[Openid-specs-fapi] Issue #134: Should we define a discovery metadata for request object endpoint (openid/fapi)
issues-reply at bitbucket.org
Thu Feb 8 02:35:12 UTC 2018
New issue 134: Should we define a discovery metadata for request object endpoint
Part 2 mentions the request object endpoint in section 7, however it's unclear how clients discover a server's request object endpoint, or whether or not the server has one.
Should (can?) FAPI define a new entry in the provider meta data to hold the url for this endpoint, like the others in https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
The current language in the spec seems a little unclear to me too - is a FAPI part 2 compliant AS **required** to provide a request object endpoint?
More information about the Openid-specs-fapi