Skip to content

Add {introspection,revocation}_endpoint_auth_methods_supported #7

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
selfissued wants to merge 1 commit into from
Closed

Add {introspection,revocation}_endpoint_auth_methods_supported #7

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
85 changes: 79 additions & 6 deletions openid-connect-rp-metadata-choices-1_0.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,7 @@
be taken to indicate.
-->
<rfc category="std" docName="openid-connect-rp-metadata-choices-1_0" ipr="none"
submissionType="IETF" consensus="yes"
xmlns:xi="http://www.w3.org/2001/XInclude">

<?rfc toc="yes" ?>
Expand All @@ -25,7 +26,7 @@

<front>
<title abbrev="OpenID Connect RP Metadata Choices">OpenID Connect
Relying Party Metadata Choices 1.0 - draft 02</title>
Relying Party Metadata Choices 1.0 - draft 03</title>

<author fullname="Michael B. Jones" initials="M.B." surname="Jones">
<organization abbrev="Self-Issued Consulting">Self-Issued Consulting</organization>
Expand Down Expand Up @@ -57,7 +58,7 @@
</address>
</author>

<date day="24" month="April" year="2025" />
<date day="15" month="July" year="2025" />

<workgroup>OpenID Connect Working Group</workgroup>

Expand Down Expand Up @@ -310,7 +311,8 @@
<vspace/>
OPTIONAL.
JSON array containing a list of the
Client Authentication methods supported by the Client.
Client Authentication methods supported by the Client
at the Token Endpoint.
If a <spanx style="verb">token_endpoint_auth_method</spanx>
metadata parameter is also present, its value MUST be in the list.
</t>
Expand Down Expand Up @@ -369,6 +371,17 @@
metadata parameter is also present, its value MUST be in the list.
</t>

<t hangText="introspection_endpoint_auth_methods_supported">
<vspace/>
OPTIONAL.
JSON array containing a list of the
Client Authentication methods supported by the Client
at the Introspection Endpoint.
Note that no corresponding single-valued
<spanx style="verb">introspection_endpoint_auth_method</spanx>
Client Metadata parameter is defined for introspection.
</t>

<t hangText="introspection_signing_alg_values_supported">
<vspace/>
OPTIONAL.
Expand Down Expand Up @@ -399,6 +412,17 @@
metadata parameter is also present, its value MUST be in the list.
</t>

<t hangText="revocation_endpoint_auth_methods_supported">
<vspace/>
OPTIONAL.
JSON array containing a list of the
Client Authentication methods supported by the Client
at the Revocation Endpoint.
Note that no corresponding single-valued
<spanx style="verb">revocation_endpoint_auth_method</spanx>
Client Metadata parameter is defined for revocation.
</t>

</list>
</t>
<t>
Expand Down Expand Up @@ -430,8 +454,8 @@
For instance, consider these metadata values:
<figure>
<artwork><![CDATA[
"id_token_signing_alg_values_supported": ["ES256", "PS256", "RS256"],
"id_token_signed_response_alg": "RS256"
"id_token_signing_alg_values_supported": ["ES256", "PS256", "RS256"],
"id_token_signed_response_alg": "RS256"
]]></artwork>
</figure>
</t>
Expand Down Expand Up @@ -661,6 +685,7 @@
Client Metadata Description:
JSON array containing a list of the
Client Authentication methods supported by the Client
at the Token Endpoint
</t>
<t>
Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net
Expand Down Expand Up @@ -767,6 +792,25 @@
</t>
</list>
</t>
<t>
<list style="symbols">
<t>
Client Metadata Name: <spanx style="verb">introspection_endpoint_auth_methods_supported</spanx>
</t>
<t>
Client Metadata Description:
JSON array containing a list of the
Client Authentication methods supported by the Client
at the Introspection Endpoint
</t>
<t>
Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net
</t>
<t>
Specification Document(s): <xref target="ClientMetadata"/> of this specification
</t>
</list>
</t>
<t>
<list style="symbols">
<t>
Expand Down Expand Up @@ -824,6 +868,25 @@
</t>
</list>
</t>
<t>
<list style="symbols">
<t>
Client Metadata Name: <spanx style="verb">revocation_endpoint_auth_methods_supported</spanx>
</t>
<t>
Client Metadata Description:
JSON array containing a list of the
Client Authentication methods supported by the Client
at the Revocation Endpoint
</t>
<t>
Change Controller: OpenID Foundation Artifact Binding Working Group - openid-specs-ab@lists.openid.net
</t>
<t>
Specification Document(s): <xref target="ClientMetadata"/> of this specification
</t>
</list>
</t>
</section>
<?rfc subcompact="no"?>
</section>
Expand Down Expand Up @@ -1142,9 +1205,19 @@
<section anchor="History" title="Document History">
<t>[[ To be removed from the approved Final Specification ]]</t>

<t>
-03
<list style="symbols">
<t>
Added <spanx style="verb">introspection_endpoint_auth_methods_supported</spanx>
and <spanx style="verb">revocation_endpoint_auth_methods_supported</spanx>.
</t>
</list>
</t>

<t>
-02
<list style="symbols">
<list style="symbols">
<t>
Added multi-valued metadata parameters based on single-valued metadata parameters
in <xref target="CIBA.Core"/>, <xref target="JARM"/>, and <xref target="RFC9701"/>.
Expand Down