From 30fbd506e55d4c992c12bf857455bd0a7b9cc8fc Mon Sep 17 00:00:00 2001 From: Martin Auer Date: Tue, 6 Feb 2024 14:15:19 +0100 Subject: [PATCH] fix: remove audience, and make sure did_methods_supported contains a value Signed-off-by: Timo Glastra --- .../0809-w3c-data-integrity-credential-attachment/README.md | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/features/0809-w3c-data-integrity-credential-attachment/README.md b/features/0809-w3c-data-integrity-credential-attachment/README.md index 69e84b000..3946cdd32 100644 --- a/features/0809-w3c-data-integrity-credential-attachment/README.md +++ b/features/0809-w3c-data-integrity-credential-attachment/README.md @@ -219,7 +219,7 @@ This binding method leverages [DIDComm signed attachments](https://github.com/hy ``` - `algs_supported` - Required. List of strings indicating the Json Web Algorithms supported by the issuer for verifying the signed attachment. The list MUST contain at least one value. The values MUST be a valid algorithm identifier as defined in the [JSON Web Signature and Encryption Algorithms](https://www.iana.org/assignments/jose/jose.xhtml#web-signature-encryption-algorithms) registry. -- `did_methods_supported` - Required. List of strings indicating which did methods are supported by the issuer for binding the credential to the holder. Values should ONLY include the method identifier of the did method. Examples values include `key` or `web`. +- `did_methods_supported` - Required. List of strings indicating which did methods are supported by the issuer for binding the credential to the holder. The list MUST contain at least one value. Values should ONLY include the method identifier of the did method. Examples values include `key` or `web`. - `nonce` - Required. Nonce to be used in the request to prevent replay attacks of the signed attachment. ##### Binding Proof in Request @@ -245,12 +245,10 @@ The attachment MUST be signed by including a signature in the `jws` field of the ```json { "nonce": "", - "aud": "did:key:z6MkwXG2WjeQnNxSoynSGYU8V9j3QzP3JSqhdmkHc6SaVWoT" } ``` - `nonce` - Required. The `nonce` from the `didcomm_signed_attachment` object within `binding_method` from the credential offer -- `aud` - Required. Intended audience of the signed attachment. MUST be the same as the issuer identifier `issuer` or `issuer.id` from the `credential` in the offer. If the `issuer` is not included in the credential in the offer, the `aud` MUST be the same as the did of the recipient did of the DIDComm message containing the request message. **Protected Header**