APrian
APrian
Section 7 states that "_The Client can request issuance of a Credential of a certain type multiple times, e.g., to associate the Credential with different public keys/Decentralized Identifiers (DIDs) or...
Having this endpoint unprotected is not a good idea: - If the Issuer returns the same nonce every time this makes the nonce publicly available to anyone, which makes it...
Clause 8.2 (Response Mode "direct_post") states that > If the Response URI has successfully processed the Authorization Response or Authorization Error Response, it MUST respond with an HTTP status code...
Clause [8.4. ](https://openid.net/specs/openid-4-verifiable-presentations-1_0-24.html#section-8.4)[Transaction Data](https://openid.net/specs/openid-4-verifiable-presentations-1_0-24.html#name-transaction-data) states: "If the wallet does not support transaction_data parameter, it MUST return an error." Clarify what is the error that needs to be returned when `transaction_data...
Clause 4.1 states : "Both sending Credential Offer same-device and cross-device is supported." Is this a statement? A requirement? A requirement for whom?
Clause 4 states : "Both Wallet initiated and Issuer initiated issuance is supported." Is this a statement? A requirement? A requirement for whom?