[OAUTH-WG] draft-ietf-oauth-pop-key-distribution

Mészáros Mihály Fri, 03 Feb 2017 07:01:38 -0800

Hi,

Your draft says in
https://tools.ietf.org/html/draft-ietf-oauth-pop-key-distribution-02#section-4.2


        The 'key' parameter either contains a plain JWK structure or a JWK 
encrypted with a JWE.

But not mentioning that plain JWK is base64url encoded.

In the same section in the example in Figure2:

         "key":"eyJhbGciOiJSU0ExXzUi 

That is == base64 encoded '{"alg":"RSA1_5'

So "key" is not a plain JWK JSON, but base64 encoded (plain JWK).


So it is confusing for me..

Please confirm that it is missed to state in the draft but you meant
that the plain JWK is in base64 encoded format.

The 'key' parameter either contains a plain _/bas64url encoded/_ JWK structure 
or a JWK encrypted with a JWE.

Many Thanks,
Misi

_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

[OAUTH-WG] draft-ietf-oauth-pop-key-distribution

Reply via email to