Skip to content

Commit

Permalink
Apply Christian's further corrections to section numbers
Browse files Browse the repository at this point in the history 
Also fix date for -24 of VP to match the published doc.
  • Loading branch information
@jogu
jogu committed Jan 28, 2025
1 parent 494f888 commit 52061f4
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions openid4vc-high-assurance-interoperability-profile-1_0.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -162,7 +162,7 @@ Requirements for both the Wallet and the Verifier:

* As a way to invoke the Wallet, at least a custom URL scheme `haip://` MUST be supported. Implementations MAY support other ways to invoke the wallets as agreed by trust frameworks/ecosystems/jurisdictions, not limited to using other custom URL schemes.
* Response type MUST be `vp_token`.
* Response mode MUST be `direct_post.jwt`. The Verifier MUST return `redirect_uri` in response to the HTTP POST request from the Wallet, where the Wallet redirects the User to, as defined in Section 7.2 of [@!OIDF.OID4VP]. Implementation considerations for the response mode `direct_post.jwt` are given in Section 12.4 of [@!OIDF.OID4VP].
* Response mode MUST be `direct_post.jwt`. The Verifier MUST return `redirect_uri` in response to the HTTP POST request from the Wallet, where the Wallet redirects the User to, as defined in Section 8.2 of [@!OIDF.OID4VP]. Implementation considerations for the response mode `direct_post.jwt` are given in Section 14.3 of [@!OIDF.OID4VP].
* Authorization Request MUST be sent using the `request_uri` parameter as defined in JWT-Secured Authorization Request (JAR) [@!RFC9101].
* The Client Identifier Scheme as introduced in Section 5.10 of [@!OIDF.OID4VP] MUST be either `x509_san_dns` or `verifier_attestation`. The Wallet MUST support both. The Verifier MUST support at least one.
* To obtain the issuer's public key for verification, verifiers MUST support Web-based key resolution, as defined in Section 5 of [@!I-D.ietf-oauth-sd-jwt-vc]. The JOSE header `kid` MUST be used to identify the respective key.
Expand Down Expand Up @@ -308,7 +308,7 @@ Note: When using this profile with other cryptosuites, it is recommended to be e
<author initials="T." surname="Looker" fullname="Tobias Looker">
<organization>Mattr</organization>
</author>
<date day="23" month="January" year="2025"/>
<date day="27" month="January" year="2025"/>
</front>
</reference>

Expand Down

0 comments on commit 52061f4

Please sign in to comment.