OAuth WRAP WG

1–30 of 48

0 selected

Vibihishan, Luke Shepard2

8/27/10

Are OAuth WRAP and SWT officially done?

WRAP is deprecated by OAuth 2.0, yes. All the companies that support WRAP have said they will move to

unread,

Are OAuth WRAP and SWT officially done?

WRAP is deprecated by OAuth 2.0, yes. All the companies that support WRAP have said they will move to

8/27/10

Kevin Smith, Vodafone, David Recordon5

6/8/10

[WRAP] WRAP in GSMA OneAPI

Hi David, Blaine, We (the OneAPI group) have been looking further into OAUTH 2.0 and would like to

unread,

[WRAP] WRAP in GSMA OneAPI

Hi David, Blaine, We (the OneAPI group) have been looking further into OAUTH 2.0 and would like to

6/8/10

5/17/10

[WRAP] Google’s Experimental OAuth-WRAP support

Google currently supports the use of the OAuth1.0/1.0a and OpenID/OAuth Hybrid protocols for

unread,

[WRAP] Google’s Experimental OAuth-WRAP support

Google currently supports the use of the OAuth1.0/1.0a and OpenID/OAuth Hybrid protocols for

5/17/10

Siddharth Bajaj, … Brian Eaton17

3/21/10

Fwd: FW: RSA P2P on Mash SSL

On Sat, Mar 20, 2010 at 8:28 PM, Alan Karp <alan...@gmail.com> wrote: > On Fri, Mar 19,

unread,

Fwd: FW: RSA P2P on Mash SSL

On Sat, Mar 20, 2010 at 8:28 PM, Alan Karp <alan...@gmail.com> wrote: > On Fri, Mar 19,

3/21/10

Jason Hullinger, … Luke Shepard33

3/10/10

Username and Password Profile

That seems reasonable to me. We should make sure to distill this discussion into a "security

unread,

Username and Password Profile

That seems reasonable to me. We should make sure to distill this discussion into a "security

3/10/10

Jason Hullinger, Allen Tom3

3/4/10

Client Refreshes Access Token

Thanks, this is what I assumed, but wanted to double check. I have another question about 5.3 of the

unread,

Client Refreshes Access Token

Thanks, this is what I assumed, but wanted to double check. I have another question about 5.3 of the

3/4/10

Jørn Wildt, Allen Tom2

3/3/10

Unauthorized: supply access token request URL

Hi Jorn, This is an interesting idea and has been suggested a few times in the Oauth world. This idea

unread,

Unauthorized: supply access token request URL

Hi Jorn, This is an interesting idea and has been suggested a few times in the Oauth world. This idea

3/3/10

Nat Sakimura, … Dan Brickley13

3/2/10

Name space and prefix - OpenID Harmonization

On Fri, Feb 26, 2010 at 1:46 AM, Martin Atkins <ma...@degeneration.co.uk> wrote: > I think

unread,

Name space and prefix - OpenID Harmonization

On Fri, Feb 26, 2010 at 1:46 AM, Martin Atkins <ma...@degeneration.co.uk> wrote: > I think

3/2/10

Sarah Faulkner, Allen Tom4

2/18/10

Security of the verification code in web profile (6.2)

Hi Allen – Yes, we had already considered the solution with a user context ID (or user-specific value

unread,

Security of the verification code in web profile (6.2)

Hi Allen – Yes, we had already considered the solution with a user context ID (or user-specific value

2/18/10

Allen Tom, … Raffi Krikorian14

2/16/10

Interesting client delegation (delegation 2X) usecase (Twitter)

Hi Raffi - It does sound like your specific use case is to enable Tweetie to assert to TwitPic who

unread,

Interesting client delegation (delegation 2X) usecase (Twitter)

Hi Raffi - It does sound like your specific use case is to enable Tweetie to assert to TwitPic who

