[Openid-specs-ab] Issue #191: OP-UserInfo-RS256 failing, expecting application type to be jwt (openid/certification)

Quentin Castel issues-reply at bitbucket.org
Mon Jan 16 08:25:16 UTC 2017


New issue 191: OP-UserInfo-RS256 failing, expecting application type to be jwt
https://bitbucket.org/openid/certification/issues/191/op-userinfo-rs256-failing-expecting

Quentin Castel:

OP-UserInfo-RS256 returns a failure:


```
[ERROR] AssertionError:Wrong content-type in header, got: application/json;charset=UTF-8 expected 'application/jwt’

```

According to the standard, it supposed to be “application/json” :

http://openid.net/specs/openid-connect-core-1_0.html#UserInfoResponse

```
[Link Text](Link URL)
 The content-type of the HTTP response MUST be application/json if the response body is a text JSON object; the response body SHOULD be encoded using UTF-8.
```


Note, the UserInfo response is not a JWT anyway, it’s a JSON.




More information about the Openid-specs-ab mailing list