Ludwig Seitz
2017-10-23 13:34:24 UTC
Hello CoRE,
an interesting question has come up in ACE, for which we would need
feed-back from people familiar with the Resource Directory work.
In our draft we suggest that a client that whishes to access a resource
at a server can look up the authorization server in charge of that
server in a resource directory [1]. Jim Schaad has made me aware that
this is not as easy as it sounds [2], and I feel I would need feed-back
as to:
1.) Is it a good idea at all to put such information somewhere in the RD?
2.) Where in the RD would one put such information? What would such a
resource type look like?
Regards,
Ludwig Seitz
[1] https://tools.ietf.org/html/draft-ietf-ace-oauth-authz-08#section-5.1
[2] https://github.com/ace-wg/ace-oauth/issues/120
an interesting question has come up in ACE, for which we would need
feed-back from people familiar with the Resource Directory work.
In our draft we suggest that a client that whishes to access a resource
at a server can look up the authorization server in charge of that
server in a resource directory [1]. Jim Schaad has made me aware that
this is not as easy as it sounds [2], and I feel I would need feed-back
as to:
1.) Is it a good idea at all to put such information somewhere in the RD?
2.) Where in the RD would one put such information? What would such a
resource type look like?
Regards,
Ludwig Seitz
[1] https://tools.ietf.org/html/draft-ietf-ace-oauth-authz-08#section-5.1
[2] https://github.com/ace-wg/ace-oauth/issues/120
--
Ludwig Seitz, PhD
Security Lab, RISE SICS
Phone +46(0)70-349 92 51
Ludwig Seitz, PhD
Security Lab, RISE SICS
Phone +46(0)70-349 92 51