Hi, Your draft says in https://tools.ietf.org/html/draft-ietf-oauth-pop-key-distribution-02#section-4.2
The 'key' parameter either contains a plain JWK structure or a JWK encrypted with a JWE. But not mentioning that plain JWK is base64url encoded. In the same section in the example in Figure2: "key":"eyJhbGciOiJSU0ExXzUi That is == base64 encoded '{"alg":"RSA1_5' So "key" is not a plain JWK JSON, but base64 encoded (plain JWK). So it is confusing for me.. Please confirm that it is missed to state in the draft but you meant that the plain JWK is in base64 encoded format. The 'key' parameter either contains a plain _/bas64url encoded/_ JWK structure or a JWK encrypted with a JWE. Many Thanks, Misi
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth