OpenID4VCI icon indicating copy to clipboard operation
OpenID4VCI copied to clipboard
verified publisher icon openid

Redundant note in token response (section 6.2)

Open lalc opened this issue 1 year ago • 2 comments

Spec reference: https://openid.net/specs/openid-4-verifiable-credential-issuance-1_0.html#section-6.2

In the successful token response scenario, if you use scope in the authorization request (5.1.2 scenario), the token response will not contain the authorization details or the credential identifiers.

In this scenario, the note "Credential Instance identifier(s) cannot be used when the scope parameter is used in the Authorization Request to request issuance of a Credential" is misleading and unnecessary. Perhaps it should be mentioned only in the credential request chapter.

lalc avatar Jul 15 '24 12:07 lalc

I understand that it might sound redundant, but we actually added this note, because implementer asked for this clarification, and I am inclined to keep it..?

cc @paulbastian

Sakurann avatar Jul 18 '24 14:07 Sakurann

I would favour to keep it, the fact that scopes and authorisation_details are different flows seems not obvious to newcomers, at the same time credential_identifiers is a particular feature that enables certain things that scopes are not able to do.

paulbastian avatar Jul 25 '24 19:07 paulbastian

will close in a week, unless strong objections

Sakurann avatar Oct 28 '24 20:10 Sakurann

no objections so closing as per Kristina's previous comment.

jogu avatar Nov 27 '24 08:11 jogu