Add transform-keys=jwks parameter for use with OIDC SIOP

[OR13]

No description provided.

[peacekeeper]

Here are some early experiments we did in DIF about this: https://hackmd.io/XmL-Bjh5TdqV4fj6nwdPEQ

We need to align this with the JsonWebKey2020 work.

I will try to work on updating this and adding it to the registries.

[awoie]

This feature comes very handy when support for JWKS in existing protocols is required such as OIDC is required. One could do something like the following:

"jwks_uri" : "https://uniresolver.io/1.0/identifiers/did:example:0xab;transform-keys=jwks",

IMO, it is a huge burden for DID resolver users to take care of the conversion of different key types themselves.

Also note, there is a difference between JWKS and JWK.

[awoie]

I would create a PR if I had an example for another DID resolution option. Currently, there is no other option registered yet. Please provide guidance.

[OR13]

@awoie start with a PR that adds transform-keys=jwks to the DID Parameters section, like so: https://github.com/w3c/did-spec-registries/blob/master/index.html#L1721

[OR13]

https://github.com/decentralized-identity/did-spec-extensions/blob/master/parameters/transform-keys.md

ready for PR.

[OR13]

This was registered, this can be closed.

[brentzundel]

this has been added to the registries, so we can close

[peacekeeper]

Yes, this has been added a while ago..

[iherman]

The issue was discussed in a meeting on 2021-07-27

• no resolutions were taken

View the transcript

3.8. Add transform-keys=jwks parameter for use with OIDC SIOP (issue did-spec-registries#66)

See github issue did-spec-registries#66.

Markus Sabadello: Quick correction, assigned to Oliver... this is an extension, DID URL parameter, has been added to registries... probably we can close this since it's been added.

Manu Sporny: Closed issue 66.