Skip to content

Commit

Permalink
fix: renamed metadata in verification key validation
Browse files Browse the repository at this point in the history
  • Loading branch information
Oliver Terbu authored and Oliver Terbu committed Nov 29, 2023
1 parent 5cb8289 commit 50000a6
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions draft-ietf-oauth-sd-jwt-vc.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -326,8 +326,8 @@ specification.
A recipient of an SD-JWT VC MUST apply the following rules to validate that the public
verification key for the Issuer-signed JWT corresponds to the `iss` value:

- JWT Issuer Metadata: If a recipient supports JWT Issuer Metadata and if the `iss` value contains an HTTPS URI, the recipient MUST
obtain the public key using JWT Issuer Metadata as defined in (#jwt-vc-issuer-metadata).
- JWT VC Issuer Metadata: If a recipient supports JWT VC Issuer Metadata and if the `iss` value contains an HTTPS URI, the recipient MUST
obtain the public key using JWT VC Issuer Metadata as defined in (#jwt-vc-issuer-metadata).
- X.509 Certificates: If the recipient supports X.509 Certificates, the recipient MUST obtain the public key from the leaf X.509 certificate defined by the `x5c` JWT header parameters of the Issuer-signed JWT and validate the X.509
certificate chain in the following cases:
- If the `iss` value contains a DNS name encoded as a URI using the DNS URI scheme [@RFC4501], the DNS name MUST match a `dNSName` Subject Alternative Name (SAN) [@RFC5280] entry of the leaf certificate.
Expand Down

0 comments on commit 50000a6

Please sign in to comment.