[Openid-specs-ab] Using ID token as JWT assertion grant

Vladimir Dzhuvinov vladimir at connect2id.com
Mon Sep 28 11:16:40 UTC 2015


Hello,

Is anyone using ID tokens as a JWT assertion grant to obtain access
tokens from an AS?

How do you go about satisfying the requirement that the AS URL (or AS
token endpoint URL) must be present in the ID token audience (aud)? (The
ID token audience is typically set to the client app).

http://tools.ietf.org/html/rfc7523#section-3

Thanks,

Vladimir

-- 
Vladimir Dzhuvinov




More information about the Openid-specs-ab mailing list