Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix issues with Credential Response Encryption. #203

Merged
merged 3 commits into from
Aug 23, 2024
Merged

Fix issues with Credential Response Encryption. #203

merged 3 commits into from
Aug 23, 2024

Conversation

dzarras
Copy link
Contributor

@dzarras dzarras commented Aug 23, 2024
edited
Loading

  1. RequestedResponseEncryption.Required now accepts JWK with keyUse null as well. When keyUse is null, the JWK can be used for all purposes, including encryption.
  2. Properly verify during issuance that RequestedResponseEncryption is supported by the issuer's configured CredentialResponseEncryption. Previously when CredentialResponseEncryption was set to Required, but the CredentialRequestTO contained no CredentialResponseEncryptionTO, the issuance would continue and an unencrypted credential would be issued, even though the issuer was configured to require encryption.

Closes #204

@dzarras
Fix issues with Credential Response Encryption.
903c30c 
1. RequestedResponseEncryption.Required now accepts JWK with keyUse null as well. When keyUse is null, the JWK can be used for all purposes, including encryption.
2. Properly verify during issuance that RequestedResponseEncryption is supported by the issuers configured CredentialResponseEncryption. Previously when CredentialResponseEncryption was set to Required, but the CredentialRequestTO contained no CredentialResponseEncryptionTO, the issuance would continue and an unencrypted credential would be issued, even though the issuer was configured to require encryption.
@dzarras dzarras added the bug Something isn't working label Aug 23, 2024
@dzarras dzarras requested a review from a team as a code owner August 23, 2024 07:44
@dzarras dzarras merged commit dc31e67 into eu-digital-identity-wallet:main Aug 23, 2024
3 checks passed
@dzarras dzarras deleted the fix/credential-response-encryption branch August 23, 2024 09:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@babisRoutis babisRoutis babisRoutis left review comments

Assignees

@babisRoutis babisRoutis

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Issues with Credential Response Encryption
2 participants
@dzarras @babisRoutis