[Openid-specs-ab] [openid/connect] Messages 2.1.2 -- Add login_id hint to authorization request (issue #646)

George Fletcher gffletch at aol.com
Fri Aug 31 17:34:27 UTC 2012


+1

On 8/30/12 4:33 PM, John Bradley wrote:
> I am OK with that wording.
>
> On 2012-08-30, at 1:59 PM, "Richer, Justin P." <jricher at mitre.org> wrote:
>
>> I think we want to keep the sentiment but solidify the wording. How about:
>>
>> login_id
>>
>>    OPTIONAL. A hint to the authorization service as to the login_id the user may use to authenticate. If an RP first asks the user for their email address (or other identifier), it MAY pass this string to the IdP using this parameter. It is RECOMMENDED that the hint value match the value used for discovery, including any normalization. The IdP's specific response to this parameter (such as pre-filling a username field on a login form or checking against a current user session at the IdP) is out of scope of this specification, and the IdP MAY ignore the value entirely.
>>
>>
>> On Aug 30, 2012, at 1:48 PM, Nat Sakimura wrote:
>>
>>> Thanks George.
>>>
>>> I have added a comment to the ticket.
>>>
>>> After having thought a little bit, I have a problem with the last
>>> sentence "The use of this parameter is up to the IdP's discretion."
>>>
>>> Nat
>>>
>>> On Thu, Aug 30, 2012 at 11:30 PM, gffletch <issues-reply at bitbucket.org> wrote:
>>>> --- you can reply above this line ---
>>>>
>>>> New issue 646: Messages 2.1.2 -- Add login_id hint to authorization request
>>>> https://bitbucket.org/openid/connect/issue/646/messages-212-add-login_id-hint-to
>>>>
>>>> gffletch:
>>>>
>>>> Add a hint from the RP to the IdP regarding the user's login id at the IdP.
>>>>
>>>> login_id
>>>>    OPTIONAL. A hint to the authorization service as to the login_id the user may use to authenticate (if necessary). This hint can be used by an RP if it first asks the user for their email address (or other identifier) and then wants to pass that value as a hint to the discovered authorization service. It is recommended that the hint value match the value used for discovery. The use of this parameter is up to the IdP's discretion.
>>>>
>>>>
>>>> --
>>>>
>>>> This is an issue notification from bitbucket.org. You are receiving
>>>> this either because you are the owner of the issue, or you are
>>>> following the issue.
>>>
>>>
>>> -- 
>>> Nat Sakimura (=nat)
>>> Chairman, OpenID Foundation
>>> http://nat.sakimura.org/
>>> @_nat_en
>>> _______________________________________________
>>> Openid-specs-ab mailing list
>>> Openid-specs-ab at lists.openid.net
>>> http://lists.openid.net/mailman/listinfo/openid-specs-ab
>> _______________________________________________
>> Openid-specs-ab mailing list
>> Openid-specs-ab at lists.openid.net
>> http://lists.openid.net/mailman/listinfo/openid-specs-ab
>
>
> _______________________________________________
> Openid-specs-ab mailing list
> Openid-specs-ab at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs-ab

-- 
Chief Architect                   AIM:  gffletch
Identity Services Engineering     Work: george.fletcher at teamaol.com
AOL Inc.                          Home: gffletch at aol.com
Mobile: +1-703-462-3494           Blog: http://practicalid.blogspot.com
Office: +1-703-265-2544           Twitter: http://twitter.com/gffletch

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20120831/e617b281/attachment.html>


More information about the Openid-specs-ab mailing list