User-Managed Access (UMA) is an award-winning OAuth-based protocol designed to give a web user a unified control point for authorizing who and what can get access to their online personal data, content, and services, no matter where all those things live on the web. Read the spec, join the group, check out the implementations, follow us on Twitter, like us on Facebook, get involved!
January 25: Enabling user-managed access requires a "BLT sandwich" – not just technical solutions, but well-rounded business and legal solutions as well! A new set of UMA Legal auxiliary material is now available on this wiki, representing the work done by the WG and its ad hoc legal subgroup. Stay tuned for more news and deliverables.
January 17: As of December 23, the Kantara All-Member Ballot for the UMA V1.0.1 specifications passed with flying colors. The UMA Core V1.0.1 Recommendation and the OAuth Resource Set Registration V1.0.1 Recommendationare now available (check out the Release Notes too). Many thanks to the Work Group, the Kantara staff, and the membership for their support as we cleaned up various small bugs throughout the spring and summer and returned the specs to the community for review in the fall.
December 22: Apologies: We just discovered that this page was linking to V1.1 of the PDF version of the operative IPR policy for the WG, vs. V1.2. The only differences between the two policy versions are the date and title. (The HTML link was correct.) If you have an old version of the IPR policy in your files, note the the correct version should have the date "December 2009" and the title "Option Patent & Copyright: Reciprocal Royalty Free with Opt-Out to Reasonable And Non discriminatory (RAND)" on it.