+1, that’s the idea — schema by fiat at the very least. This structure should
be a flexible JSON object that can take whatever shape its attendant API would
need it to have. The goal of the “common data elements” is to provide just
enough structure to be generally useful, and it’s based on what
So in doing an implementation of this, I ran into this problem as well.
Specifically, we need to know which client we’re dealing with to fully validate
the encrypted request object as well as perform the authentication. Currently,
things are a little underspecified, and part of that comes from t
