[IPP] IPP OAuth 2.0 question / potential gap: How should the Client manage multiple access tokens or realm identities?

[IPP] IPP OAuth 2.0 question / potential gap: How should the Client manage multiple access tokens or realm identities?

Kennedy, Smith (Wireless & IPP Standards) smith.kennedy at hp.com
Thu Oct 13 20:37:18 UTC 2022



> On Oct 13, 2022, at 2:25 PM, Kennedy, Smith (Wireless & IPP Standards) via ipp <ipp at pwg.org> wrote:
> 
> Signed PGP part
> CAUTION: External Email
> 
> Hi there,
> 
> I was having another discussion with HP's OAuth 2.0 folks over the last few days, and one of the things they are working on is guidance for the client on how it should or could manage the circumstance where the client device holds access tokens for multiple "realms" (i.e., work printing, home printing). If it was all just local information similar to Wi-Fi "profile" information maintained on the client, that would just be left up to the client's implementation.
> 
> I found this page that seems to talk through some of these concepts.

Here's the link I meant to provide, which discussed it from an OIDC perspective: https://developer.okta.com/docs/guides/oin-oidc-multi-tenancy/main/#tenants-in-okta <https://developer.okta.com/docs/guides/oin-oidc-multi-tenancy/main/#tenants-in-okta>

> I will continue to read, but wanted to share in case others have already developed plans or thoughts in this area, that we could leverage.
> 
> Cheers,
> 
> Smith
> 
> /**
>    Smith Kennedy
>    HP Inc.
> */
> 
> 
> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.pwg.org/pipermail/ipp/attachments/20221013/6d6d527a/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Message signed with OpenPGP
URL: <http://www.pwg.org/pipermail/ipp/attachments/20221013/6d6d527a/attachment.sig>


More information about the ipp mailing list