15.4. Credential Issuer PDND OpenAPI Specification¶
Below is the complete Open API Specification for the ACredential Issuer PDND e-services:
1openapi: 3.0.1
2info:
3 title: IT Wallet API - Issuer web services
4 version: 0.1.0
5servers:
6 - url: https://issuer.example.it
7 description: Credential Issuer API
8paths:
9 /v0.9.0/notifyWalletRevocation:
10 post:
11 tags:
12 - e-services PDND
13 summary: >-
14 Notify Wallet Instance Revocation
15 description: >-
16 This service revokes all digital credentials associated with a specific
17 user
18 operationId: notifyWalletRevocation
19 parameters:
20 - name: Authorization
21 in: header
22 description: >-
23 JWT token obtained from <a target="blank"
24 href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html#voucher-issuance">PDND
25 Interoperabilità</a>. Based on the implementation choices, it can be either Bearer or DPoP.<br/><br/><a target="blank"
26 href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA">EXAMPLE
27 ON JWT.IO</a>
28 required: true
29 schema:
30 type: string
31 format: Signed JWT
32 example: >-
33 DPoP
34 eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA
35 - name: DPoP
36 in: header
37 description: >-
38 DPoP proof JWT, to comply with the REST_JWS_2021_POP security
39 pattern using the POP_DPoP implementation. See also <a target="blank"
40 href="https://datatracker.ietf.org/doc/html/rfc9449.html">RFC
41 9449</a>.<br/><br/>
42
43 <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6ImNiZGJmNmZlZWY0ODA2MjI4ZGJmNDY0Yjc1MGE5NGMyOGQ4ZTUzMDFhNzE1ZmZjM2U2Y2QyZjk0YjZlOGUxNTQiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.uL017GdfXzJ-9jhs6AUpwtkWLgyBgDWOtlrFvMltLp0C0NFwwMpOGnv-FxxwfYdJj--cteyCjGnmJZhekEKIEA">EXAMPLE
44 ON JWT.IO</a>
45 required: false
46 schema:
47 type: string
48 format: JWT
49 example: >-
50 eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6ImNiZGJmNmZlZWY0ODA2MjI4ZGJmNDY0Yjc1MGE5NGMyOGQ4ZTUzMDFhNzE1ZmZjM2U2Y2QyZjk0YjZlOGUxNTQiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.uL017GdfXzJ-9jhs6AUpwtkWLgyBgDWOtlrFvMltLp0C0NFwwMpOGnv-FxxwfYdJj--cteyCjGnmJZhekEKIEA
51 - name: Agid-JWT-Signature
52 in: header
53 description: >-
54 JWT containing the signature of the message headers whose integrity
55 needs to be guaranteed, to comply with the INTEGRITY_REST_02
56 security pattern. <a target="blank"
57 href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>. <br/><br/>
58
59 <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.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.0zncFKgLgIAhcX7aTIjC44NWYBiQKM4ZmdHfBqZ0O-W38NkBanT1tz9Z7Z0OBqQqDNsehJQa4IKNzbTjAhoccA">EXAMPLE
60 ON JWT.IO</a>
61 required: true
62 schema:
63 type: string
64 format: JWT
65 example: eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.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.0zncFKgLgIAhcX7aTIjC44NWYBiQKM4ZmdHfBqZ0O-W38NkBanT1tz9Z7Z0OBqQqDNsehJQa4IKNzbTjAhoccA
66 - name: Digest
67 in: header
68 description: >-
69 Digest of the message payload, to comply with the INTEGRITY_REST_02
70 security pattern. According to <a target="blank" href="https://www.rfc-editor.org/rfc/rfc3230.html#section-4.2">RFC
71 3230 §4.2</a>, the format MUST be the following: digest-algorithm=encoded
72 digest output.
