[Openid-specs-mobile-profile] Issue #39: Error/non-error handling in case OP cannot fulfill RP requirements (openid/mobile)
Torsten Lodderstedt
issues-reply at bitbucket.org
Fri May 27 08:38:24 UTC 2016
New issue 39: Error/non-error handling in case OP cannot fulfill RP requirements
https://bitbucket.org/openid/mobile/issues/39/error-non-error-handling-in-case-op-cannot
Torsten Lodderstedt:
What is the behavior of the OP in cases, where the OP cannot fulfill the RPs requirements regarding authentication?
Example: RP potentially only bought LOA3 and not LOA2 - what should happen?
Discussions during workshop:
- if it can be determined before the authentication happens -> error
- if the authentication process is already in progress -> conduct authentication and attest identity along with information about the (less strong/different) authentication method(s) performed
More information about the Openid-specs-mobile-profile
mailing list