Skip to content

[proposal] support for openid4vci-proof+jwt #323

New issue
New issue
Open
Open
[proposal] support for openid4vci-proof+jwt#323
Labels
backlogbugSomething isn't workingenhancementNew feature or requestfeaturepinneda known issue or feature that should not be closed by bots
@arnemileswinter

Description

@arnemileswinter
arnemileswinter
opened on May 9, 2025

i want to mention that chances are that i am confusing things here, it is also pretty late at night 😃

Is your feature request related to a problem? Please describe.
It appears impossible to verify openid4vci-proof+jwt that are presented to me during an openid4vc credential request as per https://openid.net/specs/openid-4-verifiable-credential-issuance-1_0.html#name-proof-types

these docs mark iss and client_id as optional, while did-jwt demands them as required. simply injecting these values would break the signature though.

Describe the solution you'd like
the did is in the token header's kid attribute, not as an iss in the payload nor client_id, therefore an error is thrown (like in #273 )

Describe alternatives you've considered
do it without the library

Additional context

Image

Metadata

Metadata

Assignees

No one assigned

    Labels

    backlogbugSomething isn't workingenhancementNew feature or requestfeaturepinneda known issue or feature that should not be closed by bots

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions