<div dir="ltr"><div>Hi All,<br></div>According to the spec [1] we can use space-delimited multiple values for prompt request parameter with authorization request.<br><blockquote style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex" class="gmail_quote"><dl><dt>prompt</dt><dd>
                  
                  OPTIONAL.
                  Space-delimited, case-sensitive list of ASCII string values
                  that specifies whether the Authorization Server prompts
                  the End-User for reauthentication and consent.</dd></dl></blockquote><div><br></div><div>So if we use an authorization request as below what will be the expected behaviour?<br><p><a title="Follow link" href="https://localhost:9443/oauth2/authorize?response_type=code&client_id=JqB4NGZLMC6L3n4jz094FMls2Joa&redirect_uri=https://localhost/callback&scope=openid&consent=login+consent" class="" rel="nofollow">https://localhost:XXXX/authorize?response_type=code&client_id=XXX&redirect_uri=https://localhost/callback&scope=openid&consent=none login<br></a></p>AFAIU If we use login and consent as the prompt request parameter values the login and consent pages should be prompted forcefully. But My concern is what will be the default behaviour when we use login and none together or consent and none together?<br><br></div><div>Highly appreciate any clarification on this. <br><br>[1] <a href="http://openid.net/specs/openid-connect-implicit-1_0.html">http://openid.net/specs/openid-connect-implicit-1_0.html</a><br><br></div><div>Thanks, <br></div><div><div><div><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><span style="font-size:10pt;font-family:AdiHaus;color:gray" lang="DE"></span><span style="font-size:11pt;font-family:"Calibri","sans-serif";color:rgb(31,73,125)"> </span><span style="font-size:10pt;font-family:AdiHaus;color:gray" lang="DE"></span><span><span><font color="#888888"><p dir="ltr" style="line-height:1.15;margin-top:0pt;margin-bottom:0pt"><span style="color:rgb(102,102,102);font-family:"trebuchet ms",sans-serif">Hasanthi<font color="#888888"> Dissanayake</font></span><br></p><p dir="ltr" style="line-height:1.15;margin-top:0pt;margin-bottom:0pt"><span style="background-color:transparent;vertical-align:baseline"><font face="trebuchet ms, sans-serif" color="#666666">Software Engineer | WSO2</font></span></p><p dir="ltr" style="line-height:1.15;margin-top:0pt;margin-bottom:0pt"><span style="background-color:transparent;vertical-align:baseline"><span style="color:rgb(102,102,102);font-family:"trebuchet ms",sans-serif;line-height:normal">E</span>: <a href="mailto:hasanthi@wso2.com" style="font-family:"trebuchet ms",sans-serif;line-height:normal" target="_blank">hasanthi@wso2.com</a><font face="trebuchet ms, sans-serif" color="#666666"><br></font></span></p><font face="trebuchet ms, sans-serif" color="#666666"><span style="background-color:transparent;vertical-align:baseline"> |</span><a href="http://wso2.com/" style="color:rgb(17,85,204);text-decoration:none" target="_blank"><span style="background-color:transparent;vertical-align:baseline"> </span><span style="background-color:transparent;text-decoration:underline;vertical-align:baseline">http://wso2.com</span></a><span style="background-color:transparent;vertical-align:baseline"> <br></span></font></font></span></span></div></div></div></div></div></div></div></div></div>
</div></div></div>