WORK ITEM: Verifiable Credentials Examples
Home Page: https://w3c-ccg.github.io/vc-examples/
License: Other
Verifiable Credentials Examples
This GitHub Pages Website hosts example credentials, as well as documents needed to construct them. When contributing an example, you are encouraged to provide everything needed to generate an verify a credential. Do your best not to include ANY broken links or missing documentation. If possible, try to make the credential id resolvable as well.
This test suite has moved next to the API spec which it relies on.
See w3c-ccg/vc-http-api.
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot]")
The VC contains ForestTransportGuide type which is not included in any of the contexts. Hence the TrustBloc verifier fails with invalid signature due to invalid RDF.
JSON Playground normalization result has -
<http://example.com/credentials/123> <http://www.w3.org/1999/02/22-rdf-syntax-ns#type> <https://json-ld.org/playground/ForestTransportGuide> .
If the challenge option is not passed but the proof contains a challenge, it seems the test suite currently expects the verifier to fail the request.
Is this the desired behavior?
POST https://vc.api.factom.sphereon.com/services/issue/credentials
{
"credential": {
"@context": [
"https://www.w3.org/2018/credentials/v1",
"https://www.w3.org/2018/credentials/examples/v1",
"https://digitalbazaar.github.io/citizenship-vocab/contexts/citizenship-v1.jsonld"
],
"id": "http://example.gov/credentials/3732",
"type": [
"VerifiableCredential",
"UniversityDegreeCredential"
],
"name": "Bachelor Degree",
"description": "Bachelor of Science and Arts",
"issuer": "did:v1:test:nym:z6MkvSbsrm44VnhngbyW2rZk2u9bvSPUSmJwqYjMd4RSJT7A",
"issuanceDate": "2020-03-16T22:37:26.544Z",
"credentialSubject": {
"id": "did:key:z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd",
"degree": {
"type": "BachelorDegree",
"name": "Bachelor of Science and Arts"
}
}
},
"options": {
"assertionMethod": "did:v1:test:nym:z6MkvSbsrm44VnhngbyW2rZk2u9bvSPUSmJwqYjMd4RSJT7A#z6MkjFhRvbXfjmQ8iFHeYh42cNS7v4CtguLzvwZSXcHe8zqy"
}
}
Yields 400, "Unknown Issuer DID"
Factom Issued Credential
POST https://vc.transmute.world/v0.1.0/verify/credentials
{
"verifiableCredential": {
"@context": [
"https://www.w3.org/2018/credentials/v1",
"https://www.w3.org/2018/credentials/examples/v1"
],
"id": "http://example.gov/credentials/3732",
"type": [
"VerifiableCredential",
"UniversityDegreeCredential"
],
"issuanceDate": "2020-03-10T04:24:12.164Z",
"credentialSubject": {
"id": "did:key:z6Mkg9AkjefxdJFSphkStzXwHQnbweN43mCqA37aANGRxF1o",
"degree": {
"type": "BachelorDegree",
"name": "Bachelor of Science and Arts"
}
},
"issuer": "did:v1:test:nym:z6MkvSbsrm44VnhngbyW2rZk2u9bvSPUSmJwqYjMd4RSJT7A",
"proof": {
"type": "Ed25519Signature2018",
"created": "2020-04-29T13:04:57Z",
"jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..FUGNtv74xIug4YUOGB9lZk0Xw1v49helfIKLwJpbj0FQCHMqCg5H7Urg4iY5hFYXw0EwsfnIsRD20fvah8fLCA",
"proofPurpose": "assertionMethod",
"verificationMethod": "did:v1:test:nym:z6MkvSbsrm44VnhngbyW2rZk2u9bvSPUSmJwqYjMd4RSJT7A#z6MkjFhRvbXfjmQ8iFHeYh42cNS7v4CtguLzvwZSXcHe8zqy"
}
}
}
Yields 400, "{message: {}}"
Mavennet Issued Credential
