Configure secure vault

POST /v2/config/digital-wallet/openid/key-management

Configures a secure vault for cryptographic key storage used in OID4VCI and OpenID4VP operations.

Request

application/json

Body

hashicorpVault object

HashiCorp Vault configuration for external key management used for OID4VCI credential signing.

enabled boolean

Specifies whether Hashicorp Vault is enabled

vaultUsername string

Username for Hashicorp Vault authentication

vaultPassword string

Password for Hashicorp Vault authentication

vaultAddress string

Address of the Hashicorp Vault server

vaultNamespace string

Namespace in Hashicorp Vault

igrantioVault objectrequired

iGrant.io managed vault configuration for OID4VCI credential signing.

enabled boolean

Specifies whether iGrant.io Vault is enabled

qtsp object

Qualified Trust Service Provider (QTSP) configuration for qualified electronic signatures compliant with eIDAS regulation.

enabled boolean

Specifies whether Qualified Trust Service Provider (QTSP) is enabled

cscUrl string

URL for the CSC service

clientId string

Client ID for QTSP authentication

clientSecret string

Client secret for QTSP authentication

userID string

User ID for QTSP service

Responses

Response Headers

application/json

Schema
Example (from schema)

Schema

secureVault integer[]

Secure vault ID, 1 for iGrant.io, 2 for Hashicorp secure vault, 3 for QTSP vault

{
  "secureVault": [
    0
  ]
}

Unauthorized

Response Headers

application/json

Schema
Example (from schema)

Schema

errorCode integerrequired

errorDescription stringrequired

{
  "errorCode": 400,
  "errorDescription": "Bad input parameter"
}

Internal server error

Response Headers

application/json

Schema
Example (from schema)

Schema

errorCode integerrequired

errorDescription stringrequired

{
  "errorCode": 400,
  "errorDescription": "Bad input parameter"
}

Configure secure vault

/v2/config/digital-wallet/openid/key-management

Request​

Body

Responses​

Request

Responses