OIDC Deployment Working Group

[Mischa Salle <>]

Hi all,

On Mon, Oct 22, 2018 at 10:50:43PM +0000, Nick Roy wrote:
> You may have noticed that I talked about API access as a use case in
> these slides. Torsten Lodderstedt noted that it seems like we need a
> federation of OAuth 2 Authorisation Servers, and would also need AS
> discovery, which is a need shared with the FAPI/banking work in the
> OIDF. He is interested in talking with us about these needs and
> figuring out if we can collaborate.

I fully agree that OAuth2-fed is something we will need, but not just
for the AS but for all players (OIDC having just OP/AS and client, for
OAuth2 including also the (external) protected resources).
This is certainly going to be important for (some areas of) R&E. We
actually discussed this at one of the OIDCfed meetings (I think about
half a year ago in Amsterdam, incl also Roland). If I recall correctly,
we decided to first get OIDCfed of the ground, but I also think we
agreed we'd need OAuth2.

    Mischa

> 
> Nick
> 
> On 22 Oct 2018, at 15:22, Nick Roy wrote:
> 
> > Here is a link to the slides I presented today, at the OpenID Foundation 
> > workshop:
> >
> > https://docs.google.com/presentation/d/1vd08a5OLsJOOXpoxbqua-wO-v5OMGZjf9L_d-mO9HUk/edit?usp=sharing
> >
> > Best,
> >
> > Nick



-- 
Nikhef                      Room  H155
Science Park 105            Tel.  +31-20-592 5102
1098 XG Amsterdam           Fax   +31-20-592 5155
The Netherlands             Email 

  __ .. ... _._. .... ._  ... ._ ._.. ._.. .._..

Attachment: signature.asc
Description: Digital signature