Definition of the Entity Statement
Issue #1373
resolved
It might be a little more helpful for the reader if the definition of the Entity Statement was a little more descriptive .
Entity statement
An entity statement is issued by an entity, which pertains to a subject entity and leaf entities. An entity statement is always a signed JWT.
Suggest something like below:
A JWT that contains XXX information. It is issued by an entity, which pertains to a subject entity and leaf entities.
Comments (5)
-
-
- changed status to open
Mike to propose updated definition text.
-
-
assigned issue to
-
assigned issue to
-
Will be fixed by https://bitbucket.org/openid/connect/pull-requests/159 .
-
- changed status to resolved
- Log in to comment
In the Italian oidc fed 1.0 wg, we found the following difficulties in reading and interpreting the text:
I share with some notes here.
On point 1, on entity statement vs metadata we preferred this extreme disambiguation, as follows:
“““
In the OIDC Federation we use entity statements instead of metadata, an entity statement is a metadata described in a federative context.
”””
On point 2, we found that the following definition was very effective for our readers
”””
A trust anchor or intermediary may shape its policy on critical parts of the entity statements of its descentants, allowing them to be free to update their configuration without having to update it in a central register, except the public key, which cannot be changed without first being propagated to the trust anchor or intermediary
”””