vc-api
vc-api copied to clipboard
w3c-ccg
An HTTP API for performing credential lifecycle management for Verifiable Credentials.
See: https://github.com/w3c-ccg/vc-http-api/pull/211#issuecomment-892145245
Initially, the word "App" was used to identify the fact that there is business logic and "services" that perform actions on VCs and VPs. This has caused confusion because some...
Is this endpoint supposed to return all credentials from an issuer associated with a holder in an inbox-like fashion? If so, I have some follow-up questions: - Can issuers enable...
It has been 10+ months since the group first discussed API endpoint authorization. At this point, [we have 5 implementations demonstrating some level of interoperability with OAuth2 as the authorization...
Many VC API endpoints take in options. None of them state that options are optional. The ` /presentations/verify` rules in fact appear to require options: > options [object] > Options...
We discussed the DID Auth PR https://github.com/w3c-ccg/vp-request-spec/pull/18, specifically the way in which a respondent to a DID Auth request should verify the `domain` before responding. Comments were made that different...
During the VC API call a week ago, the topic of an "Exchanger Service" came up -- https://github.com/w3c-ccg/vc-api/issues/295#issuecomment-1182482405 . What is it, what can you do with it, and who...
There are times where it might be appropriate for the VC API to use callbacks. Two use cases are: 1. Report to an external system on progress, such as the...
This PR fixes the existing CI/CD workflow for building and publishing OAS documentation to the /api subfolder of GH pages, and it also adds a new linting workflow. Fixes #277,...
See https://github.com/w3c-ccg/vc-api/issues/265#issuecomment-1073978994. > The credential should be rejected with an error indicating that the issuer does not match. This results in a fail-closed scenario, which is preferable given the security...