[Openid-specs-ab] Issue #903: Registration - 2. Client Metadata (openid/connect)

Nat Sakimura issues-reply at bitbucket.org
Mon Nov 18 23:54:31 UTC 2013


New issue 903: Registration - 2. Client Metadata
https://bitbucket.org/openid/connect/issue/903/registration-2-client-metadata

Nat Sakimura:

Currently, it only has jwks_uri. A native client cannot make use of it. 

Proposal:

Add jwks above jwks_uri as: 

jwks

OPTIONAL. The Client's JSON Web Key Set [JWK] document. If the Client signs requests to the Server, it contains the signing key(s) the Server uses to validate signatures from the Client. The JWK Set MAY also contain the Client's encryption keys(s), which are used by the Server to encrypt responses to the Client. When both signing and encryption keys are made available, a use (Key Use) parameter value is REQUIRED for all keys in the referenced JWK Set to indicate each key's intended usage.

Responsible: mbj


More information about the Openid-specs-ab mailing list