source: draft-ietf-httpbis-authscheme-registrations/latest/draft-ietf-httpbis-authscheme-registrations.xml

Last change on this file was 2724, checked in by julian.reschke@…, 5 years ago

revert changes for auth48 boilerplate checks (#553)

  • Property svn:eol-style set to native
  • Property svn:executable set to *
  • Property svn:mime-type set to text/xml
File size: 8.5 KB
Line 
1<?xml version="1.0" encoding="utf-8"?>
2<?xml-stylesheet type='text/xsl' href='../../draft-ietf-httpbis/myxml2rfc.xslt'?>
3<?rfc toc="yes"?>
4<?rfc symrefs="yes"?>
5<?rfc sortrefs="yes"?>
6<?rfc compact="yes"?>
7<?rfc comments="yes"?>
8<?rfc inline="yes"?>
9<?rfc subcompact="no"?>
10<?rfc rfcedstyle="yes"?>
11<?rfc-ext allow-markup-in-artwork="yes" ?>
12
13<!DOCTYPE rfc [
14  <!ENTITY MAY "<bcp14 xmlns='http://purl.org/net/xml2rfc/ext'>MAY</bcp14>">
15  <!ENTITY MUST "<bcp14 xmlns='http://purl.org/net/xml2rfc/ext'>MUST</bcp14>">
16  <!ENTITY MUST-NOT "<bcp14 xmlns='http://purl.org/net/xml2rfc/ext'>MUST NOT</bcp14>">
17  <!ENTITY OPTIONAL "<bcp14 xmlns='http://purl.org/net/xml2rfc/ext'>OPTIONAL</bcp14>">
18  <!ENTITY RECOMMENDED "<bcp14 xmlns='http://purl.org/net/xml2rfc/ext'>RECOMMENDED</bcp14>">
19  <!ENTITY REQUIRED "<bcp14 xmlns='http://purl.org/net/xml2rfc/ext'>REQUIRED</bcp14>">
20  <!ENTITY SHALL "<bcp14 xmlns='http://purl.org/net/xml2rfc/ext'>SHALL</bcp14>">
21  <!ENTITY SHALL-NOT "<bcp14 xmlns='http://purl.org/net/xml2rfc/ext'>SHALL NOT</bcp14>">
22  <!ENTITY SHOULD "<bcp14 xmlns='http://purl.org/net/xml2rfc/ext'>SHOULD</bcp14>">
23  <!ENTITY SHOULD-NOT "<bcp14 xmlns='http://purl.org/net/xml2rfc/ext'>SHOULD NOT</bcp14>">
24]>
25<rfc xmlns:x="http://purl.org/net/xml2rfc/ext" xmlns:ed="http://greenbytes.de/2002/rfcedit" ipr="trust200902" docName="draft-ietf-httpbis-authscheme-registrations-latest" category="info">
26<x:feedback template="mailto:ietf-http-wg@w3.org?subject={docname},%20%22{section}%22&amp;body=&lt;{ref}&gt;:"/>
27        <front>
28  <title abbrev="HTTP Authentication Scheme Registrations">Initial Hypertext&#160;Transfer&#160;Protocol&#160;(HTTP)
29  Authentication&#160;Scheme&#160;Registrations</title>
30
31  <author initials="J. F." surname="Reschke" fullname="Julian F. Reschke">
32    <organization abbrev="greenbytes">greenbytes GmbH</organization>
33    <address>
34      <postal>
35        <street>Hafenweg 16</street>
36        <city>Muenster</city><region>NW</region><code>48155</code>
37        <country>Germany</country>
38      </postal>
39      <email>julian.reschke@greenbytes.de</email>       
40      <uri>http://greenbytes.de/tech/webdav/</uri>     
41    </address>
42  </author>
43
44  <date month="June" year="2014"/>
45
46  <area>Applications</area>
47  <workgroup>HTTPbis</workgroup>
48 
49  <keyword>Hypertext Transfer Protocol</keyword>
50  <keyword>HTTP</keyword>
51  <keyword>Authentication</keyword>
52  <keyword>Authentication Scheme</keyword>
53 
54  <abstract>
55  <t>
56    This document registers Hypertext Transfer Protocol (HTTP)
57    authentication schemes that have been defined in RFCs
58    before the IANA HTTP Authentication Scheme Registry was established.
59  </t>
60  </abstract>
61 
62  <note title="Editorial Note (To be removed by RFC Editor)">
63    <t>
64      Discussion of this draft takes place on the HTTPBIS working group
65      mailing list (ietf-http-wg@w3.org), which is archived at
66      <eref target="http://lists.w3.org/Archives/Public/ietf-http-wg/"/>.
67    </t>
68    <t>
69      The current issues list is at
70      <eref target="http://trac.tools.ietf.org/wg/httpbis/trac/query?component=authscheme-registrations"/> and related
71      documents (including fancy diffs) can be found at
72      <eref target="http://tools.ietf.org/wg/httpbis/"/>.
73    </t>
74    <t>
75      <spanx>This is a temporary document for the purpose of tracking the editorial changes made during the AUTH48 (RFC publication) phase.</spanx>
76    </t>
77  </note>
78
79  </front>
80
81  <middle>
82
83<section title="Introduction" anchor="introduction">
84  <t>
85    This document registers Hypertext Transfer Protocol (HTTP)
86    authentication schemes that have been defined in RFCs
87    before the IANA HTTP Authentication Scheme Registry was established.
88  </t>
89</section> 
90 
91<section title="Security Considerations" anchor="security.considerations">
92  <t>
93    There are no security considerations related to the registration itself.
94  </t>
95  <t>
96    Security considerations applicable to the individual authentication schemes
97    ought to be discussed in the specifications that define them.
98  </t>
99</section> 
100
101<section title="IANA Considerations" anchor="iana.considerations">
102<t>
103  The registrations below have been added to the IANA "Hypertext Transfer Protocol (HTTP) Authentication Scheme Registry"
