[Openid-specs-ab] JWT claims in signed UserInfo responses
sakimura at gmail.com
Wed Nov 6 10:29:55 UTC 2013
And perhaps aud as well to prevent an accidental transfer to a third party.
It is not a MUST but still is a good practice.
=nat via iPhone
Nov 6, 2013 1:56、"Vladimir Dzhuvinov / NimbusDS" <vladimir at nimbusds.com> のメッセージ:
> Hi guys,
> For UserInfo responses encoded as JWTs - which of the standard JWT
> claims, apart from the mandatory "sub", do you choose to include?
> It appears to me that in order for the UserInfo to be suitable for
> passing around as a JWT it should include at least the "iss" claim.
> Vladimir Dzhuvinov : www.NimbusDS.com : vladimir at nimbusds.com
> Openid-specs-ab mailing list
> Openid-specs-ab at lists.openid.net
More information about the Openid-specs-ab