You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I found it hard to wrap my head around that there is a difference
between "validation" and "verification of intent", since I thought that
verifying the intent by calling the callback is a kind of validation
already.
Maybe it would help if an example for a validation rule/process would be
added to the spec.
The text was updated successfully, but these errors were encountered:
Validation and verification of intent have different purposes and are intended to different entities.
Validation is to make sure that the publishers allows for a given subscription.
Verification of intent is a dial-back mechanism to ensure that the origin of the subscription request is indeed the same entity which will get the notifications.
An example could help indeed, but I'm not sure the spec is the best place for it since validation is optional. (I want to make sure that examples are not interpreted as reference implementations).
I found it hard to wrap my head around that there is a difference
between "validation" and "verification of intent", since I thought that
verifying the intent by calling the callback is a kind of validation
already.
Maybe it would help if an example for a validation rule/process would be
added to the spec.
The text was updated successfully, but these errors were encountered: