Wiki
Clone wikiconnect / Connect_Meeting_Notes_2022-06-27_Pacific
OpenID AB/Connect WG Meeting Notes (2022-06-27)
- Date & Time: 2022-06-27 14:00 UTC
- Location: https://global.gotomeeting.com/join/181372694
The meeting was called to order at 14:05 UTC.
1. Roll Call
- Attending: Dima, Kristina Yasuda, Edmund Jay, Vittorio, Anthony Nadalin, Karthik Sivasamy (MATTR), Tobias Looker, Nat Sakimura
- Regret: John Bradley (Chilean Holiday), Mike Jones (Vacation)
- Guest: none
2. Adoption of Agenda (Nat)
- Standard agenda was adopted.
3. Events and Liaisons
3.1. Identiverse (Vittorio)
Vittorio reported that the event featured a lot of OIDF sessions and was very well received.
3.2. New Authorizations Policy WG (Vittorio)
During Identiverse, many of the biggest companies of the field gathered and discussed a potential to create a new working group around authorization policy. It was a big topic at Identiverse as well as in EIC.
We have tried it many times before, but given there are 5 proprietary frameworks, it may be a good time to start the standardization work.
Nancy from CISCO and Vittorio from Auth0 will work on creating a charter.
4. PRs
4.1. 224 [OpenID4VCI] editorial based on Mark Haine feedback
- https://bitbucket.org/openid/connect/pull-requests/224
- Folks agreed to merge apart from Wallet/Client terminology discussion.
- There is a separate issue already so we can track the terminology discussion using it.
- Kristina and Tobias argued that "client" is what it is in this document so should be good, but Vittorio argued against it that it will cause confusion as in the developers' mindset, client is an entity that uses Wallet as the server.
- Nat suggested that perhaps using a verbose form like "Wallet as client" and "Wallet as a server" might mitigate the confusion.
- Nat asked Tobias/Kristina to send out an email to the wider list citing the issue number asking the confusion potential and what would be easier terminology for them to grasp.
4.2. 164 openid-connect-prompt-create-1_0.xml fix typo
- https://bitbucket.org/openid/connect/pull-requests/164
- It is a simple spelling mistake fix so it should be applied.
5. Issues
5.1. #1540: [siopv2] cnf instead of sub_jwk? (Kristina)
Kristina asked the group for the feedback.
Nat told that just reading the title, he felt that cnf is the way to go, but after reading DW's comment, he is not so sure now and need to think a bit.
5.2. 1532 Obtaining metadata just-in-time of the Request is not registration? (Kristina/Tobias)
Some information like policy_url will be and should be persisted at the Wallet as AS, so there indeed is registration happening.
Perhaps it would be a good idea to create a table that compares what is happening during “Just-in-time registration” and “(normal) registration” and finds out if they are similar enough.
Updated