Skip to content
This repository has been archived by the owner on Dec 21, 2021. It is now read-only.

OAuth 2.0 Authorization Server Metadata #5

Open
jbasney opened this issue Mar 21, 2018 · 1 comment
Open

OAuth 2.0 Authorization Server Metadata #5

jbasney opened this issue Mar 21, 2018 · 1 comment

Comments

@jbasney
Copy link
Member

jbasney commented Mar 21, 2018

A SciTokens Authorization Server should publish OAuth 2.0 Authorization Server Metadata rather than OpenID Provider Metadata.

No "claims_supported" or "id_token_signing_alg_values_supported" or "userinfo_endpoint" entries.

And it should be published at issuer/.well-known/oauth-authorization-server rather than issuer/.well-known/openid-configuration.
@jbasney jbasney mentioned this issue May 7, 2018
Open
@jbasney
Copy link
Member Author

jbasney commented Jun 29, 2018

RFC 8414 is now published with the specification for OAuth 2.0 Authorization Server Metadata. As discussed in scitokens/scitokens#75, see RFC 8414 Compatibility Notes about constructing the discovery endpoint URL for issuers with path components:

OpenID Connect Discovery 1.0 specifies that the well-known URI
string is appended to the issuer identifier (e.g.,
"https://example.com/issuer1/.well-known/openid-configuration"),
whereas this specification specifies that the well-known URI string
is inserted before the path component of the issuer identifier (e.g.,
"https://example.com/.well-known/openid-configuration/issuer1").

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jbasney