[Openid-specs-ab] Issue #1177: Federation: Jwks not really needed in explicit registration statement returned to RP (openid/connect)
Vladimir Dzhuvinov
issues-reply at bitbucket.org
Tue Jun 30 08:00:32 UTC 2020
New issue 1177: Federation: Jwks not really needed in explicit registration statement returned to RP
https://bitbucket.org/openid/connect/issues/1177/federation-jwks-not-really-needed-in
Vladimir Dzhuvinov:
In explicit registration the OP returns an entity statement to the RP where the RP is the subject and the metadata policy is used to compose the final client registration JSON object.
[https://openid.net/specs/openid-connect-federation-1\_0.html#rfc.section.9.2.2.2](https://openid.net/specs/openid-connect-federation-1_0.html#rfc.section.9.2.2.2)
According to the entity statement spec the `jwks` claim is required, but in this particular use of the statement - to return the client information to the RP, it’s not really needed since it’s the RPs own data.
[https://openid.net/specs/openid-connect-federation-1\_0.html#rfc.section.2.1](https://openid.net/specs/openid-connect-federation-1_0.html#rfc.section.2.1)
More information about the Openid-specs-ab
mailing list