[Openid-specs-ab] Issue #1413: Evaluate Entity Statement (openid/connect)
peppelinux
issues-reply at bitbucket.org
Mon Jan 24 17:14:29 UTC 2022
New issue 1413: Evaluate Entity Statement
https://bitbucket.org/openid/connect/issues/1413/evaluate-entity-statement
Giuseppe De Marco:
Following [https://bitbucket.org/openid/connect/pull-requests/108](https://bitbucket.org/openid/connect/pull-requests/108) we have a new endpoint called Evaluate Entity Statement.
This releases metadata about subjects and not Entity Statements.
Following this [https://bitbucket.org/openid/connect/issues/1384/trust-negotiation-request-and-response](https://bitbucket.org/openid/connect/issues/1384/trust-negotiation-request-and-response) I’d really like to have an endpoint that releases a “final” entity statement with all the valid trust marks in it.
What do you say we go in this direction?
We may have the endpoint evaluate entity statement that releases an entire entity statement signed by the Issuer that released it, with final metadata and trust marks validated within it
Of course, it is deemed appropriate within a federation, that this endpoint is reserved for trust anchors, or entities that enjoy the highest level of trust
this issues closes [https://bitbucket.org/openid/connect/issues/1384/trust-negotiation-request-and-response](https://bitbucket.org/openid/connect/issues/1384/trust-negotiation-request-and-response)
More information about the Openid-specs-ab
mailing list