subject_types_supported - should or must?

Issue #998 resolved
Vladimir Dzhuvinov created an issue

Today an OIDC developer (https://twitter.com/leleuj) informed me about a discrepancy in the OIDC spec regarding the subject_types_supported OP metadata parameter:

Core says

http://openid.net/specs/openid-connect-core-1_0.html#SubjectIDTypes

The OpenID Provider's Discovery document SHOULD list its supported Subject Identifier types in the subject_types_supported element.

Discovery however says that this parameters is required:

https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata

subject_types_supported REQUIRED. JSON array containing a list of the Subject Identifier types that this OP supports. Valid types include pairwise and public.

Comments (2)

  1. Log in to comment