Use RFC 9068 for token version #25
Comments
|
To find the recommendations for the |
|
And after that one we only need to nudge the community towards a "grp" claim and we're done! 🙂
…________________________________
From: hshort ***@***.***>
Sent: Monday, April 24, 2023 4:07 PM
To: WLCG-AuthZ-WG/common-jwt-profile ***@***.***>
Cc: Subscribed ***@***.***>
Subject: [WLCG-AuthZ-WG/common-jwt-profile] Use RFC 9068 for token version (Issue #25)
Apparently RFC 9068 uses the standard JWT typ claim to identify the token version/type. It would be better to use this than our own "wlcg.ver" claim. This was raised by @jbasney<https://github.com/jbasney>
—
Reply to this email directly, view it on GitHub<#25>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/ADVMWCJDUZ3PYGIEH4YRRUDXC2CJVANCNFSM6AAAAAAXJUNHT4>.
You are receiving this because you are subscribed to this thread.Message ID: ***@***.***>
|
|
better groups then: https://www.rfc-editor.org/rfc/rfc9068.html#section-2.2.3.1 |
|
The "groups" syntax in their example looks usable, AFAICS: |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Apparently RFC 9068 uses the standard JWT typ claim to identify the token version/type. It would be better to use this than our own "wlcg.ver" claim. This was raised by @jbasney
The text was updated successfully, but these errors were encountered: