[Openid-specs-risc] http vs https in event type URIs

Mike Jones Michael.Jones at microsoft.com
Thu Apr 12 04:41:56 UTC 2018


The event type URIs are never dereferenced, so it doesn’t matter if they start with http, https, uri, tel, etc.

                                                       -- Mike

From: Openid-specs-risc <openid-specs-risc-bounces at lists.openid.net> On Behalf Of Marius Scurtescu via Openid-specs-risc
Sent: Wednesday, April 11, 2018 8:35 PM
To: openid-specs-risc at lists.openid.net
Subject: Re: [Openid-specs-risc] http vs https in event type URIs

I made the change. If there are objections we can revisit.

Marius

On Mon, Apr 9, 2018 at 4:29 PM, Marius Scurtescu <mscurtescu at google.com<mailto:mscurtescu at google.com>> wrote:
I just realized that all event type URIs defined in both risc-event-types and oauth-event-types use HTTP and not HTTPS:
https://bitbucket.org/openid/risc/src

Is HTTPS important in this case? Should we switch all event type URIs over to HTTPS?

Marius

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-risc/attachments/20180412/a0428d58/attachment.html>


More information about the Openid-specs-risc mailing list