- Monday, November 5, 2018

oauth@jabber.ietf.org

Monday, November 5, 2018< ^ >

Ludwig has set the subject to: OAUTH at IETF101 https://datatracker.ietf.org/meeting/101/session/oauth

Room Configuration

Room Occupants

GMT+0
[00:44:16] metricamerica joins the room
[01:49:07] sSC94ehV joins the room
[01:51:39] Meetecho joins the room
[01:55:10] Lorenzo Miniero joins the room
[01:55:11] Kaoru Maeda joins the room
[01:55:37] Justin Richer joins the room
[01:57:28] m&m joins the room
[01:58:42] metricamerica leaves the room
[01:59:02] m&m has set the subject to: OAUTH at IETF103 https://datatracker.ietf.org/meeting/103/session/oauth
[01:59:28] Aaron Parecki joins the room
[02:00:07] kaduk@jabber.org/barnowl joins the room
[02:00:22] <m&m> Hello all! I'll be your Jabber relay today. If you have questions, please preface them with "mic:"
[02:01:22] <Justin Richer> (Y)
[02:01:45] Emile Stephan joins the room
[02:02:51] metricamerica joins the room
[02:05:16] <Aaron Parecki> mic: apologies for not submitting this sooner, but I have another one prepared for consideration: https://tools.ietf.org/html/draft-parecki-oauth-browser-based-apps-00
[02:05:23] Emile Stephan leaves the room
[02:05:49] <Aaron Parecki> https://datatracker.ietf.org/doc/draft-parecki-oauth-browser-based-apps/
[02:08:17] <kaduk@jabber.org/barnowl> Aaron and chairs should talk to meetecho about getting set up as a
remote presenter if there's going to be an actual presentation
[02:08:35] <kaduk@jabber.org/barnowl> (tomorrow, not today, if meetecho is listening)
[02:08:45] <Meetecho> We're only aware of Omer Levi Hevroni for today
[02:09:09] <Meetecho> If anything needs to happen tomorrow as well, please add the presenter info on our form
[02:09:12] <kaduk@jabber.org/barnowl> Yeah, this is apparently a new thing as of just now, but maybe 1 day
of lead time is doable
[02:09:20] <Meetecho> http://ietf103.conf.meetecho.com/index.php/Ask_Remote_Presentations_Support
[02:09:42] <m&m> "Please stand by"
[02:09:43] <Meetecho> If you add the speaker there we'll start sending mails
[02:10:19] <m&m> Brian Campbell - draft-ietf-oauth-token-binding (https://datatracker.ietf.org/meeting/103/materials/slides-103-oauth-sessb-draft-ietf-oauth-token-binding-00)
[02:10:37] <Justin Richer> Hannes, Please fullscreen that for remote participants
[02:11:00] <Justin Richer> We need all the pixels we can get :)
[02:11:50] <Justin Richer> Thanks!
[02:15:35] Lawrence Muchilwa joins the room
[02:19:35] Yisong Liu joins the room
[02:20:43] Aaron Parecki leaves the room
[02:25:05] <m&m> Torsten at mic
[02:26:11] Aaron Parecki joins the room
[02:26:43] <m&m> Mike Jones at mic
[02:26:59] Yisong Liu leaves the room
[02:27:02] Lorenzo Miniero leaves the room
[02:27:09] Lorenzo Miniero joins the room
[02:27:14] Lawrence Muchilwa leaves the room
[02:28:12] <m&m> John Bradley at mic
[02:29:20] Lawrence Muchilwa joins the room
[02:31:11] <m&m> Torsten at mic
[02:32:55] <m&m> Ben Kaduk at mic
[02:33:44] <m&m> Dick Hardt at mic
[02:35:14] Banthita Limwilai joins the room
[02:36:49] Banthita Limwilai leaves the room
[02:37:15] <m&m> Lucy Linch at mic
[02:37:51] Hiromitsu Homma joins the room
[02:37:52] <m&m> John Bradley at mic
[02:39:05] <kaduk@jabber.org/barnowl> (not mic) I mean, TLS implementations ought to support EKM eventually
anyway; there are lots of good uses for it...
[02:40:09] Hiromitsu Homma leaves the room
[02:40:26] <Justin Richer> (not mic) Visual Basic support isn't the best indicator of adoption.....
[02:40:52] <m&m> Torsten at mic
[02:42:09] <m&m> Annabell at mic
[02:42:50] Dapeng Liu joins the room
[02:44:34] Aaron Parecki leaves the room
[02:45:45] <m&m> Torsten at mic
[02:46:04] hhomma joins the room
[02:47:24] <m&m> Dick Hardt at mic
[02:50:14] <m&m> Tortsen Lodderstedt - draft-ietf-security-topis ( https://datatracker.ietf.org/meeting/103/materials/slides-103-oauth-sessb-draft-ietf-oauth-security-topics-01 )
[02:51:10] Aaron Parecki joins the room
[02:57:35] <m&m> Annabell at mic
[02:57:38] <Justin Richer> mic: I support this.
[02:58:06] <Justin Richer> To add: Torsten's point goes even further. You can set headers in JS now and a bunch of other things.
[02:58:35] <Justin Richer> :fire:
[02:58:40] <Justin Richer> this needs fire emojis
[02:58:43] <Aaron Parecki> mic: +1 the new draft which I can present tomorrow recommends dropping the implicit grant as well
[02:58:43] <m&m> John Bradley at mic
[02:58:54] <Justin Richer> 🔥
[02:59:00] Pitinan Kooarmornpatana joins the room
[03:00:15] <Justin Richer> mic: I would say that we should also get rid of the OIDC hybrid response types in favor of JARM which we'll learn about shortly.
