FAPI CIBA and ID Tokens

Issue #229 new
Dave Tonge created an issue

We discussed on the call today whether we need ID Tokens in the FAPI profile of CIBA.

They are not needed as a detached signature and so perhaps we should remove the need for them.

The core spec leaves an option open for CIBA to be used without the openid scope, but it would require us to specify some behaviour that is currently inferred or defined in OpenID Connect core (e.g. id_token_hint, etc.)

Comments (3)

  1. Dave Tonge reporter

    @Joseph Heenan my suggestion with this one is to defer it to a later draft.

    It think it would be quite a bit of work to remove the ID Token requirement now.

  2. Log in to comment