You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: openid-sharedsignals-framework-1_0.md
+10-5Lines changed: 10 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -552,18 +552,23 @@ TODO: consider adding a IANA Registry for metadata, similar to Section 7.1.1 of
552
552
{{RFC8414}}. This would allow other specs to add to the metadata.
553
553
554
554
### Authorization scheme {#authorization-scheme}
555
-
SSF is an HTTP based signals sharing framework. It is agnostic to the authentication and authorization schemes used to secure stream configuration APIs. It does not provide any SSF specific authentication and authorization schemes but relies on the cooperating parties mutual security considerations. Authorization scheme section of the metadata, providers discovery information related to the transmitter's stream management APIs.
555
+
SSF is an HTTP based signals sharing framework. It is agnostic to the authentication and authorization schemes used to secure stream configuration APIs. It does not provide any SSF specific authentication and authorization schemes but relies on the cooperating parties' mutual security considerations. Authorization scheme section of the metadata, providers discovery information related to the transmitter's stream management APIs.
556
556
557
557
spec_urn
558
558
559
559
> REQUIRED. A URN that describes the specification of the protocol being used.
560
560
561
561
The receiver will call the transmitter APIs by providing appropriate credentials as per the `spec_urn`.
562
562
563
+
The following is a non-normative example of the `spec_urn`
563
564
564
-
If the `spec_urn` in Authorization scheme is `urn:ietf:rfc6749`
565
+
~~~ json
566
+
{
567
+
"spec_urn": "urn:ietf:rfc:6749"
568
+
}
569
+
~~~
565
570
566
-
- The receiver may obtain an access token using the Client
571
+
In this case, the receiver may obtain an access token using the Client
567
572
Credential Grant {{CLIENTCRED}}, or any other method suitable for the Receiver and the
568
573
Transmitter.
569
574
@@ -1452,9 +1457,9 @@ Errors are signaled with HTTP status codes as follows:
1452
1457
1453
1458
Examples:
1454
1459
1455
-
1. If a Receiver makes a request with an invalid token, then the
1460
+
1. If a Receiver makes a request with an improper authorization, then the
1456
1461
Transmitter MUST respond with a 401 error status.
1457
-
2. If the Receiver presents a valid token, but the Transmitter policy
1462
+
2. If the Receiver presents a valid authorization, but the Transmitter policy
1458
1463
does not permit the Receiver from obtaining the status, then the Transmitter
1459
1464
MAY respond with a 403 error status.
1460
1465
3. If the Receiver requests the status for a stream that does not exist then the
0 commit comments