source: draft-ietf-httpbis-authscheme-registrations/09/draft-ietf-httpbis-authscheme-registrations-09.xml @ 2498

Last change on this file since 2498 was 2498, checked in by julian.reschke@…, 7 years ago

Update references to -25.

  • Property svn:mime-type set to text/xml
File size: 7.9 KB
Line 
1<?xml version="1.0" encoding="UTF-8"?>
2<!--
3    This XML document is the output of clean-for-DTD.xslt; a tool that strips
4    extensions to RFC2629(bis) from documents for processing with xml2rfc.
5-->
6<?xml-stylesheet type='text/xsl' href='../../draft-ietf-httpbis/myxml2rfc.xslt'?>
7<?rfc toc="yes"?>
8<?rfc symrefs="yes"?>
9<?rfc sortrefs="yes"?>
10<?rfc compact="yes"?>
11<?rfc comments="yes"?>
12<?rfc inline="yes"?>
13<?rfc subcompact="no"?>
14<?rfc rfcedstyle="yes"?>
15<!DOCTYPE rfc
16  PUBLIC "" "rfc2629.dtd">
17<rfc ipr="trust200902" docName="draft-ietf-httpbis-authscheme-registrations-09" category="info">
18
19        <front>
20  <title abbrev="HTTP Authentication Scheme Registrations">Initial Hypertext Transfer Protocol (HTTP)
21  Authentication Scheme Registrations</title>
22
23  <author initials="J. F." surname="Reschke" fullname="Julian F. Reschke">
24    <organization abbrev="greenbytes">greenbytes GmbH</organization>
25    <address>
26      <postal>
27        <street>Hafenweg 16</street>
28        <city>Muenster</city><region>NW</region><code>48155</code>
29        <country>Germany</country>
30      </postal>
31      <email>julian.reschke@greenbytes.de</email>       
32      <uri>http://greenbytes.de/tech/webdav/</uri>     
33    </address>
34  </author>
35
36  <date month="November" year="2013" day="17"/>
37  <workgroup>HTTPbis Working Group</workgroup>
38 
39  <abstract>
40  <t>
41    This document registers Hypertext Transfer Protocol (HTTP)
42    authentication schemes which have been defined in standards-track RFCs
43    before the IANA HTTP Authentication Scheme Registry was established.
44  </t>
45  </abstract>
46 
47  <note title="Editorial Note (To be removed by RFC Editor)">
48    <t>
49      Discussion of this draft takes place on the HTTPBIS working group
50      mailing list (ietf-http-wg@w3.org), which is archived at
51      <eref target="http://lists.w3.org/Archives/Public/ietf-http-wg/"/>.
52    </t>
53    <t>
54      The current issues list is at
55      <eref target="http://trac.tools.ietf.org/wg/httpbis/trac/query?component=authscheme-registrations"/> and related
56      documents (including fancy diffs) can be found at
57      <eref target="http://tools.ietf.org/wg/httpbis/"/>.
58    </t>
59    <t>
60      The changes in this draft are summarized in <xref target="changes.since.08"/>.
61    </t>
62  </note>
63
64  </front>
65
66  <middle>
67
68<section title="Introduction" anchor="introduction">
69  <t>
70    This document registers Hypertext Transfer Protocol (HTTP)
71    authentication schemes which have been defined in standards-track RFCs
72    before the IANA HTTP Authentication Scheme Registry was established.
73  </t>
74</section> 
75 
76<section title="Security Considerations" anchor="security.considerations">
77  <t>
78    There are no security considerations related to the registration itself.
79  </t>
80</section> 
81
82<section title="IANA Considerations" anchor="iana.considerations">
83<t>
84  The table below provides registrations of HTTP authentication schemes to be
85  added to the IANA HTTP Authentication Scheme registry
86  at <eref target="http://www.iana.org/assignments/http-authschemes"/>
87  (see Section 5.1 of <xref target="draft-ietf-httpbis-p7-auth"/>).
88</t>
89<texttable align="left">
90
91<ttcol>Authentication Scheme Name</ttcol>
92<ttcol>Reference</ttcol>
93<ttcol>Notes</ttcol>
94
95<c>Basic</c><c><xref target="RFC2617"/>, Section 2</c><c/>
96<c>Bearer</c><c><xref target="RFC6750"/></c><c/>
97
98<c>Digest</c><c><xref target="RFC2617"/>, Section 3</c><c/>
99
100<c>Negotiate</c><c><xref target="RFC4559"/>, Section 3</c>
101<c>This authentication scheme violates both HTTP semantics (being connection-oriented)
102and syntax (use of syntax incompatible with the WWW-Authenticate and Authorization header field
103syntax).</c>
104
105<c>OAuth</c><c><xref target="RFC5849"/>, Section 3.5.1</c><c/>
106
107</texttable>
108</section> 
109  </middle>
110  <back>
111 
112<references title="Normative References">
113
114<reference anchor="draft-ietf-httpbis-p7-auth">
115  <front>
116    <title>Hypertext Transfer Protocol (HTTP/1.1): Authentication</title>
