[Openid-specs-ab] Changing Registration parameter "require_signed_request_object" to "require_signed_request_object_alg"

Richer, Justin P. jricher at mitre.org
Wed Nov 7 14:13:04 UTC 2012


I'm not opposed to the change as proposed but, after a conversation with John, we're more in favor of collecting these breaking changes together as open issues and making them in one fell swoop at the same time we synchronize with the general OAuth2 registration. So: yes, but not now.

 -- Justin

On Nov 7, 2012, at 1:44 AM, Roland Hedberg wrote:

> I'm OK with the change.
> 
> 6 nov 2012 kl. 23:36 skrev Edmund Jay <ejay at mgi1.com>:
> 
>> This message is to solicit feedback from the community in regards to changing the Registration request  parameter require_signed_request_object to require_signed_request_object_alg.
>> 
>> The filed issue # is 673 :
>> http://hg.openid.net/connect/issue/673/registration-21-rename
>> 
>> The current parameter name require_signed_request_object seems to indicate that is is a boolean value indicating whether a signed request object is required in the authorization request. The value is actually a signature algorithm that all request objects must be signed with.
>> 
>> The WG is considering changing the name to require_signed_request_object_alg to reduce confusion.
> 
> -- Roland
> ------------------------------------------------------
> Roland Hedberg
> IT Architect/Senior Researcher
> ICT Services and System Development (ITS) 
> Umeå University 
> SE-901 87 Umeå, Sweden	
> Phone +46 90 786 68 44
> Mobile +46 70 696 68 44 
> www.its.umu.se 
> 
> _______________________________________________
> Openid-specs-ab mailing list
> Openid-specs-ab at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs-ab



More information about the Openid-specs-ab mailing list