Stream: bulk data
Topic: Validation logic
Josh Mandel (Sep 30 2018 at 14:22):
Based on discussion just now, we realized that our validation steps say to match keys based on "kid" and "alg", but this should really be "kid" and "kty", since a given key can be used with >1 signing algorithm. The important thing is to match based on the id, and ensure we know whether it's an RSA vs EC key (which "kty" tells us). I've proposed https://github.com/smart-on-fhir/fhir-bulk-data-docs/pull/77 to correct this (just a tiny spot-fix).
Michele Mottini (Sep 30 2018 at 14:25):
...so a JWK with only "kty", "kid", "n" and "e" is (would be) valid, correct?
Josh Mandel (Sep 30 2018 at 14:27):
It would, yes!
Dennis Patterson (Sep 30 2018 at 15:22):
Made this change in the Cerner server
Last updated: Apr 12 2022 at 19:14 UTC
