(Background: exploring the possibility of using SPIFFE as client
authentication mechanism at the Transaction Token service.)
JWT-SVIDs, defined in SPIFFE, are regular JWTs, though with some
peculiarities:
* the "sub", "aud" and "exp" claims are mandatory;
* the "iss" claim is optional (but would b
Thanks Hannes, I really appreciate the feedback and work towards moving
this one foreword in the process.
I've prepared this pull request
https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/552 with
updates aimed at addressing the review comments. Please take a look and let
us know if
