-
Notifications
You must be signed in to change notification settings - Fork 15
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CRITICAL: Filter and propose (and accept) wrong account ownership card! #3064
Comments
Confirmation
|
@hawkbee1 we will have to discuss how to manage that. |
@jdsika The problem of the VC above is that the credentialSubject.id should be the holder (did:key) What is critical is to store company VCs and natural person VCs in the same wallet. The wallet could be considered as a personal wallet and to act on behalf of a company the user could present a VC issued by the company like an Employee Badge or a mandate for a legal representative. |
Only in testing a wallet stores multiple credentials (mixed company and user). This edge case revealed the bad behavior. |
We should consider the organizational wallet and the personal as different wallets if the two types of VCs are needed. |
@jdsika I'm not able to reproduce the fail on card acquisition with imported crypto account. When changing account dapp is often freezing: After QR code I see responses from beacon but nothing is happening on the dapp => Opening a new incognito window solve the issue. Where can I present MEMBER and USER credentials ? When the user is getting his MEMBER card we know the expected account number... How about adding an input descriptor on $..associatedAddress with the account id in the pattern ? After MEMBER approved a USER and the crypto transaction is a success I'm asked again to sign with beacon. Did you encounter this behaviour? NB: Currently we create an associated address account card for the active crypto account. When presenting we don't have a restriction depending on the active account because it's impeding other usecases. |
Here you can present the credentials: |
Problem
resolution
The text was updated successfully, but these errors were encountered: