[Openid-specs-ab] Lite Draft 8

George Fletcher gffletch at aol.com
Fri Aug 12 20:29:22 UTC 2011 

I've attached a pdf of with my comments on Lite draft 8. It appears that 
some of these were discussed on the call yesterday. Please ignore those 
if a resolution has been reached.

Thanks,
George

On 8/11/11 2:57 PM, John Bradley wrote:
> Updated lite.
>
> The introspection endpoint is renamed to be consistent with session management.  I think the name is clearer for the function.
>
> Per my discussion with Breno I made it clear that it is a OAuth 2 protected resource per the spec and not something special.
>
> That required removing the text about it being possible to overload it on the token endpoint.  That probably is not a good idea as they now have different security.
>
> I referenced session management and the full spec to redirect people to there for a fuller explanation.
>
> PPID is only mentioned in security considerations.
> We should discuss if it should be in the lite spec.
> Some IdP will use PPID by default.  I think a discussion of how that should be calculated needs to be included otherwise RP will be surprised if they change something and all the user_id change.
>
> I may only make the first part of the call.  I have a 6:20 flight.
>
> John B.
>
>
> _______________________________________________
> Openid-specs-ab mailing list
> Openid-specs-ab at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs-ab

-- 
Chief Architect                   AIM:  gffletch
Identity Services Engineering     Work: george.fletcher at teamaol.com
AOL Inc.                          Home: gffletch at aol.com
Mobile: +1-703-462-3494           Blog: http://practicalid.blogspot.com
Office: +1-703-265-2544           Twitter: http://twitter.com/gffletch

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20110812/1d8c5f88/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenID Connect Lite 1.0 - draft 08 -gff.pdf
Type: application/pdf
Size: 870829 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20110812/1d8c5f88/attachment.pdf>

More information about the Openid-specs-ab mailing list