[IPP] OAuth in IPP and the "oauth-authorization-server-uri" IPP attribute

[IPP] OAuth in IPP and the "oauth-authorization-server-uri" IPP attribute

[IPP] OAuth in IPP and the "oauth-authorization-server-uri" IPP attribute

Kennedy, Smith (Wireless Architect) smith.kennedy at hp.com
Mon Jul 24 18:37:21 UTC 2017


Greetings,

I am working on converting the "IPP Authentication" slide set to a whitepaper. In the process, I've been considering OAuth a bit more. PWG 5100.18 (IPP Transaction Based Printer Extensions) defines the "oauth-authorization-server-uri", "access-oauth-token", and "access-oauth-uri" attributes. It isn't clear to me how these attributes integrate into an OAuth authentication system. 

The way that OAuth / OAuth2 seems to work, there will be an HTTP response redirecting the User Agent (IPP Client) to a different server for authentication. If this is all handled at the HTTP layer, what value do these IPP attributes provide?

Thanks for any help,

Smith

/**
    Smith Kennedy
    Wireless Architect - Client Software - IPG-PPS
    Standards - IEEE ISTO PWG / Bluetooth SIG / Wi-Fi Alliance / NFC Forum / USB IF
    Chair, IEEE ISTO Printer Working Group
    HP Inc.
*/



-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4241 bytes
Desc: not available
URL: <http://www.pwg.org/pipermail/ipp/attachments/20170724/0d7b0ce0/attachment.p7s>


More information about the ipp mailing list