This is a second working group proposal that the specifications council needs to take action upon. Yariv, have there been any updates to the charter since this note?

Thanks,
-- Mike

From: specs-bounces at openid.net [mailto:specs-bounces at openid.net] On Behalf Of Yariv Adan
Sent: Monday, November 03, 2008 6:31 AM
To: specs at openid.net
Subject: Proposal to create the OpenID OAuth Hybrid Working Group

In accordance with the OpenID Foundation IPR policies and procedures<http://openid.net/foundation/intellectual-property/ > this note proposes the formation of a new working group chartered to produce an OpenID specification.
As per Section 4.1 of the Policies, the specifics of the proposed working group are:

Background Information:
OpenID has always been focused on how to enable user-authentication within the browser. Over the last year, OAuth has been developed to allow authorization either from within a browser, desktop software, or mobile devices. Obviously there has been interest in using OpenID and OAuth together allowing a user to share their identity as well as grant a Relying Party access to an OAuth protected resource in a single step. A small group of people have been working on developing an extension to OpenID which makes this possible in a collaborative fashion withinhttp://code.google.com/p/step2/. This small project includes a draft spec and Open Source implementations which the proposers would like to finalize within the OpenID Foundation.


Working Group Name:
OpenID OAuth Hybrid Working Group


Purpose:
Produce a standard OpenID extension to the OpenID Authentication protocol that provides a mechanism to embed an OAuth approval request into an OpenID authentication request to permit combined user approval. The extension addresses the use case where the OpenID Provider and OAuth Service Provider are the same service. To provide good user experience, it is important to present a combined authentication and authorization screen for the two protocols.


Scope:
Standardize the draft Hybrid Protocol (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html) as an official OpenID Extension describing how to combine an OpenID authentication request with the approval of an OAuth request token.


Anticipated Contributions:
Draft specification referenced above and various text contributions as more developers implement it.


Proposed List of Specifications:
OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


Anticipated audience or users of the work:
- OpenID Providers and Relying Parties
- OAuth Consumers and Service Providers
- Implementers of OpenID Providers and Relying Parties


Language in which the WG will conduct business:
English.


Method of work:
E-mail discussions on the working group mailing list and working group conference calls.


Basis for determining when the work of the WG is completed:
The work will be completed once it is apparent that maximal consensus on the protocol proposal has been achieved within the working group, consistent with the purpose and scope.


Proposers:
- Ben Laurie, benl at google.com<mailto:benl at google.com>, Google
- Breno de Medeiros, breno at google.com<mailto:breno at google.com>, Google
- David Recordon, drecordon at sixapart.com<mailto:drecordon at sixapart.com>, Six Apart
- Dirk Balfanz, balfanz at google.com<mailto:balfanz at google.com>, Google
- Joseph Smarr, jsmarr at plaxo.com<mailto:jsmarr at plaxo.com>, Plaxo
- Yariv Adan, yariv at google.com<mailto:yariv at google.com>, Google
- Allen Tom, atom at yahoo-inc.com<mailto:atom at yahoo-inc.com> , Yahoo
- Josh Hoyt, josh at janrain.com<mailto:josh at janrain.com> , JanRain


Initial Editors:
- Dirk Balfanz, balfanz at google.com<mailto:balfanz at google.com>, Google
- Breno de Medeiros, breno at google.com<mailto:breno at google.com>, Google

--
Yariv Adan | Product Manager
Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
This e-mail is confidential. If you are not the right addressee please do not forward it, please inform the sender, and please erase this e-mail including any attachments. Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://openid.net/pipermail/specs-council/attachments/20081218/ca0d96ea/attachment.htm

Search Discussions

  • Yariv Adan at Dec 19, 2008 at 4:52 am
    No, the charter is very much the same. There has been some significant
    progress on the protocol proposal though, following an IIW session on the
    topic and extensive correspondence in this mailing list.
    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones wrote:

    This is a second working group proposal that the specifications council
    needs to take action upon. Yariv, have there been any updates to the
    charter since this note?



    Thanks,

    -- Mike



    *From:* specs-bounces at openid.net [mailto:specs-bounces at openid.net] *On
    Behalf Of *Yariv Adan
    *Sent:* Monday, November 03, 2008 6:31 AM
    *To:* specs at openid.net
    *Subject:* Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and procedures<
    http://openid.net/foundation/intellectual-property/ > this note proposes
    the formation of a new working group chartered to produce an OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication within
    the browser. Over the last year, OAuth has been developed to allow
    authorization either from within a browser, desktop software, or mobile
    devices. Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a Relying
    Party access to an OAuth protected resource in a single step. A small group
    of people have been working on developing an extension to OpenID which makes
    this possible in a collaborative fashion within
    http://code.google.com/p/step2/. This small project includes a draft spec
    and Open Source implementations which the proposers would like to finalize
    within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication protocol
    that provides a mechanism to embed an OAuth approval request into an OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service Provider
    are the same service. To provide good user experience, it is important to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol (
    http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as more
    developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus on
    the protocol proposal has been achieved within the working group, consistent
    with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com, Google
    - Breno de Medeiros, breno at google.com, Google
    - David Recordon, drecordon at sixapart.com, Six Apart
    - Dirk Balfanz, balfanz at google.com, Google
    - Joseph Smarr, jsmarr at plaxo.com, Plaxo
    - Yariv Adan, yariv at google.com, Google

    - Allen Tom, atom at yahoo-inc.com , Yahoo

    - Josh Hoyt, josh at janrain.com , JanRain



    Initial Editors:
    - Dirk Balfanz, balfanz at google.com, Google

    - Breno de Medeiros, breno at google.com, Google


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: http://openid.net/pipermail/specs-council/attachments/20081219/80147e34/attachment-0001.htm
  • Allen Tom at Dec 19, 2008 at 12:40 pm
    +1
    I'm definitely very interested in this one!
    Allen


    Mike Jones wrote:
    This is a second working group proposal that the specifications
    council needs to take action upon. Yariv, have there been any updates
    to the charter since this note?



    Thanks,

    -- Mike



    *From:* specs-bounces at openid.net [mailto:specs-bounces at openid.net] *On
    Behalf Of *Yariv Adan
    *Sent:* Monday, November 03, 2008 6:31 AM
    *To:* specs at openid.net
    *Subject:* Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and
    procedures<http://openid.net/foundation/intellectual-property/ > this
    note proposes the formation of a new working group chartered to
    produce an OpenID specification.
    As per Section 4.1 of the Policies, the specifics of the proposed
    working group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication
    within the browser. Over the last year, OAuth has been developed to
    allow authorization either from within a browser, desktop software, or
    mobile devices. Obviously there has been interest in using OpenID and
    OAuth together allowing a user to share their identity as well as
    grant a Relying Party access to an OAuth protected resource in a
    single step. A small group of people have been working on developing
    an extension to OpenID which makes this possible in a collaborative
    fashion withinhttp://code.google.com/p/step2/. This small project
    includes a draft spec and Open Source implementations which the
    proposers would like to finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication
    protocol that provides a mechanism to embed an OAuth approval request
    into an OpenID authentication request to permit combined user
    approval. The extension addresses the use case where the OpenID
    Provider and OAuth Service Provider are the same service. To provide
    good user experience, it is important to present a combined
    authentication and authorization screen for the two protocols.


    Scope:
    Standardize the draft Hybrid Protocol
    (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as
    more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus
    on the protocol proposal has been achieved within the working group,
    consistent with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com <mailto:benl at google.com>, Google
    - Breno de Medeiros, breno at google.com <mailto:breno at google.com>, Google
    - David Recordon, drecordon at sixapart.com
    <mailto:drecordon at sixapart.com>, Six Apart
    - Dirk Balfanz, balfanz at google.com <mailto:balfanz at google.com>, Google
    - Joseph Smarr, jsmarr at plaxo.com <mailto:jsmarr at plaxo.com>, Plaxo
    - Yariv Adan, yariv at google.com <mailto:yariv at google.com>, Google

    - Allen Tom, atom at yahoo-inc.com <mailto:atom at yahoo-inc.com> , Yahoo

    - Josh Hoyt, josh at janrain.com <mailto:josh at janrain.com> , JanRain



    Initial Editors:
    - Dirk Balfanz, balfanz at google.com <mailto:balfanz at google.com>, Google

    - Breno de Medeiros, breno at google.com <mailto:breno at google.com>, Google


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do not forward it, please inform the sender, and please erase this
    e-mail including any attachments. Thanks.
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: http://openid.net/pipermail/specs-council/attachments/20081219/e4597dc4/attachment.htm
  • Mike Jones at Dec 19, 2008 at 11:02 pm
    David Recordon had earlier written about this proposal:
    I see this as being really needed and quite a bunch of work has already gone into the doc. I'm wondering if it would be better to write a Scope which describes the work and list the current draft as an Anticipated Contribution rather than just saw that the Scope is to standardize that document.

