openid / connect / issues / #1468 - OpenID Connect Back-Channel Logout 1.0: Explicit typing of the logout token? — Bitbucket

Issue #1468 resolved

Vladimir Dzhuvinov created an issue 2022-03-29

The current 06 draft doesn’t specify whether the logout token may be or is required to be explicitly typed, according to the referenced SET RFC 8417.

https://openid.net/specs/openid-connect-backchannel-1_0.html#LogoutToken

https://www.rfc-editor.org/rfc/rfc8417.html#section-2.3

Comments (3)

Michael Jones
- assigned issue to
  
  Michael Jones
I would propose that register the media type “application/logout+jwt“ for this purpose and makes its use RECOMMENDED for Logout Tokens.
- 2022-04-11T21:00:52+00:00
Michael Jones
- changed status to open
This is fixed by https://bitbucket.org/openid/connect/pull-requests/155/support-explicit-typing-of-logout-tokens .
- 2022-04-13T22:34:52+00:00
Michael Jones
- changed status to resolved
Fixed by https://bitbucket.org/openid/connect/pull-requests/155/support-explicit-typing-of-logout-tokens .
- 2022-04-19T00:23:28+00:00
Log in to comment

Assignee: Michael Jones

Type: proposal

Priority: major

Status: resolved

Component: Logout

Milestone: –

Version: –

Votes: 0

Watchers: 2

Jira: the preferred issue tracker for Bitbucket. Join the team!