openid / connect / issues / #2119 - [Federation] Fix metadata_policy example in figure 17 — Bitbucket

Issue #2119 resolved

Vladimir Dzhuvinov created an issue 2024-02-23

The example contains a metadata claim that shouldn’t be included:

https://openid.bitbucket.io/connect/openid-federation-1_0.html#figure-17

Comments (6)

Vladimir Dzhuvinov reporter

{
  "metadata_policy": {
    "openid_relying_party": {
      "contacts": {
        "add": "helpdesk@example.com"
      },
      "logo_uri": {
        "one_of": [
          "https://example.com/logo_small.svg",
          "https://example.com/logo_big.svg"
        ],
        "default": "https://example.com/logo_small.svg"
      }
    }
  },
  "metadata": {
    "openid_relying_party": {
      "policy_uri": "https://example.com/policy.html",
      "tos_uri": "https://example.com/tos.html"
    }
  }
}

→

{
  "metadata_policy": {
    "openid_relying_party": {
      "contacts": {
        "add": "helpdesk@example.com"
      },
      "logo_uri": {
        "one_of": [
          "https://example.com/logo_small.svg",
          "https://example.com/logo_big.svg"
        ],
        "default": "https://example.com/logo_small.svg"
      }
    }
  }
}

‌

2024-02-23T15:37:14+00:00

Vladimir Dzhuvinov reporter

Figure 16 includes a trailing comma after default:

"metadata_policy": {
  "openid_relying_party": {
    "id_token_signed_response_alg": {
      "one_of": [
        "ES256",
        "ES384"
      ],
      "default": "ES256",
    },
    "response_types": {
      "subset_of": [
        "code",
        "code id_token"
      ]
    }
  }
}

‌

2024-02-23T15:46:08+00:00

Vladimir Dzhuvinov reporter

Figure 18 has two metadata parameter that must be removed:

https://openid.bitbucket.io/connect/openid-federation-1_0.html#figure-18

"metadata": {
  "openid_relying_party": {
    "contacts": [
      "rp_admins@cs.example.com",
      "helpdesk@example.com"
    ],
    "logo_uri": "https://example.com/logo_small.svg",
    "policy_uri": "https://example.com/policy.html", <--- remove
    "tos_uri": "https://example.com/tos.html", <--- remove
    "id_token_signed_response_alg": "ES256",
    "response_types": [
      "code"
    ],
    "redirect_uris": [
      "https://cs.example.com/rp1"
    ]
  }
}

‌

2024-02-23T16:00:31+00:00

Nat Sakimura
- changed status to open
- 2024-02-26T23:41:39+00:00
Vladimir Dzhuvinov reporter
Pull request: https://bitbucket.org/openid/connect/pull-requests/703/
- 2024-02-28T08:47:17+00:00
Michael Jones
- changed status to resolved
Addressed by https://bitbucket.org/openid/connect/pull-requests/710/describe-using-a-resolver
- 2024-03-08T16:30:52+00:00
Log in to comment

Assignee: –

Type: bug

Priority: trivial

Status: resolved

Component: Federation

Milestone: Implementer's Draft

Version: –

Votes: 0

Watchers: 1

Jira Software: the preferred issue tracker for Bitbucket. Join the team!