    Are you open to rewording this section of the charter to address David's input, Yariv?

    -- Mike

    From: Allen Tom [mailto:atom at yahoo-inc.com]
    Sent: Friday, December 19, 2008 12:41 PM
    To: Mike Jones; specs-council at openid.net; Yariv Adan
    Subject: Re: [OIDFSC] FW: Proposal to create the OpenID OAuth Hybrid Working Group

    +1
    I'm definitely very interested in this one!
    Allen


    Mike Jones wrote:
    This is a second working group proposal that the specifications council needs to take action upon. Yariv, have there been any updates to the charter since this note?

    Thanks,
    -- Mike

    From: specs-bounces at openid.net[mailto:specs-bounces at openid.net] On Behalf Of Yariv Adan
    Sent: Monday, November 03, 2008 6:31 AM
    To: specs at openid.net<mailto:specs at openid.net>
    Subject: Proposal to create the OpenID OAuth Hybrid Working Group

    In accordance with the OpenID Foundation IPR policies and procedures<http://openid.net/foundation/intellectual-property/ > this note proposes the formation of a new working group chartered to produce an OpenID specification.
    As per Section 4.1 of the Policies, the specifics of the proposed working group are:

    Background Information:
    OpenID has always been focused on how to enable user-authentication within the browser. Over the last year, OAuth has been developed to allow authorization either from within a browser, desktop software, or mobile devices. Obviously there has been interest in using OpenID and OAuth together allowing a user to share their identity as well as grant a Relying Party access to an OAuth protected resource in a single step. A small group of people have been working on developing an extension to OpenID which makes this possible in a collaborative fashion withinhttp://code.google.com/p/step2/. This small project includes a draft spec and Open Source implementations which the proposers would like to finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication protocol that provides a mechanism to embed an OAuth approval request into an OpenID authentication request to permit combined user approval. The extension addresses the use case where the OpenID Provider and OAuth Service Provider are the same service. To provide good user experience, it is important to present a combined authentication and authorization screen for the two protocols.


    Scope:
    Standardize the draft Hybrid Protocol (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html) as an official OpenID Extension describing how to combine an OpenID authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus on the protocol proposal has been achieved within the working group, consistent with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com<mailto:benl at google.com>, Google
    - Breno de Medeiros, breno at google.com<mailto:breno at google.com>, Google
    - David Recordon, drecordon at sixapart.com<mailto:drecordon at sixapart.com>, Six Apart
    - Dirk Balfanz, balfanz at google.com<mailto:balfanz at google.com>, Google
    - Joseph Smarr, jsmarr at plaxo.com<mailto:jsmarr at plaxo.com>, Plaxo
    - Yariv Adan, yariv at google.com<mailto:yariv at google.com>, Google
    - Allen Tom, atom at yahoo-inc.com<mailto:atom at yahoo-inc.com> , Yahoo
    - Josh Hoyt, josh at janrain.com<mailto:josh at janrain.com> , JanRain


    Initial Editors:
    - Dirk Balfanz, balfanz at google.com<mailto:balfanz at google.com>, Google
    - Breno de Medeiros, breno at google.com<mailto:breno at google.com>, Google

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do not forward it, please inform the sender, and please erase this e-mail including any attachments. Thanks.

    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: http://openid.net/pipermail/specs-council/attachments/20081219/65da4a8a/attachment-0001.htm
  • David Recordon at Dec 22, 2008 at 10:22 am
    Hi Yariv,
    Yes, can you please place the latest draft of the proposal on the wiki at
    http://wiki.openid.net/Working_Groups:OpenID_and_OAuth_Hybrid_Extension?

    Thanks,
    --David
    On Fri, Dec 19, 2008 at 11:02 PM, Mike Jones wrote:

    David Recordon had earlier written about this proposal:

    I see this as being really needed and quite a bunch of work has already
    gone into the doc. I'm wondering if it would be better to write a Scope
    which describes the work and list the current draft as an Anticipated
    Contribution rather than just saw that the Scope is to standardize that
    document.



    Are you open to rewording this section of the charter to address David's
    input, Yariv?



    -- Mike



    *From:* Allen Tom [mailto:atom at yahoo-inc.com]
    *Sent:* Friday, December 19, 2008 12:41 PM
    *To:* Mike Jones; specs-council at openid.net; Yariv Adan
    *Subject:* Re: [OIDFSC] FW: Proposal to create the OpenID OAuth Hybrid
    Working Group



    +1
    I'm definitely very interested in this one!
    Allen


    Mike Jones wrote:

    This is a second working group proposal that the specifications council
    needs to take action upon. Yariv, have there been any updates to the
    charter since this note?



    Thanks,

    -- Mike



    *From:* specs-bounces at openid.net [mailto:specs-bounces at openid.net<specs-bounces at openid.net>]
    *On Behalf Of *Yariv Adan
    *Sent:* Monday, November 03, 2008 6:31 AM
    *To:* specs at openid.net
    *Subject:* Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and procedures<
    http://openid.net/foundation/intellectual-property/ > this note proposes
    the formation of a new working group chartered to produce an OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication within
    the browser. Over the last year, OAuth has been developed to allow
    authorization either from within a browser, desktop software, or mobile
    devices. Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a Relying
    Party access to an OAuth protected resource in a single step. A small group
    of people have been working on developing an extension to OpenID which makes
    this possible in a collaborative fashion within
    http://code.google.com/p/step2/. This small project includes a draft spec
    and Open Source implementations which the proposers would like to finalize
    within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication protocol
    that provides a mechanism to embed an OAuth approval request into an OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service Provider
    are the same service. To provide good user experience, it is important to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol (
    http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as more
    developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus on
    the protocol proposal has been achieved within the working group, consistent
    with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com, Google
    - Breno de Medeiros, breno at google.com, Google
    - David Recordon, drecordon at sixapart.com, Six Apart
    - Dirk Balfanz, balfanz at google.com, Google
    - Joseph Smarr, jsmarr at plaxo.com, Plaxo
    - Yariv Adan, yariv at google.com, Google

    - Allen Tom, atom at yahoo-inc.com , Yahoo

    - Josh Hoyt, josh at janrain.com , JanRain



    Initial Editors:
    - Dirk Balfanz, balfanz at google.com, Google

    - Breno de Medeiros, breno at google.com, Google


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.

    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: http://openid.net/pipermail/specs-council/attachments/20081222/ed3e6718/attachment.htm
  • Mike Jones at Dec 23, 2008 at 1:24 pm
    (adding the proposed editors to this thread)

    Are the proposers open to rewording this section of the charter to address David's input? If so, can you please let the specs council know what the new wording will be?

    Thanks,
    -- Mike

    From: specs-council-bounces at openid.net [mailto:specs-council-bounces at openid.net] On Behalf Of Mike Jones
    Sent: Friday, December 19, 2008 11:02 PM
    To: Yariv Adan; specs-council at openid.net
    Subject: Re: [OIDFSC] FW: Proposal to create the OpenID OAuth Hybrid Working Group

    David Recordon had earlier written about this proposal:
    I see this as being really needed and quite a bunch of work has already gone into the doc. I'm wondering if it would be better to write a Scope which describes the work and list the current draft as an Anticipated Contribution rather than just saw that the Scope is to standardize that document.

    Are you open to rewording this section of the charter to address David's input, Yariv?

    -- Mike

    From: Allen Tom [mailto:atom at yahoo-inc.com]
    Sent: Friday, December 19, 2008 12:41 PM
    To: Mike Jones; specs-council at openid.net; Yariv Adan
    Subject: Re: [OIDFSC] FW: Proposal to create the OpenID OAuth Hybrid Working Group

    +1
    I'm definitely very interested in this one!
    Allen


    Mike Jones wrote:
    This is a second working group proposal that the specifications council needs to take action upon. Yariv, have there been any updates to the charter since this note?

    Thanks,
    -- Mike

    From: specs-bounces at openid.net[mailto:specs-bounces at openid.net] On Behalf Of Yariv Adan
    Sent: Monday, November 03, 2008 6:31 AM
    To: specs at openid.net<mailto:specs at openid.net>
    Subject: Proposal to create the OpenID OAuth Hybrid Working Group

    In accordance with the OpenID Foundation IPR policies and procedures<http://openid.net/foundation/intellectual-property/ > this note proposes the formation of a new working group chartered to produce an OpenID specification.
    As per Section 4.1 of the Policies, the specifics of the proposed working group are:

    Background Information:
    OpenID has always been focused on how to enable user-authentication within the browser. Over the last year, OAuth has been developed to allow authorization either from within a browser, desktop software, or mobile devices. Obviously there has been interest in using OpenID and OAuth together allowing a user to share their identity as well as grant a Relying Party access to an OAuth protected resource in a single step. A small group of people have been working on developing an extension to OpenID which makes this possible in a collaborative fashion withinhttp://code.google.com/p/step2/. This small project includes a draft spec and Open Source implementations which the proposers would like to finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication protocol that provides a mechanism to embed an OAuth approval request into an OpenID authentication request to permit combined user approval. The extension addresses the use case where the OpenID Provider and OAuth Service Provider are the same service. To provide good user experience, it is important to present a combined authentication and authorization screen for the two protocols.


