source: draft-ietf-httpbis-authscheme-registrations/05/draft-ietf-httpbis-authscheme-registrations-05.xml @ 2762

Last change on this file since 2762 was 1940, checked in by julian.reschke@…, 10 years ago

draft 05
  • Property svn:eol-style set to native
  • Property svn:mime-type set to text/xml
File size: 8.7 KB
Line 
1<?xml version="1.0" encoding="UTF-8"?>
2<!--
3    This XML document is the output of clean-for-DTD.xslt; a tool that strips
4    extensions to RFC2629(bis) from documents for processing with xml2rfc.
5-->
6<?xml-stylesheet type='text/xsl' href='../../draft-ietf-httpbis/myxml2rfc.xslt'?>
7<?rfc toc="yes"?>
8<?rfc symrefs="yes"?>
9<?rfc sortrefs="yes"?>
10<?rfc compact="yes"?>
11<?rfc comments="yes"?>
12<?rfc inline="yes"?>
13<?rfc subcompact="no"?>
14<?rfc rfcedstyle="yes"?>
15<!DOCTYPE rfc
16  PUBLIC "" "rfc2629.dtd">
17<rfc ipr="trust200902" docName="draft-ietf-httpbis-authscheme-registrations-05" category="info">
18
19        <front>
20  <title abbrev="HTTP Authentication Scheme Registrations">Initial Hypertext Transfer Protocol (HTTP)
21  Authentication Scheme Registrations</title>
22
23  <author initials="J. F." surname="Reschke" fullname="Julian F. Reschke">
24    <organization abbrev="greenbytes">greenbytes GmbH</organization>
25    <address>
26      <postal>
27        <street>Hafenweg 16</street>
28        <city>Muenster</city><region>NW</region><code>48155</code>
29        <country>Germany</country>
30      </postal>
31      <email>julian.reschke@greenbytes.de</email>       
32      <uri>http://greenbytes.de/tech/webdav/</uri>     
33    </address>
34  </author>
35
36  <date month="October" year="2012" day="13"/>
37  <workgroup>HTTPbis Working Group</workgroup>
38 
39  <abstract>
40  <t>
41    This document registers Hypertext Transfer Protocol (HTTP)
42    authentication schemes which have been defined in standards-track RFCs
43    before the IANA HTTP Authentication Scheme Registry was established.
44  </t>
45  </abstract>
46 
47  <note title="Editorial Note (To be removed by RFC Editor)">
48    <t>
49      Discussion of this draft takes place on the HTTPBIS working group
50      mailing list (ietf-http-wg@w3.org), which is archived at
51      <eref target="http://lists.w3.org/Archives/Public/ietf-http-wg/"/>.
52    </t>
53    <t>
54      The current issues list is at
55      <eref target="http://trac.tools.ietf.org/wg/httpbis/trac/query?component=authscheme-registrations"/> and related
56      documents (including fancy diffs) can be found at
57      <eref target="http://tools.ietf.org/wg/httpbis/"/>.
58    </t>
59    <t>
60      The changes in this draft are summarized in <xref target="changes.since.04"/>.
61    </t>
62  </note>
63
64  </front>
65
66  <middle>
67
68<section title="Introduction" anchor="introduction">
69  <t>
70    This document registers Hypertext Transfer Protocol (HTTP)
71    authentication schemes which have been defined in standards-track RFCs
72    before the IANA HTTP Authentication Scheme Registry was established.
73  </t>
74</section> 
75 
76<section title="Security Considerations" anchor="security.considerations">
77  <t>
78    There are no security considerations related to the registration itself.
79  </t>
80</section> 
81
82<section title="IANA Considerations" anchor="iana.considerations">
83<t>
84  <xref target="initial.registry.contents"/> provides initial registrations
85  of HTTP authentication schemes for the IANA HTTP Authentication Scheme registry
86  at <eref target="http://www.iana.org/assignments/http-authschemes"/>
87  (see Section 2.3 of <xref target="draft-ietf-httpbis-p7-auth"/>).
