Johansson_web_804 leaves the room
[12:00:44] Leif Johansson_web_737 joins the room
[12:00:53] Kathleen Moriarty_web_722 joins the room
[12:01:06] Karen Staley_web_256 joins the room
[12:01:58] <Alessandro Toppi_web_640> which problem are you having ?
[12:02:08] Leif Johansson_web_737 leaves the room
[12:02:12] Leif Johansson_web_686 joins the room
[12:02:13] <Roman Danyliw_web_642> I think that Yaron was not seeing the slides under "share slides"
[12:02:18] <Lorenzo Miniero_web_539> Chairs: if you don't see any slide when using the preloaded slides, they haven't been imported
[12:02:20] Tim Cappalli_web_867 joins the room
[12:02:27] <Lorenzo Miniero_web_539> As chairs, you need to use the Settings / Manage Slides to do that
[12:02:38] <Lorenzo Miniero_web_539> Settings is the 2nd icon from the topright (monkey wrench icon)
[12:03:03] <Roman Danyliw_web_642> @lorenzo: thanks!
[12:03:06] Peter Yee_web_730 joins the room
[12:03:20] Bron Gondwana_web_857 joins the room
[12:04:00] Greg Schumacher_web_465 joins the room
[12:05:39] Leif Johansson_web_686 leaves the room
[12:05:43] Leif Johansson_web_683 joins the room
[12:06:31] Leif Johansson_web_683 leaves the room
[12:06:35] Leif Johansson_web_272 joins the room
[12:07:01] Mary Barnes_web_701 joins the room
[12:07:06] <Kathleen Moriarty_web_722> I'll help
[12:07:21] <Justin Richer_web_565> Thank you, Kathleen!
[12:07:29] <Justin Richer_web_565> https://notes.ietf.org/notes-ietf-112-gnap#
[12:09:03] fabien imbault_web_739 leaves the room
[12:09:07] fabien imbault_web_380 joins the room
[12:09:27] Oliver Borchert_web_228 joins the room
[12:09:48] Oliver Borchert_web_228 leaves the room
[12:10:33] Benjamin Kaduk_web_593 joins the room
[12:10:49] Benjamin Kaduk_web_593 leaves the room
[12:11:02] <fabien imbault_web_380> yes
[12:11:29] <Leif Johansson_web_272> did others see problems running meetecho in chrome today? right now in FF things are running smoothly
[12:12:12] <fabien imbault_web_380> yes, I had to change from chrome to firefox
[12:12:28] <Leif Johansson_web_272> thx!
[12:12:38] <Meetecho> Some of us are on Chrome and it seems fine (I'm on Firefox myself)
[12:12:46] <Meetecho> (us = Meetecho team)
[12:13:00] <alexamirante> can you please elaborate on what wasn't working with chrome?
[12:13:08] <Leif Johansson_web_272> I coulnt' enable outgoing audio
[12:13:14] <Leif Johansson_web_272> chrome on linux and on ipad os
[12:13:37] <Leif Johansson_web_272> I was unmuted but nothing was coming through
[12:14:36] Shigeya Suzuki_web_450 joins the room
[12:16:42] Thomas Werner_web_784 joins the room
[12:18:29] <alexamirante> checked with chrome on linux and it's working fine here. @Leif next time can you please try to do "change devices" from the "settings" menu and check whether there's a green bar moving according to the audio captured by your mic? you can also switch devices if by any chance the wrong one had been picked
[12:18:46] <Leif Johansson_web_272> I did
[12:18:57] <Leif Johansson_web_272> I only have one mic on my chrome ipad
[12:19:01] <fabien imbault_web_380> I'm here, but still having audio issues
[12:19:36] <Leif Johansson_web_272> same thing for linux - single mic
[12:19:59] <alexamirante> was the green bar moving?
[12:20:03] <Leif Johansson_web_272> meetecho gave me a dialog-popup saying it believed I was speaking but not getting audio btw
[12:20:23] <Leif Johansson_web_272> I think it was moving... but I'll check next time
[12:20:30] Mark McFadden_web_648 joins the room
[12:21:53] Thomas Werner_web_784 leaves the room
[12:28:00] Barbara Stark_web_639 joins the room
[12:29:03] Barbara Stark_web_639 leaves the room
[12:29:44] Jurgen Sonnenmoser_web_244 leaves the room
[12:30:52] <Yaron Sheffer_web_344> OAuth Security Workshop https://barcamps.eu/osw2021/
[12:30:58] fabien imbault_web_380 leaves the room
[12:31:15] fabien imbault_web_936 joins the room
[12:32:23] Olle Johansson_web_417 joins the room
[12:33:12] fabien imbault_web_936 leaves the room
[12:33:16] fabien imbault_web_666 joins the room
[12:54:41] <Olle Johansson_web_417> Hmm. These mitigations (when for Oauth) applies to SIP usage of OAuth too.
[12:55:07] <Olle Johansson_web_417> Is there a document available on mitigations for Oauth2? (Maybe wrong forum to ask :-) )
[12:56:14] <Pedram Hosseyni_web_931> How realistic is the second mitigation? E.g., when using mTLS Token Binding?
[12:59:05] <Yaron Sheffer_web_344> @Pedram, would you like to ask this question at the mic or should we channel you?