    Scope:
    Standardize the draft Hybrid Protocol (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html) as an official OpenID Extension describing how to combine an OpenID authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus on the protocol proposal has been achieved within the working group, consistent with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com<mailto:benl at google.com>, Google
    - Breno de Medeiros, breno at google.com<mailto:breno at google.com>, Google
    - David Recordon, drecordon at sixapart.com<mailto:drecordon at sixapart.com>, Six Apart
    - Dirk Balfanz, balfanz at google.com<mailto:balfanz at google.com>, Google
    - Joseph Smarr, jsmarr at plaxo.com<mailto:jsmarr at plaxo.com>, Plaxo
    - Yariv Adan, yariv at google.com<mailto:yariv at google.com>, Google
    - Allen Tom, atom at yahoo-inc.com<mailto:atom at yahoo-inc.com> , Yahoo
    - Josh Hoyt, josh at janrain.com<mailto:josh at janrain.com> , JanRain


    Initial Editors:
    - Dirk Balfanz, balfanz at google.com<mailto:balfanz at google.com>, Google
    - Breno de Medeiros, breno at google.com<mailto:breno at google.com>, Google

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do not forward it, please inform the sender, and please erase this e-mail including any attachments. Thanks.

    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: http://openid.net/pipermail/specs-council/attachments/20081223/e01eda95/attachment-0001.htm
  • Yariv Adan at Jan 12, 2009 at 6:43 am
    Charter was updated and is now available for the specification council in
    http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks

    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones wrote:

    This is a second working group proposal that the specifications council
    needs to take action upon. Yariv, have there been any updates to the
    charter since this note?



    Thanks,

    -- Mike



    *From:* specs-bounces at openid.net [mailto:specs-bounces at openid.net] *On
    Behalf Of *Yariv Adan
    *Sent:* Monday, November 03, 2008 6:31 AM
    *To:* specs at openid.net
    *Subject:* Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and procedures<
    http://openid.net/foundation/intellectual-property/ > this note proposes
    the formation of a new working group chartered to produce an OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication within
    the browser. Over the last year, OAuth has been developed to allow
    authorization either from within a browser, desktop software, or mobile
    devices. Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a Relying
    Party access to an OAuth protected resource in a single step. A small group
    of people have been working on developing an extension to OpenID which makes
    this possible in a collaborative fashion within
    http://code.google.com/p/step2/. This small project includes a draft spec
    and Open Source implementations which the proposers would like to finalize
    within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication protocol
    that provides a mechanism to embed an OAuth approval request into an OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service Provider
    are the same service. To provide good user experience, it is important to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol (
    http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as more
    developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus on
    the protocol proposal has been achieved within the working group, consistent
    with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com, Google
    - Breno de Medeiros, breno at google.com, Google
    - David Recordon, drecordon at sixapart.com, Six Apart
    - Dirk Balfanz, balfanz at google.com, Google
    - Joseph Smarr, jsmarr at plaxo.com, Plaxo
    - Yariv Adan, yariv at google.com, Google

    - Allen Tom, atom at yahoo-inc.com , Yahoo

    - Josh Hoyt, josh at janrain.com , JanRain



    Initial Editors:
    - Dirk Balfanz, balfanz at google.com, Google

    - Breno de Medeiros, breno at google.com, Google


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: <http://openid.net/pipermail/specs-council/attachments/20090112/d683bd84/attachment.htm>
  • David Recordon at Jan 12, 2009 at 1:29 pm
    Thanks Yariv.

    I am +1 for approving this proposal.

    --David
    On Mon, Jan 12, 2009 at 6:43 AM, Yariv Adan wrote:


    Charter was updated and is now available for the specification council in
    http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks

    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones wrote:

    This is a second working group proposal that the specifications council
    needs to take action upon. Yariv, have there been any updates to the
    charter since this note?



    Thanks,

    -- Mike



    *From:* specs-bounces at openid.net [mailto:specs-bounces at openid.net] *On
    Behalf Of *Yariv Adan
    *Sent:* Monday, November 03, 2008 6:31 AM
    *To:* specs at openid.net
    *Subject:* Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and procedures<
    http://openid.net/foundation/intellectual-property/ > this note proposes
    the formation of a new working group chartered to produce an OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication within
    the browser. Over the last year, OAuth has been developed to allow
    authorization either from within a browser, desktop software, or mobile
    devices. Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a Relying
    Party access to an OAuth protected resource in a single step. A small group
    of people have been working on developing an extension to OpenID which makes
    this possible in a collaborative fashion within
    http://code.google.com/p/step2/. This small project includes a draft
    spec and Open Source implementations which the proposers would like to
    finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication protocol
    that provides a mechanism to embed an OAuth approval request into an OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service Provider
    are the same service. To provide good user experience, it is important to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol (
    http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as
    more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus on
    the protocol proposal has been achieved within the working group, consistent
    with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com, Google
    - Breno de Medeiros, breno at google.com, Google
    - David Recordon, drecordon at sixapart.com, Six Apart
    - Dirk Balfanz, balfanz at google.com, Google
    - Joseph Smarr, jsmarr at plaxo.com, Plaxo
    - Yariv Adan, yariv at google.com, Google

    - Allen Tom, atom at yahoo-inc.com , Yahoo

    - Josh Hoyt, josh at janrain.com , JanRain



    Initial Editors:
    - Dirk Balfanz, balfanz at google.com, Google

    - Breno de Medeiros, breno at google.com, Google


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: <http://openid.net/pipermail/specs-council/attachments/20090112/3b1e0212/attachment.htm>
  • Josh Hoyt at Jan 12, 2009 at 1:53 pm

    On Mon, Jan 12, 2009 at 1:29 PM, David Recordon wrote:
    I am +1 for approving this proposal.
    Also +1 from me.

    j3h
  • Mike Jones at Jan 12, 2009 at 9:39 pm
    +1 from me as well.

    -----Original Message-----
    From: specs-council-bounces at openid.net [mailto:specs-council-bounces at openid.net] On Behalf Of Josh Hoyt
    Sent: Monday, January 12, 2009 1:54 PM
    To: specs-council at openid.net
    Subject: Re: [OIDFSC] Fwd: FW: Proposal to create the OpenID OAuth Hybrid Working Group
    On Mon, Jan 12, 2009 at 1:29 PM, David Recordon wrote:
    I am +1 for approving this proposal.
    Also +1 from me.

    j3h
  • Nat Sakimura at Jan 13, 2009 at 12:31 am
    Maybe I am a formalist, but I think it is better for the WG proposal to
    follow exactly the structure and the numbering scheme layed out in the
    OpenID Process document Article 4.1 so that we will get a consitent format
    for every WGs.

    One of the failing reason for the spec concil not issuing recommendation is
    exactly this. (Article 4.2 (a)).
    SInce it is just a formatting issue, it is better to do it.

    =nat
    On Tue, Jan 13, 2009 at 2:39 PM, Mike Jones wrote:

    +1 from me as well.

    -----Original Message-----
    From: specs-council-bounces at openid.net [mailto:
    specs-council-bounces at openid.net] On Behalf Of Josh Hoyt
    Sent: Monday, January 12, 2009 1:54 PM
    To: specs-council at openid.net
    Subject: Re: [OIDFSC] Fwd: FW: Proposal to create the OpenID OAuth Hybrid
    Working Group
    On Mon, Jan 12, 2009 at 1:29 PM, David Recordon wrote:
    I am +1 for approving this proposal.
    Also +1 from me.

    j3h

    --
    Nat Sakimura (=nat)
    http://www.sakimura.org/en/
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: <http://openid.net/pipermail/specs-council/attachments/20090113/ae435b90/attachment.htm>
  • David Recordon at Jan 13, 2009 at 12:47 am
    Hi Nat,
    The wiki just creates the numbered "table of contents" based off of the
    order of the headings on the page. 4.1 doesn't actually prescribe an order
    of the information, just that all of the information listed in A and B are
    there. As far as I can tell, all of that information is in the proposal.
    So yes, having a similar structure is a good thing though I'm able to easily
    read and understand this proposal.

    --David
    On Tue, Jan 13, 2009 at 12:31 AM, Nat Sakimura wrote:

    Maybe I am a formalist, but I think it is better for the WG proposal to
    follow exactly the structure and the numbering scheme layed out in the
    OpenID Process document Article 4.1 so that we will get a consitent format
    for every WGs.

