Last Call Review of draft-ietf-oauth-assertions-17
review-ietf-oauth-assertions-17-opsdir-lc-ersue-2014-10-16-00

Request Review of draft-ietf-oauth-assertions
Requested revision No specific revision (document currently at 18)
Type IETF Last Call Review
Team Ops Directorate (opsdir)
Deadline 2014-10-14
Requested 2014-10-01
Authors Brian Campbell , Chuck Mortimore , Michael B. Jones , Yaron Y. Goland
I-D last updated 2018-12-20 (Latest revision 2014-10-21)
Completed reviews Genart IETF Last Call review of -08 by Vijay K. Gurbani (diff)
Genart Telechat review of -09 by Vijay K. Gurbani (diff)
Genart Telechat review of -10 by Vijay K. Gurbani (diff)
Secdir IETF Last Call review of -08 by Shawn M Emery (diff)
Secdir Telechat review of -10 by Shawn M Emery (diff)
Opsdir IETF Last Call review of -17 by Mehmet Ersue (diff)
Assignment Reviewer Mehmet Ersue
State Completed
Request IETF Last Call review on draft-ietf-oauth-assertions by Ops Directorate Assigned
Reviewed revision 17 (document currently at 18)
Result Ready
Completed 2014-10-16
review-ietf-oauth-assertions-17-opsdir-lc-ersue-2014-10-16-00

I reviewed the draft "Assertion Framework for OAuth 2.0 Client Authentication
and Authorization Grants" (draft-ietf-oauth-assertions-17.txt) for its
operational impact.



Summary: The document specifies a framework for the use of assertions with
OAuth 2.0 in the form of a new client authentication mechanism and a new
authorization grant type.  Mechanisms specified are for transporting assertions
during interactions with a token endpoint, as well as general processing rules.



Intended status: Standards Track

Current status:  IESG Evaluation

    IANA Review State: IANA - Not OK

    IANA Action State: None





No specific management aspects have been discussed. I think the document does
not create any operational or network management issues.



There is an Outdated reference:

  A later version (-20) exists of draft-ietf-oauth-dyn-reg-16



Mehmet