[12:59:26] <Pedram Hosseyni_web_931> sure, I can ask on the mic
[13:01:20] Shigeya Suzuki_web_450 leaves the room
[13:04:37] <Yaron Sheffer_web_344> Issue tracker: https://github.com/ietf-wg-gnap/gnap-core-protocol/issues
[13:13:00] <Leif Johansson_web_272> send some of that candy @kathleen
[13:15:34] <Kathleen Moriarty_web_722> Ha! I wish I could to get rid of it faster!
[13:15:42] <Olle Johansson_web_417> The SIP protocol is always interesting with the amount of proxys we use - some may be untrusted.
[13:15:47] <Kathleen Moriarty_web_722> Although a lot is disappearing now.
[13:16:47] <Leif Johansson_web_272> +1 on profiles with my chair hat off
[13:16:51] Greg Schumacher_web_465 leaves the room
[13:20:25] <Kathleen Moriarty_web_722> I hope that was helpful
[13:20:36] <fabien imbault_web_666> yes it is
[13:26:06] <Kathleen Moriarty_web_722> My opinion is to keep in the draft and not as a separate draft
[13:26:29] <Yaron Sheffer_web_344> +1, assuming one or both is MTI.
[13:31:07] <fabien imbault_web_666> See https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/134 for some discussion on this
[13:36:11] Kohei Isobe_web_122 leaves the room
[13:36:15] Kohei Isobe_web_888 joins the room
[13:44:56] <fabien imbault_web_666> attributes were discussed in https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/244
[13:45:06] <fabien imbault_web_666> (and many other issues)
[13:45:07] An Nguyen_web_621 joins the room
[13:45:59] Tadahiko Ito_web_508 joins the room
[13:47:25] <Justin Richer_web_565> There is not a precondition of the RS and AS knowing each other ahead of time, this was discussed here: https://github.com/ietf-wg-gnap/gnap-resource-servers/issues/8 (and a number of other issues)
[13:47:57] <fabien imbault_web_666> notice, choice, consent was discussed in https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/215, see last comment
[13:48:49] <Justin Richer_web_565> Opaque access tokens were discussed here: https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/145
[13:48:57] <fabien imbault_web_666> We have examples at the beginning of section 4, where RO != end-user
[13:49:50] Jaime Jimenez_web_204 joins the room
[13:49:50] <Justin Richer_web_565> We also have examples in the sequences and appendix where it's an automated process: https://www.ietf.org/archive/id/draft-ietf-gnap-core-protocol-08.html#name-software-only-authorization and https://www.ietf.org/archive/id/draft-ietf-gnap-core-protocol-08.html#name-no-user-involvement
[13:50:13] <Justin Richer_web_565> Another example where RO != End user is https://www.ietf.org/archive/id/draft-ietf-gnap-core-protocol-08.html#name-asynchronous-authorization-2
[13:50:19] <fabien imbault_web_666> Section 4 of draft 8 does indicate those trust relationships
[13:50:57] An Nguyen_web_621 leaves the room
[13:51:54] <Justin Richer_web_565> Nothing in the draft assumes single factor authentication
[13:52:10] Kohei Isobe_web_888 leaves the room
[13:52:14] Kohei Isobe_web_616 joins the room
[13:53:32] <fabien imbault_web_666> This was discussed at length in https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/322
[13:53:39] <Justin Richer_web_565> A subject identifier within an access token does not prevent it from being shared.
[13:54:32] Jaime Jimenez_web_204 leaves the room
[13:55:43] <Justin Richer_web_565> different subject identifiers within an access token would be appropriate for the token model discussion in the RS draft, not within the core protocol
[13:55:48] <Justin Richer_web_565> (and none of these prevent token sharing)
[13:56:55] Tadahiko Ito_web_508 leaves the room
[13:59:44] <Justin Richer_web_565> +1 fabien
[14:00:09] <Justin Richer_web_565> Thank you everyone!
[14:00:10] <fabien imbault_web_666> thank you
[14:00:13] Ken Takayama_web_432 leaves the room
[14:00:17] <Justin Richer_web_565> Thanks to Kathleen for taking notes!
[14:00:18] Peter Yee_web_730 leaves the room
[14:00:18] Olle Johansson_web_417 leaves the room
[14:00:19] Yaron Sheffer_web_344 leaves the room
[14:00:23] Michael Jenkins_web_256 leaves the room
[14:00:23] Leif Johansson_web_272 leaves the room
[14:00:24] Mark McFadden_web_648 leaves the room
[14:00:26] Kelley Burgin_web_634 leaves the room
[14:00:27] Pedram Hosseyni_web_931 leaves the room
[14:00:29] Karen Staley_web_256 leaves the room
[14:00:31] <Kathleen Moriarty_web_722> no problem
[14:00:51] Kathleen Moriarty_web_722 leaves the room
[14:00:54] Kohei Isobe_web_616 leaves the room
[14:01:02] Denis PINKAS_web_745 leaves the room
[14:01:04] fabien imbault_web_666 leaves the room
[14:01:05] Mary Barnes_web_701 leaves the room
[14:01:14] Lorenzo Miniero_web_539 leaves the room
[14:01:15] Natalie Ennis_web_482 leaves the room
[14:01:27] Tim Cappalli_web_867 leaves the room
[14:01:29] Florian Helmschmidt_web_714 leaves the room
[14:01:34] Alessandro Toppi_web_640 leaves the room
[14:01:47] Justin Richer_web_565 leaves the room
[14:02:17] Roman Danyliw_web_642 leaves the room
[14:02:17] Bron Gondwana_web_857 leaves the room
[14:02:33] Meetecho leaves the room
[14:06:11] alexamirante leaves the room