Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OAuth 2.0 Protected Resource Metadata for the Credential Issuer? #420

Open
babisRoutis opened this issue Nov 26, 2024 · 0 comments
Open

OAuth 2.0 Protected Resource Metadata for the Credential Issuer? #420

babisRoutis opened this issue Nov 26, 2024 · 0 comments
Milestone
1.1

Comments

@babisRoutis
Copy link
Contributor

I was wondering if it would make sense to state optionally that credential issuer may advertise OAuth 2.0 Protected Resource Metadata, in addition to credential issuer metadata.

  • In VCI scope is an optional attribute of a credential_configuration. If not provided, the wallet has a single - implied -option to use authorization_details, in authorization code grant. Resource metadata would allow the issuer to explicitly define this.
  • In VCI there is no option for the credential issuer to express DPoP requirements (required or not, supporter algorithms, DPoP Nonce etc).
@Sakurann Sakurann added this to the 1.1 milestone Jan 24, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
1.1
Development

No branches or pull requests
2 participants
@Sakurann @babisRoutis