88</t>
89</section> 
90  </middle>
91  <back>
92 
93<references title="Normative References">
94
95<reference anchor="draft-ietf-httpbis-p7-auth">
96  <front>
97    <title>Hypertext Transfer Protocol (HTTP/1.1): Authentication</title>
98    <author initials="R." surname="Fielding" fullname="Roy T. Fielding" role="editor">
99      <organization abbrev="Adobe">Adobe Systems Incorporated</organization>
100      <address><email>fielding@gbiv.com</email></address>
101    </author>
102    <author initials="J. F." surname="Reschke" fullname="Julian F. Reschke" role="editor">
103      <organization abbrev="greenbytes">greenbytes GmbH</organization>
104      <address><email>julian.reschke@greenbytes.de</email></address>
105    </author>
106    <date month="October" year="2012"/>
107  </front>
108  <seriesInfo name="Internet-Draft" value="draft-ietf-httpbis-p7-auth-21"/>
109 
110</reference>
111
112<reference anchor="RFC2617">
113  <front>
114    <title abbrev="HTTP Authentication">HTTP Authentication: Basic and Digest Access Authentication</title>
115    <author initials="J." surname="Franks" fullname="John Franks">
116      <organization>Northwestern University, Department of Mathematics</organization>
117      <address><email>john@math.nwu.edu</email></address>
118    </author>
119    <author initials="P.M." surname="Hallam-Baker" fullname="Phillip M. Hallam-Baker">
120      <organization>Verisign Inc.</organization>
121      <address><email>pbaker@verisign.com</email></address>
122    </author>
123    <author initials="J.L." surname="Hostetler" fullname="Jeffery L. Hostetler">
124      <organization>AbiSource, Inc.</organization>
125      <address><email>jeff@AbiSource.com</email></address>
126    </author>
127    <author initials="S.D." surname="Lawrence" fullname="Scott D. Lawrence">
128      <organization>Agranat Systems, Inc.</organization>
129      <address><email>lawrence@agranat.com</email></address>
130    </author>
131    <author initials="P.J." surname="Leach" fullname="Paul J. Leach">
132      <organization>Microsoft Corporation</organization>
133      <address><email>paulle@microsoft.com</email></address>
134    </author>
135    <author initials="A." surname="Luotonen" fullname="Ari Luotonen">
136      <organization>Netscape Communications Corporation</organization>
137    </author>
138    <author initials="L." surname="Stewart" fullname="Lawrence C. Stewart">
139      <organization>Open Market, Inc.</organization>
140      <address><email>stewart@OpenMarket.com</email></address>
141    </author>
142    <date month="June" year="1999"/>
143  </front>
144  <seriesInfo name="RFC" value="2617"/>
145</reference>
146
147<reference anchor="RFC4559">
148  <front>
149    <title>SPNEGO-based Kerberos and NTLM HTTP Authentication in Microsoft Windows</title>
150    <author initials="K." surname="Jaganathan" fullname="K. Jaganathan"/>
151    <author initials="L." surname="Zhu" fullname="L. Zhu"/>
152    <author initials="J." surname="Brezak" fullname="J. Brezak"/>
153    <date year="2006" month="June"/>
154  </front>
155  <seriesInfo name="RFC" value="4559"/>
156</reference>
157
158<reference anchor="RFC5849">
159  <front>
160    <title>The OAuth 1.0 Protocol</title>
161    <author initials="E." surname="Hammer-Lahav" fullname="Eran Hammer-Lahav"/>
162    <date year="2010" month="April"/>
163  </front>
164  <seriesInfo name="RFC" value="5849"/>
165</reference>
166
167<reference anchor="RFC6750">
168  <front>
169    <title>The OAuth 2.0 Authorization Framework: Bearer Token Usage</title>
170    <author initials="M." surname="Jones" fullname="Michael B. Jones"/>
171    <author initials="D." surname="Hardt" fullname="Dick Hardt"/>
172    <date year="2012" month="October"/>
173  </front>
174  <seriesInfo name="RFC" value="6750"/>
175</reference>
176
177</references>
178 
179<!--<references title="Informative References">
180</references>-->
181
182<section title="Initial Registry Contents" anchor="initial.registry.contents">
183<texttable align="left">
184
185<ttcol>Authentication Scheme Name</ttcol>
186<ttcol>Reference</ttcol>
187<ttcol>Notes</ttcol>
188
189<c>Basic</c><c><xref target="RFC2617"/>, Section 2</c><c/>
190<c>Bearer</c><c><xref target="RFC6750"/></c><c/>
191
192<c>Digest</c><c><xref target="RFC2617"/>, Section 3</c><c/>
193
194<c>Negotiate</c><c><xref target="RFC4559"/>, Section 3</c>
195<c>This authentication scheme violates both HTTP semantics (being connection-oriented)
196and syntax (use of syntax incompatible with the WWW-Authenticate and Authorization header field
197syntax).</c>
198
199<c>OAuth</c><c><xref target="RFC5849"/>, Section 3.5.1</c><c/>
200
201</texttable>
202</section>
203
204<section title="Change Log (to be removed by RFC Editor before publication)" anchor="change.log">
205<section title="Since draft-ietf-httpbis-authscheme-registrations-00" anchor="changes.since.00">
206<t>
207  Update draft-ietf-httpbis-p7-auth reference.
208</t>
209</section>
210
211<section title="Since draft-ietf-httpbis-authscheme-registrations-01" anchor="changes.since.01">
212<t>
213  Update draft-ietf-httpbis-p7-auth reference.
214</t>
215<t>
216  Closed issues:
217  <list style="symbols">
218    <t>
219      <eref target="http://tools.ietf.org/wg/httpbis/trac/ticket/308"/>:
220      "need to reserve 'negotiate' as auth scheme name"
221    </t>
222  </list>
223</t>
224</section>
225
226<section title="Since draft-ietf-httpbis-authscheme-registrations-02" anchor="changes.since.02">
227<t>
228  Update draft-ietf-httpbis-p7-auth reference.
229</t>
230</section>
231
232<section title="Since draft-ietf-httpbis-authscheme-registrations-03" anchor="changes.since.03">
233<t>
234  Update draft-ietf-httpbis-p7-auth reference.
235</t>
236</section>
237
238<section title="Since draft-ietf-httpbis-authscheme-registrations-04" anchor="changes.since.04">
239<t>
240  Closed issues:
241  <list style="symbols">
242    <t>
243      <eref target="http://tools.ietf.org/wg/httpbis/trac/ticket/382"/>:
244      "add OAuth auth scheme to initial registry contents"
245    </t>
246  </list>
247</t>
248<t>
249  Update draft-ietf-httpbis-p7-auth reference. Added OAuth 2.0 Bearer scheme.
250</t>
251</section>
252</section>
253
254  </back>
255
256</rfc>
Note: See TracBrowser for help on using the repository browser.