New endpoint for nonce for OIDC4VCI draft 14 #3181

ThierryThevenet · 2024-12-10T16:26:44Z

need before #3180

For OIDC4VCI draft > =14, the token endpoint does not return a c_nonce. So wallet MUST get the nonce for the key proof of ownership jwt from a new nonce endpoint provided by the issuer. This nonce is used to provide the jwt or ldp_vp proof in the credential request

To get the nonce

get the nonce endpoint URL from the credential issuer metadata : nonce_endpoint:
make a POST to this endpoint

Example:


POST /issuer/nonce HTTP/1.1
Host: talao.co
Content-Length: 0

Response from issuer should be :


HTTP/1.1 200 OK
Content-Type: application/json
Cache-Control: no-store

{
  "c_nonce": "wKI4LT17ac15ES9bw8ac4"
}

use the c_nonce to build the proof of key ownership

If nonce endpoint is not available than raise an error message 'invalid_response' with error_description 'Nonce endpoint is not available'

The text was updated successfully, but these errors were encountered:

ThierryThevenet · 2024-12-10T18:19:11Z

You can test it on all OIDC4VCI draft 13 test with the wallet setup with draft 14.

ThierryThevenet assigned bibash28 Dec 10, 2024

ThierryThevenet added the NO GO label Dec 10, 2024

bibash28 added a commit that referenced this issue Dec 12, 2024

feat: Implement oidc4vci draft 14 #3180 #3181

64dd262

ThierryThevenet closed this as completed Dec 12, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

New endpoint for nonce for OIDC4VCI draft 14 #3181

New endpoint for nonce for OIDC4VCI draft 14 #3181

ThierryThevenet commented Dec 10, 2024 •

edited

Loading

ThierryThevenet commented Dec 10, 2024

New endpoint for nonce for OIDC4VCI draft 14 #3181

New endpoint for nonce for OIDC4VCI draft 14 #3181

Comments

ThierryThevenet commented Dec 10, 2024 • edited Loading

ThierryThevenet commented Dec 10, 2024

ThierryThevenet commented Dec 10, 2024 •

edited

Loading