Closed peppelinux closed 1 month ago
"the same with the status assertions".
This is correct, but this should be mentioned in the draft and it is not mentioned
@Denisthemalice here the PR that aims to resolve this issue https://github.com/peppelinux/draft-demarco-oauth-status-assertions/pull/80/files
please feel free to reopen this if you would like to add any additional remark
Always Denis:
it says that since there are no fixed audiences in the status assertions, a verifier obtainign a status assertion cannot know if that assertion was already used with another verifier or any information usefull to track its usage and or its audience
the same with the status assertions