OAuth 2.0: Scope Params and access_token format
Current draft of OAuth 2.0 http://datatracker.ietf.org/doc/draft-ietf-oauth-v2/ does not seem to define a standard way of defining “scopes”. It is totally Authorization Server dependent. If it…
View More OAuth 2.0: Scope Params and access_token formatOAuth 2.0 Extension Mechanism Proposal
Defining an Extension Mechanism for both request and response would generally be useful. Some basic design principles: No name space through type URI: fixed registered…
View More OAuth 2.0 Extension Mechanism ProposalKDDI started supporting OpenID
According to their news release, the second largest telco in Japan, KDDI, has started supporting OpenID and payment service using the identifier obtained through OpenID…
View More KDDI started supporting OpenIDOpenID TechNight #6
“OpenID TechNight vol.6”, a technical seminar hosted by OpenID Foundation Japan (OIDF-J) took place on May 28, 2010 at NRI. Here is the summary: Introduction…
View More OpenID TechNight #6OAuth 2.0 Mobile WebApp Flow
In February, I have posted an article about oauth_wrap mobile webapp profile. Now that it is unified to OAuth 2.0 drafts, here is another shot:…
View More OAuth 2.0 Mobile WebApp FlowOpenID AB and Attributes – OpenID Connect?
So, when the sun rises, it is the 10th IIW day. I hoped to prepare more, but with the current ill-health, this probably is the…
View More OpenID AB and Attributes – OpenID Connect?Re: XAuth: First Take
Since the site did not accept the comment… This is a reply to: http://eternallyoptimistic.com/2010/04/20/xauth-first-take/ XAuth seems to be nothing but a shared cookie, so it…
View More Re: XAuth: First TakeNTT docomo now an OpenID Provider
The largest mobile operator in Japan, NTT docomo, which covers approximately 50% of Japanese population, started offering OpenID authentication on March 9, 2010. Every docomo user…
View More NTT docomo now an OpenID ProviderOASIS Open: Submission of requests for Reviews etc.
Just a personal memo on OASIS process as one of the TC chair, but OIDF should develop this kind of chart as well, I think.…
View More OASIS Open: Submission of requests for Reviews etc.OAuth Wrap Mobile Web App Profile?
The wrap_scope, especially when it is determined dynamically using standard vocabulary such as something similar to OpenID AX, can become quite big. Under such circumstances,…
View More OAuth Wrap Mobile Web App Profile?