<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; color: rgb(0, 0, 0); font-size: 14px; font-family: Calibri, sans-serif;">
<div>
<div>
<div>
<div>Humm, where is “resource_set_registration_endpoint”? See below what I’m getting from the well-known endpoint. What is the usual value for “resource_set_registration_endpoint” e.g. considering the root as http://localhost:8080/uma-server-webapp-1.2.2?</div>
<div><br>
</div>
<div>{</div>
<div>&nbsp; &quot;request_parameter_supported&quot;:true,</div>
<div>&nbsp; &quot;claims_parameter_supported&quot;:false,</div>
<div>&nbsp; &quot;introspection_endpoint&quot;:&quot;http://localhost:8080/uma-server-webapp-1.2.2/introspect&quot;,</div>
<div>&nbsp; &quot;scopes_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;openid&quot;,</div>
<div>&nbsp; &nbsp; &quot;profile&quot;,</div>
<div>&nbsp; &nbsp; &quot;email&quot;,</div>
<div>&nbsp; &nbsp; &quot;address&quot;,</div>
<div>&nbsp; &nbsp; &quot;phone&quot;,</div>
<div>&nbsp; &nbsp; &quot;offline_access&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;issuer&quot;:&quot;http://localhost:8080/uma-server-webapp-1.2.2/&quot;,</div>
<div>&nbsp; &quot;userinfo_encryption_enc_values_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;A256CBC&#43;HS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;A256GCM&quot;,</div>
<div>&nbsp; &nbsp; &quot;A192GCM&quot;,</div>
<div>&nbsp; &nbsp; &quot;A128GCM&quot;,</div>
<div>&nbsp; &nbsp; &quot;A128CBC-HS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;A192CBC-HS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;A256CBC-HS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;A128CBC&#43;HS256&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;id_token_encryption_enc_values_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;A256CBC&#43;HS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;A256GCM&quot;,</div>
<div>&nbsp; &nbsp; &quot;A192GCM&quot;,</div>
<div>&nbsp; &nbsp; &quot;A128GCM&quot;,</div>
<div>&nbsp; &nbsp; &quot;A128CBC-HS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;A192CBC-HS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;A256CBC-HS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;A128CBC&#43;HS256&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;authorization_endpoint&quot;:&quot;http://localhost:8080/uma-server-webapp-1.2.2/authorize&quot;,</div>
<div>&nbsp; &quot;service_documentation&quot;:&quot;http://localhost:8080/uma-server-webapp-1.2.2/about&quot;,</div>
<div>&nbsp; &quot;request_object_encryption_enc_values_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;A256CBC&#43;HS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;A256GCM&quot;,</div>
<div>&nbsp; &nbsp; &quot;A192GCM&quot;,</div>
<div>&nbsp; &nbsp; &quot;A128GCM&quot;,</div>
<div>&nbsp; &nbsp; &quot;A128CBC-HS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;A192CBC-HS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;A256CBC-HS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;A128CBC&#43;HS256&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;userinfo_signing_alg_values_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;HS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;HS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;HS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES256&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES384&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES512&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS512&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;claims_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;sub&quot;,</div>
<div>&nbsp; &nbsp; &quot;name&quot;,</div>
<div>&nbsp; &nbsp; &quot;preferred_username&quot;,</div>
<div>&nbsp; &nbsp; &quot;given_name&quot;,</div>
<div>&nbsp; &nbsp; &quot;family_name&quot;,</div>
<div>&nbsp; &nbsp; &quot;middle_name&quot;,</div>
<div>&nbsp; &nbsp; &quot;nickname&quot;,</div>
<div>&nbsp; &nbsp; &quot;profile&quot;,</div>
<div>&nbsp; &nbsp; &quot;picture&quot;,</div>
<div>&nbsp; &nbsp; &quot;website&quot;,</div>
<div>&nbsp; &nbsp; &quot;gender&quot;,</div>
