[Openid-specs-ab] Question on Dynamic Registration
Preibisch, Sascha H
Sascha.Preibisch at ca.com
Wed May 31 17:59:25 UTC 2017
A team member and I just had a discussion about dynamic registration. Specifically about this section:
We are not sure how "response_types" and "grant_types" are expected to be handled. This is not clear to us:
* if a client registers for any other response_type than "code", is the client required to also include a "grant_type"?
* Or is it that the server has to be configured to support the matching grant_type and fail otherwise?
* Should the server return the matching grant_types although the spec. says to return "authorization_code" in the case of being omitted?
It would be great to get some clarification on that.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Openid-specs-ab