Hi Ludwig,
Seitz Ludwig <[email protected]> writes:
> “ace_profile” parameter in the access token request.
>
> the only option for the client is [...] to send an empty
> “ace_profile” parameter in the access token request in order to query
> the selected profile
I just stumbled over Section 5.6.3, Error Response [1], which describes
the error code incompatible_ace_profiles as follows:
"If the client and the RS it has requested an access token for do
not share a common profile, the AS MUST reject that request with a
response code equivalent to the CoAP code 4.00 (Bad Request)
including the error code "incompatible_ace_profiles" defined in
Figure 10."
I wonder how the AS is supposed to know which ace profiles the client
implements?
[1] https://tools.ietf.org/rfcmarkup?doc=draft-ietf-ace-oauth-aut#section-5.6.3
Grüße
Olaf
_______________________________________________
Ace mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ace