[03:00:31] <m&m> Ben Kaduk at mic
[03:01:00] <m&m> Brian Campbell at mic
[03:01:01] Steve Olshansky joins the room
[03:01:31] <m&m> Mike Jones at mic
[03:02:15] Meetecho leaves the room
[03:02:18] <Justin Richer> hummmmmm
[03:02:28] <Justin Richer> (in favor)
[03:02:41] Meetecho joins the room
[03:02:48] <Justin Richer> (y)
[03:03:32] <m&m> Torsten Lodderstadt - draft-ietf-oauth-jwt-introspection-response ( https://datatracker.ietf.org/meeting/103/materials/slides-103-oauth-sessb-draft-ietf-oauth-jwt-introspection-response-00 )
[03:08:50] <Justin Richer> mic: RFC7662 (introspection) requires RS authentication but is hand-wavy about it, this draft will need to be clear that encrypting results to a key fulfills that
[03:08:57] <m&m> Jim Schaad at mic
[03:13:43] <m&m> Annabell at mic
[03:14:57] <m&m> Mike Jones at mic
[03:15:18] Steve Olshansky leaves the room: Replaced by new connection
[03:15:29] <kaduk@jabber.org/barnowl> (Annabelle with an 'e', I think)
[03:15:36] Steve Olshansky joins the room
[03:15:48] <m&m> ta
[03:15:50] <Justin Richer> mic: (unless Torsten covers it), this is for back-channel, JARM is for front channel.
[03:17:00] <m&m> Brian at mic
[03:17:53] <m&m> Torsten Lodderstadt ( https://datatracker.ietf.org/meeting/103/materials/slides-103-oauth-sessb-openid-financial-api-jarm-wd-01 )
[03:21:50] <m&m> Annabelle at mic
[03:27:40] Aaron Parecki leaves the room
[03:28:44] <Justin Richer> mic: I'm not against this work coming to the group, but I would like to generally ask us all: How much of SOAP are we going to re-invent before we admit that we're bastardizing HTTP in horrible ways?
[03:28:58] <Justin Richer> (apologies to M&M for any arrows flung to the messenger)
[03:31:33] <m&m> Mike Jones at mic
[03:31:51] <Justin Richer> thank you matt, well handled :)
[03:33:05] <m&m> Annebelle at mic
[03:34:11] <m&m> Mike Jones at mi
[03:35:09] <m&m> Brian Campbell at mic
[03:38:13] <m&m> Mike Jones at mic
[03:41:14] <m&m> Hannes Tschofenig ( https://datatracker.ietf.org/meeting/103/materials/slides-103-oauth-sessb-draft-ietf-oauth-pop-key-distribution-00 )
[03:44:53] <m&m> Jim Schaad at mic
[03:46:04] <m&m> Mike Jones at mic
[03:46:34] Steve Olshansky leaves the room: Replaced by new connection
[03:46:41] <m&m> Jim at mic
[03:46:51] Steve Olshansky joins the room
[03:48:38] Steve Olshansky leaves the room: Replaced by new connection
[03:48:49] Steve Olshansky joins the room
[03:50:32] Steve Olshansky leaves the room
[03:51:02] hhomma leaves the room: Connection failed: connection closed
[03:53:20] Pitinan Kooarmornpatana leaves the room
[03:54:03] metricamerica leaves the room
[03:54:24] Kaoru Maeda leaves the room
[03:54:45] Lawrence Muchilwa leaves the room
[03:54:45] Justin Richer leaves the room
[03:54:45] Lorenzo Miniero leaves the room
[03:54:46] Dapeng Liu leaves the room
[03:55:13] Steve Olshansky joins the room
[03:55:41] Meetecho leaves the room
[03:57:58] Steve Olshansky leaves the room
[04:00:25] kaduk@jabber.org/barnowl leaves the room
[04:14:01] m&m leaves the room: Disconnected: No route to host
[04:20:11] m&m joins the room
[04:43:28] Steve Olshansky joins the room
[04:45:47] Steve Olshansky leaves the room
[04:46:19] Steve Olshansky joins the room
[04:50:14] hhomma joins the room
[04:58:19] hhomma leaves the room: Connection failed: connection closed
[05:00:34] Steve Olshansky leaves the room
[05:01:58] Steve Olshansky joins the room
[05:09:21] Steve Olshansky leaves the room
[05:40:45] m&m leaves the room: Disconnected: No route to host
[06:16:22] Steve Olshansky joins the room
[06:19:20] Steve Olshansky leaves the room: Replaced by new connection
[06:19:30] Steve Olshansky joins the room
[06:45:01] Steve Olshansky leaves the room
[06:55:15] Steve Olshansky joins the room
[07:07:37] m&m joins the room
[07:07:51] m&m leaves the room
[07:13:40] Steve Olshansky leaves the room: Replaced by new connection
[07:13:59] Steve Olshansky joins the room
[07:20:06] Steve Olshansky leaves the room: Replaced by new connection
[07:20:29] Steve Olshansky joins the room
[07:25:33] Steve Olshansky leaves the room
[07:52:04] Steve Olshansky joins the room
[07:58:19] Steve Olshansky leaves the room: Replaced by new connection
[07:58:37] Steve Olshansky joins the room
[08:41:49] Steve Olshansky leaves the room
[10:45:55] Steve Olshansky joins the room
[11:17:26] Steve Olshansky leaves the room
[11:35:16] Steve Olshansky joins the room
[11:41:13] Steve Olshansky leaves the room
[20:27:24] Steve Olshansky joins the room
[20:32:57] Steve Olshansky leaves the room

Powered by ejabberd - robust, scalable and extensible XMPP server