[prev in list] [next in list] [prev in thread] [next in thread]
List: shibboleth-users
Subject: Re: OIDC Client Secret Resolution with Hashed Secret
From: "Cantor, Scott via users" <users () shibboleth ! net>
Date: 2023-05-09 18:29:59
Message-ID: CA42668D-EACB-42E9-93BD-74BBFF325A16 () osu ! edu
[Download RAW message or body]
> I will look into it if that is the better way to go, appreciate the advice, thanks.
Much simpler, more flexible, no need to mess with the metadata, I would advise that. \
It doesn't work with dynamic registration but of course neither does what you were \
pursuing.
https://shibboleth.atlassian.net/wiki/spaces/IDPPLUGINS/pages/2929033287/OAuth2ClientAuthnConfiguration
We are not yet at the "no need for registration or metadata at all" stage, that will \
come later on once we have a simpler way to validate the response locations CAS-style \
with a regex.
-- Scott
--
For Consortium Member technical support, see \
https://shibboleth.atlassian.net/wiki/x/ZYEpPw To unsubscribe from this list send an \
email to users-unsubscribe@shibboleth.net
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic