Hi @aterga,
I wanted to share a concrete use case from Rabbithole.app.
Rabbithole is a sovereign encrypted file vault on the IC. One of the places where Identity Attributes are useful for us is shared access by verified email.
The flow is simple: a user can share access to a vault, folder, or file with an email address. When the recipient signs in, the app needs a way to resolve that verified email to the user’s principal without forcing every app to build its own email verification flow.
For this use case, certified Identity Attributes are very helpful because the email is not just a value typed into the app frontend. It can be verified against the delegation / principal, and the user still keeps explicit control over what is shared.
For Rabbithole, this is not mainly about notifications or marketing emails. It is part of the access model and onboarding UX for shared private data.
I would be happy to test the API and share feedback from a real app integration.
Some context about the app: