Greetings,
HP Inc. has the following additional feedback on the 20250508 draft of IPP OAuth Extensions v1.0:
* Section 7.3: The JWTs referenced in the first paragraph are available to the Client but are not passed to the Printer and may not be available to the Printer, so the Printer cannot set the Job's "job-originating-user-name" and/or "job-originating-user-uri" values directly using these JWT sources
* Although there is a reference to RFC 7591 in section 12.1, it's only used in section 3.1 "Rationale". There is otherwise no discussion of client registration, although that is needed for OAuth to work. I thought earlier drafts said that client registration was out of scope, but that isn't discussed anymore. Either the document needs to overtly state that client registration is out of scope, or the document needs to discusses client registration
* Need to add UML diagrams to section 4 or in an appendix (can contribute these soon)
* Might also want to add discussion about the challenges faced - what things aren't standardized or are poorly adopted, gaps, etc.
We may have some more feedback soon, but this is sufficient for now.
Cheers,
Smith
/**
Smith Kennedy
HP Inc.
*/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.pwg.org/pipermail/ipp/attachments/20250522/c30a47ec/attachment.html>