[Openid-specs-mobile-profile] Account porting draft 03
Manger, James
James.H.Manger at team.telstra.com
Sun Nov 13 11:41:28 UTC 2016
Draft 03 (13 Nov 2016) of draft-account-porting has been published.
Xml: draft-account-porting.xml in https://bitbucket.org/openid/mobile/src
Web: https://id.cto.telstra.com/2016/openid/draft-account-porting.html
Repo commits:
https://bitbucket.org/openid/mobile/commits/b7583f7029191340e73117291ec6feaabfa27d48
https://bitbucket.org/openid/mobile/commits/4dd43ab14e9073b329753455adcbb340a504e463
Changes:
* New section 1.2 "Porting flow" provides an overview of the porting message flow.
* Clearer language about the "aka" (also-known-as) member, including that "enc_port_token" is opaque for RPs
* Rename "oidc-porting" to "openid-connect-porting" - it takes more bytes, but is more self-explanatory
* New OP MUST (not just SHOULD) include sector_id (or host of redirect_uri)
* "remove": true/false member in Porting check API response - telling RP to remove (or keep) Old OP's sub on account; distinguishing a "port" (moved from Old OP to New OP) vs a "link" (allow login from either OP)
* "user_ported" error code for authorization endpoint - so RP knows to redo OP Discovery for this user
Thanks to Torsten for the feedback that led to many of these changes.
--
James Manger
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-mobile-profile/attachments/20161113/32cee2df/attachment.html>
More information about the Openid-specs-mobile-profile
mailing list