- changed component to Core
-
assigned issue to
subject_types_supported - should or must?
Issue #998
resolved
Today an OIDC developer (https://twitter.com/leleuj) informed me about a discrepancy in the OIDC spec regarding the subject_types_supported OP metadata parameter:
Core says
http://openid.net/specs/openid-connect-core-1_0.html#SubjectIDTypes
The OpenID Provider's Discovery document SHOULD list its supported Subject Identifier types in the subject_types_supported element.
Discovery however says that this parameters is required:
https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
subject_types_supported REQUIRED. JSON array containing a list of the Subject Identifier types that this OP supports. Valid types include pairwise and public.
Comments (2)
-
-
- changed status to resolved
Fixed
#998- Reconciled subject_types_supported descriptions→ <<cset 6422df7b0f7f>>
- Log in to comment
We will change the SHOULD in Core to MUST - matching Discovery, which is authoritative here.