example just above 3.2 includes jwks and it probably is bad as an example
Issue #1725
closed
Pointed out during the IIW session by Tobias and Torsten.
Comments (3)
-
-
- changed status to open
We talked about this on the 9-Dec-22 Federation Editors' call. The
jwks
is the set of Federation Entity Keys, as defined at https://openid.net/specs/openid-connect-federation-1_0-25.html#section-1.2-3.22. This does belong in the Entity Statement.We propose to close this issue in a week on that basis unless a reason is provided to reconsider.
-
- changed status to closed
- Log in to comment
I assume that you mean the following section
https://openid.net/specs/openid-connect-federation-1_0.html#appendix-A.3.2
The example is an entity statement that has the claims metadata_policy and also jwks.
The jwks in the example are Federation jwks and these are used by a trust resolver to verify the entity configuration issued by the subject (the descendant, subordinate).
Why it is bad?