Details
-
Change Request
-
Resolution: Not Persuasive with Modification
-
Highest
-
SMART on FHIR (FHIR)
-
2.0.0
-
FHIR Infrastructure
-
STU
-
Overview
-
1.6.1.1
-
-
Gino Canessa / Christiaan Knaap: 8-0-1
-
Enhancement
-
Compatible, substantive
Description
"aud" is normally not a claim in an authorization request. 'resource' is usually used (see https://tools.ietf.org/html/rfc8707) to point to the resource server for which an access token is requested.
The introspect does have an 'aud' claim, that points to the same server. One does not want to mandate this. Implementations should be free to choose what to place in audience.
Suggest to replace aud with 'resource',
(aud is uppercase in the spec).
Attachments
Issue Links
- is voted on by
-
BALLOT-17329 Negative - Bas van den Heuvel : 2021-May-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Closed
-
BALLOT-17713 Negative - Ana Kostadinovska : 2021-May-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Closed
-
BALLOT-17775 Negative - Ricardo Quintano : 2021-May-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Closed
-
BALLOT-17819 Negative - Timon Grob : 2021-May-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Closed
-
BALLOT-17859 Negative - Chris Melo : 2021-May-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Closed
-
BALLOT-17918 Negative - Javier Espina : 2021-May-HL7 FHIR IG SMART APP LAUNCH R2 STU
- Closed