Ambiguity in user_code parameter

Issue #162 resolved

Christopher Vivek Vinushanth created an issue 2019-07-22

section 7.1.2 of CIBA specification describes about user_code which is often used then and there.But the information is bit ambiguous.Better if it is described in a better way.

Comments (7)

Dave Tonge
Hi Vivek, pls can you give us some more details on this - perhaps with some suggested text.
- 2019-09-17T14:32:55+00:00
Christopher Vivek Vinushanth reporter
Let me be clear.

Is the user_code is like a password that the user provides every time when he triggers authentication request through the client?

And the server needs to authenticate the user with that user_code[as a password] and then request authentication device to authorize.
- 2019-09-19T07:31:35+00:00
Bjorn Hjelm
- marked as minor
- assigned issue to
  
  Dave Tonge
- 2019-10-03T16:51:01+00:00
Dave Tonge
must not be the password used to authenticate at the op
- 2019-10-29T14:45:07+00:00
Dave Tonge
Add text to the first and last paragraphs of the user code section. For example remove SMS as a mechanism for receiving the user code.
- 2019-10-29T14:48:36+00:00
Dave Tonge
https://bitbucket.org/openid/mobile/pull-requests/76/editorial-changes-to-better-introduce-the/diff
- 2019-11-26T15:08:29+00:00
Brian Campbell
- changed status to resolved
Merged in i162 (pull request ~~#76~~) to fix issue ~~#162~~

Editorial changes to better introduce the user code mechanism

Approved-by: Brian Campbell

Approved-by: Bjorn Hjelm

→ <<cset e21826fbcb9b>>
- 2020-01-21T23:00:16+00:00
Log in to comment

Assignee: Dave Tonge

Type: enhancement

Priority: minor

Status: resolved

Component: CIBA

Milestone: CIBA Implementer's Draft

Votes: 0

Watchers: 0