2/16/10

Nat Sakimura, … John Bradley12

2/16/10

Wrap Artifact Binding/Mobile Profile

Sure a association request is extensible if you change the core spec:) I prefer to come up with the

unread,

Wrap Artifact Binding/Mobile Profile

Sure a association request is extensible if you change the core spec:) I prefer to come up with the

2/16/10

egilchri, … Benjamin Golub6

2/3/10

OAuth wrap authentication error, when trying FriendFeed sample app

Thanks for the report Ted. There was a bug with rate limits on FriendFeed. I pushed a fix so limits

unread,

OAuth wrap authentication error, when trying FriendFeed sample app

Thanks for the report Ted. There was a bug with rate limits on FriendFeed. I pushed a fix so limits

2/3/10

Andrew Arnott, Allen Tom4

2/16/10

WRAP Client security considerations around callback parameter

Hi Andrew - The value of wrap_callback in 6.2.2 (the browser redirect) and 6.2.5 (the access token

unread,

WRAP Client security considerations around callback parameter

Hi Andrew - The value of wrap_callback in 6.2.2 (the browser redirect) and 6.2.5 (the access token

2/16/10

Andrew Arnott, … Dick Hardt7

2/9/10

How to escape the Authorization header's access_token value?

Doh! I was sure the quote and comma characters showed up in base64, but I can see I was totally off

unread,

How to escape the Authorization header's access_token value?

Doh! I was sure the quote and comma characters showed up in base64, but I can see I was totally off

2/9/10

Andrew Arnott, Dick Hardt2

2/9/10

Spec section 6.1.4 missing wrap_refresh_token

thanks! On 2010-02-08, at 8:07 PM, Andrew Arnott wrote: Section 6.1.4 of draft-hardt-oauth-wrap-01 is

unread,

Spec section 6.1.4 missing wrap_refresh_token

thanks! On 2010-02-08, at 8:07 PM, Andrew Arnott wrote: Section 6.1.4 of draft-hardt-oauth-wrap-01 is

2/9/10

Andrew Arnott, Dick Hardt3

2/8/10

OAuth WRAP draft spec comments

On Mon, Feb 8, 2010 at 9:07 AM, Dick Hardt <dick....@gmail.com> wrote: Hi Andrew draft-hardt-

unread,

OAuth WRAP draft spec comments

On Mon, Feb 8, 2010 at 9:07 AM, Dick Hardt <dick....@gmail.com> wrote: Hi Andrew draft-hardt-

2/8/10

Paul Madsen, Dick Hardt2

2/8/10

Misc feedback on draft-hardt-oauth-01

Thanks for the feedback Paul! fyi: I'm going to see how things evolve on the IETF list before

unread,

Misc feedback on draft-hardt-oauth-01

Thanks for the feedback Paul! fyi: I'm going to see how things evolve on the IETF list before

2/8/10

Marius Scurtescu, … Dick Hardt4

2/8/10

wrap_access_token vs access_token

Thanks Paul! On 2010-02-08, at 11:12 AM, Paul Madsen wrote: > Dick, typo in Sec 4.2 of draft-hardt

unread,

wrap_access_token vs access_token

Thanks Paul! On 2010-02-08, at 11:12 AM, Paul Madsen wrote: > Dick, typo in Sec 4.2 of draft-hardt

2/8/10

Marius Scurtescu, Dick Hardt2

2/8/10

web app refresh token request

Yes, thanks! On 2010-02-08, at 9:53 AM, Marius Scurtescu wrote: > In draft-hardt-oauth-01 the

unread,

web app refresh token request

Yes, thanks! On 2010-02-08, at 9:53 AM, Marius Scurtescu wrote: > In draft-hardt-oauth-01 the

2/8/10

2/8/10

A few spec typos

Section 3.1 URLs Access Token URL paragraph: "Clien" shows up as a word Refresh Token URL

unread,

A few spec typos

Section 3.1 URLs Access Token URL paragraph: "Clien" shows up as a word Refresh Token URL

