fn sprequest_unverified(
disclosure_request: &JWT,
) -> Result<ExtendedSessionRequest>Expand description
Reads the sprequest (disclosure session request) out of the auth server’s
disclosure_request JWT without verifying its signature: we made no claim to authenticate
it — we only need to learn which Yivi attribute identifiers it asks for, to forge a matching
response.