Replace `unifiedResourceName` with `uniformResourceIdentifier`

oauth-wg / oauth-sd-jwt-vc

draft-terbu-sd-jwt-vc

Creative Commons Zero v1.0 Universal

20 stars 12 forks source link

Replace `unifiedResourceName` with `uniformResourceIdentifier` #182

Closed awoie closed 11 months ago

awoie commented 1 year ago

The rules to obtain the verification key from X.509 should be changed to use the uniformResourceIdentifier from the SAN extension instead of the unifiedResourceName (which does not exist).

Furthermore, since uniformResourceIdentifier can potentially start with a https scheme, the JWT Issuer Metadata rule should only be enforced if no x5* JWT header was set.

awoie commented 1 year ago

We also need to add x5t#S256 JWT header.

awoie commented 12 months ago

Fixed by #183