OpenID 4VC
Last updated
Last updated
OpenID issuer UUID
OpenID issuer UUID
OpenID issuer UUID
OpenID issuer UUID
OpenID issuer UUID
Deletes the specified OpenID issuer and all associated data from the system. Use this endpoint to clean up issuers that are no longer needed.
OpenID issuer UUID
OpenID issuer will be deleted
Redirects the client to the authorization URL for a specific OpenID issuer. This endpoint begins the authorization flow, allowing users to authenticate with the issuer.
OpenID issuer UUID
Redirect to the authorization URL.
Processes the callback from the OpenID issuer after user authentication. This endpoint finalizes the authorization flow and returns control to the client application.
OpenID issuer UUID
Redirect to the authorization URL.
Generates and returns a credential offer URI for OpenID4VCI. This endpoint is used to initiate the credential issuance process.
The OpenID issuer UUID
The OpenID issuer UUID
Optional extra request parameters passed to the federated OpenID provider, such as login hint
OpenID credential offer URI
OpenId Credential Offers URL
"openid-credential-offer://?credential_offer=..."Returns a paginated list of all OpenID issuers available in the system. This can be used to view the existing issuers and their configurations.
A paged array of OpenID issuers
OpenID provider configuration
Key/value pair mapping for OpenID claims to JSON-LD terms
Creates a new OpenID issuer configuration in the system. This endpoint is used to add an issuer that can later be used for credential issuance and authentication.
OpenID issuer object
OpenID provider configuration
Key/value pair mapping for OpenID claims to JSON-LD terms. Can be null/undefined if no 3rd party claims to pull.
Whether or not to expire this issuer (and all URLs related to it) after one credential is issued
falseOpenID issuer created
OpenID provider configuration
Key/value pair mapping for OpenID claims to JSON-LD terms
Retrieves the Decentralized Identifier (DID) configuration document for a specified issuer UUID. This configuration is used to establish trust and interoperability with the issuer.
Issuer UUID
The well known config
A list of verifiable credentials.
Handles the exchange of an authorization code for an access token, ID token, and optionally a refresh token. This endpoint is a key part of the OpenID Connect flow.
OpenID issuer UUID
OpenID token endpoint
The access token issued by the authorization server.
"df0c70ac-70c3...Qs0IVH4"The type of the token issued, typically "bearer".
"bearer"The lifetime in seconds of the access token.
86400The ID token representing the identity of the user.
"eyJhbG...d9ttgM"The credential information issued alongside the access token.
Retrieves a verifiable credential issued by an OpenID issuer. This endpoint is used to obtain the credential in a specified format after the issuance process.
The types of the Verifiable Credential.
The format of the Verifiable Credential.
"jwt_vc_json"The proof object containing cryptographic proof information.
OpenID credential retrieve endpoint
The format of the credential
"ldp_vc"Returns the configuration details of an existing OpenID issuer, identified by its UUID. This can be used to view the issuer's settings and supported features.
OpenID issuer UUID
Returns the information about the OpenID issuer
OpenID provider configuration
Key/value pair mapping for OpenID claims to JSON-LD terms
Retrieves the OpenID Connect discovery document for the specified issuer UUID. This document includes important details like supported scopes, endpoints, and token signing methods.
OpenID issuer UUID
OpenID config endpoint
The endpoint used by the client to obtain authorization from the resource owner.
"https://example.com/openid/issuers/e10a...3213/authorize"The endpoint used by the client to exchange an authorization grant for an access token.
"https://example.com/openid/issuers/e10a...3213/token"The URI for the JSON Web Key Set, which contains the public keys used to verify tokens.
"https://example.com/openid/issuers/e10a...3213/jwks"The issuer identifier for the authorization server.
"https://example.com/openid/issuers/e10a...3213"List of supported code challenge methods for PKCE.
The algorithm used for signing at the token endpoint.
"HS256"The list of signing algorithms supported by the token endpoint.
Supported signing algorithms for request objects.
Indicates whether the claims parameter is supported.
trueList of claims supported by the issuer.
List of grant types supported by the authorization server.
List of signing algorithms supported for ID tokens.
List of response modes supported by the authorization server.
List of response types supported by the authorization server.
List of scopes supported by the authorization server.
List of subject types supported by the issuer.
List of supported token endpoint authentication methods.
Indicates whether the request parameter is supported.
trueIndicates whether the request URI parameter is supported.
falseIndicates whether request URI registration is required.
trueIndicates whether a signed request object is required.
trueIndicates whether credential issuance is supported.
trueIndicates whether Decentralized Identifiers (DIDs) are supported.
trueList of DID methods supported by the issuer.
List of claim types supported by the issuer.
List of credential formats supported by the issuer.
List of claims supported within credentials issued by the issuer.
Retrieves the OpenID configuration document for a specified issuer UUID. This document contains the public configuration details necessary for client applications to interact with the issuer.
OpenID issuer UUID
The well known config
The endpoint used by the client to obtain authorization from the resource owner.
"https://example.com/openid/issuers/b582...173c/authorize"The endpoint used by the client to exchange an authorization grant for an access token.
"https://example.com/openid/issuers/b582...173c/token"The URI for the JSON Web Key Set, which contains the public keys used to verify tokens.
"https://example.com/openid/issuers/b582...173c/jwks"The issuer identifier for the authorization server.
"https://example.com/openid/issuers/b582...173c"List of supported code challenge methods for PKCE.
The algorithm used for signing at the token endpoint.
"HS256"The list of signing algorithms supported by the token endpoint.
Supported signing algorithms for request objects.
Indicates whether the claims parameter is supported.
trueList of claims supported by the issuer.
List of grant types supported by the authorization server.
List of signing algorithms supported for ID tokens.
List of response modes supported by the authorization server.
List of response types supported by the authorization server.
List of scopes supported by the authorization server.
List of subject types supported by the issuer.
List of supported token endpoint authentication methods.
Indicates whether the request parameter is supported.
trueIndicates whether the request URI parameter is supported.
falseIndicates whether request URI registration is required.
trueIndicates whether a signed request object is required.
trueIndicates whether credential issuance is supported.
trueIndicates whether Decentralized Identifiers (DIDs) are supported.
trueList of DID methods supported by the issuer.
List of claim types supported by the issuer.
List of credential formats supported by the issuer.
List of claims supported within credentials issued by the issuer.
The issuer identifier for credential issuance.
"https://example.com/openid/issuers/b582...173c"The endpoint used to issue credentials.
"https://example.com/openid/credential"List of credentials supported by the issuer.
The URI for mobile driver's license issuance and credential acquisition.
"https://example.com/openid/mdoc-iacas"