[Openid-specs-ab] About scope parameters and UserInfo response
Nat Sakimura
sakimura at gmail.com
Tue Aug 30 09:01:34 UTC 2011
The way it is currently written is that they are additive.
So, "Profile" does not include "email".
If you only want email, include "email" to the scope.
If you want both names etc. and email, write "profile email" to the scope.
If you want more granularity, use "request" parameter.
=nat
On Sun, Aug 28, 2011 at 2:11 PM, Ryo Ito <ritou.06 at gmail.com> wrote:
> Hi,
>
> In the Lite spec, several scopes has defined for Userinfo endpoint.
>
> ===
> http://openid.net/specs/openid-connect-lite-1_0.html#anchor2
>
> The User Info Endpoint scopes are:
>
> profile
> OPTIONAL requests default profile information.
> email
> OPTIONAL requests an email address.
> address
> OPTIONAL requests an address.
>
> These scopes are additive if a RP wanted the default profile including
> email and address they would request:
> ===
>
> When OP returns when it doesn't contain these scope, does the OP
> response returns include email?
> We should clarify the response parameter set corresponding to each
> scope value and "default set".
>
> e.g.
> ===
> profile : profile, picture, website
> email : email, verified
> address : address
>
> default : others?
> ===
>
> Thanks.
>
> Ryo Ito
> --
> ====================
> Ryo Ito (=ritou, @ritou)
> Email : ritou.06 at gmail.com
> ====================
> _______________________________________________
> Openid-specs-ab mailing list
> Openid-specs-ab at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs-ab
>
--
Nat Sakimura (=nat)
Chairman, OpenID Foundation
http://nat.sakimura.org/
@_nat_en
More information about the Openid-specs-ab
mailing list