[Openid-specs-fapi] Issue #694: Refresh token clause readability (openid/fapi)
dgtonge
issues-reply at bitbucket.org
Wed May 8 14:59:06 UTC 2024
New issue 694: Refresh token clause readability
https://bitbucket.org/openid/fapi/issues/694/refresh-token-clause-readability
Dave Tonge:
5\.3.2.1. General requirements
10\. shall not use refresh token rotation unless, in the case a response with a new refresh token is not received and stored by the client, retrying the request \(with the previous refresh token\) will succeed;
\[Rifaat\] I am having a hard time digesting this paragraph. I am not sure what it is trying to say.
More information about the Openid-specs-fapi
mailing list