Skip to content

Releases: oauth-wg/draft-ietf-oauth-resource-metadata

draft-ietf-oauth-resource-metadata-03

01 Feb 12:40
@selfissued selfissued
draft-ietf-oauth-resource-metadata-03
a907e6b
Compare
Choose a tag to compare
draft-ietf-oauth-resource-metadata-03

Applied correction by @panva

Contributors

panva
Assets 2
Loading

draft-ietf-oauth-resource-metadata-02

25 Jan 03:05
@selfissued selfissued
draft-ietf-oauth-resource-metadata-02
5bcba63
Compare
Choose a tag to compare
draft-ietf-oauth-resource-metadata-02
  • Switched from concatenating .well-known to the end of the resource identifier to inserting it between the host and path components of it.
  • Have WWW-Authenticate return resource_metadata rather than resource.
Assets 2
Loading

draft-ietf-oauth-resource-metadata-01

21 Oct 02:29
@aaronpk aaronpk
draft-ietf-oauth-resource-metadata-01
5910a09
Compare
Choose a tag to compare
draft-ietf-oauth-resource-metadata-01
  • Renamed scopes_provided to scopes_supported
  • Added security consideration for scopes_supported
  • Use BCP 195 for TLS recommendations
  • Clarified that resource metadata can be used by clients and authorization servers
  • Updated references
  • Added security consideration recommending audience-restricted access tokens
  • Mention FAPI Message Signing as a use case for publishing signing keys
Assets 2
Loading

draft-ietf-oauth-resource-metadata-00

06 Sep 23:36
@selfissued selfissued
draft-ietf-oauth-resource-metadata-00
cd7b46b
Compare
Choose a tag to compare
draft-ietf-oauth-resource-metadata-00

draft-ietf-oauth-resource-metadata-00

Assets 2
Loading

draft-jones-oauth-resource-metadata-04

07 Jul 23:36
@aaronpk aaronpk
draft-jones-oauth-resource-metadata-04
4da5fe9
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
draft-jones-oauth-resource-metadata-04 
Merge pull request #1 from selfissued/mbj-www-authenticate

Added WWW-Authenticate functionality from draft-parecki-oauth-authorization-server-discovery-00
Assets 2
Loading

draft-jones-oauth-resource-metadata-03

07 Jul 19:00
@selfissued selfissued
draft-jones-oauth-resource-metadata-03
f63db1b
Compare
Choose a tag to compare
draft-jones-oauth-resource-metadata-03

Aaron Parecki added Security Considerations on Server-Side Request Forgery (SSRF) and Phishing.
Added Aaron Parecki as an author.

Assets 2
Loading