Closed hugoib closed 2 months ago
@francis-pouatcha I have gone through the keycloack oid4vc issuance implementation, I noticed that we've default the value of the nbf
claim to iat
but we've not added the iat claim/value set in our rootNode.
I will like to cease this opportunity to contribute to keycloack.
// Get the issuance date from the credential. Since nbf is mandatory, we set it to the current time if not
// provided
long iat = Optional.ofNullable(verifiableCredential.getIssuanceDate())
.map(issuanceDate -> issuanceDate.toInstant().getEpochSecond())
.orElse((long) timeProvider.currentTimeSeconds());
rootNode.put(NOT_BEFORE_CLAIM, iat);
Field is not mandatory, was removed with:
We cannot merge it yet. We'll send another PR to Keycloak.
For the demo, the following change was made: