<div dir="ltr">I just added a note to 1293 that said a milestone labeled 1.1 (or whatever) should be added and this issue assigned to it.<br clear="all"><div><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><span style="background-color:rgb(242,242,242);color:rgba(0,0,0,0.9);font-family:-apple-system,system-ui,system-ui,"Segoe UI",Roboto,"Helvetica Neue","Fira Sans",Ubuntu,Oxygen,"Oxygen Sans",Cantarell,"Droid Sans","Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Lucida Grande",Helvetica,Arial,sans-serif;font-size:14px;white-space:pre-wrap">Be the change you want to see in the world </span>..tom</div></div></div></div><br></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, Feb 5, 2024 at 5:01 PM Nat Sakimura via Openid-specs-ab <<a href="mailto:openid-specs-ab@lists.openid.net">openid-specs-ab@lists.openid.net</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr">=================================================<br>OpenID AB/Connect WG Meeting Notes (2024-02-05)<br>=================================================<br>* Date & Time: 2024-02-05 23:00 UTC<br>* Location: <a href="https://zoom.us/j/97622169761?pwd=ek5kZUg3QnI1cCt6bTE3QzA3ZVlOQT09" target="_blank">https://zoom.us/j/97622169761?pwd=ek5kZUg3QnI1cCt6bTE3QzA3ZVlOQT09</a><div>* Self: <a href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2024-02-05_Pacific" target="_blank">https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2024-02-05_Pacific</a></div><div><br>1.   Roll Call</div><div>============</div><div>Attendees: Aaron, Mark Verstege, Edmund Jay, David Waite, Nat Sakimura, Tom Jones, Dima Postnikov </div><div>Regrets: Mike Jones<br><br>2.   Events</div><div>===========</div><div>2.1.   OAuth Security Workshop 2024</div><div>------------------------------------------------------<br>Submissions are open.<br><br>Deadline: 11th February for early submissions.<br><br><a href="https://oauth.secworkshop.events/osw2024" target="_blank">https://oauth.secworkshop.events/osw2024</a><br><br>The next deadline is March 10 for submissions.<br><br>2.2.   OpenID Foundation Workshop</div><div>------------------------------------------------------<br>April 15 @ Google. Details to be published this week.<br><br>3.   Liaisons</div><div>==========<br>N/A<br><br>4.   PRs</div><div>==========<br>Merged following PRs * <a href="https://bitbucket.org/openid/connect/pull-requests/692" target="_blank">https://bitbucket.org/openid/connect/pull-requests/692</a> * <a href="https://bitbucket.org/openid/connect/pull-requests/693" target="_blank">https://bitbucket.org/openid/connect/pull-requests/693</a> * <a href="https://bitbucket.org/openid/connect/pull-requests/694" target="_blank">https://bitbucket.org/openid/connect/pull-requests/694</a><br><br>The following conflicts<br><br><a href="https://bitbucket.org/openid/connect/pull-requests/695" target="_blank">https://bitbucket.org/openid/connect/pull-requests/695</a><div><br>5.  Issues</div><div>==========<br>Opened the following issues:<br><br><a href="https://bitbucket.org/openid/connect/issues/2108/track-national-identity-schems-that-uses" target="_blank">https://bitbucket.org/openid/connect/issues/2108/track-national-identity-schems-that-uses</a><br><a href="https://bitbucket.org/openid/connect/issues/2111/federation-location-and-scope-of" target="_blank">https://bitbucket.org/openid/connect/issues/2111/federation-location-and-scope-of</a><br><a href="https://bitbucket.org/openid/connect/issues/2112/syntax-error-in-trust-mark-request-example" target="_blank">https://bitbucket.org/openid/connect/issues/2112/syntax-error-in-trust-mark-request-example</a><br><a href="https://bitbucket.org/openid/connect/issues/2113/specify-private_key_jwt-as-the-default" target="_blank">https://bitbucket.org/openid/connect/issues/2113/specify-private_key_jwt-as-the-default</a><br><a href="https://bitbucket.org/openid/connect/issues/2114/client-authentication-and-the-federation" target="_blank">https://bitbucket.org/openid/connect/issues/2114/client-authentication-and-the-federation</a><br><a href="https://bitbucket.org/openid/connect/issues/2110/federation-multiple-entity_type-at-the" target="_blank">https://bitbucket.org/openid/connect/issues/2110/federation-multiple-entity_type-at-the</a><br><a href="https://bitbucket.org/openid/connect/issues/2078/federation-specify-the-applicable-json" target="_blank">https://bitbucket.org/openid/connect/issues/2078/federation-specify-the-applicable-json</a><br>Questions regarding the AS requirement on POST came up.<br><br><a href="https://gitlab.com/openid/conformance-suite/-/issues/1293" target="_blank">https://gitlab.com/openid/conformance-suite/-/issues/1293</a></div><div><br>In 3.1.2.1 of OIDC Core, it says:<br><br>Authorization Servers MUST support the use of the HTTP GET and POST methods defined in RFC 7231 [RFC7231] at the Authorization Endpoint.</div><div><br>However, the current test suite does not test the support of POST. It was suggested that it should be added. Now that 3rd party cookie restriction is kicking in, the POST is becoming obsolete. It was suggested that perhaps we should remove the requirement. Tom will add an issue on this. Separately, Aaron will create an issue to align to OAuth 2.1.<br><br>The call adjourned at 23:52 UTC.<br></div></div></div>
_______________________________________________<br>
Openid-specs-ab mailing list<br>
<a href="mailto:Openid-specs-ab@lists.openid.net" target="_blank">Openid-specs-ab@lists.openid.net</a><br>
<a href="https://lists.openid.net/mailman/listinfo/openid-specs-ab" rel="noreferrer" target="_blank">https://lists.openid.net/mailman/listinfo/openid-specs-ab</a><br>
</blockquote></div>