OpenID-Connect-PHP icon indicating copy to clipboard operation
OpenID-Connect-PHP copied to clipboard

Published 20 hours ago verified publisher icon jumbojett

UserInfoResponse as JWT not handled

Open Vitus-R opened this issue 4 years ago • 1 comments

In issue #151 the code was changed so that only JSON-responses are accepted. However at least one provider (https://www.governikus.de/) offers ONLY JWT-responses.

Maybe the function requestUserInfo() could be changed so that the "'Accept: application/json'" is only optional and the Response is optionally decoded with decodeJWT() ?

Specs: https://openid.net/specs/openid-connect-core-1_0.html#UserInfoResponse

Vitus-R avatar Apr 21 '20 13:04 Vitus-R

Will be fixed by #305

ricklambrechts avatar Sep 15 '22 21:09 ricklambrechts