Thanks for your answers.
Let me rephrase if you don't mind. Acceptable keys for decryption of a
request object are those with:
(use:enc or no use)
AND
(key_ops:encrypt or key_ops:deriveKey or no key_ops)
AND
(alg in request_object_encryption_alg_values_supported (from OpenID
Any use:enc, without “use” or “key_ops” or keyops:encrypt/deriveKey that works
with a supported algorithm, or one with the JWA “alg”.
Odesláno z iPhonu
26. 7. 2019 v 14:01, Brian Campbell
:
> I'd say this one->* any "enc" key published by the AS on its jwks_uri?
>
>> On Thu, Jul 25, 2019 at
I'd say this one->* any "enc" key published by the AS on its jwks_uri?
On Thu, Jul 25, 2019 at 3:50 PM Танги Ле Пенс wrote:
> Dear all,
>
> draft-ietf-oauth-jwsreq-19 gives guidance on which key use to verify a
> JWS' signature (the client's key)
> (https://tools.ietf.org/html/draft-ietf-oauth-j
Dear all,
draft-ietf-oauth-jwsreq-19 gives guidance on which key use to verify a
JWS' signature (the client's key)
(https://tools.ietf.org/html/draft-ietf-oauth-jwsreq-19#section-6.2).
However there no such guidance for JWE encryption:
* any "enc" key published by the AS on its jwks_uri?
*
