CIBA vs MODRNA
There are two specifications very similar, CIBA and MODRNA, but they have important differences. CIBA is a draft but has a more recent data and MODRNA seems a final version but is from 2017, which of these documents should we follow?
https://openid.net/specs/openid-client-initiated-backchannel-authentication-core-1_0.html
https://openid.net/specs/openid-connect-modrna-client-initiated-backchannel-authentication-1_0.html
Comments (5)
-
-
The CIBA Core specification (https://openid.net/specs/openid-client-initiated-backchannel-authentication-core-1_0.html) and MODRNA CIBA Profile specification replaced the previous MODRNA CIBA specification (https://openid.net/specs/openid-connect-modrna-client-initiated-backchannel-authentication-1_0.html).
-
- marked as trivial
-
assigned issue to
- changed component to CIBA
-
reporter Thank you so much
-
- changed status to resolved
Issue closed with above comments.
- Log in to comment
Follow the CIBA spec: https://openid.net/specs/openid-client-initiated-backchannel-authentication-core-1_0.html
We hope to have a new implementers draft out shortly. Although it is at the “implementers draft” stage it has quite a few implementations and for the FAPI variant of it https://bitbucket.org/openid/fapi/src/master/Financial_API_WD_CIBA.md there are even OpenID Conformance tests: https://openid.net/certification/fapi_ciba_op_testing/