SID-AUTH-03 — OIDC Gate for External Identity Providers
| Property | Value |
|---|---|
| Status | verified |
| Owner | platform |
| Category | technical |
| CSF Function | protect |
| Group | Authentication Controls |
Description
External OIDC ID tokens validated for gated registration/login flows. Validates issuer, audience, JWT signature via JWKS discovery, expiration with configurable clock skew. Caches validators per provider.
Components
- Wallet Backend (Go)
Source References
Audit Findings
| Finding | Severity | Status |
|---|---|---|
| EN-P-5 — Partial user authentication and session controls | high | in progress |