[Openid-specs-ab] May 25, 2012 OpenID Connect Update Release
bcampbell at pingidentity.com
Tue Jun 5 16:25:38 UTC 2012
I'm trying to understand why a scope was used to indicate the desire for
user info claims to be returned in the ID Token? It really seems like
something that should be isolated to a flag on the request (a new parameter
or something in the request object). It feels out of place as a scope and
will require ASs to have special conditional treatment of that one scope
value (which I'd like to avoid as I'd think most implementers would).
On Sat, May 26, 2012 at 12:13 AM, Mike Jones <Michael.Jones at microsoft.com>wrote:
> - Added scope value claims_in_id_token as a switch to indicate that
> the UserInfo claims should be returned in the ID Token, per issue #561
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Openid-specs-ab