Hi,
Your draft says in
https://tools.ietf.org/html/draft-ietf-oauth-pop-key-distribution-02#section-4.2
The 'key' parameter either contains a plain JWK structure or a JWK
encrypted with a JWE.
But not mentioning that plain JWK is base64url encoded.
In the same section in the example in Figure2:
"key":"eyJhbGciOiJSU0ExXzUi
That is == base64 encoded '{"alg":"RSA1_5'
So "key" is not a plain JWK JSON, but base64 encoded (plain JWK).
So it is confusing for me..
Please confirm that it is missed to state in the draft but you meant
that the plain JWK is in base64 encoded format.
The 'key' parameter either contains a plain _/bas64url encoded/_ JWK structure
or a JWK encrypted with a JWE.
Many Thanks,
Misi
_______________________________________________
OAuth mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/oauth
