Is Userinfo endpoint required?

Comments (6)

1. 

   Mark Haine reporter

   Mark & Tony will collaborate on writing the necessary change

   • 2021-03-31T15:36:48+00:00
2. 

   Mark Haine reporter

   There is a need for some implementations to only support delivery of claims via either id_token or userinfo endpoint.

   It is unclear in OpenID Connect core whether that is permitted and there is no OP metadata support for expressing that.

   There needs to be some work done to look at how this area could be more clearly defined both in the spec and in the OP metadata

   • 2021-04-14T09:53:39+00:00
3. 

   Mark Haine reporter

   • assigned issue to
     
     Mark Haine

   • 2021-04-14T15:46:01+00:00
4. 

   Mark Haine reporter

   Propose new erata to Final: OpenID Connect Core 1.0 incorporating errata set 1

   ‌ Section 5.5

   ‌ “When the claims parameter is supported one or more of the available top-level members must be present”

   ‌ The claims_responses_supported Discovery result indicates which of the top-level members of the claims request the OP supports.

   ‌

   Propose new erata to Final: OpenID Connect Discovery 1.0 incorporating errata set 1

   ‌ to section 3

   ‌ Add new metadata definition: 

   claims_responses_supported: "OPTIONAL. A JSON array indicating the top-level members of the Claims request JSON object that are supported. Only valid when the “claims_parameter_supported” is present and true.

   ‌

   • 2021-04-28T12:23:19+00:00
5. 

   Mark Haine reporter

   I raised two issues on OpenID AB/Connect WG to replace this

   https://bitbucket.org/openid/connect/issues/1227/core-55-claims-parameter-requirements

   https://bitbucket.org/openid/connect/issues/1228/discovery-3-new-metadata-item-for-claims

   • 2021-05-05T16:45:21+00:00
6. 

   Mark Haine reporter

   • changed status to resolved

   Raised with AB/Connect Working Group for resolution

   • 2021-05-05T16:45:50+00:00
7. Log in to comment