[openid-specs-rande] Torsten's nice blog / claims request / scopes
Basney, Jim
jbasney at illinois.edu
Mon Nov 25 16:48:37 UTC 2019
Hi,
> https://scitokens.org/#email-lists archive only visible to subscribers,
> but subscription is open
The archives are public. I just viewed them in a private browsing window to confirm.
https://groups.google.com/a/scitokens.org/forum/#!forum/discuss
https://groups.google.com/a/scitokens.org/forum/#!forum/announce
> Ultimately - I would say - it's an OAuth2 implementation using JWT
> bearer tokens.
I agree. SciTokens is about demonstrating use of the OAuth and JWT standards for scientific computing workflows.
> Interested to know how the work on SciTokens are progressing.
> Nothing has happened to the documentation for a long time.
> There has been some recent presentations and there seems to be some code.
For the current specification of the JWT profiles, please see:
Altunay, Mine, Bockelman, Brian, Ceccanti, Andrea, Cornwall, Linda, Crawford, Matt, Crooks, David, … Wartel, Romain. (2019, September 25). WLCG Common JWT Profiles (Version 1.0). Zenodo. http://doi.org/10.5281/zenodo.3460258
> Just wondering whether it would be worthwhile trying to implement something in
> the OIDC/OAuth2 libraries I maintain ?
Adding support for issuing JWTs according to the above profiles would be great!
> Could be something for the upcoming TechExch hackathon ??
Yes! Duncan Brown and I will be there from the SciTokens project. Lately we've been working on driving issuance of JWTs via policies set in COmanage.
Regards,
Jim
More information about the openid-specs-rande
mailing list