POST https://vc.transmute.world/v0.1.0/verify/credentials
{
"verifiableCredential": {
"@context": [
"https://www.w3.org/2018/credentials/v1",
"https://www.w3.org/2018/credentials/examples/v1"
],
"id": "http://example.gov/credentials/3732",
"type": [
"VerifiableCredential",
"UniversityDegreeCredential"
],
"issuanceDate": "2020-03-10T04:24:12.164Z",
"credentialSubject": {
"id": "did:key:z6Mkg9AkjefxdJFSphkStzXwHQnbweN43mCqA37aANGRxF1o",
"degree": {
"type": "BachelorDegree",
"name": "Bachelor of Science and Arts"
}
},
"issuer": "did:v1:test:nym:z6MkfG5HTrBXzsAP8AbayNpG3ZaoyM4PCqNPrdWQRSpHDV6J",
"proof": {
"type": "Ed25519Signature2018",
"created": "2020-04-29T12:46:27Z",
"jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..C5L6wDYVhxFfn8EF8Csw4woQwN_92zkzX03JomSlLvtwg1EsJc542SNL_fNMtmrgHNMYXtdQ0AWwqv3wBUy3Bw",
"proofPurpose": "assertionMethod",
"verificationMethod": "did:v1:test:nym:z6MkfG5HTrBXzsAP8AbayNpG3ZaoyM4PCqNPrdWQRSpHDV6J#z6MkqfvdBsFw4QdGrZrnx7L1EKfY5zh9tT4gumUGsMMEZHY3"
}
}
}
Yields 400, "{message: {}}"
POST https://vc.transmute.world/v0.1.0/verify/presentations
{
"verifiablePresentation": {
"@context": [
"https://www.w3.org/2018/credentials/v1"
],
"type": [
"VerifiablePresentation"
],
"verifiableCredential": [
{
"@context": [
"https://www.w3.org/2018/credentials/v1",
"https://www.w3.org/2018/credentials/examples/v1"
],
"id": "http://example.gov/credentials/3732",
"type": [
"VerifiableCredential",
"UniversityDegreeCredential"
],
"issuanceDate": "2020-03-10T04:24:12.164Z",
"credentialSubject": {
"id": "did:key:z6Mkg9AkjefxdJFSphkStzXwHQnbweN43mCqA37aANGRxF1o",
"degree": {
"type": "BachelorDegree",
"name": "Bachelor of Science and Arts"
}
},
"issuer": "did:factom:5d0dd58757119dd437c70d92b44fbf86627ee275f0f2146c3d99e441da342d9f",
"proof": {
"type": "Ed25519Signature2018",
"created": "2020-05-01T13:13:56Z",
"jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..2w_w-SiGkN1ChlTXnv18FbdBQ-G7sGx58FI6Xe8S7dNQykU8TNBJSDnWA3COui6UcsA2kFyyHrostgOX9VyoCQ",
"proofPurpose": "assertionMethod",
"verificationMethod": "did:factom:5d0dd58757119dd437c70d92b44fbf86627ee275f0f2146c3d99e441da342d9f#key-0"
}
}
],
"holder": "did:factom:7569b2bdb5ee34a6d886c8d39f2dad7f50d6a1135f75e53f383364516a0aceb5",
"proof": {
"type": "Ed25519Signature2018",
"created": "2020-05-01T13:16:15Z",
"challenge": "424f5466-fa03-40b8-933e-ead265d69afa",
"domain": "issuer.example.com",
"jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..PH8ZBqmYfONsnia7mEN-9xR90_QOdpWw32Bny5Yj8QWGvKC1fsjIdRXJcAiIY6t_IpsyY98_W-easOBcPVyYBQ",
"proofPurpose": "authentication",
"verificationMethod": "did:factom:7569b2bdb5ee34a6d886c8d39f2dad7f50d6a1135f75e53f383364516a0aceb5#key-0"
}
},
"options": {
"domain": "issuer.example.com",
"challenge": "424f5466-fa03-40b8-933e-ead265d69afa",
"checks": ["proof"]
}
}
Response: HTTP/2 400 {"message":{}}
I can only seem to verify the Transmute example presentations, which seem to have the same structure:
POST ttps://vc.transmute.world/v0.1.0/verify/presentations
{
"verifiablePresentation":{
"@context": ["https://www.w3.org/2018/credentials/v1"],
"type": ["VerifiablePresentation"],
"holder": "did:web:vc.transmute.world",
"verifiableCredential": [
{
"@context": [