2/8/10

Marius Scurtescu, … Allen Tom8

1/21/10

captcha challenge

On Thu, Jan 21, 2010 at 3:04 PM, Allen Tom <at...@yahoo-inc.com> wrote: > Hi Marius - >

unread,

captcha challenge

On Thu, Jan 21, 2010 at 3:04 PM, Allen Tom <at...@yahoo-inc.com> wrote: > Hi Marius - >

1/21/10

Dick Hardt, … Marius Scurtescu5

1/20/10

RFC formatted versions of OAuth WRAP

One minor correction for the 01 version: In B.8. the value of wrap_access_token must be URL encoded.

unread,

RFC formatted versions of OAuth WRAP

One minor correction for the 01 version: In B.8. the value of wrap_access_token must be URL encoded.

1/20/10

David Recordon, Hurliman, John2

1/15/10

Re: [OAUTH-WG] Virtual world use case for OAuth

Hello OAuth lists! Let my briefly introduce myself. I'm John Hurliman, a software engineer on

unread,

Re: [OAUTH-WG] Virtual world use case for OAuth

Hello OAuth lists! Let my briefly introduce myself. I'm John Hurliman, a software engineer on

1/15/10

1/13/10

OAuth Wrap Web App Profile Summary

Hi. I created a blog entry that includes a sequence diagram of Wrap Web App Profile and some security

unread,

OAuth Wrap Web App Profile Summary

Hi. I created a blog entry that includes a sequence diagram of Wrap Web App Profile and some security

1/13/10

David Recordon2

1/8/10

Talking about what's up with OAuth

I forgot to mention Eran as well, he helped to write it as well! :) -- Sent from my iPhone On Jan 8,

unread,

Talking about what's up with OAuth

I forgot to mention Eran as well, he helped to write it as well! :) -- Sent from my iPhone On Jan 8,

1/8/10

Marius Scurtescu

1/8/10

wrap_callback matching

It is not clear from the spec how exactly the callback URL is matched against the registered one. My

unread,

wrap_callback matching

It is not clear from the spec how exactly the callback URL is matched against the registered one. My

1/8/10

John Panzer, … Dick Hardt6

1/4/10

Re: [OAUTH-WG] OAuth WRAP

While I don't agree with all of Eran's points -- we all seem aligned that OAuth 2.0 will have

unread,

Re: [OAUTH-WG] OAuth WRAP

While I don't agree with all of Eran's points -- we all seem aligned that OAuth 2.0 will have

1/4/10

Evan Gilbert, Dick Hardt4

1/4/10

Proposed OAuth WRAP Offline Profile

On 2010-01-04, at 9:00 AM, Evan Gilbert wrote: On Thu, Dec 31, 2009 at 12:17 PM, Dick Hardt <Dick.

unread,

Proposed OAuth WRAP Offline Profile

On 2010-01-04, at 9:00 AM, Evan Gilbert wrote: On Thu, Dec 31, 2009 at 12:17 PM, Dick Hardt <Dick.

1/4/10

Luke Shepard, … Dick Hardt7

12/31/09

Proposed OAuth WRAP Client Only Profile

On 2009-12-19, at 12:09 AM, Luke Shepard wrote: Thanks Dick and Evan for the feedback. Responses: [

unread,

Proposed OAuth WRAP Client Only Profile

On 2009-12-19, at 12:09 AM, Luke Shepard wrote: Thanks Dick and Evan for the feedback. Responses: [

12/31/09

Marius Scurtescu, … Dick Hardt21

12/29/09

no user credentials use case (was: Appendix A missing wrap_client_id)

On 2009-12-29, at 5:22 PM, Evan Gilbert wrote: Thanks for all the useful feedback. Notes below... On

unread,

no user credentials use case (was: Appendix A missing wrap_client_id)

On 2009-12-29, at 5:22 PM, Evan Gilbert wrote: Thanks for all the useful feedback. Notes below... On

12/29/09

Search

Clear search

Close search

Google apps

Main menu