    One of the failing reason for the spec concil not issuing recommendation is
    exactly this. (Article 4.2 (a)).
    SInce it is just a formatting issue, it is better to do it.

    =nat

    On Tue, Jan 13, 2009 at 2:39 PM, Mike Jones wrote:

    +1 from me as well.

    -----Original Message-----
    From: specs-council-bounces at openid.net [mailto:
    specs-council-bounces at openid.net] On Behalf Of Josh Hoyt
    Sent: Monday, January 12, 2009 1:54 PM
    To: specs-council at openid.net
    Subject: Re: [OIDFSC] Fwd: FW: Proposal to create the OpenID OAuth Hybrid
    Working Group

    On Mon, Jan 12, 2009 at 1:29 PM, David Recordon <recordond at gmail.com>
    wrote:
    I am +1 for approving this proposal.
    Also +1 from me.

    j3h

    --
    Nat Sakimura (=nat)
    http://www.sakimura.org/en/
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: <http://openid.net/pipermail/specs-council/attachments/20090113/5f560044/attachment.htm>
  • Nat Sakimura at Jan 13, 2009 at 1:12 am
    Right. As I have pointed out, it is just the formatting thing.

    For the purpose of the ease of parsing out those document by a future
    reader, I think it is a good practice to adopt the same format.

    I can just go ahead and reorder them and number them, but I think it is
    better for the proposer to do it.

    =nat
    On Tue, Jan 13, 2009 at 5:47 PM, David Recordon wrote:

    Hi Nat,
    The wiki just creates the numbered "table of contents" based off of the
    order of the headings on the page. 4.1 doesn't actually prescribe an order
    of the information, just that all of the information listed in A and B are
    there. As far as I can tell, all of that information is in the proposal.
    So yes, having a similar structure is a good thing though I'm able to easily
    read and understand this proposal.

    --David

    On Tue, Jan 13, 2009 at 12:31 AM, Nat Sakimura wrote:

    Maybe I am a formalist, but I think it is better for the WG proposal to
    follow exactly the structure and the numbering scheme layed out in the
    OpenID Process document Article 4.1 so that we will get a consitent format
    for every WGs.

    One of the failing reason for the spec concil not issuing recommendation
    is exactly this. (Article 4.2 (a)).
    SInce it is just a formatting issue, it is better to do it.

    =nat

    On Tue, Jan 13, 2009 at 2:39 PM, Mike Jones wrote:

    +1 from me as well.

    -----Original Message-----
    From: specs-council-bounces at openid.net [mailto:
    specs-council-bounces at openid.net] On Behalf Of Josh Hoyt
    Sent: Monday, January 12, 2009 1:54 PM
    To: specs-council at openid.net
    Subject: Re: [OIDFSC] Fwd: FW: Proposal to create the OpenID OAuth Hybrid
    Working Group

    On Mon, Jan 12, 2009 at 1:29 PM, David Recordon <recordond at gmail.com>
    wrote:
    I am +1 for approving this proposal.
    Also +1 from me.

    j3h

    --
    Nat Sakimura (=nat)
    http://www.sakimura.org/en/

    --
    Nat Sakimura (=nat)
    http://www.sakimura.org/en/
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: <http://openid.net/pipermail/specs-council/attachments/20090113/a4e1525f/attachment.htm>
  • Nat Sakimura at Jan 13, 2009 at 6:47 pm
    Looks like specs-council list does not accept mails with more than couple of
    CCs.

    I am forwarding it to the list without CCs.

    =nat

    ---------- Forwarded message ----------
    From: Nat Sakimura <sakimura at gmail.com>
    Date: Tue, Jan 13, 2009 at 6:12 PM
    Subject: Re: [OIDFSC] Fwd: FW: Proposal to create the OpenID OAuth Hybrid
    Working Group
    To: David Recordon <recordond at gmail.com>
    Cc: Mike Jones <Michael.Jones at microsoft.com>, Josh Hoyt <josh at janrain.com>,
    "specs-council at openid.net" <specs-council at openid.net>


    Right. As I have pointed out, it is just the formatting thing.

    For the purpose of the ease of parsing out those document by a future
    reader, I think it is a good practice to adopt the same format.

    I can just go ahead and reorder them and number them, but I think it is
    better for the proposer to do it.

    =nat

    On Tue, Jan 13, 2009 at 5:47 PM, David Recordon wrote:

    Hi Nat,
    The wiki just creates the numbered "table of contents" based off of the
    order of the headings on the page. 4.1 doesn't actually prescribe an order
    of the information, just that all of the information listed in A and B are
    there. As far as I can tell, all of that information is in the proposal.
    So yes, having a similar structure is a good thing though I'm able to easily
    read and understand this proposal.

    --David

    On Tue, Jan 13, 2009 at 12:31 AM, Nat Sakimura wrote:

    Maybe I am a formalist, but I think it is better for the WG proposal to
    follow exactly the structure and the numbering scheme layed out in the
    OpenID Process document Article 4.1 so that we will get a consitent format
    for every WGs.

    One of the failing reason for the spec concil not issuing recommendation
    is exactly this. (Article 4.2 (a)).
    SInce it is just a formatting issue, it is better to do it.

    =nat

    On Tue, Jan 13, 2009 at 2:39 PM, Mike Jones wrote:

    +1 from me as well.

    -----Original Message-----
    From: specs-council-bounces at openid.net [mailto:
    specs-council-bounces at openid.net] On Behalf Of Josh Hoyt
    Sent: Monday, January 12, 2009 1:54 PM
    To: specs-council at openid.net
    Subject: Re: [OIDFSC] Fwd: FW: Proposal to create the OpenID OAuth Hybrid
    Working Group

    On Mon, Jan 12, 2009 at 1:29 PM, David Recordon <recordond at gmail.com>
    wrote:
    I am +1 for approving this proposal.
    Also +1 from me.

    j3h

    --
    Nat Sakimura (=nat)
    http://www.sakimura.org/en/

    --
    Nat Sakimura (=nat)
    http://www.sakimura.org/en/



    --
    Nat Sakimura (=nat)
    http://www.sakimura.org/en/
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: <http://openid.net/pipermail/specs-council/attachments/20090114/40759d9f/attachment.htm>
  • Allen Tom at Jan 21, 2009 at 10:20 pm
    +1 from me.

    Allen


    Yariv Adan wrote:
    Charter was updated and is now available for the specification council
    in http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks


    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones
    <Michael.Jones at microsoft.com wrote:

    This is a second working group proposal that the specifications
    council needs to take action upon. Yariv, have there been any
    updates to the charter since this note?




    Thanks,

    --
    Mike



    *From:* specs-bounces at openid.net [mailto:specs-bounces at openid.net
    <mailto:specs-bounces at openid.net>] *On Behalf Of *Yariv Adan
    *Sent:* Monday, November 03, 2008 6:31 AM
    *To:* specs at openid.net <mailto:specs at openid.net>
    *Subject:* Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and
    procedures<http://openid.net/foundation/intellectual-property/ >
    this note proposes the formation of a new working group chartered
    to produce an OpenID specification.
    As per Section 4.1 of the Policies, the specifics of the proposed
    working group are:



    Background Information:

    OpenID has always been focused on how to enable
    user-authentication within the browser. Over the last year, OAuth
    has been developed to allow authorization either from within a
    browser, desktop software, or mobile devices. Obviously there has
    been interest in using OpenID and OAuth together allowing a user
    to share their identity as well as grant a Relying Party access to
    an OAuth protected resource in a single step. A small group of
    people have been working on developing an extension to OpenID
    which makes this possible in a collaborative fashion
    withinhttp://code.google.com/p/step2/. This small project
    includes a draft spec and Open Source implementations which the
    proposers would like to finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication
    protocol that provides a mechanism to embed an OAuth approval
    request into an OpenID authentication request to permit combined
    user approval. The extension addresses the use case where the
    OpenID Provider and OAuth Service Provider are the same service.
    To provide good user experience, it is important to present a
    combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol
    (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an
    OpenID authentication request with the approval of an OAuth
    request token.


