Closed TakahikoKawasaki closed 1 year ago
bc-pi
commented
1 year ago I'd suggested this somewhat in passing as part of #169. But it kinda got lost in the noise of that one. I still think it's worthwhile, however. Unless my esteemed co-editors have strong/good objections, I'd like to make this change.
danielfett
commented
1 year ago Works for me!
danielfett
commented
1 year ago Please adapt the implementation as well or assign this issue to me so that I remember to do that.
I suspect that only these lines need to be adapted for verification:
if DIGEST_ALG_KEY not in self._sd_jwt_payload:
raise ValueError("Missing hash algorithm")
If the SD-JWT specification specifies
sha-256as the default hash algorithm, the_sd_algclaim can be omitted and implementations can be a little simpler and more interoperable.