draft-ietf-oauth-amr-values-07.txt   draft-ietf-oauth-amr-values-08.txt 
OAuth Working Group M. Jones OAuth Working Group M. Jones
Internet-Draft Microsoft Internet-Draft Microsoft
Intended status: Standards Track P. Hunt Intended status: Standards Track P. Hunt
Expires: September 9, 2017 Oracle Expires: September 14, 2017 Oracle
A. Nadalin A. Nadalin
Microsoft Microsoft
March 8, 2017 March 13, 2017
Authentication Method Reference Values Authentication Method Reference Values
draft-ietf-oauth-amr-values-07 draft-ietf-oauth-amr-values-08
Abstract Abstract
The "amr" (Authentication Methods References) claim is defined and The "amr" (Authentication Methods References) claim is defined and
registered in the IANA "JSON Web Token Claims" registry but no registered in the IANA "JSON Web Token Claims" registry but no
standard Authentication Method Reference values are currently standard Authentication Method Reference values are currently
defined. This specification establishes a registry for defined. This specification establishes a registry for
Authentication Method Reference values and defines an initial set of Authentication Method Reference values and defines an initial set of
Authentication Method Reference values. Authentication Method Reference values.
skipping to change at page 1, line 38 skipping to change at page 1, line 38
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF). Note that other groups may also distribute Task Force (IETF). Note that other groups may also distribute
working documents as Internet-Drafts. The list of current Internet- working documents as Internet-Drafts. The list of current Internet-
Drafts is at http://datatracker.ietf.org/drafts/current/. Drafts is at http://datatracker.ietf.org/drafts/current/.
Internet-Drafts are draft documents valid for a maximum of six months Internet-Drafts are draft documents valid for a maximum of six months
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress." material or to cite them other than as "work in progress."
This Internet-Draft will expire on September 9, 2017. This Internet-Draft will expire on September 14, 2017.
Copyright Notice Copyright Notice
Copyright (c) 2017 IETF Trust and the persons identified as the Copyright (c) 2017 IETF Trust and the persons identified as the
document authors. All rights reserved. document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents Provisions Relating to IETF Documents
(http://trustee.ietf.org/license-info) in effect on the date of (http://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents publication of this document. Please review these documents
skipping to change at page 8, line 23 skipping to change at page 8, line 23
Criteria that should be applied by the Designated Experts includes Criteria that should be applied by the Designated Experts includes
determining whether the proposed registration duplicates existing determining whether the proposed registration duplicates existing
functionality, whether it is likely to be of general applicability or functionality, whether it is likely to be of general applicability or
whether it is useful only for a single application, whether the value whether it is useful only for a single application, whether the value
is actually being used, and whether the registration description is is actually being used, and whether the registration description is
clear. clear.
6.1.1. Registration Template 6.1.1. Registration Template
Authentication Method Reference Name: Authentication Method Reference Name:
The name requested (e.g., "otp"). Because a core goal of this The name requested (e.g., "otp") for the authentication method or
specification is for the resulting representations to be compact, family of closely-related authentication methods. Because a core
it is RECOMMENDED that the name be short -- that is, not to exceed goal of this specification is for the resulting representations to
8 characters without a compelling reason to do so. To facilitate be compact, it is RECOMMENDED that the name be short -- that is,
interoperability, the name must use only printable ASCII not to exceed 8 characters without a compelling reason to do so.
characters excluding double quote ('"') and backslash ('\') (the To facilitate interoperability, the name must use only printable
Unicode characters with code points U+0021, U+0023 through U+005B, ASCII characters excluding double quote ('"') and backslash ('\')
and U+005D through U+007E). This name is case sensitive. Names (the Unicode characters with code points U+0021, U+0023 through
may not match other registered names in a case-insensitive manner U+005B, and U+005D through U+007E). This name is case sensitive.
unless the Designated Experts state that there is a compelling Names may not match other registered names in a case-insensitive
reason to allow an exception. manner unless the Designated Experts state that there is a
compelling reason to allow an exception.
Authentication Method Reference Description: Authentication Method Reference Description:
Brief description of the Authentication Method Reference (e.g., Brief description of the Authentication Method Reference (e.g.,
"One-time password"). "One-time password").
Change Controller: Change Controller:
For Standards Track RFCs, state "IESG". For others, give the name For Standards Track RFCs, state "IESG". For others, give the name
of the responsible party. Other details (e.g., postal address, of the responsible party. Other details (e.g., postal address,
email address, home page URI) may also be included. email address, home page URI) may also be included.
skipping to change at page 14, line 20 skipping to change at page 14, line 20
values. Jari Arkko, John Bradley, Ben Campbell, Brian Campbell, values. Jari Arkko, John Bradley, Ben Campbell, Brian Campbell,
William Denniss, Linda Dunbar, Stephen Farrell, Paul Kyzivat, Elaine William Denniss, Linda Dunbar, Stephen Farrell, Paul Kyzivat, Elaine
Newton, James Manger, Catherine Meadows, Alexey Melnikov, Kathleen Newton, James Manger, Catherine Meadows, Alexey Melnikov, Kathleen
Moriarty, Nat Sakimura, and Mike Schwartz provided reviews of the Moriarty, Nat Sakimura, and Mike Schwartz provided reviews of the
specification. specification.
Appendix C. Document History Appendix C. Document History
[[ to be removed by the RFC editor before publication as an RFC ]] [[ to be removed by the RFC editor before publication as an RFC ]]
-08
o Added text in the IANA Registration Template saying that names can
be for families of closely-related authentication methods, as
suggested by Stephen Farrell.
-07 -07
o Clarified that the values are intended to provide identifiers for o Clarified that the values are intended to provide identifiers for
families of closely-related authentication methods. families of closely-related authentication methods.
o Updated the MODRNA Authentication Profile reference. o Updated the MODRNA Authentication Profile reference.
-06 -06
o Addressed IESG comments. Identifiers are now restricted to using o Addressed IESG comments. Identifiers are now restricted to using
only printable JSON-friendly ASCII characters. Additional only printable JSON-friendly ASCII characters. Additional
 End of changes. 6 change blocks. 
15 lines changed or deleted 22 lines changed or added

This html diff was produced by rfcdiff 1.45. The latest version is available from http://tools.ietf.org/tools/rfcdiff/