search

oauth-wg / oauth-sd-jwt-vc

draft-terbu-sd-jwt-vc
Creative Commons Zero v1.0 Universal
20 stars 12 forks source link

Why vct is not selectively disclosable, but vct#integrity is not? #258

Open Sakurann opened 1 month ago

Sakurann commented 1 month ago

Would also be good to add rationale why chosen certain claims are not selectively disclosable.

Sakurann commented 1 month ago

also what about extends and extends#integrity claims?

danielfett commented 1 month ago

Right, vct#integrity should be added/mentioned here: https://drafts.oauth.net/oauth-sd-jwt-vc/draft-ietf-oauth-sd-jwt-vc.html#section-3.2.2.2

extends and extends#integrity are not in the credential, so are not affected.

bc-pi commented 1 month ago

this text is/was about application profiles (like SD-JWT VC) saying what claims the issuer can make selectively disclosable and maybe has text that could serve as inspiration https://www.ietf.org/archive/id/draft-ietf-oauth-selective-disclosure-jwt-12.html#name-selectively-disclosable-val

bc-pi commented 1 month ago

I think I maybe meant for that https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/258#issuecomment-2400607967 to go on #257 but maybe works here too