[Openid-specs-ab] Registration: Use invalid_client_metadata error to also mean incomplete metadata?
Vladimir Dzhuvinov / NimbusDS
vladimir at nimbusds.com
Wed Jun 26 12:25:26 UTC 2013
Hi guys,
Say we have a registration request where the client wants to
authenticate itself with "private_key_jwt" but fails to provide a
"jwks_uri" parameter. Obviously the OP cannot fill-in the JWK set URI
value and substituting the token endpoint auth method with one based on
a client secret based would be too far off.
Is it correct to return an "invalid_client_metadata" in that case?
The current description of the error doesn't quite fit this scenario, so
could we extend the text to say e.g.
"""
The value of one of the Client Metadata fields is invalid or a required
field is missing.
"""
?
Cheers,
Vladimir
--
Vladimir Dzhuvinov : www.NimbusDS.com : vladimir at nimbusds.com
More information about the Openid-specs-ab
mailing list