[Openid-specs-ab] Registration: Use invalid_client_metadata error to also mean incomplete metadata?
Justin Richer
jricher at mitre.org
Wed Jun 26 15:19:41 UTC 2013
Yes, that's the right error -- a required field (jwks_uri) is missing.
-- Justin
On 06/26/2013 08:25 AM, Vladimir Dzhuvinov / NimbusDS wrote:
> Hi guys,
>
> Say we have a registration request where the client wants to
> authenticate itself with "private_key_jwt" but fails to provide a
> "jwks_uri" parameter. Obviously the OP cannot fill-in the JWK set URI
> value and substituting the token endpoint auth method with one based on
> a client secret based would be too far off.
>
> Is it correct to return an "invalid_client_metadata" in that case?
>
> The current description of the error doesn't quite fit this scenario, so
> could we extend the text to say e.g.
>
> """
> The value of one of the Client Metadata fields is invalid or a required
> field is missing.
> """
>
> ?
>
> Cheers,
>
> Vladimir
> --
> Vladimir Dzhuvinov : www.NimbusDS.com : vladimir at nimbusds.com
> _______________________________________________
> Openid-specs-ab mailing list
> Openid-specs-ab at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs-ab
More information about the Openid-specs-ab
mailing list