On Wed, Apr 8, 2026 at 2:18 PM John R Levine <[email protected]> wrote: > > Ah, OK. So your user goes to another department in the company and says > "we need the web server the company is paying you to run handle this URL > https://foo.example/.well-known/web-identity"; and they say some > combination of "what?" and "no."
To me it sounds more like: "We need you to get our Auth Provider's relying-party documentation, post it on our web site at this url, and keep it up to date." That could probably still be handled by an HTTP 307 response from <https://foo.example/.well-known/web-identity>, but I can see the interest in having the indirection happen elsewhere. _______________________________________________ DNSOP mailing list -- [email protected] To unsubscribe send an email to [email protected]
