[Openid-specs-ab] Spec Call Notes 16-Dec-21

Thu Dec 16 19:51:02 UTC 2021

Spec Call Notes 16-Dec-21

Brian Campbell
Mike Jones
David Chadwick
Kristina Yasuda
Giuseppe De Marco
Roland Hedberg
Filip Skokan
Thomas Bellebaum
Joseph Heenan
Tom Jones
Bjorn Hjelm

Proposed Implementer's Drafts of SIOP V2 and OIDC4VP
              We have merged several PRs addressing review feedback received
              3 remain open
              We plan to start the Foundation-wide review Friday afternoon

Proposed Account Creation Implementer's Draft
              Review will start at same time

Credential Issuance Specification
              Will be discussed primarily during the SIOP Special Topic calls
              A "Credential Issuance" component tag was added to the Bitbucket issue tracker

OpenID Connect Federation Issues
              https://bitbucket.org/openid/connect/issues?status=new&status=open&component=Federation
              1365: Do we need a special JWT type
                           Mike will work with Roland to add appropriate text
              1373: Definition of the Entity Statement
                           Mike will create updated text
              1358: Search Query
                           Mike said that code can already implement its own custom search operations
                           Roland said that we already have list operations to facilitate search
                           There was consensus on the call to close the issue on that basis
              1366: Support for "immediate" exclusion of an entity from a federation
                           The point of this is to be able to say that an entity is no longer valid in the federation
                           This would require revocation and/or introspection features
                           Mike said that if this is added, this should be optional
                           Giuseppe will write a pull request adding this feature
                           David Chadwick said that they've implemented something like this in their system
              1368: [federation_api] fetch entity statement - issuer parameter is really required?
                           Giuseppe would like the "iss" to be implicit
                           Roland said that if you don't provide an issuer, then the issuer would be the one at the fetch endpoint
                           Mike wants John Bradley to do a security review of the possibility of the issuer being optional

Roland said that there's currently one endpoint with multiple operations
              He asked potential implementers whether each operation should have its own endpoint
              Giuseppe said that some of the endpoints would be optional
              Mike said that this would break every implementation so we shouldn't do it without a compelling reason
              Roland asked Brian, Filip, and Joseph if they had an option.  None did.
              Roland will file a new issue about this

Open Pull Requests
              https://bitbucket.org/openid/connect/pull-requests/
              None were individually discussed on the call

Open Issues
              https://bitbucket.org/openid/connect/issues?status=new&status=open
              No additional issues were discussed beyond the Federation issues above

Next Call
              We'll take the next two weeks off for the holidays
              The next call will be on Monday, January 3, 2022 at 3pm Pacific Time
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20211216/b305e26f/attachment.html>