Closed daserzw closed 5 years ago
According to OIDC core the value of iss is an https URL, not http [1].
(discovered trying to figure out why the server is on https and the issuer in the id_token was http...)
[1] https://openid.net/specs/openid-connect-core-1_0.html#IDToken
BTW, I forgot to say that phpunit reports OK on all the tests.
According to OIDC core the value of iss is an https URL, not http [1].
(discovered trying to figure out why the server is on https and the issuer in the id_token was http...)
Davide
[1] https://openid.net/specs/openid-connect-core-1_0.html#IDToken