[Openid-specs-authzen] Agenda for Aug 28th

[gerry gebel]

Hi Jeff

The meeting notes file is here: https://hackmd.io/9hWzEn1xQz6CLuOFD3ZNMQ

We did talk briefly about the IDP interop scenario and the current version
of that document is here: https://hackmd.io/@oidf-wg-authzen/idp-integration
- there are actually 2 patterns for how to construct the token:
1) boxcar request
2) search request
This implementation doc definitely needs much more work before we can share
it with potential implementers and we can add it to the agenda for today,
time permitting

Regards,
Gerry



On Thu, Aug 28, 2025 at 10:07 AM Lombardo, Jeff <jeffsec at amazon.com> wrote:

> Thanks Gerry.
>
> I did not see in the past meeting notes from my quick review discussions
> about, sorry if I missed it,:
>
> Gartner Interop / focus on profiling two IDP -> PDP interaction patterns:
>
>    1. IDP makes an “evaluation” call to determine whether a subject can
>    access an application
>    2. IDP makes a resource search call to determine what groups the
>    subject is a member of, and issue an access token that contains a claim
>    containing the list of groups.
>
>
>
> Did this happen?
> - If yes: could point me to the meeting notes for that please?
> - If no: when is this topic discussion planned to happen? Is it too early
> to start the discussion?
>
>
>
> Appreciated
>
>
>
> Jeff
>
>
>
>
>
> *Jean-François “Jeff” Lombardo* | Amazon Web Services
>
>
>
> Architecte Principal de Solutions, Spécialiste de Sécurité
> Principal Solution Architect, Security Specialist
> Montréal, Canada
>
> ( +1 514 778 5565
>
> *Commentaires à propos de notre échange? **Exprimez-vous **ici*
> <https://urldefense.com/v3/__https:/feedback.aws.amazon.com/?ea=jeffsec&fn=Jean*20Francois&ln=Lombardo__;JQ!!Pe07N362zA!0k9CkAV8Djpw_8EfIAKrbhP3TQrJr0oMnznlUgBJ3V3NoEk6hihx7dNHnQuejn6SSH2CP8Iow3G-tTzppHeg$>
> *.*
>
>
>
> *Thoughts on our interaction? Provide feedback **here*
> <https://urldefense.com/v3/__https:/feedback.aws.amazon.com/?ea=jeffsec&fn=Jean*20Francois&ln=Lombardo__;JQ!!Pe07N362zA!0k9CkAV8Djpw_8EfIAKrbhP3TQrJr0oMnznlUgBJ3V3NoEk6hihx7dNHnQuejn6SSH2CP8Iow3G-tTzppHeg$>
> *.*
>
>
>
> *From:* Openid-specs-authzen <
> openid-specs-authzen-bounces at lists.openid.net> *On Behalf Of *gerry gebel
> via Openid-specs-authzen
> *Sent:* August 28, 2025 9:44 AM
> *To:* AuthZEN Working Group List <openid-specs-authzen at lists.openid.net>
> *Cc:* gerry gebel <ggebel at gmail.com>
> *Subject:* [EXT] [Openid-specs-authzen] Agenda for Aug 28th
>
>
>
> *CAUTION*: This email originated from outside of the organization. Do not
> click links or open attachments unless you can confirm the sender and know
> the content is safe.
>
>
>
> *AVERTISSEMENT*: Ce courrier électronique provient d’un expéditeur
> externe. Ne cliquez sur aucun lien et n’ouvrez aucune pièce jointe si vous
> ne pouvez pas confirmer l’identité de l’expéditeur et si vous n’êtes pas
> certain que le contenu ne présente aucun risque.
>
>
>
> Hi all
>
>
>
> Thanks to those who commented or submitted pull requests since last week!
> Here is our proposed agenda for today:
>
>
>
> ·  Review open issues (much progress last week, but 11 remain)
>
> ·  Review pull requests (3 new updates)
>
> ·
>
> ·  Talk to you soon,
>
> ·  Gerry
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-authzen/attachments/20250828/54586304/attachment.htm>