Solid DPoP tokens - Supported algorithms and key types

cmsblakeley · October 28, 2021, 2:32pm

Hello,

I’m trying to use https://solidcommunity.net/ in combination with Virtuoso as an RP. I have some questions about Solid’s use of DPoP tokens.

Solid-client-authn-* architecture says that “Solid-OIDC makes the support for Key-bound Access Tokens (referred to as DPoP tokens) mandatory”.

Looking at the sequence diagram for Solid OIDC Flow in the Solid OIDC Primer, at step 13 the RP generates a DPoP header - this is described further in Section 13 https://solid.github.io/solid-oidc/primer/#authorization-code-pkce-flow-step-13.

What signing algorithms and key types does Solid 5.6.12 now allow RPs to use for DPoP JWTs?
Is jwtheader.alg limited to “ES256”?
Is jwtheader.jwk.kty limited to “EC”?

Thanks,
Carl B

Topic		Replies	Views
The use of DPoP in the /token endpoint Build a Solid App	9	1362	October 23, 2021
Community Server DPoP Error Solid: The Basics	0	591	June 3, 2021
Generating a refresh token: With or without DPoP header? Solid App Development FAQs	5	987	September 21, 2021
Both client and server accessing a Pod	6	750	July 24, 2021
Solid OIDC Access Token Verifier - Error: JWSInvalid: Invalid Compact JWS, code: 'ERR_JWS_INVALID'	1	892	January 12, 2023

Solid DPoP tokens - Supported algorithms and key types

Related Topics