Skip to content
This repository has been archived by the owner on Sep 1, 2020. It is now read-only.

The UserInfo "sub" claim is not currently being validated #210

Open
selfissued opened this issue Dec 13, 2019 · 2 comments
Open

The UserInfo "sub" claim is not currently being validated #210

selfissued opened this issue Dec 13, 2019 · 2 comments
Assignees
@rohe
Labels
bug

Comments

@selfissued
Copy link

According to Roland in the certification thread "Checking 'sub' in userinfo response", he wrote an assertion check to verify that the "sub" values in the UserInfo Endpoint and ID Token match, but failed to apply that assertion to the actual certification tests.

Please add this assertion to the tests OP-UserInfo-Body, OP-UserInfo-Endpoint, and OP-UserInfo-Header.
@selfissued selfissued added the bug label Dec 13, 2019
@rohe
Copy link

rohe commented Dec 13, 2019

Done.'
Though I added the assertion check to all OP-UserInfo-* tests.

@jogu
Copy link

jogu commented Dec 14, 2019

As I looked it up, relevant commit is rohe@1dadb58 in case that's useful to others in the future.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@rohe rohe

Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@rohe @jogu @selfissued