So I was in UMA call today and that reminded me of this use case. How does Alice share her protected resources (like medical test…
View More Alice to Bob resource sharingCategory: identity
Call for Papers – Open Identity Summit 2013 – Deadline: May 15th, 2013
Dear Ladies and Gentlemen, please be invited to submit a paper or abstract to the “Open Identity Summit”. Furthermore we would be delighted to meet you…
View More Call for Papers – Open Identity Summit 2013 – Deadline: May 15th, 2013Supporting IMAP etc. poor-man’s way
There are multiple efforts that are going on to bring the federated identity to non-web protocols. At IETF, it is done in the kitten WG…
View More Supporting IMAP etc. poor-man’s wayCount Up API
As part of the PEAFIAMP project, we are supposed to come up with a way to provide the service providers (SP, RP) to find out…
View More Count Up APIOpenID Summit in Den Hague, Netherlands (Nov. 21)
The OpenID Foundation is hosting an OpenID workshop as a joint event with the Identity.Next Conference on November 21. It will be held in The…
View More OpenID Summit in Den Hague, Netherlands (Nov. 21)US$1.5M project to bolster the privacy and security of the cyberspace
National Institute of Informatics (NII), University of Tokyo, University of Kyoto, and Nomura Research Institute have jointly won a funding from Ministry of Communication with…
View More US$1.5M project to bolster the privacy and security of the cyberspaceURI Template in OpenID Connect Provider Configuration Response
OpenID Connect Provider Configuration Response for example.com can be obtained from https://example.com/issuer1/.well-known/openid-configuration This is a JSON file such as { “authorization_endpoint”: “https://server.example.com/connect/authorize”, “issuer”: “https://server.example.com”, “token_endpoint”:…
View More URI Template in OpenID Connect Provider Configuration ResponseJSON Schema enhanced OAuth
In the previous post, I wrote about HAL enhanced OAuth. Similar thing can be achieved by using JSON Schema. Many people claim that OAuth 2.0…
View More JSON Schema enhanced OAuthHAL enhanced OAuth 2.0 response – Making OAuth 2.0 slightly more RESTful
Many people claim that OAuth 2.0 is JSON and REST. Well, yes, it is RESTish, but not quite REST. It notably misses the hyperlink capability.…
View More HAL enhanced OAuth 2.0 response – Making OAuth 2.0 slightly more RESTfulRegistered Token Profile for OAuth 2.0
So, ID Token in OpenID connect is audience restricted to the client while the OAuth bearer access token is audience restricted to the protected resource.…
View More Registered Token Profile for OAuth 2.0