Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resource Metadata

2024-04-03 Thread Brian Campbell
On Wed, Apr 3, 2024 at 9:52 AM Michael Jones wrote: > In October 2023, we added this text describing signing resource responses: > > > > These values may be used by other specifications, such as the jwks_uri used > to publish public keys the resource server uses to sign resource responses, > as d

Re: [OAUTH-WG] Type Metadata for SD-JWT VC

2024-04-03 Thread Jacob Ward
Hi Daniel, I'm not sure anyone has published a draft yet, but given that there is a draft for SD-CWT I wouldn't be surprised if SD-CWT VC appears at some point. With that in mind, has there been any discussion on having an encoding-agnostic specification of this metadata, rather than JSON specific

Re: [OAUTH-WG] Transaction Tokens issuance in the absence of incoming token

2024-04-03 Thread Joseph Salowey
Hi Atul, I'm just starting to review the transaction tokens draft and have only a minimal understanding of the token exchange document at this point so I'm lacking a little background, but I have a few comments and questions below. On Fri, Mar 29, 2024 at 10:39 AM Atul Tulshibagwale wrote: > Hi

Re: [OAUTH-WG] WGLC for OAuth 2.0 Protected Resource Metadata

2024-04-03 Thread Michael Jones
In October 2023, we added this text describing signing resource responses: These values may be used by other specifications, such as the jwks_uri used to publish public keys the resource server uses to sign resource responses, as described in Section 5.6.2 of [FAPI.MessageSigning

Re: [OAUTH-WG] Type Metadata for SD-JWT VC

2024-04-03 Thread Tom Jones
So now we are proposing types of types of types of data elements. I feel really bad about this as I introduced the first semantic tag into EDI back in the 1980s. I can't believe it has come to this. I can't believe that anyone imagines giving this sort of specification to different programmers and

[OAUTH-WG] Type Metadata for SD-JWT VC

2024-04-03 Thread Daniel Fett
Hi all, as discussed during IETF 119, we would like to introduce what we call Type Metadata to SD-JWT VC. For a bit of context, the intention is to provide a mechanism to provide information about credential types (e.g., a JSON schema, display/rendering information, a name and description to