[Openid-specs-ab] Spec call notes 13-Oct-11

Edmund Jay ejay at mgi1.com
Thu Oct 13 23:41:36 UTC 2011


Spec call notes 13-Oct-11
 
Mike Jones
Edmund Jay
John Bradley
Pamela Dingle
George Fletcher


[Agenda]
  Interop Progress
  Spec Edits


[Interop]
    Edmund, Nov, Ryo Ito has implemented Discovery and Registration specs.
    Edmund will send a message with the endpoints to the Interop group mailing 
list.

    Edmund raised the question of whether there should be a way in the 
    Registration spec for restricting client registrations.
    It's decided that this should be up to the Identity providers.
    John points to the client credentials in the request as a way to 
    restrict registrations.
    There should be errors to indicate failed registration.


[Spec Edits]
    The Token Endpoint includes a 'secret_type' parameter to indicate the client
    authentication type. This differs from OAuth where the client authentication
    type is indicated at client registration time. John recommends that the 
specs
    have an authentication section that explains about the client authentication 
so
    that authentication does not need to be mentioned/duplicated in various 
places.
    John will create issue in tracker to keep authentication similar to OAuth.
    
    Another issue with Token endpoint is that 'scope' is required. 'Openid' is 
required
    value of 'scope' so ID Token is always returned at Token endpoint even when 
    refreshing token. John made 'scope' OPTIONAL in Refresh Token request.
    
    An issue is raised about what 'response_type' combinations Providers must 
support.
    Current specs only mentions valid combinations but not what must be 
supported.
    John will add text for which combinations ("code", and "token id_token")
    all servers must support to facilitate inter-op.
    
    Topic for discussion at upcoming face 2 face meeting : How to reconcile all 
the 

    duplication between Messages and Standard? Decision to be decided at meeting 
in
    AOL, Palo Alto.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20111013/75614b55/attachment-0001.html>


More information about the Openid-specs-ab mailing list