issues
search
ace-wg
/
ace-oauth
This is the working area for draft-ietf-ace-oauth-authz
8
stars
8
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Remove base64 padding from examples
#199
cabo
opened
2 years ago
0
Hack out the bad b64
#198
cabo
closed
2 years ago
0
Fix CBOR value for P-256 in figure 5
#197
obgm
closed
2 years ago
0
Editorial nits from final AD review
#196
kaduk
closed
2 years ago
3
Clarification of the Access Token retention
#195
hannestschofenig
closed
3 years ago
0
Changes based on Review Comments by Roman Danyliw
#194
hannestschofenig
closed
3 years ago
1
Review by Roman Danyliw
#193
hannestschofenig
closed
3 years ago
2
Definition of "loosely synchronized" time
#192
hannestschofenig
closed
3 years ago
1
Review by Lars Eggert
#191
hannestschofenig
closed
3 years ago
1
Token Expiration overspecified -- Erik Kline
#190
hannestschofenig
closed
2 years ago
2
Addressing Review Comments by Erik Kline
#189
hannestschofenig
closed
3 years ago
0
Erik Kline Review Comments
#188
hannestschofenig
closed
3 years ago
2
Review by Murray Kucherawy
#187
hannestschofenig
closed
3 years ago
1
Review comments by Zaheduzzaman Sarker
#186
hannestschofenig
closed
3 years ago
2
Addressed review comments by Zaheduzzaman Sarker
#185
hannestschofenig
closed
3 years ago
0
Addressing review comments by Éric Vyncke
#184
hannestschofenig
closed
3 years ago
0
Éric Vyncke review comments
#183
hannestschofenig
closed
3 years ago
2
Robert Wilton Comment on the introduction and the relationship to profiles
#182
hannestschofenig
closed
3 years ago
2
Addressing review feedback by Robert Wilton
#181
hannestschofenig
closed
3 years ago
0
Rephrase "overwrite"
#180
gselander
closed
3 years ago
0
Rephrase "overwrite" of access token
#179
gselander
closed
3 years ago
0
Figure 12
#178
fpalombini
closed
3 years ago
0
AS discovery clarifications (as proposed on the mailing list)
#177
grzu
closed
3 years ago
0
imprecision
#176
fpalombini
closed
3 years ago
0
Fix some editorial nits spotted during AD review
#175
kaduk
closed
5 years ago
0
Clarify what the client is supposed to do in 5.1.2
#174
LudwigSeitz
closed
5 years ago
0
Clarify somewhat contradictory text in 5.2 and 5.5
#173
LudwigSeitz
closed
5 years ago
0
Clarify what the attack the nonce in 5.1.1 prevents
#172
LudwigSeitz
closed
5 years ago
0
Clarify that clients need to check token/key validity before submitting request
#171
LudwigSeitz
closed
5 years ago
0
typo 5.8.4 title
#170
fpalombini
closed
5 years ago
1
Ref the right sections in 6749
#169
fpalombini
closed
5 years ago
2
Updated Text in "Verifying an Access Token" section
#168
hannestschofenig
closed
5 years ago
1
figure 24
#167
fpalombini
closed
5 years ago
0
Specify the use of the application/cwt content type for posting to authz-info
#166
LudwigSeitz
closed
5 years ago
1
Extend 6.5 from just error responses to all unprotected information being sent
#165
LudwigSeitz
closed
5 years ago
1
Clarify recommendation to not use symmetric pop-key for multi-RS audience
#164
LudwigSeitz
closed
5 years ago
1
Clarify sequence number approach in 5.8.3
#163
LudwigSeitz
closed
5 years ago
1
Give guidance on dealing with answer dealy for authz-info
#162
LudwigSeitz
closed
5 years ago
0
Specify content format for 5.8.1 (authz-info request)
#161
LudwigSeitz
closed
5 years ago
0
Explain usecase for token identifier in 5.8.1
#160
LudwigSeitz
closed
5 years ago
1
Document content format for 5.7.1
#159
LudwigSeitz
closed
5 years ago
0
Specify content type for error response in 5.6.3
#158
LudwigSeitz
closed
5 years ago
0
Update example in figure 6 to use existing profile
#157
LudwigSeitz
closed
5 years ago
0
Reference TLS 1.3
#156
LudwigSeitz
closed
5 years ago
0
Add sentence warning about sensitive content in unauthorized resource requests
#155
LudwigSeitz
closed
5 years ago
0
Add text in security considerations on how to identify RS
#154
LudwigSeitz
closed
5 years ago
1
Add text about the protection of the authz-info resource
#153
LudwigSeitz
closed
5 years ago
1
Mention DoS risk with introspection in security considerations
#152
LudwigSeitz
closed
5 years ago
0
Explain what the RS must do to "verify the validity of the token"
#151
LudwigSeitz
closed
5 years ago
0
Make explicit that the RS checks if tokens come from approved AS
#150
LudwigSeitz
closed
5 years ago
1
Next