Skip to content

Define handling for encrypted actor tokens #3457

Open
Open
Define handling for encrypted actor tokens#3457
Labels
9.x Major ReleaseIssues for the next major version 9.xFundamentalsInternalIndicates issue was opened by the IdentityModel team
Milestone
9.x Major Release
@westin-m

Description

@westin-m
westin-m
opened on Apr 24, 2026

ValidateToken.Internal.cs:325 — TODO: "what if actor token is encrypted?".

  • Decide semantics: decrypt and validate recursively, reject outright, or make configurable via ValidationParameters
  • Implement the decision in the experimental pipeline
  • Add tests covering JWE nested inside an outer JWS's actort claim

Metadata

Metadata

Assignees

No one assigned

    Labels

    9.x Major ReleaseIssues for the next major version 9.xFundamentalsInternalIndicates issue was opened by the IdentityModel team

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions