- changed status to open
-
assigned issue to
Messages - 3.4.2 Check Session Response text duplicating 3.1.1
Issue #16
resolved
Should probably just reference 3.1.1.
Comments (3)
-
reporter -
Seems working.
-
- changed status to resolved
- Log in to comment
Seems the original problem was fixed.
The text now runs as:
Other claims MAY be returned by sending an OpeID Request Object with the appropriate parameters in the request. The Check Session endpoint MUST return claims in JSON format unless a request for a different format is made by the client in the authorization request. The Check Session endpoint MAY return claims in JWT format which can be JWS [JWS] signed or JWE [JWE] encrypted. The OpenID REquest Object describes how to request a different format. The Check Session endpoint MUST return a content-type header to indicate which format is being returned. The following are accepted content types:
I am not sure if this endpoint should return JWS or JWE, though.