[Openid-specs-ab] Fwd: New Version Notification for draft-hunt-idevent-token-02.txt

Phil Hunt phil.hunt at oracle.com
Thu Aug 11 21:52:22 UTC 2016


This is an updated draft and contains a lot of the items from the discussion today.

Based on feedback from OpenID RISC and Connect WG calls, I have moved the “sub” in the examples to the event extension area. This allows each event spec to decide how they define or address a subject. It also avoids conflicts around “iss” when the event issuer is not the namespace of the “sub” claim.

The examples now show a consistent parsing pattern where the top level of the JSON structure is essentially an “envelope” that describes and validates the event from a publisher to a subscriber, and the nested JSON objects are the “payload” for the event.

The spec has been renamed to Security Event Token as part of making the terminology more consistent and to reflect that some events are not specifically about identity but are about other related things like IP addresses, sessions, tokens, web resources etc.

I recognize we don’t yet have consensus on this draft, but I’ve gone ahead and published draft 02 so the broader community can compare draft 02 with draft 01 to see the differences in event formats.  I expect to see more changes as the discussion continues.

Phil

@independentid
www.independentid.com <http://www.independentid.com/>phil.hunt at oracle.com <mailto:phil.hunt at oracle.com>





> Begin forwarded message:
> 
> From: internet-drafts at ietf.org
> Subject: New Version Notification for draft-hunt-idevent-token-02.txt
> Date: August 11, 2016 at 1:25:50 PM PDT
> To: "William Denniss" <wdenniss at google.com>, "Phil Hunt" <phil.hunt at yahoo.com>, "Morteza Ansari" <morteza.ansari at cisco.com>
> 
> 
> A new version of I-D, draft-hunt-idevent-token-02.txt
> has been successfully submitted by Phil Hunt and posted to the
> IETF repository.
> 
> Name:		draft-hunt-idevent-token
> Revision:	02
> Title:		Security Event Token (SET)
> Document date:	2016-08-11
> Group:		Individual Submission
> Pages:		15
> URL:            https://www.ietf.org/internet-drafts/draft-hunt-idevent-token-02.txt
> Status:         https://datatracker.ietf.org/doc/draft-hunt-idevent-token/
> Htmlized:       https://tools.ietf.org/html/draft-hunt-idevent-token-02
> Diff:           https://www.ietf.org/rfcdiff?url2=draft-hunt-idevent-token-02
> 
> Abstract:
>   This specification defines the Security Event token which may be
>   distributed via a protocol such as HTTP.  A Security Event Token
>   (SET) is based on the JSON Web Token and may be optionally signed
>   and/or encrypted.  A SET describes a statement of fact that may be
>   shared by an event publisher with registered subscribers.
> 
> 
> 
> 
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
> 
> The IETF Secretariat
> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20160811/c139829f/attachment.html>


More information about the Openid-specs-ab mailing list