    Anticipated Contributions:
    Draft specification referenced above and various text
    contributions as more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working
    group conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal
    consensus on the protocol proposal has been achieved within the
    working group, consistent with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com <mailto:benl at google.com>, Google
    - Breno de Medeiros, breno at google.com <mailto:breno at google.com>,
    Google
    - David Recordon, drecordon at sixapart.com
    <mailto:drecordon at sixapart.com>, Six Apart
    - Dirk Balfanz, balfanz at google.com <mailto:balfanz at google.com>,
    Google
    - Joseph Smarr, jsmarr at plaxo.com <mailto:jsmarr at plaxo.com>, Plaxo
    - Yariv Adan, yariv at google.com <mailto:yariv at google.com>, Google

    - Allen Tom, atom at yahoo-inc.com <mailto:atom at yahoo-inc.com> , Yahoo

    - Josh Hoyt, josh at janrain.com <mailto:josh at janrain.com> , JanRain



    Initial Editors:
    - Dirk Balfanz, balfanz at google.com <mailto:balfanz at google.com>,
    Google

    - Breno de Medeiros, breno at google.com <mailto:breno at google.com>,
    Google


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee
    please do not forward it, please inform the sender, and please
    erase this e-mail including any attachments. Thanks.




    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do not forward it, please inform the sender, and please erase this
    e-mail including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do not forward it, please inform the sender, and please erase this
    e-mail including any attachments. Thanks.
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: <http://openid.net/pipermail/specs-council/attachments/20090121/7074ad5c/attachment.htm>
  • Yariv Adan at Jan 28, 2009 at 8:39 am
    Is there any update on the status of this, and when can we move forward?
    Looks like we are already after the heated discussion phase.
    On Thu, Jan 22, 2009 at 7:20 AM, Allen Tom wrote:

    +1 from me.

    Allen



    Yariv Adan wrote:


    Charter was updated and is now available for the specification council in
    http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks
    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones wrote:

    This is a second working group proposal that the specifications council
    needs to take action upon. Yariv, have there been any updates to the
    charter since this note?



    Thanks,

    -- Mike



    *From:* specs-bounces at openid.net [mailto:specs-bounces at openid.net] *On
    Behalf Of *Yariv Adan
    *Sent:* Monday, November 03, 2008 6:31 AM
    *To:* specs at openid.net
    *Subject:* Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and procedures<
    http://openid.net/foundation/intellectual-property/ > this note proposes
    the formation of a new working group chartered to produce an OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication within
    the browser. Over the last year, OAuth has been developed to allow
    authorization either from within a browser, desktop software, or mobile
    devices. Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a Relying
    Party access to an OAuth protected resource in a single step. A small group
    of people have been working on developing an extension to OpenID which makes
    this possible in a collaborative fashion within
    http://code.google.com/p/step2/. This small project includes a draft
    spec and Open Source implementations which the proposers would like to
    finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication protocol
    that provides a mechanism to embed an OAuth approval request into an OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service Provider
    are the same service. To provide good user experience, it is important to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol (
    http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as
    more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus on
    the protocol proposal has been achieved within the working group, consistent
    with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com, Google
    - Breno de Medeiros, breno at google.com, Google
    - David Recordon, drecordon at sixapart.com, Six Apart
    - Dirk Balfanz, balfanz at google.com, Google
    - Joseph Smarr, jsmarr at plaxo.com, Plaxo
    - Yariv Adan, yariv at google.com, Google

    - Allen Tom, atom at yahoo-inc.com , Yahoo

    - Josh Hoyt, josh at janrain.com , JanRain



    Initial Editors:
    - Dirk Balfanz, balfanz at google.com, Google

    - Breno de Medeiros, breno at google.com, Google


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: <http://openid.net/pipermail/specs-council/attachments/20090128/d8b05b39/attachment.htm>
  • David Recordon at Jan 28, 2009 at 8:45 am
    It seems that right now we have +1 votes from Allen, David, and Josh.
    We're thus missing votes from Brad, Dick, Johnny and Mike (all on the
    to line of this email).

    Dick, Johnny, Mike and Brad. Please reply with your vote on the
    OpenID/OAuth hybrid proposal as soon as you can.

    Thanks,
    --David
    On Wed, Jan 28, 2009 at 8:39 AM, Yariv Adan wrote:
    Is there any update on the status of this, and when can we move forward?
    Looks like we are already after the heated discussion phase.
    On Thu, Jan 22, 2009 at 7:20 AM, Allen Tom wrote:

    +1 from me.

    Allen


    Yariv Adan wrote:

    Charter was updated and is now available for the specification council in
    http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks

    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones <Michael.Jones at microsoft.com>
    wrote:
    This is a second working group proposal that the specifications council
    needs to take action upon. Yariv, have there been any updates to the
    charter since this note?



    Thanks,

    -- Mike



    From: specs-bounces at openid.net [mailto:specs-bounces at openid.net] On
    Behalf Of Yariv Adan
    Sent: Monday, November 03, 2008 6:31 AM
    To: specs at openid.net
    Subject: Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and
    procedures<http://openid.net/foundation/intellectual-property/ > this note
    proposes the formation of a new working group chartered to produce an OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication
    within the browser. Over the last year, OAuth has been developed to allow
    authorization either from within a browser, desktop software, or mobile
    devices. Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a Relying
    Party access to an OAuth protected resource in a single step. A small group
    of people have been working on developing an extension to OpenID which makes
    this possible in a collaborative fashion
    withinhttp://code.google.com/p/step2/. This small project includes a draft
    spec and Open Source implementations which the proposers would like to
    finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication protocol
    that provides a mechanism to embed an OAuth approval request into an OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service Provider
    are the same service. To provide good user experience, it is important to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol
    (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as
    more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus on
    the protocol proposal has been achieved within the working group, consistent
    with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com, Google
    - Breno de Medeiros, breno at google.com, Google
    - David Recordon, drecordon at sixapart.com, Six Apart
    - Dirk Balfanz, balfanz at google.com, Google
    - Joseph Smarr, jsmarr at plaxo.com, Plaxo
    - Yariv Adan, yariv at google.com, Google

    - Allen Tom, atom at yahoo-inc.com , Yahoo

    - Josh Hoyt, josh at janrain.com , JanRain

    Initial Editors:
    - Dirk Balfanz, balfanz at google.com, Google

    - Breno de Medeiros, breno at google.com, Google

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
  • Mike Jones at Jan 28, 2009 at 8:54 am
    I already voted +1 some time back.

    David, could you draft a proposed recommendation from the specs council to send to specs at openid.net, so we can close our responsibilities for this proposal?

    Thanks,
    -- Mike

    -----Original Message-----
    From: David Recordon [mailto:recordond at gmail.com]
    Sent: Wednesday, January 28, 2009 8:45 AM
    To: Yariv Adan; Dick Hardt; Mike Jones; Brad Fitzpatrick; Johnny Bufu
    Cc: specs-council at openid.net
    Subject: Re: [OIDFSC] Fwd: FW: Proposal to create the OpenID OAuth Hybrid Working Group

    It seems that right now we have +1 votes from Allen, David, and Josh.
    We're thus missing votes from Brad, Dick, Johnny and Mike (all on the
    to line of this email).

    Dick, Johnny, Mike and Brad. Please reply with your vote on the
    OpenID/OAuth hybrid proposal as soon as you can.

    Thanks,
    --David
    On Wed, Jan 28, 2009 at 8:39 AM, Yariv Adan wrote:
    Is there any update on the status of this, and when can we move forward?
    Looks like we are already after the heated discussion phase.
    On Thu, Jan 22, 2009 at 7:20 AM, Allen Tom wrote:

    +1 from me.

    Allen


    Yariv Adan wrote:

    Charter was updated and is now available for the specification council in
    http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks

    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones <Michael.Jones at microsoft.com>
    wrote:
    This is a second working group proposal that the specifications council
    needs to take action upon. Yariv, have there been any updates to the
    charter since this note?



    Thanks,

    -- Mike



    From: specs-bounces at openid.net [mailto:specs-bounces at openid.net] On
    Behalf Of Yariv Adan
    Sent: Monday, November 03, 2008 6:31 AM
    To: specs at openid.net
    Subject: Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and
    procedures<http://openid.net/foundation/intellectual-property/ > this note
    proposes the formation of a new working group chartered to produce an OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication
    within the browser. Over the last year, OAuth has been developed to allow
    authorization either from within a browser, desktop software, or mobile
    devices. Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a Relying
    Party access to an OAuth protected resource in a single step. A small group
    of people have been working on developing an extension to OpenID which makes
    this possible in a collaborative fashion
    withinhttp://code.google.com/p/step2/. This small project includes a draft
    spec and Open Source implementations which the proposers would like to
    finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication protocol
    that provides a mechanism to embed an OAuth approval request into an OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service Provider
    are the same service. To provide good user experience, it is important to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol
    (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as
    more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus on
    the protocol proposal has been achieved within the working group, consistent
    with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com, Google
    - Breno de Medeiros, breno at google.com, Google
    - David Recordon, drecordon at sixapart.com, Six Apart
    - Dirk Balfanz, balfanz at google.com, Google
    - Joseph Smarr, jsmarr at plaxo.com, Plaxo
    - Yariv Adan, yariv at google.com, Google

    - Allen Tom, atom at yahoo-inc.com , Yahoo

    - Josh Hoyt, josh at janrain.com , JanRain

    Initial Editors:
    - Dirk Balfanz, balfanz at google.com, Google

    - Breno de Medeiros, breno at google.com, Google

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
  • Yariv Adan at Feb 28, 2009 at 2:15 am
    This is currently under membership vote. When does the poll expire? Is
    anyone "monitoring" this / is there a way to know whether there are 20
    supporters so the WG can be created? Should we call the voters to go to the
    polls :) ?

