[OAUTH-WG] Weekly github digest (OAuth Activity Summary)

Repository Activity Summary Bot Sun, 22 Sep 2024 00:57:10 -0700



Events without label "editorial"

Issues
------
* oauth-wg/oauth-sd-jwt-vc (+2/-0/💬6)
 2 issues created:
 - Fetch vct from URL or from registry (by alenhorvat)

https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/256- Issuer-signed JWT Verification Key Validation - Separation of signature and identity verification/validation? (by alenhorvat)https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/253

 3 issues received 6 new comments:
 - #253 Issuer-signed JWT Verification Key Validation - Separation of signature 
and identity verification/validation? (4 by alenhorvat, peacekeeper)

https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/253- #250 Drop all references to DIDs and DID resolution (1 by peacekeeper)https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/250- #121 Is the following a valid SD-JWT-VC or how can it be mapped to the SD-JWT-VC? (1 by alenhorvat)https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/121 [question] [pending close]

* oauth-wg/draft-ietf-oauth-resource-metadata (+1/-0/💬0)
 1 issues created:
 - The client cannot tells whether audience restriction has been applied (by 
randomstuff)

https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/issues/55

* oauth-wg/oauth-selective-disclosure-jwt (+2/-0/💬1)
 2 issues created:
 - sd_alg, _sd_alg - Option for claims reuse? (by alenhorvat)

https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/468- JWT and unprotected header - generalisation? (by alenhorvat)https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/465

 1 issues received 1 new comments:
 - #463 holder key as DID (1 by Sakurann)

https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/463

* oauth-wg/draft-ietf-oauth-status-list (+0/-8/💬4)
 3 issues received 4 new comments:
 - #168 Support for content negotiation as denoted in the standard is limited 
for some CDNs and http servers (1 by tplooker)

https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/168 [discuss]- #107 Add further implementation guidance around when and how to use ttl vs exp claim (2 by paulbastian, tplooker)https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/107 [ready-for-pr]- #86 Consider making `status` a JWT header instead of a JWT claim (1 by paulbastian)https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/86 [discuss]

 8 issues closed:

- Call for Adoption Feedback: Privacy concerns https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/73 [ready-for-pr]- Consider adding an implementation consideration around using private relay style protocols for status list access https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/93 [ready-for-pr]- Privacy Consideration https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/132 [ready-for-pr]- Reference the JWT BCP https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/165 [ready-for-pr]- Implementation consideration to endianess https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/146 [ready-for-pr]- do we mandate the issuer of Referenced Token is the same entity issuing the Status List? https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/108 [ready-for-pr]- Remove requirement on matching iss values https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/159 [ready-for-pr]- Consider making `status` a JWT header instead of a JWT claim https://github.com/oauth-wg/draft-ietf-oauth-status-list/issues/86 [discuss]



Pull requests
-------------
* oauth-wg/oauth-identity-chaining (+0/-0/💬1)
 1 pull requests received 1 new comments:
 - #94 Added use cases (1 by PieterKas)

https://github.com/oauth-wg/oauth-identity-chaining/pull/94

* oauth-wg/oauth-sd-jwt-vc (+2/-2/💬3)
 2 pull requests submitted:
 - Set upload email in makefile (by bc-pi)

https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/255- hope is a waking dream (by bc-pi)https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/254

 3 pull requests received 3 new comments:
 - #255 Set upload email in makefile (1 by bc-pi)

https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/255- #254 hope is a waking dream (1 by bc-pi)https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/254- #251 Tightened exposition of Issuer-signed JWT Verification Key Validation section (1 by peacekeeper)https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/251

 2 pull requests merged:
 - hope is a waking dream

https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/254- Add display and claim metadatahttps://github.com/oauth-wg/oauth-sd-jwt-vc/pull/236

* oauth-wg/draft-ietf-oauth-resource-metadata (+0/-1/💬0)
 1 pull requests merged:
 - Add metadata parameter for RAR types supported

https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata/pull/54

* oauth-wg/oauth-selective-disclosure-jwt (+2/-0/💬1)
 2 pull requests submitted:
 - introduction rewrite (by dickhardt)

https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/467- Addressing one more or Mike's previous review comments (by bc-pi)https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/466

 1 pull requests received 1 new comments:
 - #466 Addressing one more or Mike's previous review comments (1 by bc-pi)

https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/466

* oauth-wg/draft-ietf-oauth-status-list (+2/-6/💬2)
 2 pull requests submitted:
 - status list token cwt example uses new claim key (by c2bo)

https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/176- fix rendering & improve IANA registration text (by c2bo)https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/175

 2 pull requests received 2 new comments:
 - #175 fix rendering & improve IANA registration text (1 by paulbastian)

https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/175- #170 update security consideration (1 by paulbastian)https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/170

 6 pull requests merged:
 - status list token cwt example uses new claim key

https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/176- update security considerationhttps://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/170- remove requirement for matching iss claim in Referenced Token and Sta…https://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/164- sd jwt examplehttps://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/171- fix CWT status_list map encodinghttps://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/173- fix rendering & improve IANA registration texthttps://github.com/oauth-wg/draft-ietf-oauth-status-list/pull/175


Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
* https://github.com/oauth-wg/draft-ietf-oauth-status-list
* https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth

_______________________________________________
OAuth mailing list -- [email protected]
To unsubscribe send an email to [email protected]

[OAUTH-WG] Weekly github digest (OAuth Activity Summary)

Reply via email to