[Openid-specs-fapi] CIBA and delivery of OIDC claims requested by scope shorthand
Vladimir Dzhuvinov
vladimir at connect2id.com
Mon Mar 21 09:33:36 UTC 2022
What is the recommended practice for delivering consented user profile
claims with CIBA?
In OIDC Core, when claims are requested via a scope value, e.g. with
"scope=email" or "scope=profile", the claims get delivered at the
UserInfo endpoint (unless the response_type=id_token). In CIBA it isn't
clear what the RP should expect in this situation. Should the claims get
returned in the ID token or at the UserInfo endpoint? What are the
considerations here?
Thanks,
Vladimir
--
Vladimir Dzhuvinov
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4007 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.openid.net/pipermail/openid-specs-fapi/attachments/20220321/121dfd5d/attachment-0001.p7s>
More information about the Openid-specs-fapi
mailing list