    Thanks
    On Wed, Jan 28, 2009 at 5:54 PM, Mike Jones wrote:

    I already voted +1 some time back.

    David, could you draft a proposed recommendation from the specs council to
    send to specs at openid.net, so we can close our responsibilities for this
    proposal?

    Thanks,
    -- Mike

    -----Original Message-----
    From: David Recordon [mailto:recordond at gmail.com]
    Sent: Wednesday, January 28, 2009 8:45 AM
    To: Yariv Adan; Dick Hardt; Mike Jones; Brad Fitzpatrick; Johnny Bufu
    Cc: specs-council at openid.net
    Subject: Re: [OIDFSC] Fwd: FW: Proposal to create the OpenID OAuth Hybrid
    Working Group

    It seems that right now we have +1 votes from Allen, David, and Josh.
    We're thus missing votes from Brad, Dick, Johnny and Mike (all on the
    to line of this email).

    Dick, Johnny, Mike and Brad. Please reply with your vote on the
    OpenID/OAuth hybrid proposal as soon as you can.

    Thanks,
    --David
    On Wed, Jan 28, 2009 at 8:39 AM, Yariv Adan wrote:
    Is there any update on the status of this, and when can we move forward?
    Looks like we are already after the heated discussion phase.
    On Thu, Jan 22, 2009 at 7:20 AM, Allen Tom wrote:

    +1 from me.

    Allen


    Yariv Adan wrote:

    Charter was updated and is now available for the specification council
    in
    http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks

    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones <
    Michael.Jones at microsoft.com>
    wrote:
    This is a second working group proposal that the specifications council
    needs to take action upon. Yariv, have there been any updates to the
    charter since this note?



    Thanks,

    -- Mike



    From: specs-bounces at openid.net [mailto:specs-bounces at openid.net] On
    Behalf Of Yariv Adan
    Sent: Monday, November 03, 2008 6:31 AM
    To: specs at openid.net
    Subject: Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and
    procedures<http://openid.net/foundation/intellectual-property/ > this
    note
    proposes the formation of a new working group chartered to produce an
    OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed
    working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication
    within the browser. Over the last year, OAuth has been developed to
    allow
    authorization either from within a browser, desktop software, or mobile
    devices. Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a
    Relying
    Party access to an OAuth protected resource in a single step. A small
    group
    of people have been working on developing an extension to OpenID which
    makes
    this possible in a collaborative fashion
    withinhttp://code.google.com/p/step2/. This small project includes a
    draft
    spec and Open Source implementations which the proposers would like to
    finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication
    protocol
    that provides a mechanism to embed an OAuth approval request into an
    OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service
    Provider
    are the same service. To provide good user experience, it is important
    to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol
    (
    http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html
    )
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as
    more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus
    on
    the protocol proposal has been achieved within the working group,
    consistent
    with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com, Google
    - Breno de Medeiros, breno at google.com, Google
    - David Recordon, drecordon at sixapart.com, Six Apart
    - Dirk Balfanz, balfanz at google.com, Google
    - Joseph Smarr, jsmarr at plaxo.com, Plaxo
    - Yariv Adan, yariv at google.com, Google

    - Allen Tom, atom at yahoo-inc.com , Yahoo

    - Josh Hoyt, josh at janrain.com , JanRain

    Initial Editors:
    - Dirk Balfanz, balfanz at google.com, Google

    - Breno de Medeiros, breno at google.com, Google

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: <http://openid.net/pipermail/specs-council/attachments/20090228/127ce3bf/attachment.htm>
  • David Recordon at Feb 28, 2009 at 4:16 am
    The vote on this working group passed and results were automatically
    sent out to all Foundation members. I have it on my list for this
    weekend to get the mailing list setup and instructions on joining
    (which includes the Contribution Agreement).

    --David
    On Sat, Feb 28, 2009 at 2:15 AM, Yariv Adan wrote:
    This is currently under membership vote. When does the poll expire? Is
    anyone "monitoring" this / is there a way to know whether there are 20
    supporters so the WG can be created? Should we call the voters to go to the
    polls :) ?

    Thanks
    On Wed, Jan 28, 2009 at 5:54 PM, Mike Jones wrote:

    I already voted +1 some time back.

    David, could you draft a proposed recommendation from the specs council to
    send to specs at openid.net, so we can close our responsibilities for this
    proposal?

    ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?Thanks,
    ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?-- Mike

    -----Original Message-----
    From: David Recordon [mailto:recordond at gmail.com]
    Sent: Wednesday, January 28, 2009 8:45 AM
    To: Yariv Adan; Dick Hardt; Mike Jones; Brad Fitzpatrick; Johnny Bufu
    Cc: specs-council at openid.net
    Subject: Re: [OIDFSC] Fwd: FW: Proposal to create the OpenID OAuth Hybrid
    Working Group

    It seems that right now we have +1 votes from Allen, David, and Josh.
    We're thus missing votes from Brad, Dick, Johnny and Mike (all on the
    to line of this email).

    Dick, Johnny, Mike and Brad. ?Please reply with your vote on the
    OpenID/OAuth hybrid proposal as soon as you can.

    Thanks,
    --David
    On Wed, Jan 28, 2009 at 8:39 AM, Yariv Adan wrote:
    Is there any update on the status of this, and when can we move forward?
    Looks like we are already after the heated discussion phase.
    On Thu, Jan 22, 2009 at 7:20 AM, Allen Tom wrote:

    +1 from me.

    Allen


    Yariv Adan wrote:

    Charter was updated and is now available for the specification council
    in
    http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks

    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones
    <Michael.Jones at microsoft.com>
    wrote:
    This is a second working group proposal that the specifications
    council
    needs to take action upon. ?Yariv, have there been any updates to the
    charter since this note?




    Thanks,

    ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? --
    Mike



    From: specs-bounces at openid.net [mailto:specs-bounces at openid.net] On
    Behalf Of Yariv Adan
    Sent: Monday, November 03, 2008 6:31 AM
    To: specs at openid.net
    Subject: Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and
    procedures<http://openid.net/foundation/intellectual-property/ > this
    note
    proposes the formation of a new working group chartered to produce an
    OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed
    working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication
    within the browser. ?Over the last year, OAuth has been developed to
    allow
    authorization either from within a browser, desktop software, or
    mobile
    devices. ?Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a
    Relying
    Party access to an OAuth protected resource in a single step. ?A small
    group
    of people have been working on developing an extension to OpenID which
    makes
    this possible in a collaborative fashion
    withinhttp://code.google.com/p/step2/. ?This small project includes a
    draft
    spec and Open Source implementations which the proposers would like to
    finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication
    protocol
    that provides a mechanism to embed an OAuth approval request into an
    OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service
    Provider
    are the same service. To provide good user experience, it is important
    to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol

    (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as
    more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    ?- OpenID Providers and Relying Parties
    ?- OAuth Consumers and Service Providers
    ?- Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus
    on
    the protocol proposal has been achieved within the working group,
    consistent
    with the purpose and scope.


    Proposers:
    ?- Ben Laurie, benl at google.com, Google
    ?- Breno de Medeiros, breno at google.com, Google
    ?- David Recordon, drecordon at sixapart.com, Six Apart
    ?- Dirk Balfanz, balfanz at google.com, Google
    ?- Joseph Smarr, jsmarr at plaxo.com, Plaxo
    ?- Yariv Adan, yariv at google.com, Google

    ?- Allen Tom, atom at yahoo-inc.com , Yahoo

    ?- Josh Hoyt, josh at janrain.com , JanRain

    Initial Editors:
    ?- Dirk Balfanz, balfanz at google.com, Google

    ?- Breno de Medeiros, breno at google.com, Google

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
  • Allen Tom at Mar 1, 2009 at 6:42 pm
    Hi David - how do we request a vote for the UI Extension?

    Allen



    David Recordon wrote:
    The vote on this working group passed and results were automatically
    sent out to all Foundation members. I have it on my list for this
    weekend to get the mailing list setup and instructions on joining
    (which includes the Contribution Agreement).

    --David
    On Sat, Feb 28, 2009 at 2:15 AM, Yariv Adan wrote:

    This is currently under membership vote. When does the poll expire? Is
    anyone "monitoring" this / is there a way to know whether there are 20
    supporters so the WG can be created? Should we call the voters to go to the
    polls :) ?