<div>&nbsp; &nbsp; &quot;zone_info&quot;,</div>
<div>&nbsp; &nbsp; &quot;locale&quot;,</div>
<div>&nbsp; &nbsp; &quot;updated_at&quot;,</div>
<div>&nbsp; &nbsp; &quot;birthdate&quot;,</div>
<div>&nbsp; &nbsp; &quot;email&quot;,</div>
<div>&nbsp; &nbsp; &quot;email_verified&quot;,</div>
<div>&nbsp; &nbsp; &quot;phone_number&quot;,</div>
<div>&nbsp; &nbsp; &quot;phone_number_verified&quot;,</div>
<div>&nbsp; &nbsp; &quot;address&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;claim_types_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;normal&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;op_policy_uri&quot;:&quot;http://localhost:8080/uma-server-webapp-1.2.2/about&quot;,</div>
<div>&nbsp; &quot;token_endpoint_auth_methods_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;client_secret_post&quot;,</div>
<div>&nbsp; &nbsp; &quot;client_secret_basic&quot;,</div>
<div>&nbsp; &nbsp; &quot;client_secret_jwt&quot;,</div>
<div>&nbsp; &nbsp; &quot;private_key_jwt&quot;,</div>
<div>&nbsp; &nbsp; &quot;none&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;token_endpoint&quot;:&quot;http://localhost:8080/uma-server-webapp-1.2.2/token&quot;,</div>
<div>&nbsp; &quot;response_types_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;code&quot;,</div>
<div>&nbsp; &nbsp; &quot;token&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;request_uri_parameter_supported&quot;:false,</div>
<div>&nbsp; &quot;userinfo_encryption_alg_values_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;RSA-OAEP&quot;,</div>
<div>&nbsp; &nbsp; &quot;RSA-OAEP-256&quot;,</div>
<div>&nbsp; &nbsp; &quot;RSA1_5&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;grant_types_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;authorization_code&quot;,</div>
<div>&nbsp; &nbsp; &quot;implicit&quot;,</div>
<div>&nbsp; &nbsp; &quot;urn:ietf:params:oauth:grant-type:jwt-bearer&quot;,</div>
<div>&nbsp; &nbsp; &quot;client_credentials&quot;,</div>
<div>&nbsp; &nbsp; &quot;urn:ietf:params:oauth:grant_type:redelegate&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;revocation_endpoint&quot;:&quot;http://localhost:8080/uma-server-webapp-1.2.2/revoke&quot;,</div>
<div>&nbsp; &quot;userinfo_endpoint&quot;:&quot;http://localhost:8080/uma-server-webapp-1.2.2/userinfo&quot;,</div>
<div>&nbsp; &quot;token_endpoint_auth_signing_alg_values_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;HS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;HS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;HS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES256&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES384&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES512&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS512&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;op_tos_uri&quot;:&quot;http://localhost:8080/uma-server-webapp-1.2.2/about&quot;,</div>
<div>&nbsp; &quot;require_request_uri_registration&quot;:false,</div>
<div>&nbsp; &quot;id_token_encryption_alg_values_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;RSA-OAEP&quot;,</div>
<div>&nbsp; &nbsp; &quot;RSA-OAEP-256&quot;,</div>
<div>&nbsp; &nbsp; &quot;RSA1_5&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;jwks_uri&quot;:&quot;http://localhost:8080/uma-server-webapp-1.2.2/jwk&quot;,</div>
<div>&nbsp; &quot;subject_types_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;public&quot;,</div>
<div>&nbsp; &nbsp; &quot;pairwise&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;id_token_signing_alg_values_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;HS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;HS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;HS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES256&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES384&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES512&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;none&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;registration_endpoint&quot;:&quot;http://localhost:8080/uma-server-webapp-1.2.2/register&quot;,</div>
