<div dir="ltr"><h1 class="gmail-title" style="margin:0px 0px 10px;padding:0px;color:rgb(23,43,77);font-size:24px;font-weight:400;line-height:1.25;letter-spacing:-0.01em;font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif">OpenID AB/Connect Call Note (2019-08-29)</h1><p style="margin:12px 0px 0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px">Date: 2019-08-29 15:00 UTC</p><p style="margin:12px 0px 0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px">Location: GoToMeeting <a class="gmail-reference external" href="https://www3.gotomeeting.com/join/695548174" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">https://www3.gotomeeting.com/join/695548174</a></p><div class="gmail-contents gmail-topic" id="gmail-rst-header-agenda" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><p class="gmail-topic-title gmail-first" style="margin:0px;padding:0px">Agenda</p><ul class="gmail-auto-toc gmail-simple" style="margin:12px 0px 0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2019-08-29_Atlantic#rst-header-roll-call" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">1.   Roll Call</a></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2019-08-29_Atlantic#rst-header-adoption-of-the-agenda" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">2.   Adoption of the agenda</a></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2019-08-29_Atlantic#rst-header-reciprocal-oauth-george" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">3.   Reciprocal OAuth (George)</a></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2019-08-29_Atlantic#rst-header-native-sso-and-related-use-cases-george" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">4.   Native SSO and related use-cases (George)</a></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2019-08-29_Atlantic#rst-header-aob" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">5.   AOB</a></li></ul></div><p style="margin:12px 0px 0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px">The meeting was called to order at 15:08 UTC.</p><div class="gmail-section" id="gmail-rst-header-roll-call" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2019-08-29_Atlantic#rst-header-id1" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">1.   Roll Call</a></h2><ul class="gmail-simple" style="margin:12px 0px 0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;">Present: Nat, George, Brian</li><li style="margin:0px">Regret:</li></ul></div><div class="gmail-section" id="gmail-rst-header-adoption-of-the-agenda" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2019-08-29_Atlantic#rst-header-id2" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">2.   Adoption of the agenda</a></h2><ul class="gmail-simple" style="margin:12px 0px 0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;">Since draft agenda was not sent out, the following topics were dealt with.</li></ul></div><div class="gmail-section" id="gmail-rst-header-reciprocal-oauth-george" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2019-08-29_Atlantic#rst-header-id3" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">3.   Reciprocal OAuth (George)</a></h2><p style="margin:12px 0px 0px;padding:0px">Reciprocal OAuth is going to the last call soon. We should do careful read and give feedback.</p></div><div class="gmail-section" id="gmail-rst-header-native-sso-and-related-use-cases-george" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2019-08-29_Atlantic#rst-header-id4" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">4.   Native SSO and related use-cases (George)</a></h2><p style="margin:12px 0px 0px;padding:0px">The situation around the browser etc. has changed a lot since we did AppAuth pattern, e.g., samesite=lax and ITP2. It seems to be a good time to re-collect the use-cases and evaluate what breaks. George has started a slide deck to be used at the OpenID Workshop before IIW. It is still just an outline but he will share it with people who wants to fill in.</p><p style="margin:12px 0px 0px;padding:0px">Some of the use cases that were discussed in the calls include:</p><ul class="gmail-simple" style="margin:12px 0px 0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;">Hybrid-App (Native App + Server side): Whether to start the flow from the Native App or Server Side.</li><li style="margin:0px">Minimum privilege Access Token v.s. Wider-scope but sender constrained AT through Dynamic Client Registration.</li><li style="margin:0px">Form Post and samesite=lax</li><li style="margin:0px">App to App token passing within the same developer.</li><li style="margin:0px">App to App token passing among the apps from different developers.</li></ul></div><div class="gmail-section" id="gmail-rst-header-aob" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2019-08-29_Atlantic#rst-header-id5" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">5.   AOB</a></h2><p style="margin:12px 0px 0px;padding:0px">The call closed at 15:38 UTC</p></div><div><br></div>-- <br><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature">Nat Sakimura (=nat)<div>Chairman, OpenID Foundation<br><a href="http://nat.sakimura.org/" target="_blank">http://nat.sakimura.org/</a><br>@_nat_en</div></div></div>