    Thanks

    On Wed, Jan 28, 2009 at 5:54 PM, Mike Jones <Michael.Jones at microsoft.com>
    wrote:
    I already voted +1 some time back.

    David, could you draft a proposed recommendation from the specs council to
    send to specs at openid.net, so we can close our responsibilities for this
    proposal?

    Thanks,
    -- Mike

    -----Original Message-----
    From: David Recordon [mailto:recordond at gmail.com]
    Sent: Wednesday, January 28, 2009 8:45 AM
    To: Yariv Adan; Dick Hardt; Mike Jones; Brad Fitzpatrick; Johnny Bufu
    Cc: specs-council at openid.net
    Subject: Re: [OIDFSC] Fwd: FW: Proposal to create the OpenID OAuth Hybrid
    Working Group

    It seems that right now we have +1 votes from Allen, David, and Josh.
    We're thus missing votes from Brad, Dick, Johnny and Mike (all on the
    to line of this email).

    Dick, Johnny, Mike and Brad. Please reply with your vote on the
    OpenID/OAuth hybrid proposal as soon as you can.

    Thanks,
    --David
    On Wed, Jan 28, 2009 at 8:39 AM, Yariv Adan wrote:

    Is there any update on the status of this, and when can we move forward?
    Looks like we are already after the heated discussion phase.
    On Thu, Jan 22, 2009 at 7:20 AM, Allen Tom wrote:

    +1 from me.

    Allen


    Yariv Adan wrote:

    Charter was updated and is now available for the specification council
    in
    http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks

    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones
    <Michael.Jones at microsoft.com>
    wrote:
    This is a second working group proposal that the specifications
    council
    needs to take action upon. Yariv, have there been any updates to the
    charter since this note?




    Thanks,

    --
    Mike



    From: specs-bounces at openid.net [mailto:specs-bounces at openid.net] On
    Behalf Of Yariv Adan
    Sent: Monday, November 03, 2008 6:31 AM
    To: specs at openid.net
    Subject: Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and
    procedures<http://openid.net/foundation/intellectual-property/ > this
    note
    proposes the formation of a new working group chartered to produce an
    OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed
    working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication
    within the browser. Over the last year, OAuth has been developed to
    allow
    authorization either from within a browser, desktop software, or
    mobile
    devices. Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a
    Relying
    Party access to an OAuth protected resource in a single step. A small
    group
    of people have been working on developing an extension to OpenID which
    makes
    this possible in a collaborative fashion
    withinhttp://code.google.com/p/step2/. This small project includes a
    draft
    spec and Open Source implementations which the proposers would like to
    finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication
    protocol
    that provides a mechanism to embed an OAuth approval request into an
    OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service
    Provider
    are the same service. To provide good user experience, it is important
    to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol

    (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as
    more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus
    on
    the protocol proposal has been achieved within the working group,
    consistent
    with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com, Google
    - Breno de Medeiros, breno at google.com, Google
    - David Recordon, drecordon at sixapart.com, Six Apart
    - Dirk Balfanz, balfanz at google.com, Google
    - Joseph Smarr, jsmarr at plaxo.com, Plaxo
    - Yariv Adan, yariv at google.com, Google

    - Allen Tom, atom at yahoo-inc.com , Yahoo

    - Josh Hoyt, josh at janrain.com , JanRain

    Initial Editors:
    - Dirk Balfanz, balfanz at google.com, Google

    - Breno de Medeiros, breno at google.com, Google

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
  • David Recordon at Mar 1, 2009 at 8:09 pm
    Hi Allen,
    The vote already occurred organically and all of the members of the
    Specs Council voted. I've thus sent an email to the specs list with
    notification of the 14-day period before the membership vote.

    http://openid.net/pipermail/specs/2009-March/002733.html

    I'd also like to see us move away from using this mailing list and
    stick to the specs list with explicit voting threads and specs council
    members cc'd so the email doesn't get lost. (We'll try this the next
    time around.)

    --David
    On Sun, Mar 1, 2009 at 9:42 PM, Allen Tom wrote:
    Hi David - how do we request a vote for the UI Extension?

    Allen



    David Recordon wrote:
    The vote on this working group passed and results were automatically
    sent out to all Foundation members. ?I have it on my list for this
    weekend to get the mailing list setup and instructions on joining
    (which includes the Contribution Agreement).

    --David
    On Sat, Feb 28, 2009 at 2:15 AM, Yariv Adan wrote:


    This is currently under membership vote. When does the poll expire? Is
    anyone "monitoring" this / is there a way to know whether there are 20
    supporters so the WG can be created? Should we call the voters to go to
    the
    polls :) ?

    Thanks

    On Wed, Jan 28, 2009 at 5:54 PM, Mike Jones <Michael.Jones at microsoft.com>
    wrote:
    I already voted +1 some time back.

    David, could you draft a proposed recommendation from the specs council
    to
    send to specs at openid.net, so we can close our responsibilities for this
    proposal?

    ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? Thanks,
    ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? -- Mike

    -----Original Message-----
    From: David Recordon [mailto:recordond at gmail.com]
    Sent: Wednesday, January 28, 2009 8:45 AM
    To: Yariv Adan; Dick Hardt; Mike Jones; Brad Fitzpatrick; Johnny Bufu
    Cc: specs-council at openid.net
    Subject: Re: [OIDFSC] Fwd: FW: Proposal to create the OpenID OAuth
    Hybrid
    Working Group

    It seems that right now we have +1 votes from Allen, David, and Josh.
    We're thus missing votes from Brad, Dick, Johnny and Mike (all on the
    to line of this email).

    Dick, Johnny, Mike and Brad. ?Please reply with your vote on the
    OpenID/OAuth hybrid proposal as soon as you can.

    Thanks,
    --David
    On Wed, Jan 28, 2009 at 8:39 AM, Yariv Adan wrote:


    Is there any update on the status of this, and when can we move
    forward?
    Looks like we are already after the heated discussion phase.
    On Thu, Jan 22, 2009 at 7:20 AM, Allen Tom wrote:


    +1 from me.

    Allen


    Yariv Adan wrote:

    Charter was updated and is now available for the specification council
    in
    http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks

    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones
    <Michael.Jones at microsoft.com>
    wrote:
    This is a second working group proposal that the specifications
    council
    needs to take action upon. ?Yariv, have there been any updates to the
    charter since this note?




    Thanks,

    ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?--
    Mike



    From: specs-bounces at openid.net [mailto:specs-bounces at openid.net] On
    Behalf Of Yariv Adan
    Sent: Monday, November 03, 2008 6:31 AM
    To: specs at openid.net
    Subject: Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and
    procedures<http://openid.net/foundation/intellectual-property/ > this
    note
    proposes the formation of a new working group chartered to produce an
    OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed
    working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication
    within the browser. ?Over the last year, OAuth has been developed to
    allow
    authorization either from within a browser, desktop software, or
    mobile
    devices. ?Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a
    Relying
    Party access to an OAuth protected resource in a single step. ?A
    small
    group
    of people have been working on developing an extension to OpenID
    which
    makes
    this possible in a collaborative fashion
    withinhttp://code.google.com/p/step2/. ?This small project includes a
    draft
    spec and Open Source implementations which the proposers would like
    to
    finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication
    protocol
    that provides a mechanism to embed an OAuth approval request into an
    OpenID
    authentication request to permit combined user approval. The
    extension
    addresses the use case where the OpenID Provider and OAuth Service
    Provider
    are the same service. To provide good user experience, it is
    important
    to
    present a combined authentication and authorization screen for the
    two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol


    (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions
    as
    more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    ?- OpenID Providers and Relying Parties
    ?- OAuth Consumers and Service Providers
    ?- Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working
    group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus
    on
    the protocol proposal has been achieved within the working group,
    consistent
    with the purpose and scope.


    Proposers:
    ?- Ben Laurie, benl at google.com, Google
    ?- Breno de Medeiros, breno at google.com, Google
    ?- David Recordon, drecordon at sixapart.com, Six Apart
    ?- Dirk Balfanz, balfanz at google.com, Google
    ?- Joseph Smarr, jsmarr at plaxo.com, Plaxo
    ?- Yariv Adan, yariv at google.com, Google

    ?- Allen Tom, atom at yahoo-inc.com , Yahoo

    ?- Josh Hoyt, josh at janrain.com , JanRain

    Initial Editors:
    ?- Dirk Balfanz, balfanz at google.com, Google

    ?- Breno de Medeiros, breno at google.com, Google

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee
    please
    do
    not forward it, please inform the sender, and please erase this
    e-mail
    including any attachments. Thanks.
    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please
    do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
  • Johnny Bufu at Mar 2, 2009 at 11:25 am
    David,
    On Sun, Mar 01, 2009 at 11:09:13PM -0500, David Recordon wrote:
    I'd also like to see us move away from using this mailing list and
    stick to the specs list with explicit voting threads and specs council
    members cc'd so the email doesn't get lost. (We'll try this the next
    time around.)
    Do you think this will work? How will the vote requester know whom to
    CC? I'm only monitoring specs-council@ on a daily basis and dive into
    specs@ when triggered by requests I see on this list.

