-
assigned issue to
Messages 2.1.2 - Request object should be JWS signed JSON, not JWT
Issue #592
resolved
The OpenID Request Object should be changed from being described as a JWT to being described as a JWS signed JSON object.
Comments (4)
-
reporter -
addresses
#592Messages 2.1.2 - Request object should be JWS signed JSON, not JWT -
Is there going to be a provision for sending unsigned OpenID request objects?
If yes, is this going to be a regular JSON object i.e. not a plain JWT?
-
reporter - changed status to resolved
Fixed
#592Messages 2.1.2 - Request object should be JWS signed JSON, not JWT - Log in to comment
We need to remove the "typ":"JWT" from the request object example in Standard as part of this change.