You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
You can use a signed JWT to encode your authorization request. If I add the claims parameter, it will cause an error. See attachment for the stacktrace.
@bartgeesink You forgot to attach the stack-trace. When I try this with the playground it works. The difference being that the claims field is a string with escaped JSON. I think this is spec mandatory (but I\'m not sure).
This issue is imported from pivotal - Originaly created at Sep 15, 2022 by Bart Geesink
You can use a signed JWT to encode your authorization request. If I add the claims parameter, it will cause an error. See attachment for the stacktrace.
The decoded jwt used looks like this:
{
"iss": "oidctest",
"aud": "https://connect.test.surfconext.nl",
"claims": {
"id_token": {
"email": null
}
},
"response_type": "code",
"scope": "openid",
"client_id": "oidctest",
"state": "O5pZvW_cPJjPCZm87eHPqplnL1A",
"redirect_uri": "https://spdtest.surfconext.nl/oidc/redirect",
"nonce": "tAw5hSn8HxKahbAFlS7J9kOikbnz2I21_gt1NL1KrAk"
}
The text was updated successfully, but these errors were encountered: