The text in the spec is "Clients that have credentials and ... • Aaron Parecki

59°F

Vladimir Dzhuvinov 🇪🇺 🇧🇬 https://twitter.com/dzhuvi • Jul 22
I can imagine a lot of thought was already spent on this :) Is a public client which uses a client certificate solely for the purpose of obtaining a private key bound token considered credentialed?

The text in the spec is "Clients that have credentials and their identity has been not been confirmed by the AS are designated as 'credentialed clients'", so that includes dynamic registration or the client bringing its own certificate, so yes :-)

Portland, Oregon • 66°F

Wed, Jul 22, 2020 9:46am -07:00

1 like
- Vladimir Dzhuvinov 🇪🇺 🇧🇬
Have you written a response to this? Let me know the URL:

Posted in /replies using quill.p3k.io