[Openid-specs-ab] JWA support

Roland Hedberg roland.hedberg at adm.umu.se
Wed Sep 26 11:09:41 UTC 2012


an OIC OP can publish which encryption algorithms it supports using userinfo_algs_supported, id_token_algs_supported and request_object_algs_supported respectively.

A RP on the other hand can be more specific, it can also specify/propose the use of specific enc and int algorithms.

Since the RP doesn't know what enc and int algorithms the OP supports it may easily propose the use of something the OP doesn't support.

This leads to two questions:
- Should the OP be able to publish what enc and int algorithms it supports ?
- What's the error code to use by the OP if it can't support what the RP proposes ?

-- Roland
Roland Hedberg
IT Architect/Senior Researcher
ICT Services and System Development (ITS) 
Umeå University 
SE-901 87 Umeå, Sweden	
Phone +46 90 786 68 44
Mobile +46 70 696 68 44 

More information about the Openid-specs-ab mailing list