117    <author initials="R." surname="Fielding" fullname="Roy T. Fielding" role="editor">
118      <organization abbrev="Adobe">Adobe Systems Incorporated</organization>
119      <address><email>fielding@gbiv.com</email></address>
120    </author>
121    <author initials="J. F." surname="Reschke" fullname="Julian F. Reschke" role="editor">
122      <organization abbrev="greenbytes">greenbytes GmbH</organization>
123      <address><email>julian.reschke@greenbytes.de</email></address>
124    </author>
125    <date month="November" year="2013"/>
126  </front>
127  <seriesInfo name="Internet-Draft" value="draft-ietf-httpbis-p7-auth-25"/>
128 
129</reference>
130
131<reference anchor="RFC2617">
132  <front>
133    <title abbrev="HTTP Authentication">HTTP Authentication: Basic and Digest Access Authentication</title>
134    <author initials="J." surname="Franks" fullname="John Franks">
135      <organization>Northwestern University, Department of Mathematics</organization>
136      <address><email>john@math.nwu.edu</email></address>
137    </author>
138    <author initials="P.M." surname="Hallam-Baker" fullname="Phillip M. Hallam-Baker">
139      <organization>Verisign Inc.</organization>
140      <address><email>pbaker@verisign.com</email></address>
141    </author>
142    <author initials="J.L." surname="Hostetler" fullname="Jeffery L. Hostetler">
143      <organization>AbiSource, Inc.</organization>
144      <address><email>jeff@AbiSource.com</email></address>
145    </author>
146    <author initials="S.D." surname="Lawrence" fullname="Scott D. Lawrence">
147      <organization>Agranat Systems, Inc.</organization>
148      <address><email>lawrence@agranat.com</email></address>
149    </author>
150    <author initials="P.J." surname="Leach" fullname="Paul J. Leach">
151      <organization>Microsoft Corporation</organization>
152      <address><email>paulle@microsoft.com</email></address>
153    </author>
154    <author initials="A." surname="Luotonen" fullname="Ari Luotonen">
155      <organization>Netscape Communications Corporation</organization>
156    </author>
157    <author initials="L." surname="Stewart" fullname="Lawrence C. Stewart">
158      <organization>Open Market, Inc.</organization>
159      <address><email>stewart@OpenMarket.com</email></address>
160    </author>
161    <date month="June" year="1999"/>
162  </front>
163  <seriesInfo name="RFC" value="2617"/>
164</reference>
165
166<reference anchor="RFC4559">
167  <front>
168    <title>SPNEGO-based Kerberos and NTLM HTTP Authentication in Microsoft Windows</title>
169    <author initials="K." surname="Jaganathan" fullname="K. Jaganathan"/>
170    <author initials="L." surname="Zhu" fullname="L. Zhu"/>
171    <author initials="J." surname="Brezak" fullname="J. Brezak"/>
172    <date year="2006" month="June"/>
173  </front>
174  <seriesInfo name="RFC" value="4559"/>
175</reference>
176
177<reference anchor="RFC5849">
178  <front>
179    <title>The OAuth 1.0 Protocol</title>
180    <author initials="E." surname="Hammer-Lahav" fullname="Eran Hammer-Lahav"/>
181    <date year="2010" month="April"/>
182  </front>
183  <seriesInfo name="RFC" value="5849"/>
184</reference>
185
186<reference anchor="RFC6750">
187  <front>
188    <title>The OAuth 2.0 Authorization Framework: Bearer Token Usage</title>
189    <author initials="M." surname="Jones" fullname="Michael B. Jones"/>
190    <author initials="D." surname="Hardt" fullname="Dick Hardt"/>
191    <date year="2012" month="October"/>
192  </front>
193  <seriesInfo name="RFC" value="6750"/>
194</reference>
195
196</references>
197 
198<!--<references title="Informative References">
199</references>-->
200
201<section title="Change Log (to be removed by RFC Editor before publication)" anchor="change.log">
202<t>
203  Changes up to the IETF Last Call draft are summarized in <eref target="http://trac.tools.ietf.org/html/draft-ietf-httpbis-authscheme-registrations-08#appendix-B"/>.
204</t>
205<section title="Since draft-ietf-httpbis-authscheme-registrations-08" anchor="changes.since.08">
206<t>
207  Closed issues:
208  <list style="symbols">
209    <t>
210      <eref target="http://tools.ietf.org/wg/httpbis/trac/ticket/514"/>:
211      "registration tables should be inside IANA considerations"
212    </t>
213  </list>
214</t>
215<t>
216  Clarified the IANA action to say "add".
217</t>
218<t>
219  Updated httpbis reference.
220</t>
221</section>
222</section>
223
224  </back>
225
226</rfc>
Note: See TracBrowser for help on using the repository browser.