Support HMAC id_token signing
Closed this issue · 1 comments
tekul commented
Only supports RSA signing using the server key just now. Signing with the client_secret should also be supported (OP-IDToken-HS256 fails).
See http://openid.net/specs/openid-connect-core-1_0.html#Signing
tekul commented
OP-IDToken-HS256 is now passing.