[Openid-specs-fapi] External : Re: External : FW: OBE JWS Profile - Version 0.10b for Approval
Anders Rundgren
anders.rundgren.net at gmail.com
Tue Sep 22 16:18:22 UTC 2020
On 2020-09-22 17:55, Brian Campbell via Openid-specs-fapi wrote:
> Thanks Freddi,
> From that it also sounds like the "crit" header wasn't being processed correctly. Or wasn't being set per the RFC https://tools.ietf.org/html/rfc7797#section-6
Does the OBIE specification actually build on RFC 7797?
I thought this was rather the core: https://tools.ietf.org/html/rfc7515#appendix-F
From 7797:
The "b64" value is a JSON boolean, with a default
value of "true". When used, this Header Parameter MUST be
integrity protected; therefore, it MUST occur only within the JWS
Protected Header. Use of this Header Parameter is OPTIONAL.
I see no reason for bothering with b64 or crit since JWS is used in the default mode.
Anders
> Fun stuff..
>
> On Tue, Sep 22, 2020 at 2:39 AM Freddi Gyara <Freddi.Gyara at openbanking.org.uk <mailto:Freddi.Gyara at openbanking.org.uk>> wrote:
>
> http://lists.openid.net/mailman/listinfo/openid-specs-fapi
>
More information about the Openid-specs-fapi
mailing list