[Openid-specs-igov] Client Assertion definition

Mike Varley mike.varley at securekey.com
Fri Jan 19 21:56:48 UTC 2018


Its just really, really far down ;)

Thanks, I'll add it to the list of changes.

MV

From: Openid-specs-igov <openid-specs-igov-bounces at lists.openid.net<mailto:openid-specs-igov-bounces at lists.openid.net>> on behalf of Openid-specs-igov <openid-specs-igov at lists.openid.net<mailto:openid-specs-igov at lists.openid.net>>
Reply-To: Justin Richer <jricher at mit.edu<mailto:jricher at mit.edu>>
Date: Friday, January 19, 2018 at 4:04 PM
To: Phil Hunt <phil.hunt at oracle.com<mailto:phil.hunt at oracle.com>>
Cc: Openid-specs-igov <openid-specs-igov at lists.openid.net<mailto:openid-specs-igov at lists.openid.net>>
Subject: Re: [Openid-specs-igov] Client Assertion definition

Good catch, that should be a cross-reference to section 2.3.2 of the OAuth profile:

https://xml2rfc.tools.ietf.org/cgi-bin/xml2rfc.cgi?Submit=Submit&format=ascii&mode=html&type=ascii&url=https://bitbucket.org/openid/igov/raw/master/openid-igov-oauth2.xml#RequestsToTokenEndpoint

 — Justin

On Jan 19, 2018, at 2:58 PM, Phil Hunt via Openid-specs-igov <openid-specs-igov at lists.openid.net<mailto:openid-specs-igov at lists.openid.net>> wrote:

Looking at the iGov profile and in section 2.2 it says…
client_assertion
The value of the signed client authentication JWT generated as described below. The RP must generate a new assertion JWT for each call to the token endpoint.

Funny thing, the "JWT as described below" is not to be found.

Phil

Oracle Corporation, Identity Cloud Services Architect
@independentid
www.independentid.com<http://www.independentid.com/>
phil.hunt at oracle.com<mailto:phil.hunt at oracle.com>

_______________________________________________
Openid-specs-igov mailing list
Openid-specs-igov at lists.openid.net<mailto:Openid-specs-igov at lists.openid.net>
http://lists.openid.net/mailman/listinfo/openid-specs-igov

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-igov/attachments/20180119/4ef4c97a/attachment-0001.html>


More information about the Openid-specs-igov mailing list