RFC Errata

Errata Search
RFC Number:		Errata ID:

Source of RFC		Status:
Area Acronym:		Type:
WG Acronym:		Submitter Name:
Other:		Date Submitted:
Summary Table Full Records

Found 1 record.

Status: Reported (1)

RFC 7628, "A Set of Simple Authentication and Security Layer (SASL) Mechanisms for OAuth", August 2015

Source of RFC: kitten (sec)

Errata ID: 8564
Status: Reported
Type: Technical
Publication Format(s) : TEXT
Reported By: Kim Alvefur
Date Reported: 2025-09-04
Edited by: Paul Wouters
Date Edited: 2025-09-04

Section 4.4 says:

[Negotiate TLS...]
C: AUTH OAUTHBEARER bix1c2VyPXNvbWV1c2VyQGV4YW1wbGUuY29tLAFhdXRoPUJlYXJl
       ciB2RjlkZnQ0cW1UYzJOdmIzUmxja0JoZEhSaGRtbHpkR0V1WTI5dENnPT0BAQ==
S: 334 eyJzdGF0dXMiOiJpbnZhbGlkX3Rva2VuIiwic2NoZW1lcyI6ImJlYXJlciBtYWMiL
       CJzY29wZSI6Imh0dHBzOi8vbWFpbC5leGFtcGxlLmNvbS8ifQ==

(...)

   n,user=someuser@example.com,^A
   auth=Bearer vF9dft4qmTc2Nvb3RlckBhdHRhdmlzdGEuY29tCg==^A^A

It should say:

[Negotiate TLS...]
C: AUTH OAUTHBEARER bixhPXNvbWV1c2VyQGV4YW1wbGUuY29tLAFhdXRoPUJlYXJlciB2
       RjlkZnQ0cW1UYzJOdmIzUmxja0JoZEhSaGRtbHpkR0V1WTI5dENnPT0BAQ==
S: 334 eyJzdGF0dXMiOiJpbnZhbGlkX3Rva2VuIiwic2NoZW1lcyI6ImJlYXJlciBtYWMiL
       CJzY29wZSI6Imh0dHBzOi8vbWFpbC5leGFtcGxlLmNvbS8ifQ==

(...)

   n,a=someuser@example.com,^A
   auth=Bearer vF9dft4qmTc2Nvb3RlckBhdHRhdmlzdGEuY29tCg==^A^A

Notes:

The gs2-header defined in RFC 5801 has a=authzid, not name=authzid.

Report New Errata

Search RFCs

RFC Editor

The Series

For Authors

Sponsor

RFC Errata

Errata Search

Status: Reported (1)

RFC 7628, "A Set of Simple Authentication and Security Layer (SASL) Mechanisms for OAuth", August 2015