Update docs

cicnavi · cicnavi · commit 5e268a87af54 · 2025-11-21T13:05:24.000+01:00
diff --git a/composer.json b/composer.json
@@ -31,7 +31,7 @@
         "psr/container": "^2.0",
         "psr/log": "^3",
         "simplesamlphp/composer-module-installer": "^1.3",
-        "simplesamlphp/openid": "dev-wip-vci",
+        "simplesamlphp/openid": "~0.1.0",
         "spomky-labs/base64url": "^2.0",
         "symfony/expression-language": "^6.3",
         "symfony/psr-http-message-bridge": "^7.1",
diff --git a/docs/1-oidc.md b/docs/1-oidc.md
@@ -30,6 +30,26 @@ Currently supported OIDFed features:
 OIDFed is implemented using the
 [SimpleSAMLphp OpenID library](https://github.com/simplesamlphp/openid).
 
+## Note on OpenID for Verifiable Credential Issuance (OpenID4VCI) support
+
+OpenID4VCI support was done as per draft 15 of the specification and is in the
+experimental stage. You should NOT use it in production environments.
+
+Currently implemented OpenID4VCI features:
+
+- Grant types:
+  - Pre-authorized Code flow (new flow defined by the OpenID4VCI spec)
+  - Authorization Code flow
+- Credential formats:
+  - jwt_vc_json, using VCDM v1.1
+  - dc+sd-jwt (previously vc+sd-jwt) (SD-JWT VC)
+- Proof types:
+  - jwt
+- API for credential offer fetching
+
+OpenID4VCI is also implemented using the
+[SimpleSAMLphp OpenID library](https://github.com/simplesamlphp/openid).
+
 ## Version compatibility
 
 Minor versions listed show which SimpleSAMLphp versions were used during
diff --git a/docs/6-oidc-upgrade.md b/docs/6-oidc-upgrade.md
@@ -3,15 +3,18 @@
 This is an upgrade guide from versions 1 → 7. Review the changes and
 apply those relevant to your deployment.
 
-## TODO mivanci
-* Move to specific simplesamlphp/openid release (composer.json).
-
 ## Version 6 to 7
 
 New features:
 
+- Initial support for OpenID for Verifiable Credential Issuance
+(OpenID4VCI). Note that the implementation is experimental. You should not use
+it in production yet. 
+
 New configuration options:
 
+- Several new options regarding support for OpenID4VCI.
+
 Major impact changes:
 
 - In v6 of the module, when defining custom scopes, there was a possibility to
diff --git a/src/Factories/VerifiableCredentialsFactory.php b/src/Factories/VerifiableCredentialsFactory.php
@@ -28,6 +28,7 @@ public function build(): VerifiableCredentials
         $supportedAlgorithms = new SupportedAlgorithms(
             new SignatureAlgorithmBag(
                 SignatureAlgorithmEnum::from($this->moduleConfig->getProtocolSigner()->algorithmId()),
+                SignatureAlgorithmEnum::RS256,
                 SignatureAlgorithmEnum::RS384,
                 SignatureAlgorithmEnum::RS512,
                 SignatureAlgorithmEnum::ES256,
