openid / connect / issues / #1725 - example just above 3.2 includes jwks and it probably is bad as an example — Bitbucket

Issue #1725 closed

Nat Sakimura created an issue 2022-11-17

Pointed out during the IIW session by Tobias and Torsten.

Comments (3)

Giuseppe De Marco
I assume that you mean the following section
https://openid.net/specs/openid-connect-federation-1_0.html#appendix-A.3.2

The example is an entity statement that has the claims metadata_policy and also jwks.
The jwks in the example are Federation jwks and these are used by a trust resolver to verify the entity configuration issued by the subject (the descendant, subordinate).

Why it is bad?
- 2022-11-17T19:56:43+00:00
Michael Jones
- changed status to open
We talked about this on the 9-Dec-22 Federation Editors' call. The jwks is the set of Federation Entity Keys, as defined at https://openid.net/specs/openid-connect-federation-1_0-25.html#section-1.2-3.22. This does belong in the Entity Statement.

We propose to close this issue in a week on that basis unless a reason is provided to reconsider.
- 2022-12-09T16:44:06+00:00
Michael Jones
- changed status to closed
Issue replaced by https://bitbucket.org/openid/connect/issues/1755/explicitly-describe-that-there-are
- 2022-12-16T16:22:17+00:00
Log in to comment

Assignee: –

Type: bug

Priority: major

Status: closed

Component: Federation

Milestone: –

Version: –

Votes: 0

Watchers: 3

Jira: the preferred issue tracker for Bitbucket. Join the team!