Closed krishna1c closed 5 years ago
In the current draft of infosec consentId field is part of request object but it is outside the claims. It is more appropriate to add consentId as part of claims, due to this OIDC providers can easily identity the cosentId.
Thanks. You are correct. It should be an essential claim. Will fix.
Also add vot and vtr also as a claims.
They should be there already.
Ya. In the examples it is mentioned outside the claims. Thanks
In the current draft of infosec consentId field is part of request object but it is outside the claims. It is more appropriate to add consentId as part of claims, due to this OIDC providers can easily identity the cosentId.