oauth-wg/oauth-identity-chaining

Issues

• Should we allow identity chaining with DPoP tokens?

  #79 opened 7 months ago by arndt-s
  3

• Add sender constraining mechanisms

  #86 opened 6 months ago by kburgin3
  1

• How does the AS know it should generate a JWT Authorization Grant formatted token?

  #84 opened 5 months ago by gffletch
  3

• relax recommendation against requested_token_type use

  #82 opened 5 months ago by bc-pi
  1

• JWT Authorization Grant allows broadening the scope

  #89 opened 6 months ago by obfuscoder
  1

• Figure 6 step naming misalignment (off-by-one error)

  #88 opened 6 months ago by dhs-aws
  1

• Recommended media type for JWT Authorization Grant

  #85 opened 7 months ago by aaronpk
  1

• Additional profile of Token Exchange

  #31 opened 7 months ago by PieterKas
  3

• Change spec name to focus on Authz

  #67 opened 7 months ago by PieterKas
  2

• Describe or give examples of what kinds of tokens a client would exchange

  #75 opened 7 months ago by aaronpk
  4

• Clarify that draft is not limited to the use cases

  #66 opened 7 months ago by PieterKas
  1

• Add Aaron Parecki to acknowledgements section

  #69 opened 8 months ago by PieterKas
  1

• example response missing issued_token_type

  #60 opened 8 months ago by bc-pi
  2

• authorization grant type can't be the same as the issued token type

  #61 opened 8 months ago by aaronpk
  4

• Consider limiting token formats to JWT

  #45 opened 8 months ago by PieterKas
  3

• Add use case to the appendix

  #68 opened 9 months ago by PieterKas
  0

• Correct/Update Authorization Server Discovery

  #47 opened a year ago by PieterKas
  0

• RS A always sends token exchange request

  #51 opened a year ago by kburgin3
  2

• Clarify requirements for "aud" claim

  #49 opened a year ago by PieterKas
  0

• How to transcribe claims

  #10 opened a year ago by PieterKas
  3

• Update docname to draft-schwenkschuster-oauth-identity-chaining-00

  #42 opened a year ago by PieterKas
  1

• Editorial: Remove repetitive text

  #44 opened a year ago by PieterKas
  0

• Replace cURL commands with "on-the-wire" examples

  #46 opened a year ago by PieterKas
  0

• Add correct reference for RFC 7523

  #48 opened a year ago by PieterKas
  0

• Update Acknowledgements

  #50 opened a year ago by PieterKas
  0

• Mandatory text for AS to AS authentication?

  #32 opened a year ago by PieterKas
  1

• Type audiencd in 3.5.1

  #22 opened a year ago by PieterKas
  0

• Remove reference to 2-legged in use case.

  #29 opened a year ago by PieterKas
  0

• Describe "audienced"

  #35 opened a year ago by PieterKas
  0

• Suggested editorial changes from Kelly,

  #36 opened a year ago by PieterKas
  0

• Describe down-scoping scenario

  #8 opened a year ago by PieterKas
  1

• Clarify which authroization servers transcribe which claims

  #9 opened a year ago by PieterKas
  2

• Fix diagrams (main doc and appendix)

  #17 opened a year ago by PieterKas
  0

• Remove MITRE from Kelly's contribution

  #21 opened a year ago by PieterKas
  1

• Authorization grant = client credentials

  #25 opened a year ago by PieterKas
  1

• Review use cases

  #12 opened a year ago by PieterKas
  3

• Processing rule unclear

  #7 opened a year ago by PieterKas
  1