Hi, This should probably rather be discussed at the OpenID : https://lists.openid.net/mailman/listinfo/openid-specs-ab
Fwiw, I don't understand the "auth secondary 1/N" in the schema, and the "account resolution". It looks like you're trying to solve a problem that some RPs might have by using the email address as an identifier instead of the "sub", so now there's a need to "migrate" that identifier to another value when the user changes their email address. But that's a misuse of OIDC by the RP, that can and should be solved on the RP side. The email address in OIDC is only that: an information of how to contact that user by mail, and certainly not an identifier for that user (that's what the "sub" is for) On Thu, Sep 18, 2025 at 12:14 PM Salim BOU ARAM <bouaram.sa...@gmail.com> wrote: > Dear all, > > I’ve published a draft: *OpenID Connect Email Account Linking Extension > <https://datatracker.ietf.org/doc/draft-bouaram-oidc-email-linking-extension/00/>* > It extends the email scope to support linking multiple addresses under the > same IdP. > > The draft is still early and needs enhancements, which I’d be glad to work > on if there’s community interest. > > Feedback and collaboration would be very welcome. > > Best, > > Salim > > _______________________________________________ > OAuth mailing list -- oauth@ietf.org > To unsubscribe send an email to oauth-le...@ietf.org > -- Thomas Broyer /tɔ.ma.bʁwa.je/ <https://ipa-reader.com/?text=t%C9%94.ma.b%CA%81wa.je&voice=Mathieu>
_______________________________________________ OAuth mailing list -- oauth@ietf.org To unsubscribe send an email to oauth-le...@ietf.org