    Johnny
  • Johnny Bufu at Jan 28, 2009 at 10:15 am
    +1

    Johnny
    On Wed, Jan 28, 2009 at 08:45:06AM -0800, David Recordon wrote:
    It seems that right now we have +1 votes from Allen, David, and Josh.
    We're thus missing votes from Brad, Dick, Johnny and Mike (all on the
    to line of this email).

    Dick, Johnny, Mike and Brad. Please reply with your vote on the
    OpenID/OAuth hybrid proposal as soon as you can.

    Thanks,
    --David
    On Wed, Jan 28, 2009 at 8:39 AM, Yariv Adan wrote:
    Is there any update on the status of this, and when can we move forward?
    Looks like we are already after the heated discussion phase.
    On Thu, Jan 22, 2009 at 7:20 AM, Allen Tom wrote:

    +1 from me.

    Allen


    Yariv Adan wrote:

    Charter was updated and is now available for the specification council in
    http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks

    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones <Michael.Jones at microsoft.com>
    wrote:
    This is a second working group proposal that the specifications council
    needs to take action upon. Yariv, have there been any updates to the
    charter since this note?



    Thanks,

    -- Mike



    From: specs-bounces at openid.net [mailto:specs-bounces at openid.net] On
    Behalf Of Yariv Adan
    Sent: Monday, November 03, 2008 6:31 AM
    To: specs at openid.net
    Subject: Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and
    procedures<http://openid.net/foundation/intellectual-property/ > this note
    proposes the formation of a new working group chartered to produce an OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication
    within the browser. Over the last year, OAuth has been developed to allow
    authorization either from within a browser, desktop software, or mobile
    devices. Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a Relying
    Party access to an OAuth protected resource in a single step. A small group
    of people have been working on developing an extension to OpenID which makes
    this possible in a collaborative fashion
    withinhttp://code.google.com/p/step2/. This small project includes a draft
    spec and Open Source implementations which the proposers would like to
    finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication protocol
    that provides a mechanism to embed an OAuth approval request into an OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service Provider
    are the same service. To provide good user experience, it is important to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol
    (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as
    more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus on
    the protocol proposal has been achieved within the working group, consistent
    with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com, Google
    - Breno de Medeiros, breno at google.com, Google
    - David Recordon, drecordon at sixapart.com, Six Apart
    - Dirk Balfanz, balfanz at google.com, Google
    - Joseph Smarr, jsmarr at plaxo.com, Plaxo
    - Yariv Adan, yariv at google.com, Google

    - Allen Tom, atom at yahoo-inc.com , Yahoo

    - Josh Hoyt, josh at janrain.com , JanRain

    Initial Editors:
    - Dirk Balfanz, balfanz at google.com, Google

    - Breno de Medeiros, breno at google.com, Google

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    !DSPAM:139,49808b98236771847251658!
  • David Recordon at Jan 28, 2009 at 10:57 am
    Thanks, I will consider this working group proposal as recommended and
    start the 14-day notice period for the vote.
    On Wed, Jan 28, 2009 at 10:15 AM, Johnny Bufu wrote:
    +1

    Johnny
    On Wed, Jan 28, 2009 at 08:45:06AM -0800, David Recordon wrote:
    It seems that right now we have +1 votes from Allen, David, and Josh.
    We're thus missing votes from Brad, Dick, Johnny and Mike (all on the
    to line of this email).

    Dick, Johnny, Mike and Brad. Please reply with your vote on the
    OpenID/OAuth hybrid proposal as soon as you can.

    Thanks,
    --David
    On Wed, Jan 28, 2009 at 8:39 AM, Yariv Adan wrote:
    Is there any update on the status of this, and when can we move forward?
    Looks like we are already after the heated discussion phase.
    On Thu, Jan 22, 2009 at 7:20 AM, Allen Tom wrote:

    +1 from me.

    Allen


    Yariv Adan wrote:

    Charter was updated and is now available for the specification council in
    http://wiki.openid.net/OpenID-and-OAuth-Hybrid-Extension

    Thanks

    On Fri, Dec 19, 2008 at 3:33 AM, Mike Jones <Michael.Jones at microsoft.com>
    wrote:
    This is a second working group proposal that the specifications council
    needs to take action upon. Yariv, have there been any updates to the
    charter since this note?



    Thanks,

    -- Mike



    From: specs-bounces at openid.net [mailto:specs-bounces at openid.net] On
    Behalf Of Yariv Adan
    Sent: Monday, November 03, 2008 6:31 AM
    To: specs at openid.net
    Subject: Proposal to create the OpenID OAuth Hybrid Working Group



    In accordance with the OpenID Foundation IPR policies and
    procedures<http://openid.net/foundation/intellectual-property/ > this note
    proposes the formation of a new working group chartered to produce an OpenID
    specification.
    As per Section 4.1 of the Policies, the specifics of the proposed working
    group are:



    Background Information:

    OpenID has always been focused on how to enable user-authentication
    within the browser. Over the last year, OAuth has been developed to allow
    authorization either from within a browser, desktop software, or mobile
    devices. Obviously there has been interest in using OpenID and OAuth
    together allowing a user to share their identity as well as grant a Relying
    Party access to an OAuth protected resource in a single step. A small group
    of people have been working on developing an extension to OpenID which makes
    this possible in a collaborative fashion
    withinhttp://code.google.com/p/step2/. This small project includes a draft
    spec and Open Source implementations which the proposers would like to
    finalize within the OpenID Foundation.


    Working Group Name:
    OpenID OAuth Hybrid Working Group


    Purpose:
    Produce a standard OpenID extension to the OpenID Authentication protocol
    that provides a mechanism to embed an OAuth approval request into an OpenID
    authentication request to permit combined user approval. The extension
    addresses the use case where the OpenID Provider and OAuth Service Provider
    are the same service. To provide good user experience, it is important to
    present a combined authentication and authorization screen for the two
    protocols.


    Scope:
    Standardize the draft Hybrid Protocol
    (http://step2.googlecode.com/svn/spec/openid_oauth_extension/drafts/0/openid_oauth_extension.html)
    as an official OpenID Extension describing how to combine an OpenID
    authentication request with the approval of an OAuth request token.


    Anticipated Contributions:
    Draft specification referenced above and various text contributions as
    more developers implement it.


    Proposed List of Specifications:
    OpenID OAuth Extension 1.0. Spec completion by Q4 2008.


    Anticipated audience or users of the work:
    - OpenID Providers and Relying Parties
    - OAuth Consumers and Service Providers
    - Implementers of OpenID Providers and Relying Parties


    Language in which the WG will conduct business:
    English.


    Method of work:
    E-mail discussions on the working group mailing list and working group
    conference calls.


    Basis for determining when the work of the WG is completed:
    The work will be completed once it is apparent that maximal consensus on
    the protocol proposal has been achieved within the working group, consistent
    with the purpose and scope.


    Proposers:
    - Ben Laurie, benl at google.com, Google
    - Breno de Medeiros, breno at google.com, Google
    - David Recordon, drecordon at sixapart.com, Six Apart
    - Dirk Balfanz, balfanz at google.com, Google
    - Joseph Smarr, jsmarr at plaxo.com, Plaxo
    - Yariv Adan, yariv at google.com, Google

    - Allen Tom, atom at yahoo-inc.com , Yahoo

    - Josh Hoyt, josh at janrain.com , JanRain

    Initial Editors:
    - Dirk Balfanz, balfanz at google.com, Google

    - Breno de Medeiros, breno at google.com, Google

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.

    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.



    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.


    --
    Yariv Adan | Product Manager
    Google Switzerland GmbH | Identifikationsnummer: CH-020.4.028.116-1
    This e-mail is confidential. If you are not the right addressee please do
    not forward it, please inform the sender, and please erase this e-mail
    including any attachments. Thanks.
    !DSPAM:139,49808b98236771847251658!
  • Michael Graves at Jan 28, 2009 at 9:03 am
    It's good by me.
    -Mike
    -------------- next part --------------
    An HTML attachment was scrubbed...
    URL: <http://openid.net/pipermail/specs-council/attachments/20090128/e279e134/attachment.htm>

Related Discussions

Discussion Navigation
viewthread | post
Discussion Overview
groupopenid-specs-council @
categoriesopenid
postedDec 18, '08 at 6:33p
activeMar 2, '09 at 11:25a
posts26
users8
websiteopenid.net
irc#openid

People

Translate

site design / logo © 2021 Grokbase