-
-
Notifications
You must be signed in to change notification settings - Fork 242
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
enc_id_token vs id_token #501
Comments
When sending the token back to the OIDC provider lua-resty-openidc needs the original string as it cannot generally reconstruct the exact same representation from the parsed payload (it wouldn't be able to sign the token for example). So yes, if you want to use the |
Why is enc_id_token separated from id_token? It looks like its being set the same way here. I assume
enc
means encrypted? It doesn't seem so as for how it is being set though.It is setting the session_token as enc_id_token here. We can see that
params["id_token_hint"]
will only get set if the session_token exists, which means enc_id_token has to betrue
inopts.session_contents
Any inputs would be appreciated. Thank you!
The text was updated successfully, but these errors were encountered: