Differences with OIDC Federation¶
This section lists the differences between the official standard and the SPID / CIE implementation.
Client Registration¶
SPID and CIE support only automatic_client_registration. The explicit client registration flow is not supported.
Trust Mark¶
In OIDC Federation international specifications the adoption of the Trust Marks is not mandatory. Rather, in the SPID and CIE Federation it is mandatory to expose them. For more details about the reasons why the Trust Marks are required, please see the section Security Considerations.
Unsupported Claims in the Entity Statements¶
Since SPID and CIE don't need any additional claim of the Federation scope, they don't need the claim crit. Likewise, the claims aud, naming_constraints, policy_language_crit and trust_anchor_id are not supported. Any possible presence of these claims does not have implications, they are simply ignored until possible future communications about their regulation.