[Openid-specs-ab] Spec Call Notes 25-Nov-19
Mike Jones
Michael.Jones at microsoft.com
Mon Nov 25 23:34:35 UTC 2019
Spec Call Notes 25-Nov-19
Mike Jones
Filip Skokan
Edmund Jay
Open Issues
https://bitbucket.org/openid/connect/issues?status=new&status=open
#1125 *_hash algorithm for EdDSA ID Tokens?
Ed25519 should use SHA-512
Ed448 logically should use SHAKE256 but it takes an output size parameter
Some implementations only support 256-bit (32 byte) output
But SHAKE256 with 114-byte output is what Ed448 signing uses internally
So maybe that's what we should use
More feedback is needed
#1071 Require id_token_hint in RP-initiated logout for redirect to post_logout_redirect_uri
We agreed that we should go with this approach unless objections are raised
#1087 [rp-initiated-logout] insufficient description of id_token_hint processing and validations
We agreed that these clarifications need to be made to the draft, including to the authentication flow
Logout Testing
OP logout tests are now available at https://openid.net/certification/logout-op-testing/
Test your implementations now!
Next Call
The next call is Thursday, Dec 5 at 7am Pacific Time
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20191125/5d74760a/attachment.html>
More information about the Openid-specs-ab
mailing list