Skip to content

update references to RFC9700 and RFC9728 #165

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 3, 2025
Merged

update references to RFC9700 and RFC9728 #165

merged 1 commit into from
Jul 3, 2025

Conversation

aaronpk
Copy link
Member

@aaronpk aaronpk commented Jul 2, 2025

No description provided.

@Copilot Copilot AI review requested due to automatic review settings July 2, 2025 16:14
Copilot
Copilot AI reviewed Jul 2, 2025
View reviewed changes
Copy link

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR updates references to the finalized RFCs for OAuth 2.0 security practices and resource metadata throughout the draft.

  • Adds informative references to RFC9700 and RFC9728
  • Replaces legacy draft IDs with the new RFC numbers in discovery and security sections
  • Updates flow text to point at the official RFCs
Comments suppressed due to low confidence (2)

draft-ietf-oauth-identity-chaining.md:61

  • The reference title for RFC9700 should match the official RFC title 'OAuth 2.0 Security Best Current Practice' for consistency.
  RFC9700: # Best Current Practice for OAuth 2.0 Security

draft-ietf-oauth-identity-chaining.md:390

  • Correct spelling and grammar: change 'it's own authroization server' to 'its own authorization server'.
(B) Once the resource server (acting as a client) in trust domain A identified the authorization server for trust domain B, it requests a JWT authorization grant for the authorization server in trust domain B from the authorization server in trust domain A (it's own authroization server). This happens via the token exchange protocol (See [Token Exchange](#token-exchange)).

@arndt-s arndt-s merged commit 7544146 into main Jul 3, 2025
2 checks passed
@arndt-s arndt-s deleted the update-refs branch July 3, 2025 08:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Copilot left review comments

@arndt-s arndt-s arndt-s approved these changes

@PieterKas PieterKas Awaiting requested review from PieterKas PieterKas is a code owner

@kburgin3 kburgin3 Awaiting requested review from kburgin3 kburgin3 is a code owner

@bc-pi bc-pi Awaiting requested review from bc-pi bc-pi is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@aaronpk @arndt-s