LTS, Important: SecurityToken field mandatoryness

International-Data-Spaces-Association / InformationModel

The Information Model of the International Data Spaces implements the IDS reference architecture as an extensible, machine readable and technology independent data model.

Apache License 2.0

66 stars 38 forks source link

LTS, Important: SecurityToken field mandatoryness #444

Open milux opened 3 years ago

milux commented 3 years ago

Currently, the SecurityToken/DAT is defined as a mandatory field for all IDS message classes. This perfectly makes sense for MIME/Multipart and IDS-LDP due to statelessness, but does not make sense for IDSCP2. IDSCP2 handles the DAT (Dynamic Attribute Token) within the protocol itself, and the transfer of it in the serialized message headers creates unnecessary overhead and makes the protocol unnecessarily complicated.

Could we make this field optional?

milux commented 3 years ago

Please assign @milux and @obraunsdorf to this issue, and add tags LTS and High Prio or something, since I cannot do that. Thank you!

JohannesLipp commented 2 years ago

@milux @obraunsdorf is there any update on this? Thank you!

milux commented 2 years ago

@milux @obraunsdorf is there any update on this? Thank you!

Not really, Sebastian asked me to open that issue, we are still awaiting a reply.