"https://www.w3.org/2018/credentials/v1",
"https://www.w3.org/2018/credentials/examples/v1"
],
"id": "http://example.gov/credentials/3732",
"type": ["VerifiableCredential", "UniversityDegreeCredential"],
"issuer": "did:v1:test:nym:z6MkhdmzFu659ZJ4XKj31vtEDmjvsi5yDZG5L7Caz63oP39k",
"issuanceDate": "2020-03-10T04:24:12.164Z",
"credentialSubject": {
"id": "did:key:z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd",
"degree": {
"type": "BachelorDegree",
"name": "Bachelor of Science and Arts"
}
},
"proof": {
"type": "Ed25519Signature2018",
"created": "2019-12-11T03:50:55Z",
"verificationMethod": "did:v1:test:nym:z6MkhdmzFu659ZJ4XKj31vtEDmjvsi5yDZG5L7Caz63oP39k#z6MkiukuAuQAE8ozxvmahnQGzApvtW7KT5XXKfojjwbdEomY",
"proofPurpose": "assertionMethod",
"jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..uzx8px7eGewfc5Qa-GN1qjcYZH4nX3PBBaFW22x_573nnMu_Uzn6oT6ITL54QEk08XCqCE2OX2L-8ovsffXPDg"
}
}
],
"proof": {
"type": "Ed25519Signature2018",
"created": "2020-04-16T17:58:26Z",
"verificationMethod": "did:web:vc.transmute.world#z6MksHh7qHWvybLg5QTPPdG2DgEjjduBDArV9EF9mRiRzMBN",
"proofPurpose": "authentication",
"challenge": "99612b24-63d9-11ea-b99f-4f66f3e4f81a",
"domain": "issuer.example.com",
"jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..FtI4bekQdsVyx9OXcz4a6hL6Y2GAQ9gjA1_nQTmYXLCHenBnap-LlaLlh3DGXdATkXz7Oq5iCRcxTvc4aI7oCg"
}
},
"options": {
"domain": "issuer.example.com",
"challenge": "99612b24-63d9-11ea-b99f-4f66f3e4f81a",
"checks": [
"proof"
]
}
}
Response: HTTP/2 200 {"checks":["proof"]}
I can't seem to get any more specific error messages on this one.
decentralized-identity/c19-vc.com#4
These were experimental examples, don't take them seriously... see the commit history to see how little effort has gone into them.
"credential.issuer" or "credential.issuer.id" in the body of the POST request is not a DID.VC Data Model does not require this, I suggest we eliminate this test case.
From the UI here: https://mavennet.github.io/issuer-verifier-frontend/
POST https://api.neo-flow.com/credentials/issueCredential
{
"credential": {
"@context": [
"https://www.w3.org/2018/credentials/v1",
"https://www.w3.org/2018/credentials/examples/v1"
],
"id": "http://example.gov/credentials/3732",
"type": [
"VerifiableCredential",
"UniversityDegreeCredential"
],
"issuer": {
"id": "did:web:vc.transmute.world"
},
"issuanceDate": "2020-03-10T04:24:12.164Z",
"credentialSubject": {
"id": "did:example:ebfeb1f712ebc6f1c276e12ec21",
"degree": {
"type": "BachelorDegree",
"name": "Bachelor of Science and Arts"
}
}
},
"options": {
"issuer": "did:key:z6MkiTsvjrrPNDZ1rrg9QDEYCFWCmEswT6U2cEkScb7edQ9b",
"issuanceDate": "2020-04-28T01:47:25.522Z",
"proofPurpose": "assertionMethod",
"verificationMethod": "did:key:z6MkiTsvjrrPNDZ1rrg9QDEYCFWCmEswT6U2cEkScb7edQ9b#z6MkiTsvjrrPNDZ1rrg9QDEYCFWCmEswT6U2cEkScb7edQ9b"
}
}
Yields 400, "assertion method invalid"
options should look like:
"options": {
"assertionMethod": "did:key:z6MkiTsvjrrPNDZ1rrg9QDEYCFWCmEswT6U2cEkScb7edQ9b#z6MkiTsvjrrPNDZ1rrg9QDEYCFWCmEswT6U2cEkScb7edQ9b"
}
Issuer is not correctly pulled from "assertionMethod"... issuer should be:
assertionMethod.split('#')[0]... this needs to be set client side in the credential payload.
