[Openid-specs-fapi] Issue #665: Reference PAR in 5.3.1.1 (12) (openid/fapi)
M V
issues-reply at bitbucket.org
Fri Jan 12 02:48:07 UTC 2024
New issue 665: Reference PAR in 5.3.1.1 (12)
https://bitbucket.org/openid/fapi/issues/665/reference-par-in-5311-12
Mark Verstege:
Section [5.3.1.1.](https://openid.net/specs/fapi-2_0-security-profile-ID2.html#section-5.3.1.1) \(12\) states that authorization code binding to the DPoP key must be used in accordance with section 10.1 of DPoP. Should statement \(12\) also make mention to PAR? For example
> if using DPoP and PAR, shall support "Authorization Code Binding to DPoP Key" \(as required by section 10.1 of \[[I-D.ietf-oauth-dpop](https://openid.net/specs/fapi-2_0-security-profile-ID2.html#I-D.ietf-oauth-dpop)\]\).
Does this add more clarity, or is it redundant?
More information about the Openid-specs-fapi
mailing list