Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RequireIdentityTokenOnRefreshTokenResponse #17

Closed
josephgardner opened this issue Mar 28, 2017 · 3 comments
Closed

RequireIdentityTokenOnRefreshTokenResponse #17

josephgardner opened this issue Mar 28, 2017 · 3 comments
Labels
question

Comments

@josephgardner
Copy link

josephgardner commented Mar 28, 2017
edited
Loading

What is the use case for RequireIdentityTokenOnRefreshTokenResponse?

I can't find anything in the oidc connect spec about requesting an ID token as part of the refresh flow. Also, is this supported by IdentityServer3?
@leastprivilege
Copy link
Contributor

https://openid.net/specs/openid-connect-core-1_0.html#RefreshTokenResponse

Upon successful validation of the Refresh Token, the response body is the Token Response of Section 3.1.3.3 except that it might not contain an id_token.

@josephgardner
Copy link
Author

Thanks for the info. I now see the id_token was added in the response from a refresh token request as part of IdentityServer/IdentityServer3#3458

@github-actions
Copy link

This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Feb 23, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
question
Milestone
No milestone
Development

No branches or pull requests
2 participants
@josephgardner @leastprivilege