openid / connect / issues / #831 - Messages - Don't use x5u or jku header fields in ID Tokens — Bitbucket

Issue #831 resolved

Michael Jones created an issue 2013-04-04

Per discussions on the list, we agreed to say that ID Tokens must not use the x5u or jku header fields. (We are communicating keys via discovery and registration instead.)

Comments (1)

Michael Jones reporter
- changed status to resolved
Fixed ~~#831~~ - Stated that JWS and JWE header parameters used to communicate key values and key references should not be used in ID Tokens, since these are communicated in advance using Discovery and Registration parameters.

→ <<cset 8228cb31a10b>>
- 2013-05-04T04:33:52+00:00
Log in to comment

Assignee: Michael Jones

Type: bug

Priority: major

Status: resolved

Component: Messages

Milestone: Implementer's Draft

Version: –

Votes: 0

Watchers: 0

Jira: the preferred issue tracker for Bitbucket. Join the team!