85°F

Aaron Parecki

  • Articles
  • Notes
  • Photos
  • Vinod Anandan https://twitter.com/_VinodAnandan   •   May 31
    "email_verified" : "True if the End-User's e-mail address has been verified; otherwise false....."

    https://openid.net/specs/openid-connect-core-1_0.html
    Aaron Parecki
    Go read the writeup again. The original post wasn't the clearest explanation of the problem but I also posted some more details in this thread that make it clearer.
    Portland, Oregon • 54°F
    Sun, May 31, 2020 7:28am -07:00
    6 replies
    • Aaron Parecki twitter.com/aaronpk
      Alright, it's up! aaronparecki.com/2020/05/31/30/…
      Sun, May 31, 2020 8:50pm +00:00 (via brid-gy.appspot.com)
    • Vinod Anandan twitter.com/_VinodAnandan
      Thanks, that will be greatly appreciated. If you could also include the sample id_token in the post, it would help to clarify some doubts.
      Sun, May 31, 2020 4:40pm +00:00 (via brid-gy.appspot.com)
    • Aaron Parecki twitter.com/aaronpk
      The original post didn’t make this clear, so I’m writing a new post to hopefully better explain the problem. You’ll see that it has nothing to do with OIDC at all. Link coming shortly, I hope.
      Sun, May 31, 2020 4:36pm +00:00 (via brid-gy.appspot.com)
    • Vinod Anandan twitter.com/_VinodAnandan
      Yes, thank you. I agree that RP should be simple and IdP should be handling the complexity. AFAIU, the OIDC spec is clear about the email_verified attribute.
      Sun, May 31, 2020 4:35pm +00:00 (via brid-gy.appspot.com)
    • Aaron Parecki twitter.com/aaronpk
      Please go read it again and understand the problem
      Sun, May 31, 2020 2:32pm +00:00 (via brid-gy.appspot.com)
    • Vinod Anandan twitter.com/_VinodAnandan
      My point is that OIDC has mechanisms to prevent this issue..
      Sun, May 31, 2020 2:31pm +00:00 (via brid-gy.appspot.com)
Posted in /replies using indigenous.abode.pub/ios

Hi, I'm Aaron Parecki, Director of Identity Standards at Okta, and co-founder of IndieWebCamp. I maintain oauth.net, write and consult about OAuth, and participate in the OAuth Working Group at the IETF. I also help people learn about video production and livestreaming. (detailed bio)

I've been tracking my location since 2008 and I wrote 100 songs in 100 days. I've spoken at conferences around the world about owning your data, OAuth, quantified self, and explained why R is a vowel. Read more.

  • Director of Identity Standards at Okta
  • IndieWebCamp Founder
  • OAuth WG Editor
  • OpenID Board Member

  • 🎥 YouTube Tutorials and Reviews
  • 🏠 We're building a triplex!
  • ⭐️ Life Stack
  • ⚙️ Home Automation
  • All
  • Articles
  • Bookmarks
  • Notes
  • Photos
  • Replies
  • Reviews
  • Trips
  • Videos
  • Contact
© 1999-2025 by Aaron Parecki. Powered by p3k. This site supports Webmention.
Except where otherwise noted, text content on this site is licensed under a Creative Commons Attribution 3.0 License.
IndieWebCamp Microformats Webmention W3C HTML5 Creative Commons
WeChat ID
aaronpk_tv