Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

A possible flow similar to hybrid grant #287

Open
patatoid opened this issue Oct 22, 2024 · 0 comments
Open

A possible flow similar to hybrid grant #287

patatoid opened this issue Oct 22, 2024 · 0 comments
Labels
idea

Comments

@patatoid
Copy link

patatoid commented Oct 22, 2024
edited
Loading

Throughout the works in the OIDF GAIN PoC WG, I came to the idea that obtaining an access token along with the verifiable presentation can be an useful use case in the context of decentralized identity. The point of the design would be to have a code vp_token or token vp_token response type to request both access and identity information in the same flow.

One of the missing parts would a parameter here called relying_party_redirect_uri that would help the relying party to trigger an OID4VP flow from the authorization server and get a response with the access_token and the vp_token. That would help to have the verifier uncoupled from the application that requires the identity information.

I drafted the following sequence diagram and a working proof of concept (malach-it/boruta-server#66) that showcase how it would look like.

hybrid flow - token vp_token

I raised this issue to gather feedback about the concept and know if I am mistaken somewhere.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
idea
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@patatoid @Sakurann