OID4VP DCQL + direct_post

Verifier creates a signed authorization request object with DCQL query and publishes a request_uri. Wallet fetches the request, evaluates the query, and posts vp_token to response_uri using direct_post (OID4VP §5, §8.2).

Try in Looking Glass
Presentation VerificationDCQL Querydirect_post

Sequence Diagram

Click any step for details

VerifierWallet1Create Authorization Request2Fetch Request Object3Wallet Presentation Submission4Verifier Validation + Policy Decision
Request
Response
Redirect
Internal

Step-by-Step Breakdown

1
Create Authorization Request
VerifierWallet
2
Fetch Request Object
WalletVerifier
3
Wallet Presentation Submission
WalletVerifier
4
Verifier Validation + Policy Decision
VerifierVerifier

Token Inspector

Specs for this flow

Sections of the protocol that normatively define this flow, plus the security considerations that apply to it.