RE: [OAUTH-WG] Last Call: <draft-ietf-oauth-v2-bearer-15.txt> (The OAuth

(Resending now that I'm a member of the ietf(_at_)ietf(_dot_)org list so that 
my response will be sent.)

-----Original Message-----
From: Mike Jones 
Sent: Tuesday, January 24, 2012 3:35 PM
To: 'Mark Nottingham'; IETF Discussion
Cc: OAuth WG
Subject: RE: [OAUTH-WG] Last Call: <draft-ietf-oauth-v2-bearer-15.txt> (The 
OAuth 2.0 Authorization Protocol: Bearer Tokens) to Proposed Standard

For those on the ietf(_at_)ietf(_dot_)org list, you can find my responses as 
editor to Mark's useful apps area feedback at these locations:

http://www.ietf.org/mail-archive/web/oauth/current/msg08040.html
http://www.ietf.org/mail-archive/web/oauth/current/msg08075.html

As editor, I attempted to apply all of Mark's recommendations, other than those 
that were contrary to working group consensus positions that had already been 
established via discussions on the working group mailing list.  Where his 
recommendations were not adopted, reasons were given in my responses on behalf 
of the working group cited above.

                                Best wishes,
                                -- Mike

-----Original Message-----
From: oauth-bounces(_at_)ietf(_dot_)org 
[mailto:oauth-bounces(_at_)ietf(_dot_)org] On Behalf Of Mark Nottingham
Sent: Tuesday, January 24, 2012 3:19 PM
To: IETF Discussion
Cc: OAuth WG
Subject: Re: [OAUTH-WG] Last Call: <draft-ietf-oauth-v2-bearer-15.txt> (The 
OAuth 2.0 Authorization Protocol: Bearer Tokens) to Proposed Standard

My comments were made in:
  http://www.ietf.org/mail-archive/web/apps-discuss/current/msg03805.html

Most of them (excepting the nits) haven't been addressed in the drafts.

Regards,



Begin forwarded message:

> Subject: [OAUTH-WG] Last Call: <draft-ietf-oauth-v2-bearer-15.txt> (The OAuth 
> 2.0     Authorization Protocol: Bearer Tokens) to Proposed Standard
> Date: Mon, 23 Jan 2012 07:46:43 -0800
> From: The IESG <iesg-secretary(_at_)ietf(_dot_)org>
> Reply-To: ietf(_at_)ietf(_dot_)org
> To: IETF-Announce <ietf-announce(_at_)ietf(_dot_)org>
> CC: oauth(_at_)ietf(_dot_)org
>
>
> The IESG has received a request from the Web Authorization Protocol WG
> (oauth) to consider the following document:
> - 'The OAuth 2.0 Authorization Protocol: Bearer Tokens'
>  <draft-ietf-oauth-v2-bearer-15.txt> as a Proposed Standard
>
> The IESG plans to make a decision in the next few weeks, and solicits 
> final comments on this action. Please send substantive comments to the 
> ietf(_at_)ietf(_dot_)org mailing lists by 2012-02-06. Exceptionally, comments 
> may 
> be sent to iesg(_at_)ietf(_dot_)org instead. In either case, please retain 
> the 
> beginning of the Subject line to allow automated sorting.
>
> Abstract
>
>
>   This specification describes how to use bearer tokens in HTTP
>   requests to access OAuth 2.0 protected resources.  Any party in
>   possession of a bearer token (a "bearer") can use it to get access to
>   the associated resources (without demonstrating possession of a
>   cryptographic key).  To prevent misuse, bearer tokens need to be
>   protected from disclosure in storage and in transport.
>
>
>
>
> The file can be obtained via
> http://datatracker.ietf.org/doc/draft-ietf-oauth-v2-bearer/
>
> IESG discussion can be tracked via
> http://datatracker.ietf.org/doc/draft-ietf-oauth-v2-bearer/
>
>
> No IPR declarations have been submitted directly on this I-D.
--
Mark Nottingham   http://www.mnot.net/



_______________________________________________
OAuth mailing list
OAuth(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/oauth


_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf