Presentation is loading. Please wait.

Presentation is loading. Please wait.

Device Flow <draft-ietf-oauth-device-flow-03>

Published byBarbara Lester Modified over 6 years ago

Similar presentations

Presentation on theme: "Device Flow <draft-ietf-oauth-device-flow-03>"— Presentation transcript:

1 Device Flow <draft-ietf-oauth-device-flow-03>
W. Denniss, S. Myrseth/S. Moffatt, J. Bradley, M. Jones, H. Tschofenig

2 Scope Use case when an OAuth interaction gets "outsourced" to a separate device in order to allow user authentication and collecting the consent. Useful for devices that have limited user interface capabilities.

3 Issue#1: Polling The AS polls the device for the authorization code.
This is not a problem when the user completes the authentication and consent step quickly.

4 Do we need more than polling?
Aaron Parecki : “beauty of the current device flow spec is that it's so simple” William Denniss: “I like the idea of adding HTTP/2 based long-poll as an optional enhancement” “the polling gets the job done” Simon Moffatt: “ForgeRock implemented the AS part of the device flow in January. “ “Simplicity is key here.” “running an HTTP stack on the device, is maybe overkill for some deployments though” Torsten Lodderstedt: “OpenID MODRNA working group, we are working on specs facing similar challenges and decided to offer both pull and push style communication”

5 Issue#2: User Interface
Authorization server provides User Code & Verification URI to the user. User enters these on separate device. What guidance can be given to improve user interaction and improve experience?

6 Issue#3: Alternative Contact Mechanisms
Current mechanism User Code Verification URI Device Client Authorization Server User Browser User Code Verification URI

7 Alternative Contact Mechanisms
Example alternative SMS with User Code Phone # User Device Client User Code User Code Authorization Server

Download ppt "Device Flow <draft-ietf-oauth-device-flow-03>"

Similar presentations

PCT303 – Content Publishing in SharePoint Eugene Rosenfeld Black Blade Associates

PCT303 – Content Publishing in SharePoint Eugene Rosenfeld Black Blade Associates
Performance Challenges for the Open Web Stanford CS193H 29 September 2008.

Performance Challenges for the Open Web Stanford CS193H 29 September 2008.
Attie Naude 14 May 2013 Windows Azure Mobile Services.

Attie Naude 14 May 2013 Windows Azure Mobile Services.
Enterprise -> Cloud Outline –Enterprises have many apps outside their control public cloud; business partner applications –Using standards-based SSO (SAML,

Enterprise -> Cloud Outline –Enterprises have many apps outside their control public cloud; business partner applications –Using standards-based SSO (SAML,
IETF OAuth Proof-of-Possession

IETF OAuth Proof-of-Possession
Hannes Tschofenig, Blaine Cook (IETF#79, Beijing).

Hannes Tschofenig, Blaine Cook (IETF#79, Beijing).
Hannes Tschofenig (IETF#79, SAAG, Beijing). Acknowledgements I would like to thank to Pasi Eronen. I am re- using some of his slides in this presentation.

Hannes Tschofenig (IETF#79, SAAG, Beijing). Acknowledgements I would like to thank to Pasi Eronen. I am re- using some of his slides in this presentation.
Hannes Tschofenig MIT CFP Privacy & Security Working Group Feb. 2 nd 2011.

Hannes Tschofenig MIT CFP Privacy & Security Working Group Feb. 2 nd 2011.
Convergent Newsroom Schedule and Road Map. Unify the User Interface Design Development of the user interface was done in parallel, so the parts need.

Convergent Newsroom Schedule and Road Map. Unify the User Interface Design Development of the user interface was done in parallel, so the parts need.
1 The Cryptographic Token Key Initialization Protocol (CT-KIP) Web Service Description KEYPROV WG IETF-68 Prague March 2007 Andrea Doherty.

1 The Cryptographic Token Key Initialization Protocol (CT-KIP) Web Service Description KEYPROV WG IETF-68 Prague March 2007 Andrea Doherty.
Architecture Of ASP.NET. What is ASP?  Server-side scripting technology.  Files containing HTML and scripting code.  Access via HTTP requests.  Scripting.

Architecture Of ASP.NET. What is ASP?  Server-side scripting technology.  Files containing HTML and scripting code.  Access via HTTP requests.  Scripting.
Creating Signatures at User Agents Comparing Transport Bindings.

Creating Signatures at User Agents Comparing Transport Bindings.
RTCWEB Signaling Matthew Kaufman. Scope Web Server Browser.

RTCWEB Signaling Matthew Kaufman. Scope Web Server Browser.
Designing System for Internet Commerce 6. Functional Architecture Jinwon Lee.

Designing System for Internet Commerce 6. Functional Architecture Jinwon Lee.
Chad La Joie Shibboleth’s Future.

Chad La Joie Shibboleth’s Future.
IETF #91 OAuth Meeting Derek Atkins Hannes Tschofenig.

IETF #91 OAuth Meeting Derek Atkins Hannes Tschofenig.
Hannes Tschofenig, Blaine Cook. 6/4/2016 IETF #77, SAAG 2 The Problem.

Hannes Tschofenig, Blaine Cook. 6/4/2016 IETF #77, SAAG 2 The Problem.
1 3GPP2 GBA Overview Adrian Escott Chair, TSG-S WG4 24 May 2006.

1 3GPP2 GBA Overview Adrian Escott Chair, TSG-S WG4 24 May 2006.
Observations from the OAuth Feature Survey Mike Jones March 14, 2013 IETF 86.

Observations from the OAuth Feature Survey Mike Jones March 14, 2013 IETF 86.
Case Study.  Client needed to build data collection agents for various mobile platform  This needs to be integrated with the existing J2ee server 

Case Study.  Client needed to build data collection agents for various mobile platform  This needs to be integrated with the existing J2ee server 

Similar presentations

Ads by Google