Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Not supporting [RFC 9068] Must add issuer claim to the access token JWT! #1434

Open
StefanoMantero opened this issue Aug 6, 2024 · 1 comment
Open

Not supporting [RFC 9068] Must add issuer claim to the access token JWT! #1434

StefanoMantero opened this issue Aug 6, 2024 · 1 comment
Labels
Future Version Spec Compliance

Comments

@StefanoMantero
Copy link

As already mentioned by @Sephster, now the issuer is mandatory!

@Sephster wouldn't RFC 9068 be the relevant spec here? (Now, anyway... I think it did not exist yet when this conversation started.) That does make iss required.

Originally posted by @tgr in #1137 (comment)
@StefanoMantero StefanoMantero changed the title Support adding issuer claim to the access token JWT Not supporting [RFC 9068] Must add issuer claim to the access token JWT! Aug 6, 2024
@Sephster
Copy link
Member

Thanks for this. It looks like we will need to support RFC9068 going forwards but at the moment, I'm not sure if just changing the iss to required will satisfy it. I suspect not and this will likely result in a major release. I'll tag this as a future development.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Future Version Spec Compliance
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Sephster @StefanoMantero