Unclear what happens if client_id_scheme appears twice

Kristina Yasuda

my understanding has been that client_id_scheme in the verifier metadata is supposed to be the schemes supported by the verifier vs client_id_scheme in the request is supposed to be which one verifier is using in that specific transaction. so i am pretty surprised to see the below definition in the verifier metadata:

client_id_scheme: OPTIONAL. JSON String identifying the Client Identifier scheme. The value range defined by this specification is pre-registered, redirect_uri, entity_id, did. If omitted, the default value is pre-registered.

I would have imagined it is client_id_schemes and is an array.

cc:@Torsten Lodderstedt

2023-07-18T09:57:46+00:00

Comments (2)

Kristina Yasuda
my understanding has been that client_id_scheme in the verifier metadata is supposed to be the schemes supported by the verifier vs client_id_scheme in the request is supposed to be which one verifier is using in that specific transaction. so i am pretty surprised to see the below definition in the verifier metadata:

client_id_scheme: OPTIONAL. JSON String identifying the Client Identifier scheme. The value range defined by this specification is pre-registered, redirect_uri, entity_id, did. If omitted, the default value is pre-registered.

I would have imagined it is client_id_schemes and is an array.

cc:@Torsten Lodderstedt
- 2023-07-18T09:57:46+00:00
Mark Haine
- changed status to resolved
Migrated to GitHub

https://github.com/openid/OpenID4VP
- 2023-09-01T17:32:33+00:00
Log in to comment