I am curious about verifying the relationship between the issuer and the verificationMethod. And similarly between holder and the verificationMethod.
The below VC fails as the ID is not an URI. Looks similar to #27.
In order to proceed with interop I propose we identify functionality that each VC issuer/ verifier would support described as a test. We can then add those tests to this repo's test suite. The following is a compiled list of tests:
The Crude Product VC example has UUID as the value for id field. As per the VC model spec, the id field MUST be a URI.
When using Mavennet, Transmute and Trustbloc's verifiers I could not verify any PRC presentation issued by DanubeTech (v1, sov). When i extracted the credential embedded, i was able to verify it.
{
"verifiablePresentation":{
"@context":[
"https://www.w3.org/2018/credentials/v1",
"https://www.w3.org/2018/credentials/examples/v1"
],
"holder":"did:key:z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd",
"type":"VerifiablePresentation",
"verifiableCredential":[
{
"@context":[
"https://www.w3.org/2018/credentials/v1",
"https://w3id.org/citizenship/v1"
],
"type":[
"VerifiableCredential",
"PermanentResidentCard"
],
"credentialSubject":{
"id":"did:gov:usa:dhs:uscis:d656a3c3-0f14-477c-9a9f-ae4c2524af32",
"type":[
"PermanentResident",
"Person"
],
"givenName":"JOHN",
"familyName":"SMITH",
"gender":"Male",
"image":"data:image/png;base64,iVBORw0KGgo...kJggg==",
"residentSince":"2015-01-01",
"lprCategory":"C09",
"lprNumber":"000-000-204",
"commuterClassification":"C1",
"birthCountry":"Bahamas",
"birthDate":"1958-08-17"
},
"issuer":"did:v1:test:nym:z6MktyAYL7sVcmPQPTbbMqrnGMNwp6zkvRvKREs94f81fA1K",
"issuanceDate":"2020-05-05T15:58:23Z",
"id":"https://sampleurl.com/eabe1c8b-ec80-431f-a0e5-ea6c34f3a2bf",
"name":"Danube 3",
"description":"",
"proof":{
"type":"Ed25519Signature2018",
"created":"2020-05-05T15:58:23Z",
"proofPurpose":"assertionMethod",
"verificationMethod":"did:v1:test:nym:z6MktyAYL7sVcmPQPTbbMqrnGMNwp6zkvRvKREs94f81fA1K#z6MkgumSeJ8FGqFjXFPJSsT2EFCNYVvx5RXDQ6oBYDrmtiDb",
"jws":"eyJjcml0IjpbImI2NCJdLCJiNjQiOmZhbHNlLCJhbGciOiJFZERTQSJ9..dPmVCcnlqDUHwXFSeBdVPNwLCwJHClSkbqgxrduPa3-Rd1DvDTZcuIDh5sTixcnwNNph3Jx1Az2pFmD6GXyDCA"
}
}
],
"proof":{
"type":"Ed25519Signature2018",
"created":"2020-05-05T15:59:03Z",
"verificationMethod":"did:key:z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd#z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd",
"proofPurpose":"authentication",
"challenge":"99591bde-acad-4b52-84b8-7167246ec0b3",
"domain":"mavennet.github.io",
"jws":"eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..et3H3k7mu_7iiNV20LC6BFJMwSlInwOdhY8te_Jwu7JnifvoilyfJjpJ3yrKRlzL40IYpmhZXBMtY4YVUlFgDA"
}
},
"options":{
"challenge":"99591bde-acad-4b52-84b8-7167246ec0b3",
"domain":"mavennet.github.io",
"checks":[
"proof"
]
}
}
https://identity.foundation/.well-known/resources/did-configuration/
^ a good candidate.
In order to easily issue as a DID, you need a kind of did document representation, that might be described as "unlocked"...
I'm not sure this data model is formalized anywhere, and its probably not always available.. (especially if hardware keys are involved)... however for simple testing, its extremely convenient.
