openid / mobile / issues / #79 - CIBA: Client requirements for verifying id token — Bitbucket

Issue #79 resolved

Dave Tonge created an issue 2018-08-29

The current text has the requirement for the OP to include at_hash and auth_req_id in the ID Token. But there is no requirement for the Client to verify these values or an explanation of what to do is the values are invalid.

Comments (3)

Dave Tonge reporter
- assigned issue to
  
  Dave Tonge
- 2018-09-25T14:25:04+00:00
Dave Tonge reporter
https://bitbucket.org/openid/mobile/pull-requests/20/add-requirement-for-client-to-verify-id/diff
- 2018-10-02T07:24:11+00:00
Brian Campbell
- changed status to resolved
merged pull request ~~#20~~
- 2018-10-05T13:07:15+00:00
Log in to comment

Assignee: Dave Tonge

Type: bug

Priority: minor

Status: resolved

Component: CIBA

Milestone: –

Votes: 0

Watchers: 0

Jira: the preferred issue tracker for Bitbucket. Join the team!