How are the operation and issuers PrivateStateToken attributes used?
Closed this issue · 1 comments
The spec should explain how those attributes are used. The examples also show an "issuer" string while the WebIDL in Chrome is an "issuers" list.
The trust token operation type dictates which of the primary PST operations are made:
"token-request": Handles a single issuance operation. It first generates masked, unsigned tokens and asks an issuer to sign the tokens. It verifies the result, unblinds, and stores the tokens.
"token-redemption" = Handles a single redemption operation. It attaches a single signed, unblinded token to a request, gives it to the token's issuer, and expects a redemption record in response.
"send-redemption-record" = Handles a single token signing operation. It searches for a corresponding redemption record (RR) and attaches it to the request. Signing requests will fail if there is no valid issuer.