5.3.2.1 bullet 5 missing a word or a comma?

Comments (5)

1. 

   Nat Sakimura reporter

   In addition, we may want to avoid the passive form “should be”.

   Also this “should be” introduces an ambiguity. Do we allow it to be received as an item in an array?

   If not, perhaps:

   (Clients,) if using private_key_jwt, shall use the Authorization Server's issuer identifier value (as defined in [RFC8414]) received as a string and not as an item in an array in the aud claim sent in client authentication assertions

   Have we defined client authentication assertions, by the way?

   • 2024-01-09T06:53:31+00:00
2. 

   Brian Campbell

   Have we defined client authentication assertions, by the way?

   Somewhat indirectly by reference to private_key_jwt which is from sec 9 of OIDC core and describes jwt client assertion auth from rfc7523.

   • 2024-01-10T13:47:54+00:00
3. 

   Brian Campbell

   Also, since the main subject of the sentences here is “Clients”, it does not read too well. Perhaps it should be “received” instead of “sent”.

   In this context the client is creating the JWT and including it in an HTTP request to the AS. So “sent” is correct. The client is sending.

   • 2024-01-10T13:59:14+00:00
4. 

   Daniel Fett

   I’ll change it to the following in the PR:

    1. if using `private_key_jwt`, shall use the Authorization Server's
       issuer identifier value (as defined in [@RFC8414]) in the `aud`
       claim in client authentication assertions, and should send the issuer
       identifier value as a string, not as an item in an
       array;
   

   The ‘sent’ can be removed to shorten the sentence. I added the missing comma and used active voice.

   ‌

   • 2024-01-13T10:28:57+00:00
5. 

   Daniel Fett

   • changed status to resolved

   Fix Issue #650 (5.3.2.1 bullet 5 missing a word or a comma?)

   → <<cset 5407571bbadf>>

   • 2024-01-13T10:29:42+00:00
6. Log in to comment