[Openid-specs-mobile-profile] claims request in CIBA

Axel.Nennker at telekom.de Axel.Nennker at telekom.de
Tue Nov 22 17:28:29 UTC 2016


Can the Client ask for "claims" in "OpenID Connect MODRNA Client initiated Backchannel Authentication Flow 1.0"?

This sentence seems to prohibit this:
"Authentication Requests are made using the MODRNA profile. Only the following parameters are taken into consideration in the Client initiated Backchannel Authentication flow. The rest of the request parameters defined in OAuth 2.0 [RFC6749] MUST be ignored by the Authorization Server. "

"the  following parameters" are
scope, client_req_id, client_notification_endpoint, acr_values, login_hint_token, id_token_hint, login_hint and context (binding_message)

Can the Client ask e.g. for "claims" in CIBA?


MODRNA adds these parameters to the authentication request of OpenID.core.
acr_values, login_hint and binding_message

OpenID.core parameters allows/requires the following parameters:
scope, response_type, client_id, redirect_uri, state, response_mode, nonce, display, prompt, max_age, ui_locales, id_token_hint, login_hint, acr_values
and a bunch more like "claims".


More information about the Openid-specs-mobile-profile mailing list