OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Fwd: [OAUTH-WG] I-D Action: draft-ietf-oauth-saml2-bearer-05.txt

FYI. The OAuth SAML assertion profile spec and associated oauth assertions spec are nearing last call. 

Feel free to comment direct to the list or pass comments back to myself. 


Begin forwarded message:

From: Brian Campbell <bcampbell@pingidentity.com>
Date: 3 August, 2011 14:30:13 PDT
To: oauth <oauth@ietf.org>
Subject: Re: [OAUTH-WG] I-D Action: draft-ietf-oauth-saml2-bearer-05.txt

This 'nice' version of this is at

The draft has been reworked significantly to become a profile of
http://tools.ietf.org/html/draft-ietf-oauth-assertions-00 and cover
both assertions as access grants as well as assertions as client

The grant_type URI value no longer uses oauth.net and is
urn:ietf:params:oauth:grant-type:saml2-bearer which is
registered/requested per
http://tools.ietf.org/html/draft-campbell-oauth-urn-sub-ns and a new
URI of urn:ietf:params:oauth:client-assertion-type:saml2-bearer is
introduced for client_assertion_type.

Lastly the processing rules on the assertion have been relaxed
somewhat to allow for <SubjectConfirmationData> element(s) to be
optional when the <Conditions> element has a NotOnOrAfter attribute.


On Wed, Aug 3, 2011 at 3:16 PM,  <internet-drafts@ietf.org> wrote:
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Web Authorization Protocol Working Group of the IETF.

       Title           : SAML 2.0 Bearer Assertion Profiles for OAuth 2.0
       Author(s)       : Chuck Mortimore
       Filename        : draft-ietf-oauth-saml2-bearer-05.txt
       Pages           : 15
       Date            : 2011-08-03

  This specification defines the use of a SAML 2.0 Bearer Assertion as
  means for requesting an OAuth 2.0 access token as well as for use as
  a means of client authentication.

A URL for this Internet-Draft is:

Internet-Drafts are also available by anonymous FTP at:

This Internet-Draft can be retrieved at:
OAuth mailing list

OAuth mailing list

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]