Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

vp_token definition referencing OpenID4VCI #256

Open
martijnharing opened this issue Sep 10, 2024 · 4 comments · May be fixed by #306
Open

vp_token definition referencing OpenID4VCI #256

martijnharing opened this issue Sep 10, 2024 · 4 comments · May be fixed by #306
Labels
editorial ready-for-PR
Milestone
Final 1.0

Comments

@martijnharing
Copy link

The vp_token definition requires that the OpenID4VCI specification is followed for some of the details of the verifiable presentation content. This has a few issues. :

  • It is strange that an issuance specification defines the details for how to do presentation, instead of specifying the presentation details in the presentation specification.
  • For some document formats, both the VCI spec as well Appendix B of OpenID4VP have requirements for the credential response. The current text explicitly says that OpenID4VCI must be followed if it specifies something for the credential response, this seems to be a contradiction to also having credential response requirements in OpenID4VP.
  • For MSO_mdoc the Credential Response requirements in the OpenID4VCI spec do not make sense in the context of OpenID4VP, we should make it clear what exactly is meant with “If Appendix A of [OpenID.VCI] defines a rule for encoding the respective Credential format in the Credential Response, this rules MUST also be followed when encoding Credentials of this format in the vp_token response parameter.”

Can we remove the reference / mandate of using the OpenID4VCI specification for credential response encoding requirements?
@jogu
Copy link
Collaborator

jogu commented Sep 10, 2024

I agree this isn't the best.

I think removing the reference to VCI here and adding definitions for the contents of vp_token in Appendix B would be good, as Martijn notes this has already been done in the mdl section in Appendix B.

@Sakurann
Copy link
Collaborator

super weird that it still points to VCI. it should point to VP Annex B and I thought we have done a PR fixing it, but apparently not. If you could do a small PR fixing this to annex B in VP, happy to approve and merge

@Sakurann Sakurann added this to the Final 1.0 milestone Sep 26, 2024
@c2bo
Copy link
Member

c2bo commented Sep 27, 2024

A bit off-topic, but somewhat related thing that I noticed when reading the Annex specifying the format specific parts: We have a Section in VCI VC signed as a JWT, Using JSON-LD which seems to not have a counterpart in VP?

On-topic: Yep that looks like something that should be fixed

@Sakurann
Copy link
Collaborator

who could do a PR?

@c2bo c2bo linked a pull request Nov 5, 2024 that will close this issue
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
editorial ready-for-PR
Projects
None yet
Milestone
Final 1.0
Development

Successfully merging a pull request may close this issue.

change credential format references from the appendix of openid4vci to openid4vp openid/OpenID4VP
4 participants
@jogu @c2bo @Sakurann @martijnharing