openid / connect / issues / #918 - typo in basic section 2.1.6.1 — Bitbucket

Issue #918 resolved

Nov Matake created an issue 2014-02-17

The word "form-urlencoded" in the below sentence should be removed.

"The Client authenticates itself by communicating its form-urlencoded Client Credentials in an Authorization header using the HTTP Basic method"

https://bitbucket.org/openid/connect/src/94eb1dd16dbf85a921eff6428e1a82598272a8a6/openid-connect-basic-1_0.xml?at=default#cl-869

Comments (3)

Brian Campbell
Strange as it may seem, I believe it's correct as is.

§2.3.1 of RFC 6749 (OAuth) has:

"Clients in possession of a client password MAY use the HTTP Basic authentication scheme as defined in [RFC2617] to authenticate with the authorization server. The client identifier is encoded using the "application/x-www-form-urlencoded" encoding algorithm per Appendix B, and the encoded value is used as the username; the client password is encoded using the same algorithm and used as the password."

see http://tools.ietf.org/html/rfc6749#section-2.3.1
- 2014-02-17T14:19:58+00:00
Michael Jones
- assigned issue to
  
  Michael Jones
We will revise the text to make it consistent with the description in Core, which doesn't say things in the same way that this section in Basic does.
- 2014-02-17T23:51:01+00:00
Michael Jones
- changed status to resolved
Fixed ~~#918~~ - Wording inconsistency in Token Request language

→ <<cset cdc431bea07a>>
- 2014-07-31T02:21:10+00:00
Log in to comment

Assignee: Michael Jones

Type: bug

Priority: major

Status: resolved

Component: Basic

Milestone: Final

Version: –

Votes: 0

Watchers: 0

Jira: the preferred issue tracker for Bitbucket. Join the team!