Is this a bug in the documentation?

[John]

Section "4.4.1. Request Parameters" (for the "check_authentication" 
mode) says that I should state a 'mode' in the parameters (and which 
should equal 'check_authenticate'), but it also says:

        openid.*

            Value: The Consumer MUST send *all *the openid.* response
            parameters from the openid.signed list which they'd
            previously gotten back from a checkid_setup or
            checkid_immediate request, with their values being exactly
            what were returned from the Provider.



What should the consumer do in the case where "*" also contains the 
"mode" (from the previous server's reply)? Should then the POST request 
contain two "mode" parameters? If so in which order? (it doesn't say in 
the spec)

I tried sending two separate mode parameters, not sure in which order I 
sent them, but it didn't work (the server complained I'm sending 
"id_res" mode which is bad)

I tried sending one (the "check_authenticate" one), it worked.

If sending only one is the right behaviour, then I think the the word 
"all" in the spec needs to be changed.