Comments (3)
Summary of what I think would be needed to setup.
- We need a technical resource/point of contact on our side to work with their point of contact.
- Emiliano has done this in the past -- not sure who has the knowledge to do that in his place.
- Meetings:
- Overview of what is going to happen -- demo, theory of operation, integration points.
- Understanding of their environment/tech stack. What OpenIDConnect capability is in Drupal?
- Periodic meetings/support to complete the integration.
- Deploy a dev/test/prod instance of ACA-Py+vc-authn-oidc, including a Postgres wallet instance, and ideally (but not crucial) a Redis setup.
- Mostly an SRE task. Effort depends on the state of the templates for deploying this. Identical to Access to Audio?
- I would guess this is a few days at most.
- AFAIK - we don't have traction deployed and ready for this, so that is not an option. We could use this to spin up a "vc-authn-oidc" Traction instance, with a plan to use that for future vc-authn-oidc deployments.
- Coordinate CLBC's access to the different instances
- Authentication for use of the endpoints.
- Define their presentation request for the vc-authn-oidc instance.
- Documentation
- Technical - what they need to do to maintain their environment, testing in Dev/Test
- End user
Interesting idea -- could they use the same instance as Access to Audio? They are doing exactly the same thing -- could they just use that deployment that is already in use?
from ditp.
I'm thinking they could integrate with the existing KeyCloak/vc-authn instances we are using for ACM (A2A) and DEMS for LSBC. There are already proof requests configured for the LSBC Member Card alone, or the Member Card plus Person Credential.
Drupal can integrate with KeyCloak realms; https://www.drupal.org/project/keycloak
from ditp.
I had a quick chat with Aaron yesterday, and it sounds like CLBC would like to add a verified email to the proof request. What is to be confirmed is whether this is true and whether https://email-verification.vonx.io
can be used, or a new service would need to be developed/deployed (note: be mindful/careful with the proliferation of services we need to maintain, we have too many already).
Integration with the same keycloak realm ACM is using would be the way to go and path of least friction.
from ditp.
Related Issues (20)
- [Bug] No active revocation registry for existing credential definition HOT 14
- DEV Env - Traction environment Endorser alias renames HOT 1
- Company name changes - update in Orgbook test required HOT 5
- OrgBook
- Define reservation form requirements for Traction dev/test/prod and sandbox HOT 1
- Experiment with Load Test Generator in preparation for use with IDIM Issuer and a Verifier HOT 2
- Real-life integration of the VC Load Tester HOT 1
- Move Traction OIDC capabilities over to digitaltrust-citz Keycloak realm HOT 7
- Decomission digitaltrust-nrm Keycloak realm HOT 2
- Create an ACA-Py plugin that implements the new (proposed) DRPC protocol HOT 4
- Transition to GH Projects HOT 3
- Preparation for an OpenShift/Traction Load Generator Test
- Transition to GitHub Projects for DITP Enterprise Teams HOT 1
- Remove BCOVRIN-DEV usage and documentation HOT 1
- Update projects to v2 protocols HOT 5
- DevHub Documentation HOT 2
- Compile generic proof-request templates for Person use-cases
- Review Test harness ACA-Py to Credo results HOT 1
- Dependency matrix/tree for Aries projects
- Set up Traction Contractor Credential Issuers for CSB/CDT HOT 31
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ditp.