New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Support for Software Statement Protected Client Registration #89

nynymike opened this Issue Nov 3, 2015 · 0 comments


None yet
4 participants

nynymike commented Nov 3, 2015

Software statements in OAuth2 enable an OP to issue a JWT token that authorizes a client to register. It provides a mechanism between open dynamic client registration, and manual client registration. See OAuth2 dynamic registration software statements.

Talk of software statements profile has been started at the MODRNA WG at the OIDF (a profile of openid connect for mobile operators). Its just an outline, but could be useful.

In order to implement this, I think we'd need a few features:

  1. Ability of an oxTrust admin to create and revoke software statements
  2. An API to obtain software statements that is protect by UMA
  3. A configuration option to restrict dynamic client registration only to clients that present a valid software statement
  4. An async service to revoke client credentails if a software statement expires or is invalidated.

@nynymike nynymike changed the title from Support for Software Statement Registration to Support for Software Statement Protected Client Registration Nov 3, 2015

@nynymike nynymike added the enhancement label Nov 3, 2015

@willow9886 willow9886 added this to the CE 2.4.3 milestone Jan 13, 2016

@yurem yurem modified the milestones: CE 2.4.3, CE 2.4.5 Jul 19, 2016

@nynymike nynymike modified the milestones: CE 3.1.0, CE 3.0.0 Nov 29, 2016

@nynymike nynymike modified the milestones: 3.2.0, CE 3.1.0 Apr 7, 2017

@willow9886 willow9886 modified the milestones: 3.2.0, CE 3.2.0 Apr 10, 2017

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment