Hi all, Ronald just sent me an email asking whether we will define metadata for
pushed_authorization_endpoint_auth_methods_supported and pushed_authorization_endpoint_auth_signing_alg_values_supported. The draft right now utilises the existing token endpoint authentication methods so there is basically no need to define another parameter. The same principle could be applied to signing (and encryption) algorithms as well. What’s your opinion? best regards, Torsten.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