We might want to consider supporting such a thing here... Here is an example: https://github.com/transmute-industries/vc.transmute.world/blob/master/src/services/unlockedDIDs/did:web:vc.transmute.world.json
The Crude Product VC used for Verifying the VC contains a non-uri ID field. This looks similar to the issue #27.
For the “The Verifier’s Verify Credential HTTP API MUST fail to verify a Verifiable Credential with an added property to the credential.“ (similarly with proof case).
Is the intention to check for properties that are not in the JSON-LD context OR check that an additional property hasn’t been added (that isn’t included in the signature)? Note the property that is added is “newProp”: “bar” … which isn’t in the JSON-LD context.
The tests should be delineated so we separate testing of proofs (and extra properties not in the proof) from testing of JSON-LD.
https://www.imsglobal.org/activity/digital-badges
Please include all the necessary items needed for someone to implement a new Open Badges based Verifiable Credential Data Model compliant VC / VP.
should everyone be using this?
if(issuer.endpoint.includes('digitalbazaar.com')) {
vendor.credentials = annotateWithUniqueId(vendor.credentials);
}
It really hard to preview credentials without these...
For example: https://digitalbazaar.github.io/citizenship-vocab/contexts/citizenship-v1.jsonld
See VP in #85 (comment).
It is unclear in this example VP that the Holder has a relationship to the underlying VC. Should the verifier check for some relationship?
Mavennet and Transmute demo sites cannot use it.
https://issuer.interop.transmute.world/
https://mavennet.github.io/issuer-verifier-frontend/
Copied from the email list:
Based on feedback from Daniel and Adrian's comments, I'm planning on implementing a new ImmunoglobulinDetectionTest schema.
The first format was aimed at anyone with a face, and assumed a cassette test and that the credential subject has a DID.
There pros and cons to that approach... the most obvious con is that absolutely nobody has DIDs.
I like the idea of splitting up the sample collection part and rest results part into 2 credentials, and using existing identifiers and hashing to link them.
Here would be the new user story:
Subject drives up to a tent in a parking lot.
Testing Facility Checks some id ( "presentedIDType: a picklist with strings such as "drivers license", "passport", "national ID card", etc " )
Testing Facility Collects blood sample and issues a "SampleCollectionCredential"
subject = sha256 ( presentedIDType + presentedIDNumber + 8-DIGIT-PIN )
presentedIDType (repeated in credential)
testResultURL: https://example.com/covid-19/vc-test-results/ ( subject )
credential is provided on paper, to the subject after sample is taken (multiple copies are provided, and it's safe for them to be copied further).
sample get sent to lab... days go by, etc...
Subjects can check a registry for their test results, when test results are ready they are published at a URL, which is provided to them in their credential.
testResultURL: https://example.com/covid-19/vc-test-results/ ( subject )
Subject can present test results to TSA / Law Enforcement when traveling by presenting their "SampleCollectionCredential" , whatever ID type they used for it, and disclosing their 8 DIGIT PIN
Verification is as follows
7.1 confirming the face / gender / eyes / height (etc) of the ID Card used for "SampleCollectionCredential"
7.2 Verify "SampleCollectionCredential" (no VP here, since the subject has no keys / DID).
7.3 Confirm subject = sha256 ( presentedIDType + presentedIDNumber + 8-DIGIT-PIN ) (website helps them do this)
7.3 Lookup testResultURL: https://example.com/covid-19/vc-test-results/ ( subject )
7.4 Verify "SampleTestResultCredential"
7.5 Apply allow / deny list (any other business logic rules)
Only the issuers would have DIDs in this scenario, and there would be no signed verifiable presentations.
anyone with presentedIDType + presentedIDNumber + 8-DIGIT-PIN, could claim a test result belonged to them, and its the responsibility of the verifier to check the presentedIDType.
Assuming that the presentedIDType where digital and that SampleCollectionCredential were digital, a Presentation that included the disclosure of the 8-DIGIT-PIN could be made over any transport that was supported ( CHAPI / DIDComm / Bluetooth )
We need a way to take a CSV, and produce an HTTP Issue request.
Individual and batch based
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google ❤️ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.