<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:tahoma,new york,times,serif;font-size:10pt"><div>Everyone,<br><br>I've update my code to latest spec revisions also.<br><br><span>OP : <a target="_blank" href="https://connect.openid4.us">https://connect.openid4.us</a></span><br><span>RP: <a target="_blank" href="https://connect.openid4.us">https://connect.openid4.us</a></span>/abrp<br><br>Roland,<br><br>The JWK names for the RSA Keys have changed. mod => n and exp => e.<br><span><a target="_blank" href="http://tools.ietf.org/html/draft-ietf-jose-json-web-algorithms-07#section-5.3">http://tools.ietf.org/html/draft-ietf-jose-json-web-algorithms-07#section-5.3</a></span><br><br>If I use the new format, your oic tests report bad signatures.<br>If I switch back to the old format, most tests are OK.<br><br><br>-- Edmund<br><br></div><div style="font-family:tahoma, new york, times,
serif;font-size:10pt"><br><div style="font-family:arial, helvetica, sans-serif;font-size:10pt"><font face="Tahoma" size="2"><hr size="1"><b><span style="font-weight: bold;">From:</span></b> Roland Hedberg <roland.hedberg@adm.umu.se><br><b><span style="font-weight: bold;">To:</span></b> "openid-connect-interop@googlegroups.com" <openid-connect-interop@googlegroups.com><br><b><span style="font-weight: bold;">Cc:</span></b> "openid-specs-ab@lists.openid.net" <openid-specs-ab@lists.openid.net><br><b><span style="font-weight: bold;">Sent:</span></b> Wed, December 5, 2012 2:45:13 AM<br><b><span style="font-weight: bold;">Subject:</span></b> Re: OpenID specs updated to track JWE changes<br></font><br><br>Hi guys,<br><br>27 nov 2012 kl. 01:15 skrev Mike Jones <<a ymailto="mailto:Michael.Jones@microsoft.com" href="mailto:Michael.Jones@microsoft.com">Michael.Jones@microsoft.com</a>>:<br><br>> The working group wants to encourage
implementers to make these changes as soon as possible so that testing can be performed on updated implementations before we publish the upcoming set of implementers drafts. Also, if you can please send a note to the openid-connect-interop list when you’ve updated your test endpoints, that would be useful so others will know when they can begin testing the updated interfaces with your code.<br><br>I've updated my <a ymailto="mailto:OP@xenosmilus2.umdc.umu.se" href="mailto:OP@xenosmilus2.umdc.umu.se">OP@xenosmilus2.umdc.umu.se</a> to the latest version of the code (which implements the latest version of the specs).<br>I've also updated the test tool at openidtest.uninett.no.<br><br>The later, with a high probability, will mean that all your implementations will now *FAIL* against the test tool!!<br><br>I've checked and it seems no one (except I) have changed their client registration endpoint to return a registration_access_token for one. So are
you depending on dynamic client registration it will definitely fail.<br><br>-- Roland<br>------------------------------------------------------<br>Roland Hedberg<br>IT Architect/Senior Researcher<br>ICT Services and System Development (ITS) <br>Umeå University <br>SE-901 87 Umeå, Sweden <br>Phone +46 90 786 68 44<br>Mobile +46 70 696 68 44 <br><span><a target="_blank" href="http://www.its.umu.se">www.its.umu.se</a> </span><br><br></div></div>
</div></body></html>