- Compact style
- Indico style
- Indico style - inline minutes
- Indico style - numbered
- Indico style - numbered + minutes
- Indico Weeks View
Proposed agenda:
1. The token issuer MAY include a wlcg.capabiltyset claim in the resulting token with a string-formatted list of capabilitysets included in the token.
2. If the requester is not authorized to have a given capabilitiyset, the token issuer MAY deny the entire token request.
3. For (2), if the token issuer issues the token anyway, it MUST set the wlcg.capabiilityset claim with the requested capabilities that were authorized (or empty string if none).
This is quite a few MAYs and perhaps not very helpful to clients. However, in cases like Vault, when they don't really know what authorisation is needed it could be useful to get the token anyway. On the flip side, better to fail right away to help debugging rather than propagating a token that may fail later.
OAuth RFC says that scope requests may be ignored but doesn't forbid failing with an error
Zoom meeting:
Please ensure you are signed up to project-lcg-authz@cern.ch to receive the meeting password!
Join Zoom Meeting
https://cern.zoom.us/j/94718857994
Meeting ID: 947 1885 7994
Password: <see email>
One tap mobile
+41432107042,,94718857994# Switzerland
+41432107108,,94718857994# Switzerland
Dial by your location
+41 43 210 70 42 Switzerland
+41 43 210 71 08 Switzerland
+41 31 528 09 88 Switzerland
+33 1 7037 9729 France
+33 7 5678 4048 France
+33 1 7037 2246 France
Meeting ID: 947 1885 7994
Find your local number: https://cern.zoom.us/u/abjrVtLBu4
Join by SIP
94718857994@188.184.85.92
94718857994@188.184.89.188
Join by H.323
188.184.85.92
188.184.89.188
Meeting ID: 947 1885 7994
Password: <see email>
Participants: Julia, Andrea, DaveD, Enrico, Federica, Irwin, Jeny, Jim, Julie, Maarten, Mine, Marcelo, Mischa, Panos, Enrico, Jeffrey, Linda
Notes:
Actions: