JWT Claims Set's scope element is an array whereas both 'scope' GET Token request and Token response is a space-separated string. Our industry partner is currently incompatible with an array. Determine a fix amenable to industry, FAA and available standards, and document in this API.
Verify FAA's implementation wrt validation of a JWT Claims Set's scope element.
JWT Claims Set's scope element is an array whereas both 'scope' GET Token request and Token response is a space-separated string. Our industry partner is currently incompatible with an array. Determine a fix amenable to industry, FAA and available standards, and document in this API.
Verify FAA's implementation wrt validation of a JWT Claims Set's scope element.
The only occurrence of multiple scopes is here: https://github.com/nasa/utm-apis/issues/174
As per @nasajoey This RFC is expired, but they do have scopes as a single string, space separated like the request: https://tools.ietf.org/id/draft-bertocci-oauth-access-token-jwt-00.html#rfc.section.3
@arkits