<div>&nbsp; &quot;request_object_signing_alg_values_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;HS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;HS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;HS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;RS512&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES256&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES384&quot;,</div>
<div>&nbsp; &nbsp; &quot;ES512&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS256&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS384&quot;,</div>
<div>&nbsp; &nbsp; &quot;PS512&quot;</div>
<div>&nbsp; ],</div>
<div>&nbsp; &quot;request_object_encryption_alg_values_supported&quot;:[</div>
<div>&nbsp; &nbsp; &quot;RSA-OAEP&quot;,</div>
<div>&nbsp; &nbsp; &quot;RSA-OAEP-256&quot;,</div>
<div>&nbsp; &nbsp; &quot;RSA1_5&quot;</div>
<div>&nbsp; ]</div>
<div>}</div>
</div>
<div>
<div id="MAC_OUTLOOK_SIGNATURE"></div>
</div>
</div>
</div>
<div><br>
</div>
<div>Regards,</div>
<div>Luiz</div>
<div><br>
</div>
<span id="OLK_SRC_BODY_SECTION">
<div style="font-family:Calibri; font-size:12pt; text-align:left; color:black; BORDER-BOTTOM: medium none; BORDER-LEFT: medium none; PADDING-BOTTOM: 0in; PADDING-LEFT: 0in; PADDING-RIGHT: 0in; BORDER-TOP: #b5c4df 1pt solid; BORDER-RIGHT: medium none; PADDING-TOP: 3pt">
<span style="font-weight:bold">From: </span>&lt;<a href="mailto:mitreid-connect-bounces@mit.edu">mitreid-connect-bounces@mit.edu</a>&gt; on behalf of Justin Richer<br>
<span style="font-weight:bold">Date: </span>Monday, November 23, 2015 at 6:23 PM<br>
<span style="font-weight:bold">To: </span>&quot;<a href="mailto:mitreid-connect@mit.edu">mitreid-connect@mit.edu</a>&quot;<br>
<span style="font-weight:bold">Subject: </span>Re: [mitreid-connect] UMA Resource Set creation<br>
</div>
<div><br>
</div>
<div>
<div bgcolor="#FFFFFF" text="#000000">This is a broken part of the UMA spec. You need to add &quot;/resource_set&quot; to the end of the value in &quot;resource_set_registration_endpoint&quot; in the discovery document. &quot;registration_endpoint&quot; is for dynamic client registration.
<br>
<br>
There is not currently any UI to interact with the resource set registration because this is intended to be an action taken by *resource servers* and not by users directly. The self-service developer protected resource registration is not for UMA-style protected
 resources but rather for OAuth protected resources that are set up to use token introspection.<br>
<br>
Hope that helps,<br>
&nbsp;-- Justin<br>
<br>
<div class="moz-cite-prefix">On 11/23/2015 4:20 PM, Luiz Omori wrote:<br>
</div>
<blockquote cite="mid:0351AB20-37B4-43EA-93C6-C9EA6BAE0116@dm.duke.edu" type="cite">
<div>Hi,</div>
<div><br>
</div>
<div>We are looking into the UMA implementation and have some basic questions. Is there a way to register resource sets (as in&nbsp;<a moz-do-not-send="true" href="https://docs.kantarainitiative.org/uma/draft-oauth-resource-reg.html">https://docs.kantarainitiative.org/uma/draft-oauth-resource-reg.html</a>)
 through the UI? If not, what is the endpoint for that? We tried the registration endpoint from the well-known response but it didn’t work (<a moz-do-not-send="true" href="http://localhost:8080/uma-server-webapp-1.2.2/.well-known/openid-configuration">http://localhost:8080/uma-server-webapp-1.2.2/.well-known/openid-configuration</a>&nbsp;-&gt;
 &quot;registration_endpoint&quot;:&quot;<a class="moz-txt-link-freetext" href="http://localhost:8080/uma-server-webapp-1.2.2/register”">http://localhost:8080/uma-server-webapp-1.2.2/register”</a>)</div>
<div><br>
</div>
<div>Regards,</div>
<div>Luiz</div>
<div></div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset> <br>
<pre wrap="">_______________________________________________
mitreid-connect mailing list
<a class="moz-txt-link-abbreviated" href="mailto:mitreid-connect@mit.edu">mitreid-connect@mit.edu</a><a class="moz-txt-link-freetext" href="http://mailman.mit.edu/mailman/listinfo/mitreid-connect">http://mailman.mit.edu/mailman/listinfo/mitreid-connect</a></pre>
</blockquote>
<br>
</div>
</div>
</span>
</body>
</html>