Draft 03

What's Changed

• Editorial Revision by @asharif1990 in #1
• added Orie as co-author by @peppelinux in #2
• feat: error section and added missing todo in the rationale section by @peppelinux in #10
• Privacy Considerations by @peppelinux in #9
• OCSP stapling consideration added, distinc figures 1 regarding the flow by @peppelinux in #8
• fix: credential hash in the credential_pop by @fmarino-ipzs in #6
• Credential hash and VCI metadata paramenter by @peppelinux in #17
• editorial: intro, less word, same information by @peppelinux in #18
• feat: what is PoP, what it can be by @peppelinux in #12
• editorial: privacy considerations by @peppelinux in #21
• fix: aud normative value by @peppelinux in #24
• normative language in status attestation response and fix response body by @peppelinux in #25
• Cumulative status attestation updates by @SaraConsoliACN in #33
• Revert "Cumulative status attestation updates" by @peppelinux in #34
• Draft name changed by @SaraConsoliACN in #38
• Editorial changes all through the specification by @marinaado in #42
• breaking change: credential_pop is an array by @SaraConsoliACN in #36
• credential_pop typ with status-attestation-request+cwt + huge editorials by @SaraConsoliACN in #37
• fix: status list in offline flows by @peppelinux in #48
• fix: removed all the comparisons with oauth status list by @peppelinux in #51
• feat: added IANA media types for status assertions, status assertion requests and errors by @peppelinux in #54
• Better generalization about the confirmation methods by @SaraConsoliACN in #55
• fix: Requirements by @peppelinux in #58
• fix: missing attestation to assertion replacements this PR resolves several missing definitions by @peppelinux in #59
• Extended status assertion errors table added by @SaraConsoliACN in #53
• fix: Status Assertion and Status Assertion Request headers by @SaraConsoliACN in #56
• Added additional requirement againts the audience of the Status Assertions and their Errors by @peppelinux in #63
• fix: CNF.JWK doesn't necessarly have kid in its members by @peppelinux in #67
• editorial review by @peppelinux in #65
• fix: CWT.cti, editorials and IANA refs by @peppelinux in #76
• Further clarifications about credential validity without status assertions by @peppelinux in #78
• Detailed status assertions by @OR13 in #61
• fix: Credential Issuer metadata not necessarly OpenID4VCI by @peppelinux in #84
• added requirements about not specifying the audience of a status assertion by @peppelinux in #80
• Remove credential status from Status Assertion Errors by @marinaado in #86
• Align the boolean validity claim by @marinaado in #87
• add Marina as co-author by @peppelinux in #92
• fix: links and refs updated by @peppelinux in #88
• Terminology fix by @marinaado in #89
• added RP checks and further clarification for the assertion verification phase by @peppelinux in #93
• fix: terms and editorials for better readability by @peppelinux in #96
• added the requirement to keep the Holder informed about status changes by @peppelinux in #97
• Fix: Digital Credential, credential_hash_alg, titles by @giadas in #98

New Contributors

• @asharif1990 made their first contribution in #1
• @fmarino-ipzs made their first contribution in #6
• @SaraConsoliACN made their first contribution in #33
• @marinaado made their first contribution in #42
• @OR13 made their first contribution in #61
• @giadas made their first contribution in #98

Full Changelog: https://github.com/peppelinux/draft-demarco-oauth-status-assertions/commits/03