From ecc58e88604aeedb3be5dc7785c0878d38082875 Mon Sep 17 00:00:00 2001 From: grausof Date: Tue, 4 Jul 2023 17:13:29 +0200 Subject: [PATCH] Add nonce --- docs/en/wallet-instance-attestation.rst | 61 +++++++++++++------------ 1 file changed, 31 insertions(+), 30 deletions(-) diff --git a/docs/en/wallet-instance-attestation.rst b/docs/en/wallet-instance-attestation.rst index 06a3be6dd..883c3deb6 100644 --- a/docs/en/wallet-instance-attestation.rst +++ b/docs/en/wallet-instance-attestation.rst @@ -359,35 +359,35 @@ Header Payload ^^^^^^^ -+---------+---------------------------------------+ -| **key** | **value** | -+---------+---------------------------------------+ -|| iss || The thumbprint | -|| || of the JWK of the Wallet Instance | -|| || for which the attestation is | -|| || being requested. | -+---------+---------------------------------------+ -|| sub || The public url of the Wallet | -|| || Provider | -+---------+---------------------------------------+ -|| jti || Unique identifier of the request. | -|| || This parameter will be used to | -|| || avoid replay attacks. | -+---------+---------------------------------------+ -|| type || String. It must be set to | -|| || ``WalletInstanceAttestationRequest`` | -+---------+---------------------------------------+ -|| cnf || This parameter will contain the | -|| || configuration of the Wallet | -|| || Instance in JSON format. Among | -|| || the mandatory attributes there | -|| || will be the jwk parameter | -|| || containing the public key of the | -|| || Wallet Instance. It will also | -|| || contain all the information | -|| || useful for the Wallet Provider | -|| || to verify that the app is genuine. | -+---------+---------------------------------------+ ++---------+------------------------------------------+ +| **key** | **value** | ++---------+------------------------------------------+ +|| iss || The thumbprint | +|| || of the JWK of the Wallet Instance | +|| || for which the attestation is | +|| || being requested. | ++---------+------------------------------------------+ +|| sub || The public url of the Wallet | +|| || Provider | ++---------+------------------------------------------+ +|| jti || Unique identifier of the request. | +|| || This parameter will be used to | +|| || avoid replay attacks. | ++---------+------------------------------------------+ +|| type || String. It must be set to | +|| || ``WalletInstanceAttestationRequest`` | ++---------+------------------------------------------+ +|| cnf || This parameter will contain the | +|| || configuration of the Wallet | +|| || Instance in JSON format. Among | +|| || the mandatory attributes there | +|| || will be the jwk parameter | +|| || containing the public key of the | +|| || Wallet Instance and nonce. It will also | +|| || contain all the information | +|| || useful for the Wallet Provider | +|| || to verify that the app is genuine. | ++---------+------------------------------------------+ Below a non-normative example of the Wallet Instance Attestation request where the decoded JWS headers and payload are separated by a comma: @@ -412,7 +412,8 @@ request where the decoded JWS headers and payload are separated by a comma: "x": "4HNptI-xr2pjyRJKGMnz4WmdnQD_uJSq4R95Nj98b44", "y": "LIZnSB39vFJhYgS3k7jXE4r3-CoGFQwZtPBIRqpNlrg", "kid": "vbeXJksM45xphtANnCiG6mCyuU4jfGNzopGuKvogg9c" - } + }, + "nonce": "....." }, "iat": 1686645115, "exp": 1686652315