[Openid-specs-native-apps] AppInfo endpoint
Emily Xu
exu at vmware.com
Mon Sep 29 16:23:52 UTC 2014
I have a couple of questions related to NAPPS AppInfo endpoint.
1. In Section 7.2.1, it says "Access Token obtained from an OpenID Connect Authorization Request". I assume it means the access_token should contain "openid" in scope. Is it correct?
2. In Section 7.2.2, it says
"apps
REQUIRED (Array). One or more JSON objects containing claims about applications that the TA can provide tokens or web boot-stap uri for."
Any reason it must be "One or more" instead of "Zero or more"? If there is zero app authorized for this particular user, what the response should be?
Thanks,
Emily
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-native-apps/attachments/20140929/b6e6a19c/attachment.html>
More information about the Openid-specs-native-apps
mailing list