openid: same sub for all clients
This commit is contained in:
parent
2f32818a72
commit
228b86f5a3
1 changed files with 1 additions and 6 deletions
|
|
@ -24,12 +24,7 @@ pub fn configuration(base_url: &str) -> Result<Value, Error> {
|
|||
JsonWebKeySetUrl::from_url(jwks_uri),
|
||||
// Supported response types (flows).
|
||||
crate::supported_response_types(),
|
||||
// For user privacy, the Pairwise subject identifier type is preferred. This prevents
|
||||
// distinct relying parties (clients) from knowing whether their users represent the same
|
||||
// real identities. This identifier type is only useful for relying parties that don't
|
||||
// receive the 'email', 'profile' or other personally-identifying scopes.
|
||||
// The Public subject identifier type is also supported.
|
||||
vec![CoreSubjectIdentifierType::Pairwise],
|
||||
vec![CoreSubjectIdentifierType::Public],
|
||||
vec![CoreJwsSigningAlgorithm::RsaSsaPssSha256],
|
||||
// OpenID Connect Providers may supply custom metadata by providing a struct that
|
||||
// implements the AdditionalProviderMetadata trait. This requires manually using the
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue