search

italia / eudi-wallet-it-docs

Italian EUDI Wallet Technical Specifications
Creative Commons Zero v1.0 Universal
56 stars 20 forks source link

Relying Party Remote Presentation alignments with standards #400

Closed peppelinux closed 2 months ago

peppelinux commented 2 months ago

This PR

presentation_submission further clarifications

According to feedbacks ferom the implementers, further clarification abou how to match and decode correctly several credential contained within the vp_token array are included

Removed client_metadata_uri clarification section

since it is not supproted anymore in openid4vp

Added clarifications when client_metadata is present

It can be used along with openid federation and for ephemeral cryptographic keys provided by RP. This might represent a vulnerability, further checks must be required.

Fixes https://github.com/italia/eudi-wallet-it-docs/issues/376

auth flow fixed for the redirect_uri

RP crossdevice flow without redirect_uri. Fixes https://github.com/italia/eudi-wallet-it-docs/issues/386 The redirect_uri MUST NOT be provided when the cross device flow is used.

further clarification about which key to use for singin a request object

Fixes https://github.com/italia/eudi-wallet-it-docs/issues/292

Zicchio commented 2 months ago

Universal Links will not used anymore […]

HAIP is not receiving so much attention […] For this reason openid: is used.

FYI in the actual changes you used openid4vp, not openid.