Category Archives : Specs


Notice of Vote for Implementer’s Drafts of OpenID Connect Logout Specifications

The official voting period will be between Tuesday, March 21 and Tuesday, March 28, 2017, following the 45 day review of the specification. For the convenience of members, voting will actually open a week before Tuesday, March 21 on Tuesday, March 14 for members who have completed their reviews by […]


Public Review Period for Four MODRNA Specifications Started

The OpenID Foundation MODRNA Working Group recommends approval of the following specifications as OpenID Implementer’s Drafts: OpenID Connect MODRNA Authentication Profile 1.0, draft 06 OpenID Connect Account Porting, draft 07 OpenID Connect User Questioning API 1.0, draft 10 OpenID Connect MODRNA Client initiated Backchannel Authentication Flow 1.0, draft 03 An […]


FAPI Part 1 Implementer’s Draft Approved

The OpenID Foundation membership has approved “Financial API – Part 1: Read Only API Security Profile” as an OpenID Implementer’s Draft. An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. The specification is available at: http://openid.net/specs/openid-financial-api-part-1-ID1.html The voting results were: […]


Review of Proposed Implementer’s Drafts of OpenID Connect Logout Specifications

The OpenID Connect Working Group recommends approval of the following specifications as OpenID Implementer’s Drafts: Session Management – Defines how to manage OpenID Connect sessions, including postMessage-based logout functionality Front-Channel Logout – Defines a front-channel logout mechanism that does not use an OP iframe on RP pages Back-Channel Logout – […]


BibXML Files for OpenID Specifications

Axel Nennker had suggested that the OpenID Foundation provide BibXML files for its specifications. He not only suggested this, but also provided a starting point by providing BibXML files for three OpenID Connect specifications. I’m pleased to report that these BibXML files are now available for use: http://openid.net/bibxml/reference.OpenID.Core.xml http://openid.net/bibxml/reference.OpenID.Discovery.xml http://openid.net/bibxml/reference.OpenID.Registration.xml […]


Notice of Vote for Implementer’s Draft of “Financial API – Part 1: Read Only API Security Profile”   Recently updated !

The official voting period will be between Friday, February 3 and Friday, February 10, 2017, following the 45 day review of the specification. For the convenience of members, voting will actually open a week before Friday, February 3 on Friday, January 27 for members who have completed their reviews by […]


Public Review Period for “Financial API – Part 1: Read Only API Security Profile” Started

OpenID Foundation’s Financial API (FAPI) Working Group has advised the foundation to start the public review period for consideration as an Implementer’s Draft for the specification: Financial API – Part 1: Read Only API Security Profile, draft 01 It is a specification that documents the security profiles of OAuth 2.0 and […]


Initial OpenID Connect Enhanced Authentication Profile (EAP) Specifications

The OpenID Enhanced Authentication Profile (EAP) working group charter states that: The purpose of this working group is to develop a security and privacy profile of the OpenID Connect specifications that enable users to authenticate to OpenID Providers using strong authentication specifications. The resulting profile will enable use of IETF […]


HEART Implementer’s Drafts Approved

The OpenID Foundation members have approved of the following specifications as OpenID Implementer’s Drafts: Health Relationship Trust Profile for OAuth 2.0 Health Relationship Trust Profile for OpenID Connect 1.0 Health Relationship Trust Profile for User Managed Access 1.0 An Implementer’s Draft is a stable version of a specification providing intellectual […]