[Openid-specs-authzen] Agenda for Aug 28th
Lombardo, Jeff
jeffsec at amazon.com
Thu Aug 28 18:26:30 UTC 2025
Thanks, I saw the agenda item on the 21st but as there were no notes, I was not sure.
I have made comments on the Slack about it and, if we have time, I would like to hear the hum of the group on it if possible
Ref: https://oidf.slack.com/archives/C0630873JGK/p1755899307096089?thread_ts=1754588095.990599&cid=C0630873JGK
Jean-François “Jeff” Lombardo | Amazon Web Services
Architecte Principal de Solutions, Spécialiste de Sécurité
Principal Solution Architect, Security Specialist
Montréal, Canada
( +1 514 778 5565
Commentaires à propos de notre échange? Exprimez-vous ici<https://urldefense.com/v3/__https:/feedback.aws.amazon.com/?ea=jeffsec&fn=Jean*20Francois&ln=Lombardo__;JQ!!Pe07N362zA!0k9CkAV8Djpw_8EfIAKrbhP3TQrJr0oMnznlUgBJ3V3NoEk6hihx7dNHnQuejn6SSH2CP8Iow3G-tTzppHeg$>.
Thoughts on our interaction? Provide feedback here<https://urldefense.com/v3/__https:/feedback.aws.amazon.com/?ea=jeffsec&fn=Jean*20Francois&ln=Lombardo__;JQ!!Pe07N362zA!0k9CkAV8Djpw_8EfIAKrbhP3TQrJr0oMnznlUgBJ3V3NoEk6hihx7dNHnQuejn6SSH2CP8Iow3G-tTzppHeg$>.
From: gerry gebel <ggebel at gmail.com>
Sent: August 28, 2025 10:45 AM
To: Lombardo, Jeff <jeffsec at amazon.com>
Cc: AuthZEN Working Group List <openid-specs-authzen at lists.openid.net>
Subject: RE: [EXT] [Openid-specs-authzen] Agenda for Aug 28th
CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you can confirm the sender and know the content is safe.
AVERTISSEMENT: Ce courrier électronique provient d’un expéditeur externe. Ne cliquez sur aucun lien et n’ouvrez aucune pièce jointe si vous ne pouvez pas confirmer l’identité de l’expéditeur et si vous n’êtes pas certain que le contenu ne présente aucun risque.
Hi Jeff
The meeting notes file is here: https://hackmd.io/9hWzEn1xQz6CLuOFD3ZNMQ
We did talk briefly about the IDP interop scenario and the current version of that document is here: https://hackmd.io/@oidf-wg-authzen/idp-integration
- there are actually 2 patterns for how to construct the token:
1) boxcar request
2) search request
This implementation doc definitely needs much more work before we can share it with potential implementers and we can add it to the agenda for today, time permitting
Regards,
Gerry
On Thu, Aug 28, 2025 at 10:07 AM Lombardo, Jeff <jeffsec at amazon.com<mailto:jeffsec at amazon.com>> wrote:
Thanks Gerry.
I did not see in the past meeting notes from my quick review discussions about, sorry if I missed it,:
Gartner Interop / focus on profiling two IDP -> PDP interaction patterns:
1. IDP makes an “evaluation” call to determine whether a subject can access an application
2. IDP makes a resource search call to determine what groups the subject is a member of, and issue an access token that contains a claim containing the list of groups.
Did this happen?
- If yes: could point me to the meeting notes for that please?
- If no: when is this topic discussion planned to happen? Is it too early to start the discussion?
Appreciated
Jeff
Jean-François “Jeff” Lombardo | Amazon Web Services
Architecte Principal de Solutions, Spécialiste de Sécurité
Principal Solution Architect, Security Specialist
Montréal, Canada
( +1 514 778 5565
Commentaires à propos de notre échange? Exprimez-vous ici<https://urldefense.com/v3/__https:/feedback.aws.amazon.com/?ea=jeffsec&fn=Jean*20Francois&ln=Lombardo__;JQ!!Pe07N362zA!0k9CkAV8Djpw_8EfIAKrbhP3TQrJr0oMnznlUgBJ3V3NoEk6hihx7dNHnQuejn6SSH2CP8Iow3G-tTzppHeg$>.
Thoughts on our interaction? Provide feedback here<https://urldefense.com/v3/__https:/feedback.aws.amazon.com/?ea=jeffsec&fn=Jean*20Francois&ln=Lombardo__;JQ!!Pe07N362zA!0k9CkAV8Djpw_8EfIAKrbhP3TQrJr0oMnznlUgBJ3V3NoEk6hihx7dNHnQuejn6SSH2CP8Iow3G-tTzppHeg$>.
From: Openid-specs-authzen <openid-specs-authzen-bounces at lists.openid.net<mailto:openid-specs-authzen-bounces at lists.openid.net>> On Behalf Of gerry gebel via Openid-specs-authzen
Sent: August 28, 2025 9:44 AM
To: AuthZEN Working Group List <openid-specs-authzen at lists.openid.net<mailto:openid-specs-authzen at lists.openid.net>>
Cc: gerry gebel <ggebel at gmail.com<mailto:ggebel at gmail.com>>
Subject: [EXT] [Openid-specs-authzen] Agenda for Aug 28th
CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you can confirm the sender and know the content is safe.
AVERTISSEMENT: Ce courrier électronique provient d’un expéditeur externe. Ne cliquez sur aucun lien et n’ouvrez aucune pièce jointe si vous ne pouvez pas confirmer l’identité de l’expéditeur et si vous n’êtes pas certain que le contenu ne présente aucun risque.
Hi all
Thanks to those who commented or submitted pull requests since last week! Here is our proposed agenda for today:
• Review open issues (much progress last week, but 11 remain)
• Review pull requests (3 new updates)
•
• Talk to you soon,
• Gerry
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-authzen/attachments/20250828/b62526a1/attachment-0001.htm>
More information about the Openid-specs-authzen
mailing list