[Openid-specs-authzen] Meeting minutes from the February 06th 2024 call

Tue Feb 6 22:06:15 UTC 2024

Dear all,

Thanks to everyone who attended. Here are the notes from today's meeting

All meeting minutes can be found here:
https://github.com/openid/authzen/wiki/Meetings
Feb 06th 2024: https://hackmd.io/@oidf-wg-authzen/wg-meeting-20240206

Agenda

   - Demo App Overview: @omri <https://hackmd.io/@omri>
   - Interop Document: @xmlgrrl <https://hackmd.io/@xmlgrrl>
   - Use cases & request/message format
   - Auth0's Andres Aguiar would like to present OpenFGA in the context of
   our prior art series
   - @alexbabeanu <https://hackmd.io/@alexbabeanu>'s white paper suggestion
   - @davidbrossard <https://hackmd.io/@davidbrossard> still working on the
   API rework
   - Conference Updates
      - AuthZEN panel accepted at EIC (@omri <https://hackmd.io/@omri> is
      the lead)
      - No news from Identiverse yet
      - CRA/Identiverse webinar organized via Heather Flanagan. The webinar
      will be recorded on 2/15 and published on 2/22.

<https://hackmd.io/@oidf-wg-authzen/wg-meeting-20240206#Demo-App>Demo App

[image: image]

   - Stock React app with different backend languages
   - Rick & Morty protagonists
   - Morty is an editor
      - He can create and edit his own todos
   - Rick is an evil genius
      - He can do everything
      - He can delete other people's todos
   - Jerry
      - Jerry cannot view other stuff
   - repo for the typescript todo backend:
   https://github.com/ogazitt/todo-node-js
   - repo for the React frontend:
   https://github.com/aserto-demo/todo-application

<https://hackmd.io/@oidf-wg-authzen/wg-meeting-20240206#Interop-Use-Cases>Interop
Use Cases

   - AuthZEN Interop Scenarios
   <https://hackmd.io/@oidf-wg-authzen/InteropScenarios>
   - @eaz <https://hackmd.io/@eaz> offers to be the vendor-neutral party.
   @HEYeftZsRoKWZN2WjscpGA <https://hackmd.io/@HEYeftZsRoKWZN2WjscpGA> (Disney)
   is another option.
   - We have use cases where authorization is service-to-service … no user
   …. Applies in multi-tenancy platforms. Can this service run this job on
   this platform?
   -

<https://hackmd.io/@oidf-wg-authzen/wg-meeting-20240206#Housekeeping>
Housekeeping

We need to use the mailing list as our primary tool. Everything else
(github, hackmd, slack) is secondary. This means the note taker for a given
meeting needs to send the minutes (and links to the minutes) when the call
ends.
Let's use a naming convention for meeting minutes:

   - file name: Meeting Minutes 2024-02-06
   - URL: wg-meeting-20240206

Reminder: meeting minutes are linked to from our github Wiki site
<https://github.com/openid/authzen/wiki>.
<https://hackmd.io/@oidf-wg-authzen/wg-meeting-20240206#Notes>Notes

   - OpenID Whitepaper output: @alexbabeanu <https://hackmd.io/@alexbabeanu> is
   suggesting we publish our findings on authorization design patterns.
      - Alex will set up meetings to garner volunteers to work on the
      content

<https://hackmd.io/@oidf-wg-authzen/wg-meeting-20240206#Links-to-previous-recordings>Links
to previous recordings

Mike L. shared links to previous recordings:

   - 1/25/24: Link
   <https://zoom.us/rec/share/uFCr6E8v-Gi5jm5BrwUY6_kYPJif0B2nuAc97UhT4Hi9YSIOzN_8V0zO20yZHVk3.hWy-SBBw8_PAhEtp>
      - Passcode: Y$y6f+9e
   - 1/23/24: Link
   <https://zoom.us/rec/share/JNsHSqIinwefiPCoU0h8gLjlvG99EkWNRd-vbfw5ThHd3_WGE2SoXiCEyGCYQ7db.XubNKrcYJws6HoeS>
      - Passcode: q^Q*=U9R
   - 1/19/24: Link
   <https://zoom.us/rec/share/BA44spV3IS5iRt7Xxlcpn0a48mVrX-UJnMj2eX23IuimSEL4pFewpDxmLbdF5nfl.Ba_S3sGcHy2a9GZ6>
      - Passcode: ^7C+5.?+
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-authzen/attachments/20240206/7a32e1b3/attachment-0001.html>