subject_types_supported - should or must?

Issue #998 resolved
Vladimir Dzhuvinov created an issue

Today an OIDC developer ( informed me about a discrepancy in the OIDC spec regarding the subject_types_supported OP metadata parameter:

Core says

The OpenID Provider's Discovery document SHOULD list its supported Subject Identifier types in the subject_types_supported element.

Discovery however says that this parameters is required:

subject_types_supported REQUIRED. JSON array containing a list of the Subject Identifier types that this OP supports. Valid types include pairwise and public.

Comments (2)

  1. Log in to comment