[Openid-specs-ab] Lite Draft 8

[John Bradley]

Updated lite.

The introspection endpoint is renamed to be consistent with session management.  I think the name is clearer for the function.

Per my discussion with Breno I made it clear that it is a OAuth 2 protected resource per the spec and not something special.

That required removing the text about it being possible to overload it on the token endpoint.  That probably is not a good idea as they now have different security.

I referenced session management and the full spec to redirect people to there for a fuller explanation.

PPID is only mentioned in security considerations.
We should discuss if it should be in the lite spec.   
Some IdP will use PPID by default.  I think a discussion of how that should be calculated needs to be included otherwise RP will be surprised if they change something and all the user_id change.  

I may only make the first part of the call.  I have a 6:20 flight.

John B.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: openid-connect-lite-1_0-8.xml
Type: application/xml
Size: 49347 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20110811/b7fade26/attachment.xml>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20110811/b7fade26/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4767 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20110811/b7fade26/attachment.p7s>