• Type: Technical task
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:


      The following authorization server metadata parameters are introduced by this specification for OPs publishing their support of the CIBA flow and details thereof.

      • backchannel_token_delivery_modes_supported: REQUIRED. JSON array containing one or more of the following values: poll, ping and push.
      • backchannel_authentication_endpoint: REQUIRED. URL of the OP's Backchannel Authentication Endpoint as defined in Section 7.
      • backchannel_authentication_request_signing_alg_values_supported: OPTIONAL. JSON array containing a list of the JWS signing algorithms (alg values) supported by the OP for signed authentication requests, which are described in Section 7.1.1. If omitted, signed authentication requests are not supported by the OP.
      • backchannel_user_code_parameter_supported: OPTIONAL. Boolean value specifying whether the OP supports use of the user_code parameter, with true indicating support. If omitted, the default value is false.

      The CIBA grant type is used in the grant_types_supported field of discovery metadata for OPs that support the ping or poll delivery modes.
      The supported client authentication methods and, when applicable, the associated JWS signing algorithms of the OP's Backchannel Authentication Endpoint are the same as those indicated by the token_endpoint_auth_methods_supported and token_endpoint_auth_signing_alg_values_supported metadata parameters respectively


          Issue Links



              • Assignee:
                peter.major Peter Major [X] (Inactive)
              • Votes:
                0 Vote for this issue
                1 Start watching this issue


                • Created: