openid / connect / issues / #633 - Messages - 4.2 JWK and X509 format support

Issue #633 resolved

Edmund Jay created an issue 2012-07-24

The spec does not specify whether JWK or X509 certificates must be supported so there may be interoperability problems with asymmetric signature verification and encryption due lack of common support by the server and client.

Comments (6)

Michael Jones
- changed status to open
We will require publishing and understanding JWK format, with X.509 being optional.
- 2012-07-26T14:36:44+00:00
Michael Jones
- assigned issue to
  
  Michael Jones
We will be discussing this at the face-to-face meeting on October 22, 2012
- 2012-09-27T14:52:55+00:00
Michael Jones
As decided at the 22-Oct-12 working group meeting at Google, OPs must support X.509 certificates.
- 2012-12-03T22:09:01+00:00
Michael Jones
The remaining open issue is whether to define how to support X.509 bare keys (or X.509 RFC 5280 SubjectPublicKeyInfo values) or whether to just require the use of JWK if bare keys are needed.
- 2012-12-06T01:21:24+00:00
Michael Jones
The identified issue has been resolved in favor of X.509.

Whether to support RFC 5280 SubjectPublicKeyInfo values is a separate issue.
- 2012-12-10T23:43:55+00:00
Michael Jones
- changed status to resolved
Fixed ~~#633~~ - Messages - 4.2 JWK and X509 format support

→ <<cset ee690ec3efc4>>
- 2013-01-17T01:01:53+00:00
Log in to comment

Assignee: Michael Jones

Type: bug

Priority: major

Status: resolved

Component: –

Milestone: –

Version: –

Votes: 0

Watchers: 0