[Openid-specs-ab] About "token_endpoint_auth_type" handling

Roland Hedberg roland.hedberg at adm.umu.se
Fri Mar 23 13:38:22 UTC 2012


Hi Ryo,

22 mar 2012 kl. 15:47 skrev Roland Hedberg:

> 22 mar 2012 kl. 11:16 skrev Ryo Ito:
>> 
>> About "oic-code+idtoken+token-token" test, because
>> token_endpoint_auth_type parameter does not include it in a dynamic
>> registration request, the value is registered as client_secret_basic.
>> And because a test client sends the access token request using the
>> client_secret_post format, my OP returns an error.
>> 
>> Will you use authorization Header?

Will do !

Will be included in the next script update which will probably happen tomorrow.

-- Roland


More information about the Openid-specs-ab mailing list