Michael Thornburgh
Michael Thornburgh
when using the "Issuer Discovery From Link Header" method, the issuer is linked to the PersonalProfileDocument, not to the Person inside that the issuer is actually vouching for. in other...
a [Self-Issued OpenID Provider](https://openid.net/specs/openid-connect-core-1_0.html#SelfIssued) is a self-hosted OIDC Provider that issues self-signed ID tokens. such a self-signed ID token includes a public key in its `sub_jwk` claim, with which the...
in https://github.com/solid/webid-oidc-spec/issues/23#issuecomment-502420306 @RubenVerborgh suggested that > ... we probably want to create an issue for the problem we are trying to solve, and work there on adding the desired attributes...
the example-workflow.md document leaves unspecified how an application or automatic client (like an in-browser AJAX client where no cookie exists or can be used, or a server-side application with its...
in #12, it was proposed to use the client_id to distinguish web apps. as discussed in that issue, there are multiple problems with using the client_id (most importantly, that it...
currently, the webid-oidc-spec suite documents only the "user logs directly in to a server or application by selecting her OIDC OP and logging in there" case. the specifications currently don't...
this pertains to the application-workflow.md document as of revision 0956476be (since i'm referring to several steps by number, and they might change after i submit this). there are multiple issues...
the current "The Solution" for WebID Provider Confirmation requires that the domain of the WebID be compared against that of the issuer first ("implicit"), before doing Authorized OIDC Issuer Discovery...
oidc-auth-manager will have inconsistent/non-deterministic behavior if a webid lists multiple `solid:oidcIssuer` triples. a webid should be allowed to list multiple issuers. potential use cases: * a user might want to...
oidc-auth-mananger seems to make an invalid assumption that all OIDC Issuers are URIs with an empty path part. if a webid has an OIDC Issuer URI with a path part...