openid / connect / issues / #741 - Implicit 2.2.3 and 2.2.4 - Tony Nadalin's comments on End-User Authentication and Consent — Bitbucket

Issue #741 resolved

Michael Jones created an issue 2013-02-02

In his review comments, Tony wrote that it was odd to have sections on End-User Authentication and Consent since in an implicit flow the end-user is not authenticated.

We should discuss this potential inconsistency with OAuth.

Comments (2)

John Bradley
In implicit the user is authenticated by the as. It is the client that is not authenticated by the as, only identified via the redirect uri.

What is Tonys issue?
- 2013-02-02T03:34:29+00:00
Michael Jones reporter
- changed status to resolved
I believe your comment has explained the confusion, John.
- 2013-02-02T04:23:09+00:00
Log in to comment

Assignee: –

Type: bug

Priority: major

Status: resolved

Component: –

Milestone: Implementer's Draft

Version: –

Votes: 0

Watchers: 0

Jira: the preferred issue tracker for Bitbucket. Join the team!