Wallet Gateway Reference Implementation #109 Milestone 5: Access Rights Management

OPENIssue
by pedrodneves21-05-2026
View on GitHub ↗← All Proposals

Milestone 5: Access Rights Management

Implementing granular, privacy-preserving data access controls between the untrusted dApp and the Gateway.

  • Scoped Token Issuance: Upgrading the auth module to issue scoped OIDC tokens.

Acceptance:* Automated tests proving the Gateway issues tokens that strictly limit a dApp's access to specifically defined data sets on a validator.

  • Read Review Authorization: Delivery of a user-facing data access screen.

Acceptance:* Functional visual component that accurately presents the dApp's requested data scope to the user, requiring explicit human approval before the scoped token is released to the dApp.

| Milestone | Target deadline | Funding Request | | :--- | :--- | :--- | | Milestone 5: Access Rights Management | November 30th 2026 | 800.000 CC |

_Originally posted by @pedrodneves in https://github.com/canton-foundation/canton-dev-fund/issues/109#issuecomment-4512208429_