c_nonce and jwt proof #188

peppelinux · 2024-01-09T21:03:34Z

in the issuance flow we use c_nonce and jwt proof without a proper definition of them

for instance, the c_nonce is a String containing a nonce to be used when creating a proof of possession of the key proof (see Section 7.2). When received, the Wallet MUST use this nonce value for its subsequent requests until the Credential Issuer provides a fresh nonce.

we have a quick definition here https://github.com/italia/eudi-wallet-it-docs/blob/versione-corrente/docs/en/pid-eaa-issuance.rst#token-response

we could imrpove this by giving more impl guidance about how this nonce is produces and how it can be used/verified with the jwt proof

peppelinux · 2024-01-15T09:45:56Z

scope
why we use c_nonce and why in italy we bind dpop with jwt proof

peppelinux added issuance editorial labels Jan 9, 2024

peppelinux added this to the 0.6.0 milestone Jan 9, 2024

peppelinux assigned asharif1990 and fmarino-ipzs Jan 9, 2024

peppelinux added this to EUDI Wallet IT Technical Specifications Jan 9, 2024

peppelinux moved this to Todo in EUDI Wallet IT Technical Specifications Jan 9, 2024

peppelinux assigned giadas Jan 9, 2024

peppelinux moved this from Todo to In Progress in EUDI Wallet IT Technical Specifications Jan 9, 2024

fmarino-ipzs mentioned this issue Feb 12, 2024

Issuance: c_nonce and jwt proof clarification #208

Merged

5 tasks

peppelinux closed this as completed in #208 Feb 15, 2024

github-project-automation bot moved this from In Progress to Done in EUDI Wallet IT Technical Specifications Feb 15, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

c_nonce and jwt proof #188

c_nonce and jwt proof #188

peppelinux commented Jan 9, 2024 •

edited

Loading

peppelinux commented Jan 15, 2024

c_nonce and jwt proof #188

c_nonce and jwt proof #188

Comments

peppelinux commented Jan 9, 2024 • edited Loading

peppelinux commented Jan 15, 2024

peppelinux commented Jan 9, 2024 •

edited

Loading