Skip to main content

Receive verification

POST 
/v3/config/digital-wallet/openid/sdjwt/verification/receive

Processes an OpenID4VP Authorization Request (V3) received from a verifier. The wallet resolves the verifier's requirements and identifies matching credentials.

Request

Body

    vpTokenQrCode string

    Authorization Request defined as per OID4VP draft 20 specification.

    autoPresent boolean

    Boolean value indicates whether the credential should be auto presented.

    kid string

    Specifies the key identifier of keys to be used for credential issuance

    trustAnchor string

    Possible values: [jwk, did:key, did:ebsi, did:web]

    Specifies the trust anchor used for credential issuance

Responses

Verification received successfully

Response Headers
    Schema
      presentation object
      presentationId stringrequired

      Unique identifier for this presentation session in the holder's wallet.

      presentation_submission object

      Presentation Submission object as defined in the DIF Presentation Exchange specification. Maps the holder's credentials to the verifier's requirements specified in the Presentation Definition.

      definition_id stringrequired

      Identifier of the Presentation Definition that this submission fulfills.

      descriptor_map object[]required

      Array of Descriptor Map entries mapping each requested credential to its location in the Verifiable Presentation.

    • Array [
      • format stringrequired

      Credential format of the matched credential (e.g. jwt_vc_json, dc+sd-jwt, mso_mdoc).

      id stringrequired

      Identifier of the Input Descriptor from the Presentation Definition that this entry satisfies.

      path stringrequired

      JSONPath expression pointing to the Verifiable Credential within the Verifiable Presentation token.

      path_nested objectrequired

      Nested path descriptor for credentials wrapped in envelope formats (e.g. JWT inside a VP JWT).

      format stringrequired

      Credential format of the nested credential (e.g. jwt_vc_json, dc+sd-jwt, mso_mdoc).

      id stringrequired

      Identifier of the Input Descriptor from the Presentation Definition that this nested entry satisfies.

      path stringrequired

      JSONPath expression pointing to the credential within the nested envelope.

    • ]
      • id stringrequired

      Unique identifier for this Presentation Submission.

      vpToken string[]required

      Array of Verifiable Presentation tokens (JWTs) sent to the verifier. Supports presenting multiple VPs in a single OpenID for Verifiable Presentation (OpenID4VP) Authorization Response.

      status stringrequired

      Possible values: [presentation_pending, presentation_acked]

      Lifecycle status of the presentation in the holder's wallet:

      1. presentation_pending: The holder needs to select matching credentials and submit the Verifiable Presentation to the verifier.
      2. presentation_acked: The Verifiable Presentation has been sent to and acknowledged by the verifier.
      clientId stringrequired

      Verifier's client identifier from the OpenID4VP Authorization Request (e.g. a URI or DID).

      redirectUri stringrequired

      Redirect URI from the Authorization Request. The wallet redirects here after submitting the presentation.

      requestUri stringrequired

      Request URI for resolving the OpenID4VP Authorization Request by reference. The wallet fetches the full Authorization Request from this URI.

      presentationDefinition stringrequired

      Serialized Presentation Definition received from the verifier, defining the credential and claims requirements.

      credentialId stringrequired

      Identifier of the credential selected for this presentation.

      clientMetadata objectrequired
      clientName string

      Display name of the verifier obtained from the client metadata.

      logoUri string

      URL of the verifier's logo for display in the wallet UI.

      location string

      Geographic location or address of the verifier.

      coverUri string

      URL of the verifier's cover image for display in the wallet UI.

      description string

      Human-readable description of the verifier.

      createdAt numberrequired

      Unix timestamp (in seconds) when this presentation record was created.

      updatedAt numberrequired

      Unix timestamp (in seconds) when this presentation record was last modified.

      presentation object[]

      Array of credential details included in the Verifiable Presentation sent to the verifier.

    • Array [
      • id string

      Identifier of the Input Descriptor from the Presentation Definition that this credential satisfies.

      credentialId string

      Identifier of the credential from the holder's wallet used in this presentation.

      type string[]

      Credential type strings from the presented W3C Verifiable Credential.

      credentialSubject object

      Disclosed claims from the presented credential in W3C JWT VC format.

      vct string

      Verifiable Credential Type from the presented IETF SD-JWT VC.

      doctype string

      Document type from the presented ISO mDoc credential.

      claims object

      Disclosed claims from the presented SD-JWT VC or mDoc credential.

    • ]
      • legalPidAttestation string

      Legal Person Identification attestation of the verifier, used to verify the verifier's legal identity.

      legalPidAttestationPop string

      Proof of Possession for the verifier's Legal Person Identification attestation.

      legalPidVerified boolean

      Indicates whether the verifier's Legal Person Identification attestation was successfully verified.

      kid string

      Key Identifier of the verifier's cryptographic key used for signing or encryption.

      trustAnchor string

      Possible values: [jwk, did:key, did:ebsi, did:web, did:tdw]

      DID method or key type of the verifier's trust anchor.

      idToken string

      OpenID Connect ID Token shared with the verifier during the presentation flow.

      idTokenDecoded object

      Decoded payload of the OpenID Connect ID Token shared with the verifier.

      clientIdScheme string

      Client ID scheme used by the verifier in the OpenID4VP Authorization Request.

      verifierAttestation string

      Verifier Attestation JWT received from the verifier, proving the verifier's authorization to request specific credentials.

      dcqlQuery object

      DCQL query from the verifier's OpenID4VP Authorization Request, specifying requested credentials and claims.

      encryptionJwk object

      Verifier's public key JWK used by the holder to encrypt the OpenID4VP Authorization Response.

      isVerifiedWithTrustList boolean

      Indicates whether the verifier has been verified against a configured trust list.

      trustServiceProvider object

      Trust Service Provider details for verifying the verifier's identity.

      responseRedirectUri string

      Redirect URI returned in the OpenID4VP Authorization Response. The verifier's application redirects the user to this URI after processing the presentation.

      encryptedResponseEncValuesSupported string[]

      Possible values: [A128CBC-HS256, A128GCM, A256GCM]

      JWE content encryption algorithms supported by the verifier for the encrypted Authorization Response.

      encryptionAlgorithm string

      JWE algorithm used by the holder to encrypt the OpenID4VP Authorization Response.

    Loading...
    Last updated on