Standard - 4.3.1.3.2 . ONLY HTTPS redirection is allowed for Request File Method?
Issue #150
resolved
Title says:
" 4.3.1.3.2. Client Sends a Request to Authorization Server via HTTPS Redirect "
HTTPS GET( anchors in response HTML) or POST are not allowed ?
In "[[http://openid.bitbucket.org/openid-connect-standard-1_0.html#rf_prep| 4.3.1]]" :
"The client prepares an Authorization Request to the Authorization Endpoint with the request parameters using the HTTP "GET" or "POST" method. ...."
Comments (7)
-
reporter -
reporter - edited description
-
reporter - edited description
-
- edited description
-
-
assigned issue to
- changed status to open
Change 4.3.1.3.2 to use the same wording as 4.3.1
The client prepares an Authorization Request to the Authorization Endpoint with the request parameters using the HTTP "GET" or "POST" method. The scheme used in the Authorization URL MUST be HTTPS.
-
assigned issue to
-
reporter Thank you very much.
-
- changed status to resolved
fixed
- Log in to comment