Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Issuer Component - Store & Signing Credential by IssuerWallet #9

Closed
Tracked by #416 ...
jjeroch opened this issue Mar 1, 2024 · 0 comments
Closed
Tracked by #416 ...

Issuer Component - Store & Signing Credential by IssuerWallet #9

jjeroch opened this issue Mar 1, 2024 · 0 comments
Assignees
Labels
Sub-task A small piece of work that's part of a larger task.

Comments

@jjeroch
Copy link
Contributor

jjeroch commented Mar 1, 2024

Ticket under creation

Summary

As part of the SSI process; the newly created credential (#7) is supposed to get send to the issuer wallet and signed.
The issuer wallet is given by the config file, having an

  • url
  • clientID
  • clientSecret

Note: this is a new endpoint - previously this was managed by the MIW standalone

Details (for 24.05. ReferenceImplementation)

Process:

1st the credential MUST get stored in the DIM (implementation by SAP), credential subject, issuer to be selected, reovcationlist to be added (Doku Seite 37)
2nd signing the credential

Purpose: Sends the credential into the issuer wallet tenant

Endpoint Standard: api/credentials/issuer/store (actual /api/v2.0.0/credentials

Method: xxx Outbound Interface

Request Body:

{
  "application": "tenantName",
  "payload": "{credential json}"
}
the payload includes a `credentialStatus`this needs to get fix set (based on a config value) to "type": "StatusList2021" 

Important, this endpoint must be secured - only the issuer is allowed to do it.
How? With technical user from the config file.


Purpose: Sign a previously stored credential

Endpoint Standard: api/credentials/issuer/signature (actual /api/v2.0.0/credentials/{credentailId}

Method: xxx Outbound Interface

Request Body:

{
  "payload": {
    "update": {
      "proofMechanism": "{external}",
      "proofType": "{jwt}"
    }
  }
}

Thoughts:

  • we should consider a worker => reason: multiple credential requests might exist and get moved through the flow in parallel.
@jjeroch jjeroch added the enhancement New feature or request label Mar 1, 2024
@jjeroch jjeroch changed the title Issuer Component - Signing Credential by IssuerWallet Issuer Component - Store & Signing Credential by IssuerWallet Mar 1, 2024
@jjeroch jjeroch added Sub-task A small piece of work that's part of a larger task. and removed enhancement New feature or request labels Mar 1, 2024
@jjeroch jjeroch added this to Portal Mar 1, 2024
@github-project-automation github-project-automation bot moved this to NEW USER REQUEST in Portal Mar 1, 2024
@jjeroch jjeroch moved this from NEW USER REQUEST to BACKLOG in Portal Mar 1, 2024
@jjeroch jjeroch moved this from BACKLOG to NEW USER REQUEST in Portal Mar 1, 2024
@Phil91 Phil91 moved this from NEW USER REQUEST to IN PROGRESS in Portal Mar 5, 2024
@Phil91 Phil91 mentioned this issue Mar 8, 2024
9 tasks
@Phil91 Phil91 moved this from IN PROGRESS to IN REVIEW in Portal Mar 8, 2024
Phil91 added a commit that referenced this issue Mar 25, 2024
* feat: add issuer component
* build: add helm chart for issuer component
* feat(notification): adjust notification endpoint
* fix(build): enable build of docker images (#21)
* feat: add callback process step
* chore: enable helm chart (#22)
* fix: remove lint issue
* fix: solve templating issues
* chore: change setup of cronjobs: remove hooks
* chore: change name setup of job resources
* chore: add line breaks
* chore: move placeholder value into resources
* chore: change to unique templates for db subchart
* chore: change secret setup
* chore: move passwords from db dependency to according section
* chore: remove upgrade env file
* chore: change centralidp setup
* chore: rearrange health checks
* chore: rearrange values file
* chore: change ingress to trg-5.04
* chore: fix container name and namespace
* chore: change image tag retrieval
* chore: change version
* chore(db-dependency): change image tag to get latest minor updates
* chore: set resource limits
* chore: update readme files
* chore: change credentialexpiry to camelcase
* chore: fix helm chart, improve workflows and docs (#23)
* chore(helm-test): fix image name and tag override at upgrade
* chore: fix owasp scan
* chore(helm-test and owasp): change set command
* chore: re-arrange values file
* chore(pre-checks): run only on changes to src/**
* docs(CONTRIBUTING.md): update to contribution details
* chore: fix db dependency secret name in cronjobs
* chore(dependencies-check): align file naming and docs
* chore: remove white space

---------

Refs: #2 #3 #4 #5 #6 #7 #8 #9 #13 #21 #22 #23
Reviewed-by: Evelyn Gurschler <evelyn.gurschler@bmw.de>
Reviewed-by: Norbert Truchsess <norbert.truchsess@t-online.de>
Co-authored-by: Evelyn Gurschler <evelyn.gurschler@bmw.de>
Co-authored-by: Norbert Truchsess <norbert.truchsess@t-online.de>
Phil91 added a commit that referenced this issue Apr 8, 2024
* feat: add issuer component
* build: add helm chart for issuer component
* feat(notification): adjust notification endpoint
* fix(build): enable build of docker images (#21)
* feat: add callback process step
* chore: enable helm chart (#22)
* fix: remove lint issue
* fix: solve templating issues
* chore: change setup of cronjobs: remove hooks
* chore: change name setup of job resources
* chore: add line breaks
* chore: move placeholder value into resources
* chore: change to unique templates for db subchart
* chore: change secret setup
* chore: move passwords from db dependency to according section
* chore: remove upgrade env file
* chore: change centralidp setup
* chore: rearrange health checks
* chore: rearrange values file
* chore: change ingress to trg-5.04
* chore: fix container name and namespace
* chore: change image tag retrieval
* chore: change version
* chore(db-dependency): change image tag to get latest minor updates
* chore: set resource limits
* chore: update readme files
* chore: change credentialexpiry to camelcase
* chore: fix helm chart, improve workflows and docs (#23)
* chore(helm-test): fix image name and tag override at upgrade
* chore: fix owasp scan
* chore(helm-test and owasp): change set command
* chore: re-arrange values file
* chore(pre-checks): run only on changes to src/**
* docs(CONTRIBUTING.md): update to contribution details
* chore: fix db dependency secret name in cronjobs
* chore(dependencies-check): align file naming and docs
* chore: remove white space

---------

Refs: #2 #3 #4 #5 #6 #7 #8 #9 #13 #21 #22 #23
Reviewed-by: Evelyn Gurschler <evelyn.gurschler@bmw.de>
Reviewed-by: Norbert Truchsess <norbert.truchsess@t-online.de>
Co-authored-by: Evelyn Gurschler <evelyn.gurschler@bmw.de>
Co-authored-by: Norbert Truchsess <norbert.truchsess@t-online.de>
@evegufy evegufy closed this as completed Oct 18, 2024
@github-project-automation github-project-automation bot moved this from IN REVIEW to USER READY in Portal Oct 18, 2024
leandro-cavalcante pushed a commit to leandro-cavalcante/ssi-credential-issuer that referenced this issue Oct 21, 2024
…dependencies group (eclipse-tractusx#9)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Sub-task A small piece of work that's part of a larger task.
Projects
Archived in project
Development

No branches or pull requests

3 participants