Skip to content

Commit d09f2fb

Browse files
committed
Clarify auth_session requirements on interaction types.
1 parent f39fe2c commit d09f2fb

1 file changed

Lines changed: 8 additions & 1 deletion

File tree

1.1/openid-4-verifiable-credential-issuance-1_1.md

Lines changed: 8 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -791,7 +791,7 @@ In this case, the following keys MUST be present in the response as well:
791791
If a Wallet receives an `interaction_type_required` value that it does not support, it MUST abort the issuance process.
792792

793793
The Authorization Server MUST provide a mechanism to associate the next request by this Wallet with the ongoing authorization request sequence.
794-
If no other mechanism to associate the next request by this Wallet with the ongoing authorization request sequence is defined by the type of interaction, the following key MUST be present in the response as well:
794+
The following key MAY be present in the response to provide such a mechanism:
795795

796796
* `auth_session`: REQUIRED. String containing a value that allows the Authorization Server to associate subsequent requests by this Wallet with the ongoing authorization request sequence. Wallets SHOULD treat this value as an opaque value. The value returned MUST be distinct for each interactive authorization response.
797797

@@ -802,6 +802,13 @@ A definition of a custom type of interaction MUST include exactly one of the fol
802802

803803
The Wallet MUST include the most recently received `auth_session` in follow-up requests to the Interactive Authorization Endpoint.
804804

805+
A definition of a custom type of interaction MUST include exactly one of the following:
806+
807+
1. A normative requirement that the `auth_session` key MUST be included in the Interaction Required Response.
808+
2. A definition of a mechanism to associate the next request by the Wallet with the ongoing authorization request sequence.
809+
810+
The Wallet MUST include the most recently received `auth_session` in follow-up requests to the Interactive Authorization Endpoint.
811+
805812
Additional keys are defined based on the type of interaction, as shown next.
806813

807814
#### Require Presentation {#ia-require-presentation}

0 commit comments

Comments
 (0)