- edited description
Requesting different trust frameworks for different claims
Issue #1187
closed
So that as RP I could request different verification and evidences types for different claims. The current schema does not allows that, therefore the suggestion is to make changes to accommodate that use case. As an example, an RP requires high level of assurance based on eIDAS trust framework for your name and birthdate, however it’s ok having substantial for your address.
{
"userinfo": {
"verified_claims": [
{
"verification": {
"trust_framework": {
"value" : "eidas_ial_high"
}
},
"claims": {
"given_name": null,
"family_name": null,
"birthdate": null
}
},
{
"verification": {
"trust_framework": {
"values" : [ "eidas_ial_substancial", "eidas_ial_high"]
}
"time": null
},
"claims": {
"address": null
}
}
]
}
}
I believe that the currently defined structure for the response, can accommodate this without further changes, since it supports multiple verified_claims as an array.
Comments (11)
-
reporter
-
reporter
- edited description
Fix structure
-
We might want to make “trust_framework” an array as some RP can be satisfied with either de_aml or eidas_ial_substantial.
-
reporter
Hi Kosuke, It could be an interesting feature, however I believe that should be considered as another independent issue to this one.
-
reporter
Actually, you are absolutely right Kosuke, according to the current definition for trust_frameworks under verification request, it should be possible to pass on or more trust frameworks just by using value/values elements. I have modified the above example to reflect that possibility, which I believe is already available with current specs.
-
reporter
- edited description
Modified the way trust frameworks could be specified.
-
reporter
- edited description
valid json
-
reporter
- changed status to closed
Closes
#1187: Requesting different trust frameworks for different claims→ <<cset 9e5ff9be00a7>>
-
- changed status to open
-
- changed milestone to Implementer's Draft 3
-
- changed status to closed
Merged in albertopulido/multiframework_claims (pull request #26)
Closes
#1187: Requesting different trust frameworks for different claimsApproved-by: Torsten Lodderstedt Approved-by: Mark Haine Approved-by: Taylor Ongaro
→ <<cset 917c43b587a6>>
- Log in to comment
- Assignee
- –
- Type
- Priority
- Status
- closed
- Component
- Assurance
- Milestone
- Implementer's Draft 3
- Votes
- 0
- Watchers
- 1
