- edited description
CIBA needs IANA Considerations
Issue #86
resolved
Registration is needed for new client and OP/AS metadata parameters.
And new JWT claims.
Also look at new token endpoint error codes (but consider coming registrations from the device flow).
And review for other registrations needed.
Comments (5)
-
reporter -
-
assigned issue to
-
assigned issue to
-
Some working notes:
OpenID Provider Metadata:
- backchannel_token_delivery_modes (note issue
#88with name change to backchannel_token_delivery_modes_supported) - backchannel_authentication_endpoint (note done as part of issue
#69) - backchannel_authentication_request_signing_alg_values_supported
Client Metadata:
- backchannel_token_delivery_mode
- client_notification_endpoint
- backchannel_authentication_request_signing_alg
Token Request Param:
- auth_req_id (but note that device flow doesn’t register device_code but probably should https://mailarchive.ietf.org/arch/msg/oauth/ai4rd2K5OZ5jsxI45WhvzF5ST3c)
JWT Claims:
- rt_hash (but note issue
#93to avoid registration) - auth_req_id (but note issue
#93to avoid registration)
Token Error Response:
- unknown_auth_req_id (note issue
#94proposes to remove this one) - authorization_pending (already done in https://tools.ietf.org/html/draft-ietf-oauth-device-flow-12#section-7.2.1)
- slow_down (already done in https://tools.ietf.org/html/draft-ietf-oauth-device-flow-12#section-7.2.1)
- expired_token (already done in https://tools.ietf.org/html/draft-ietf-oauth-device-flow-12#section-7.2.1)
- access_denied (not in CIBA yet but should come w/ issue
#81and registration is already done in https://tools.ietf.org/html/draft-ietf-oauth-device-flow-12#section-7.2.1)
- backchannel_token_delivery_modes (note issue
-
-
- changed status to resolved
Resolves with this PR: https://bitbucket.org/openid/mobile/pull-requests/25/ciba-iana-registrations-considerations
- Log in to comment