The IESG has received a request from the Web Authorization Protocol WG
(oauth) to consider the following document:
- 'The OAuth 2.0 Authorization Protocol'
<draft-ietf-oauth-v2-23.txt> as a Proposed Standard
There are some downrefs in this document that need to be called out in
the Last Call notice, which weren't.
* There is a normative reference to RFC 1750, which will be updated to
point to RFC 4086 before publication.
* There is a normative reference to RFC 2246 (TLS 1.0), which has been
obsoleted by RFC 4346 (TLS 1.1). The document uses this reference to
note that TLS 1.0 is, at this writing, the most widely deployed
version. The working group believes it is necessary to note that, and
that the reference be normative.
* There is a normative reference to Informational RFC 2818 (HTTP over TLS).
* There is a normative reference to Informational RFC 4627
(application/json Media Type).
* There is a normative reference to Informational RFC 4949 (Internet
Security Glossary). This is an allowed downref.
Barry, document shepherd
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf