SIOPv2 Example with JWK Thumbprint Syntax Type

The example in section 11(https://openid.bitbucket.io/connect/openid-connect-self-issued-v2-1_0.html#name-self-issued-id-token) is given as

{
  "iss": "NzbLsXh8uDCcd-6MNwXF4W_7noWXFZAfHkxZsRGC9Xs",
  "sub": "NzbLsXh8uDCcd-6MNwXF4W_7noWXFZAfHkxZsRGC9Xs",
  ..

but iss and sub must be of the form urn:ietf:params:oauth:jwk-thumbprint:<hash-alg>:<hash> for the JWK Thumbprint case

The example should be:

{
  "iss": "urn:ietf:params:oauth:jwk-thumbprint:sha-256:NzbLsXh8uDCcd-6MNwXF4W_7noWXFZAfHkxZsRGC9Xs",
  "sub": "urn:ietf:params:oauth:jwk-thumbprint:sha-256:NzbLsXh8uDCcd-6MNwXF4W_7noWXFZAfHkxZsRGC9Xs",
  ..

‌

Comments (2)