[Openid-specs-ab] Spec call notes 21-Jan-13
Mike Jones
Michael.Jones at microsoft.com
Tue Jan 22 00:03:41 UTC 2013
Spec call notes 21-Jan-13
John Bradley
Mike Jones
Brian Campbell
Nat Sakimura
Agenda:
Open Issues
Implementer's Drafts Work Status
Open Issues:
#655 - All - Specify UTF-8 as encoding scheme whenever necessary
Need to specify encoding for UserInfo endpoint
request_file can be ASCII
#675 - Registration - Track and profile OAuth2 Dynamic Client Registration
Now a note to implementers in the spec
#703 - Key publication needs to be reworked (x509_url and jwk_url)
There currently isn't parity of functionality between JWK and X.509
This may actually be at least partially a JOSE issue
However it is happening at discovery/registration time rather than token issuance time
Brian will write up how key rollover scenarios would work with each of the proposals and then send it to the list
#704 - Provide key rollover guidance
Key rollover is difficult in X.509 because only one key can be referenced
Brian will write up how key rollover scenarios would work with each of the proposals and then send it to the list
#705: Move Discovery from SWD to WebFinger
Doing this now will avoid the need for breaking changes later
auth_time referenced in Basic and Implicit but not defined there
John is adding the definition to these specs
Implementer's Drafts Work Status:
John is down to just writing security considerations
Mike is down to just #655 and now #705
Mike plans to publish a release candidate in a day or so
We can evaluate on the Thursday call whether to declare the release candidate versions to be the Implementer's Draft versions
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20130122/8257371a/attachment.html>
More information about the Openid-specs-ab
mailing list