Thanks as lot Vittorio! You gave us a lot of homework but I think the draft
will be improved a lot based on it.
Re OIDC implicit: I‘m reluctant to explicitly endorse use of OIDC implicit
(response type „id_token“ or „code id_token“) as there are examples in the wild
where the id_token is used a
Thank you very much for your detailed feedback Vittorio!
ᐧ
On Tue, Dec 8, 2020 at 3:22 PM wrote:
> Dear authors,
>
> It took ages but I finally managed to go thru a full review of the current
> OAuth2.1 draft. Apologies for the delay.
>
> Metacomments:
>
>- The VAST majority of the comments
Dear authors,
It took ages but I finally managed to go thru a full review of the current
OAuth2.1 draft. Apologies for the delay.
Metacomments:
* The VAST majority of the comments are suggestions for improving
clarity, mostly on historical language coming from 2.0 that I found myself
ha