-
Notifications
You must be signed in to change notification settings - Fork 12
2025‐07‐22
Aaron Parecki edited this page Aug 5, 2025
·
1 revision
Date: 2025-07-22
- Aaron Parecki (Okta)
- Dean H. Saxe (Self)
- Sean Miller (RSA)
- Kenn Chong (RSA)
- Jen Schreiber (Workday)
- Yuval Glasner (CyberArk)
- Bjorn Hjelm (Yubico)
- Bertrand Carlier (Wavestone)
- Karl McGuinness (Self)
- Jeff Bounds (SailPoint)
-
Welcome and antitrust policy reminder https://openid.net/policies/
-
OpenID Contributor Agreement reminder https://openid.net/intellectual-property
-
Reminder about OpenID Slack
-
Community Events
- IETF 123, July 19 - 25 in Madrid, Spain
- Authenticate, October 13 - 15 in Carlsbad, CA
- IIW XVI October 28 - 30 in Mountain View, CA https://www.eventbrite.com/e/internet-identity-workshop-iiwxli-41-2025b-tickets-1393125719529?aff=oddtdtcreator
- IETF 124, November 1 - 7 in Montreal, Canada
-
Upcoming schedule
- July 29th call cancelled
-
Interop Event Planning
- Poll for dates: https://whenavailable.com/invite/bN6AdzU027LQPjeLQ4F7
-
Call for adoption ends tomorrow
-
Review profiles & issues
-
Check in with Dick about Connect WG status
-
FAL2 Issues https://github.com/openid/ipsie/issues?q=is%3Aissue%20state%3Aopen%20label%3Aagenda%20label%3AFAL2
-
Account Resolution and JIT Provisioning
- Update from Dick/Karl about this topic in AB/Connect
-
auth_time,max_age, andprompt - RP Initiated federation https://github.com/openid/ipsie/issues/94
- Subject Identifier Global Uniqueness https://github.com/openid/ipsie/issues/93
- Assertion presentation through a proxy - https://github.com/openid/ipsie/issues/95
- Should there be a separate issue to manage proxy chaining?
-
Account Resolution and JIT Provisioning
-
SCIM IL1 Profile Review
-
AOB
-
Notetaker: Jen
- Call for Adoption for Common Requirements - all positive feedback, closes Wed. 7/23
- No updates for Enterprise Extensions for AB/Connect WG
-
Issue #79 Account Resolution:
- proposal to add a new claim aud_sub claim: Link
- PR to require IdP support of prompt=login
- force a user-interactive reauthentication
- ambiguous session identifier vs reauthentication to extend the session
- dean action to reread rp init spec for the session identifier claim
- Issue #94 for RP initiated federation
- Create an issue around IdP initiated federation for SAML SL1 Profile
- Dean: May need to define a mechanism or reinstate a WG to do so
- Aaron: Practically, no one will want to change their SAML implementations
- Dean to send a note in the mailing list to figure out what a path forward looks like for this and if we need to remove this from the requirements...
- Or we need to move this to an SL2+ requirement
- Issue #93 subject idenitfier global uniqueness
- Rp shouldnt treat the subject identifier as globally unique
- Dean added text within the requirements doc
- Comments added as notes on the pr