openid / connect / issues / #1114 - Several doubts about value in individual claim requests (5.5.1) — Bitbucket

Issue #1114 resolved

Victor Herraiz created an issue 2019-10-04

We have several doubts reading the value member definition:

should “value” value do a “equals” validation against the actual value? or could it be something like a pattern?
the response should include the claim if there is a match?
If there is no match should fail as “sub” in “3.1.2.2. Authentication Request Validation” point 4.

‌

https://openid.net/specs/openid-connect-core-1_0.html#IndividualClaimsRequests

https://openid.net/specs/openid-connect-core-1_0.html#AuthRequestValidation Point 4

‌

Comments (5)

Michael Jones
- assigned issue to
  
  Michael Jones
- 2019-10-10T14:47:57+00:00
Michael Jones
- changed milestone to Errata
- changed component to Core
Responses to your questions:
1. Yes, the comparisons are “equals” comparisons.
2. Yes, the response should include the claim.
3. Yes, 3.1.2.2 specifies that the request must fail under those circumstances.
‌
- 2020-08-07T18:42:23+00:00
Michael Jones
- changed status to open
- 2020-08-07T18:42:31+00:00
Michael Jones
This will be fixed by https://bitbucket.org/openid/connect/pull-requests/580
- 2023-07-20T23:00:59+00:00
Michael Jones
- changed status to resolved
Fixed by https://bitbucket.org/openid/connect/pull-requests/580
- 2023-07-28T18:19:33+00:00
Log in to comment

Assignee: Michael Jones

Type: enhancement

Priority: major

Status: resolved

Component: Core

Milestone: Errata

Version: –

Votes: 0

Watchers: 0

Jira: the preferred issue tracker for Bitbucket. Join the team!