WICG/trust-token-api

Issues

• Are Dates of Chrome Trust Token Files Correct or Is this a Bug?

  #303 opened 16 days ago by myonlinematters
  1

• Attribution of PST error messages

  #299 opened 3 months ago by abhisagw
  12

• Tipo in "retrieve redemption record" algorithm

  #301 opened a month ago by cooleck
  1

• Redemption time

  #253 opened a year ago by chris-wood
  10

• Allow scoping of token query and redemption to specific redeemers

  #298 opened 3 months ago by donivatamazondotcom
  0

• Key commitment fetch for non-Chrome browsers

  #296 opened 4 months ago by abhisagw
  1

• Mechanism makes the issuer key auditable (by Certificate Transparency)

  #293 opened 4 months ago by akakou
  1

• A new token type: SeCure Rate Assuring Protocol With PrivacY (Scrappy)

  #292 opened 4 months ago by akakou
  2

• How to get access to Private State Token? github PR or Google Form

  #290 opened 6 months ago by sharad-sharethis
  3

• Can you not identify a user based on the particular PSTs a user has

  #289 opened 6 months ago by naturedamends
  1

• Registering issuers with browser developers

  #240 opened a year ago by martinthomson
  7

• Specify logic regarding Clear-Site-Data.

  #274 opened a year ago by dvorak42
  2

• Private State Token API Development - Registration Required?

  #286 opened 6 months ago by thegreatfatzby
  1

• Is This Spec in a Conceptual Transition from TT to PST, or Just Renamed?

  #288 opened 6 months ago by thegreatfatzby
  0

• Incorrect spelling of 'hasPrivateToken' in spec

  #282 opened 6 months ago by tim-huber
  0

• Fix definition of "id" and "batchsize" for key commitments in spec.

  #279 opened 7 months ago by dvorak42
  1

• should token issuers use a /.well-known/token-issuer-directory to mirror Privacy Pass?

  #243 opened a year ago by colinbendell
  3

• Unbalanced limits on redemption records and token issuance

  #276 opened 9 months ago by aechiara
  1

• Misleading statement about cookies

  #272 opened a year ago by martinthomson
  1

• Protocol specification is incomplete

  #230 opened a year ago by martinthomson
  1

• Spec out the XmlHttpRequest PST properties.

  #264 opened a year ago by dvorak42
  1

• Spec out the iframe operations in the W3C spec document.

  #263 opened a year ago by dvorak42
  0

• Requests don't always have a Window

  #269 opened a year ago by jyasskin
  0

• Compatibility with RFC8941

  #268 opened a year ago by aykutbulut
  1

• Unclear purpose of commitment id in key commitment endpoint

  #258 opened a year ago by aliaksei-imi
  15

• Add TLS tag to TLS presentation language-based code snippets.

  #262 opened a year ago by dvorak42
  0

• Double spend protection can potentially take a lot of space and storage has to be persistent for a long time

  #261 opened a year ago by aliaksei-imi
  5

• consider merging sec-private-state-token and sec-private-state-token-crypto-version

  #260 opened a year ago by colinbendell
  1

• Fix spec to specify that "look up signing keys" returns the six most recent non-expired keys (or three for PMBTokens).

  #233 opened a year ago by dvorak42
  1

• Issuance API vs HTTP headers

  #251 opened a year ago by chris-wood
  5

• Update Token types to match privacypass.

  #256 opened a year ago by chris-wood
  3

• Meaning of labels “vStandard”, “future”; and an update on our approach to GA launch

  #235 opened a year ago by etrouton
  4

• Redemption token header and format

  #252 opened a year ago by chris-wood
  1

• Key Commitment is NOT a "application/token-issuer-directory" resource

  #250 opened a year ago by chris-wood
  1

• Redemption client_data

  #255 opened a year ago by chris-wood
  2

• Legacy hash-to-curve

  #254 opened a year ago by chris-wood
  1

• Define protocol version and expected lifecycle with browsers

  #249 opened a year ago by colinbendell
  0

• Clarify redemption record with voprf draft21

  #248 opened a year ago by colinbendell
  2

• should expiry field be removed (or formatted as ISO8601/RFC3339)

  #246 opened a year ago by colinbendell
  3

• Does the PrivateStateTokenPublicKey struct include id or not for key commitment?

  #245 opened a year ago by colinbendell
  6

• base64 vs base64url for PAT compat

  #242 opened a year ago by colinbendell
  1

• Media type for key commitments

  #232 opened a year ago by martinthomson
  1

• Permissions policy integration

  #226 opened a year ago by martinthomson
  1

• Token types should subsume versions

  #224 opened a year ago by martinthomson
  1

• johannhof feedback on structured headers

  #238 opened a year ago by aykutbulut
  0

• Issuer to origin information rate is surprisingly high

  #227 opened a year ago by martinthomson
  3

• What purpose does a redemption record serve?

  #228 opened a year ago by martinthomson
  1

• HTTP usage is ...

  #229 opened a year ago by martinthomson
  4

• Timing attack on refresh/re-issuance

  #225 opened a year ago by martinthomson
  2

• Specify cryptographic operations properly

  #231 opened a year ago by martinthomson
  2