[cf-dev] Using X.509 certificates as a mechanism for OAuth client authentication #uaa

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

[cf-dev] Using X.509 certificates as a mechanism for OAuth client authentication #uaa

brian.sung
I do not think UAA currently supports the draft-ietf-oauth-mtls-04 to use a TLS client certificate instead of using client-id/client-secret to authenticate the OAuth client.

Is this or something similar on UAA's future roadmap? 

 
_._,_._,_

Links:

You receive all messages sent to this group.

View/Reply Online (#8664) | [hidden email] | [hidden email] | Mute This Topic | New Topic
Mute #uaa
Your Subscription | [hidden email] | Unsubscribe [[hidden email]]

_._,_._,_
Reply | Threaded
Open this post in threaded view
|

Re: [cf-dev] Using X.509 certificates as a mechanism for OAuth client authentication #uaa

Dan Beneke
Hi Brian - 

Thanks for the comment/question.  

We're interested in understanding your intentions should UAA support the draft-ietf-oauth-mtls-04?  What value does it provide your organization over the client-id/client-secret authentication workflow?

Regards,
Dan Beneke
_._,_._,_

Links:

You receive all messages sent to this group.

View/Reply Online (#8706) | [hidden email] | [hidden email] | Mute This Topic | New Topic
Mute #uaa


Reminder that all communication on this mailing list is subject to the Cloud Foundry Foundation's code of conduct, which can be found here: https://www.cloudfoundry.org/code-of-conduct/
Your Subscription | [hidden email] | Unsubscribe [[hidden email]]
_._,_._,_