[Openid-specs-fapi] Issue #383: grant_id & PII (openid/fapi)
issues-reply at bitbucket.org
Tue Feb 23 22:37:41 UTC 2021
New issue 383: grant_id & PII
The wording “`grant_id` MUST NOT be derived from PII that can make possible to identify the user” is awkward. And maybe ambiguous as a result. Is this meant to say something more like “it must not be possible to derive any personally identifiable information from the grant\_id value alone”?
More information about the Openid-specs-fapi