- changed milestone to 3rd Implementers Draft
Remove references to OAuth Token Binding
We discussed on the call today removing references to OAuth Token Binding from the specs.
This is because currently there aren’t interoperable implementations of this yet, we are likely to add support in later when the spec starts to be used.
We discussed that it would be good to indicate that in the future we will support other methods for sender-constraining tokens, e.g. DPOP. However we need to balance this with the aim of achieving interoperability.
I will propose some wording around this.
Comments (7)
-
reporter -
-
assigned issue to
Hope you don’t mind Dave, I’ve had a go at some wording along the lines you suggested and put it in a pull request here: https://bitbucket.org/openid/fapi/pull-requests/117/fapi-rw-make-mtls-the-only-holder-of-key
-
assigned issue to
-
reporter Thanks Joseph
-
reporter - changed status to closed
FAPI-RW: Make MTLS the only holder of key mechanism
At the present time, OAuth Token Binding has not been widely deployed, so in the interests of interoperability it is better to focus implementors attention on MTLS certificate bound access tokens at the current time - MTLS has been used in many FAPI deployments.
This situation is likely to change again in later drafts if other methods of sending constraining tokens are developed.
closes
#225→ <<cset aab212e71cc0>>
-
- changed component to Part 2: Advanced
-
- changed component to FAPI 1 – Part 2: Advanced
-
- changed component to FAPI 1: Advanced
- Log in to comment
We discussed on the call today removing references to OAuth Token Binding from the specs.
This is because currently there aren’t interoperable implementations of this yet, we are likely to add support in later when the spec starts to be used.
We discussed that it would be good to indicate that in the future we will support other methods for sender-constraining tokens, e.g. DPOP. However we need to balance this with the aim of achieving interoperability.
I will propose some wording around this.