[Openid-specs-ab] OpenID specs updated to track JWE changes
ejay at mgi1.com
Wed Dec 5 21:59:20 UTC 2012
I've update my code to latest spec revisions also.
OP : https://connect.openid4.us
The JWK names for the RSA Keys have changed. mod => n and exp => e.
If I use the new format, your oic tests report bad signatures.
If I switch back to the old format, most tests are OK.
From: Roland Hedberg <roland.hedberg at adm.umu.se>
To: "openid-connect-interop at googlegroups.com"
<openid-connect-interop at googlegroups.com>
Cc: "openid-specs-ab at lists.openid.net" <openid-specs-ab at lists.openid.net>
Sent: Wed, December 5, 2012 2:45:13 AM
Subject: Re: OpenID specs updated to track JWE changes
27 nov 2012 kl. 01:15 skrev Mike Jones <Michael.Jones at microsoft.com>:
> The working group wants to encourage implementers to make these changes as soon
>as possible so that testing can be performed on updated implementations before
>we publish the upcoming set of implementers drafts. Also, if you can please
>send a note to the openid-connect-interop list when you’ve updated your test
>endpoints, that would be useful so others will know when they can begin testing
>the updated interfaces with your code.
I've updated my OP at xenosmilus2.umdc.umu.se to the latest version of the code
(which implements the latest version of the specs).
I've also updated the test tool at openidtest.uninett.no.
The later, with a high probability, will mean that all your implementations will
now *FAIL* against the test tool!!
I've checked and it seems no one (except I) have changed their client
registration endpoint to return a registration_access_token for one. So are you
depending on dynamic client registration it will definitely fail.
IT Architect/Senior Researcher
ICT Services and System Development (ITS)
SE-901 87 Umeå, Sweden
Phone +46 90 786 68 44
Mobile +46 70 696 68 44
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Openid-specs-ab