Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Relying Party Remote Presentation alignments with standards #400

Merged
merged 19 commits into from
Sep 18, 2024
Merged

Relying Party Remote Presentation alignments with standards #400

merged 19 commits into from
Sep 18, 2024

Conversation

peppelinux
Copy link
Member

@peppelinux peppelinux commented Sep 6, 2024
edited
Loading

This PR

presentation_submission further clarifications

According to feedbacks ferom the implementers, further clarification abou how to match and decode correctly several credential contained within the vp_token array are included

Removed client_metadata_uri clarification section

since it is not supproted anymore in openid4vp

Added clarifications when client_metadata is present

It can be used along with openid federation and for ephemeral cryptographic keys provided by RP.
This might represent a vulnerability, further checks must be required.

Fixes #376

auth flow fixed for the redirect_uri

RP crossdevice flow without redirect_uri. Fixes #386
The redirect_uri MUST NOT be provided when the cross device flow is used.

further clarification about which key to use for singin a request object

Fixes #292

@peppelinux
fix!: alignments according to breaking changes introduced by openid4v…
1f5b874 
…ci I-D
@peppelinux
Merge branch 'versione-corrente' of https://github.com/italia/eidas-i…
0aca337 
…t-wallet-docs into versione-corrente
@peppelinux
Merge branch 'versione-corrente' of https://github.com/italia/eidas-i…
4da2a73 
…t-wallet-docs into versione-corrente
@peppelinux
Merge branch 'versione-corrente' of https://github.com/italia/eidas-i…
70ae3cd 
…t-wallet-docs into versione-corrente
@peppelinux
Merge branch 'versione-corrente' of https://github.com/italia/eidas-i…
46db71b 
…t-wallet-docs into versione-corrente
@peppelinux
Merge branch 'versione-corrente' of https://github.com/italia/eidas-i…
765afc3 
…t-wallet-docs into versione-corrente
@peppelinux
Merge branch 'versione-corrente' of https://github.com/italia/eidas-i…
59ff263 
…t-wallet-docs into versione-corrente
@peppelinux
Merge branch 'versione-corrente' of https://github.com/italia/eidas-i…
f985779 
…t-wallet-docs into versione-corrente
@peppelinux
Merge branch 'versione-corrente' of https://github.com/italia/eidas-i…
026deca 
…t-wallet-docs into versione-corrente
@peppelinux
Merge branch 'versione-corrente' of https://github.com/italia/eidas-i…
00a5a1a 
…t-wallet-docs into versione-corrente
@peppelinux
improved check in RP. Fixes #292
6160f8a
@peppelinux
breaking-change: universal links and haip are not used, openid: is us…
4ab39d3 
…ed. This fixes #383
@peppelinux
fix: RP crossdevice flow without redirect_uri. Fixes #386
2ae9d8c
@peppelinux
fix: presentation_submission further clarifications. Removed client_m…
73daa18 
…etadata_uri and added clarifications when client_metadata can be used along with openid federation and for ephemeral cryptographic keys provided by RP. Fixes #376
@peppelinux peppelinux added this to the 0.8.1 milestone Sep 6, 2024
peppelinux
peppelinux commented Sep 6, 2024
View reviewed changes
docs/en/remote-flow.rst Outdated Show resolved Hide resolved
peppelinux
peppelinux commented Sep 6, 2024
View reviewed changes
docs/en/remote-flow.rst Outdated Show resolved Hide resolved
Zicchio
Zicchio reviewed Sep 9, 2024
View reviewed changes
docs/en/remote-flow.rst Outdated Show resolved Hide resolved
@Zicchio
Copy link

Zicchio commented Sep 9, 2024

Universal Links will not used anymore […]

HAIP is not receiving so much attention […] For this reason openid: is used.

FYI in the actual changes you used openid4vp, not openid.

peppelinux
peppelinux commented Sep 9, 2024
View reviewed changes
docs/en/remote-flow.rst Outdated Show resolved Hide resolved
peppelinux
peppelinux commented Sep 9, 2024
View reviewed changes
docs/en/remote-flow.rst Outdated Show resolved Hide resolved
grausof
grausof approved these changes Sep 11, 2024
View reviewed changes
Copy link
Collaborator

@grausof grausof left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, even if it seems that it is necessary to support HYPE too.

For remote flows in POTENTIAL, the ARF states that OpenID4VP and OpenID4VCI, HAIP and
SD-JWT-VC protocols must be supported (see ARF v1.4, p.17f.).

@peppelinux peppelinux added standardization Topics related to the standardization process in IETF/OIDF breaking change labels Sep 18, 2024
@peppelinux peppelinux mentioned this pull request Sep 18, 2024
Draft
@italia italia deleted a comment from fmarino-ipzs Sep 18, 2024
peppelinux
peppelinux commented Sep 18, 2024
View reviewed changes
docs/en/remote-flow.rst Outdated Show resolved Hide resolved
@peppelinux peppelinux merged commit 4ac3753 into versione-corrente Sep 18, 2024
8 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Zicchio Zicchio Zicchio left review comments

@grausof grausof grausof approved these changes

@fmarino-ipzs fmarino-ipzs fmarino-ipzs approved these changes

@m-basili m-basili Awaiting requested review from m-basili

Assignees
No one assigned
Labels
breaking change standardization Topics related to the standardization process in IETF/OIDF
Projects
EUDI Wallet IT Technical Specifications
Status: Done
Milestone
0.8.1
4 participants
@peppelinux @Zicchio @grausof @fmarino-ipzs