104  at <eref target="http://www.iana.org/assignments/http-authschemes"/>
105  (see <xref target="RFC7235" x:rel="#authentication.scheme.registry"/>).
106</t>
107<texttable align="left">
108
109<ttcol>Authentication Scheme Name</ttcol>
110<ttcol>Reference</ttcol>
111<ttcol>Notes</ttcol>
112
113<c>Basic</c><c><xref target="RFC2617" x:fmt="," x:sec="2"/></c><c/>
114<c>Bearer</c><c><xref target="RFC6750"/></c><c/>
115
116<c>Digest</c><c><xref target="RFC2617" x:fmt="," x:sec="3"/></c><c/>
117
118<c>Negotiate</c><c><xref target="RFC4559" x:fmt="," x:sec="3"/></c>
119<c>This authentication scheme violates both HTTP semantics (being connection-oriented)
120and syntax (use of syntax incompatible with the WWW-Authenticate and Authorization header field
121syntax).</c>
122
123<c>OAuth</c><c><xref target="RFC5849" x:fmt="," x:sec="3.5.1"/></c><c/>
124
125</texttable>
126</section> 
127  </middle>
128  <back>
129 
130<references title="Normative References">
131
132<reference anchor="RFC7235">
133  <front>
134    <title>Hypertext Transfer Protocol (HTTP/1.1): Authentication</title>
135    <author initials="R." surname="Fielding" fullname="Roy T. Fielding" role="editor">
136      <organization abbrev="Adobe">Adobe Systems Incorporated</organization>
137      <address><email>fielding@gbiv.com</email></address>
138    </author>
139    <author initials="J. F." surname="Reschke" fullname="Julian F. Reschke" role="editor">
140      <organization abbrev="greenbytes">greenbytes GmbH</organization>
141      <address><email>julian.reschke@greenbytes.de</email></address>
142    </author>
143    <date month="February" year="2014"/>
144  </front>
145  <seriesInfo name="Internet-Draft" value="draft-ietf-httpbis-p7-auth-26"/>
146  <x:source href="../../draft-ietf-httpbis/26/p7-auth.xml" basename="draft-ietf-httpbis-p7-auth-26"/>
147</reference>
148
149<reference anchor="RFC2617">
150  <front>
151    <title abbrev="HTTP Authentication">HTTP Authentication: Basic and Digest Access Authentication</title>
152    <author initials="J." surname="Franks" fullname="John Franks">
153      <organization>Northwestern University, Department of Mathematics</organization>
154      <address><email>john@math.nwu.edu</email></address>
155    </author>
156    <author initials="P.M." surname="Hallam-Baker" fullname="Phillip M. Hallam-Baker">
157      <organization>Verisign Inc.</organization>
158      <address><email>pbaker@verisign.com</email></address>
159    </author>
160    <author initials="J.L." surname="Hostetler" fullname="Jeffery L. Hostetler">
161      <organization>AbiSource, Inc.</organization>
162      <address><email>jeff@AbiSource.com</email></address>
163    </author>
164    <author initials="S.D." surname="Lawrence" fullname="Scott D. Lawrence">
165      <organization>Agranat Systems, Inc.</organization>
166      <address><email>lawrence@agranat.com</email></address>
167    </author>
168    <author initials="P.J." surname="Leach" fullname="Paul J. Leach">
169      <organization>Microsoft Corporation</organization>
170      <address><email>paulle@microsoft.com</email></address>
171    </author>
172    <author initials="A." surname="Luotonen" fullname="Ari Luotonen">
173      <organization>Netscape Communications Corporation</organization>
174    </author>
175    <author initials="L." surname="Stewart" fullname="Lawrence C. Stewart">
176      <organization>Open Market, Inc.</organization>
177      <address><email>stewart@OpenMarket.com</email></address>
178    </author>
179    <date month="June" year="1999"/>
180  </front>
181  <seriesInfo name="RFC" value="2617"/>
182</reference>
183
184<reference anchor="RFC4559">
185  <front>
186    <title>SPNEGO-based Kerberos and NTLM HTTP Authentication in Microsoft Windows</title>
187    <author initials="K." surname="Jaganathan" fullname="K. Jaganathan"/>
188    <author initials="L." surname="Zhu" fullname="L. Zhu"/>
189    <author initials="J." surname="Brezak" fullname="J. Brezak"/>
190    <date year="2006" month="June"/>
191  </front>
192  <seriesInfo name="RFC" value="4559"/>
193</reference>
194
195<reference anchor="RFC5849">
196  <front>
197    <title>The OAuth 1.0 Protocol</title>
198    <author initials="E." surname="Hammer-Lahav" fullname="Eran Hammer-Lahav"/>
199    <date year="2010" month="April" />
200  </front>
201  <seriesInfo name="RFC" value="5849" />
202</reference>
203
204<reference anchor="RFC6750">
205  <front>
206    <title>The OAuth 2.0 Authorization Framework: Bearer Token Usage</title>
207    <author initials="M." surname="Jones" fullname="Michael B. Jones"/>
208    <author initials="D." surname="Hardt" fullname="Dick Hardt"/>
209    <date year="2012" month="October"/>
210  </front>
211  <seriesInfo name="RFC" value="6750"/>
212</reference>
213
214</references>
215  </back>
216
217</rfc>
Note: See TracBrowser for help on using the repository browser.