[Openid-specs-ab] Issue #129: OP-Rotation-OP-Sig should return a warning if the signing key is not rotated (openid/certification)
Michael Jones
issues-reply at bitbucket.org
Tue Mar 24 03:54:39 UTC 2015
New issue 129: OP-Rotation-OP-Sig should return a warning if the signing key is not rotated
https://bitbucket.org/openid/certification/issue/129/op-rotation-op-sig-should-return-a-warning
Michael Jones:
Currently OP-Rotation-OP-Sig returns SUCCESS even when the old and new ID Tokens are signed with the same key after key rotation is supposed to be performed.
If this is easy to do, please return a warning in this case. If this is not easy to do, wait to do this until after the certification launch is complete.
Responsible: Rohe
More information about the Openid-specs-ab
mailing list