Is there a RESTful standard for digital signatures (NOT authentication/authorization)?
3
5
I’m pretty sure I saw @manusporny post something about this a while ago, perhaps related to Web ID. Sorry, my memory is crap.
1
This might be what I read about: github.com/digitalbazaar/jso… @manusporny @stilkov
1
There’s also this: tools.ietf.org/html/rfc7515 @manusporny @stilkov
1
1
Thanks, but REST doesn't have to imply JSON... (To the contrary, it implies conneg: blog.ploeh.dk/2015/06/22/res…)
2
JWS is a header based signature. It can secure any payload. The only JSON is the header format
1
2
I didn't get that. Thank you for pointing that out. I'll be taking a second look :)
1
1
Replying to @ploeh @darrel_miller @asbjornu @manusporny
Still don’t see anything particularly RESTful or HTTP-related in JWS. Orthogonal concepts.

Nov 11, 2016 · 5:08 PM UTC

2
Replying to @stilkov
I agree that JWS has little to do with REST but it doesn't violate any constraints. @ploeh @asbjornu @manusporny
2
1
Agreed.
3
more replies
Replying to @stilkov
I agree a more abstract concept would be nice. But you need format coupling for normalisation. @ploeh @darrel_miller @manusporny