[Openid-specs-ab] [openid/connect] General - removal of checkid endpoint (issue #570)
issues-reply at bitbucket.org
Fri Apr 6 20:54:46 UTC 2012
--- you can reply above this line ---
New issue 570: General - removal of checkid endpoint
tlodderstedt on Fri, 6 Apr 2012 22:54:46 +0200:
Id tokens don't need to be verified for direct connections due to TLS-based protection. Even if the RP (or any other party) needs to validate it, the verification of id tokens is simple given the adoption and simplicity of JWT. So I don't see a need for this function.
This is an issue notification from bitbucket.org. You are receiving
this either because you are the owner of the issue, or you are
following the issue.
More information about the Openid-specs-ab