Re: [webauthn] Empty strings are not valid RFC 8266 Nicknames (#2068) from Michael B. Jones via GitHub on 2024-05-20 (public-webauthn@w3.org from May 2024)

From: Michael B. Jones via GitHub <sysbot+gh@w3.org>
Date: Mon, 20 May 2024 07:26:13 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-2119839162-1716189971-sysbot+gh@w3.org>

OpenID Connect also forbids empty strings as claim values in an attempt to preempt some interop problems.  There, https://openid.net/specs/openid-connect-core-1_0.html#UserInfoResponse says:
> If a Claim is not returned, that Claim Name SHOULD be omitted from the JSON object representing the Claims; it SHOULD NOT be present with a null or empty string value.

We should do likewise.

-- 
GitHub Notification of comment by selfissued
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/2068#issuecomment-2119839162 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Monday, 20 May 2024 07:26:14 UTC