73 required: true
74 schema:
75 type: string
76 example: SHA-256=9ddda086a3b9027508a971f16e0c44aa2c9d8d91334f2d4aedd1cd6a0a2ad3a8
77 - name: Agid-JWT-TrackingEvidence
78 in: header
79 description: >-
80 If the Voucher type is Bearer, this header represents a JWT acting as a proof of possession, to comply with the REST_JWS_2021_POP security
81 pattern using the POP_TPoP implementation. Otherwise, it is a JWT containing the data tracked in the Consumer's domain, to comply with AUDIT_REST_02 (see <a target="blank"
82 href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>). <br/><br/>
83 <a target="blank" href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA">EXAMPLE ON JWT.IO</a>
84 required: false
85 schema:
86 type: string
87 format: JWT
88 example: eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2F1dGhlbnRpYy1zb3VyY2UuZXhhbXBsZS5pdCIsImV4cCI6MTczMzA1MjYwMCwibmJmIjoxNzMzMDM2NDUwLCJpYXQiOjE3MzMwMzY0MDAsImp0aSI6ImE0YjVjNmQ3LWU4ZjktYWJjZC1lZjEyLTM0NTY3ODkwMTIzNCIsImRub25jZSI6NjUyODQyNDIxMzY4NSwicHVycG9zZUlkIjoiYjJjM2Q0ZTUtZjZnNy1oOGk5LWowazEtbG1ubzEyMzQ1Njc4IiwidXNlcklEIjoiYThiN2M2ZDUtZTRmMy1nMmgxLWk5ajAta2xtbm9wcXJzdHV2IiwibG9hIjoic3Vic3RhbnRpYWwifQ.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA
89 requestBody:
90 content:
91 application/json:
92 schema:
93 $ref: "#/components/schemas/RevokeAllCredentials"
94 required: true
95 responses:
96 "200":
97 description: 200 OK
98 content:
99 application/jwt:
100 schema:
101 $ref: "#/components/schemas/e-Service_Response"
102 example: "eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImE4ZDEzYzQ1ZWYyZTI4MzBmN2M0NGJkNDk0MWNjYSJ9.eyJpc3MiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0LzEuMC4wL3YxL25vdGlmeVdhbGxldFJldm9jYXRpb24iLCJuYmYiOjE3MzY4NDY2ODgsImV4cCI6MTczNjg0NjkyOCwiaWF0IjoxNzM2ODQ2Njg4LCJhdWQiOiIzMTY3MDA5Mi1lZWMwLTRmOTUtODhkYS1lMWM3Y2U1ZTQ1MDUiLCJqdGkiOiJjOGJkOGEyZi1lOTkwLTQ0ZmEtOTAxMy0xYjM1M2JmYzVhMGQiLCJyZXN1bHRfY29kZSI6InJlcXVlc3RfYWNjZXB0ZWQiLCJyZXN1bHRfZGVzY3JpcHRpb24iOiJUaGUgc2VydmljZSBjb3JyZWN0bHkgcmVjZWl2ZWQgdGhlIHJlcXVlc3QifQ.ExthZCx8LHMlTTtBm9qA8Y3FhlKvTl-_sWXq35e_vTRMmKukrLhBhNa-C1xfli8g_JBixYhsBzUWhE0ING_kIQ"
103 "400":
104 description: Bad Request
105 content:
106 application/json:
107 schema:
108 oneOf:
109 - type: object
110 properties:
111 error:
112 type: string
113 description: invalid_request
114 error_description:
115 type: string
116 description: >-
117 The request cannot be fulfilled because it is missing
118 required parameters, contains invalid parameters, or
119 is otherwise malformed.
120 required:
121 - error
122 - type: object
123 properties:
124 error:
125 type: string
126 description: invalid_dpop_proof
127 error_description:
128 type: string
129 description: >-
130 The request cannot be fulfilled because it contains an
131 invalid dpop proof.
132 required:
133 - error
134 examples:
135 invalid request:
136 value:
137 error: invalid_request
138 error_description: >-
139 The request cannot be fulfilled because it is missing
140 required parameters, contains invalid parameters, or is
141 otherwise malformed
142 invalid dpop proof:
143 value:
144 error: invalid_dpop_proof
145 error_description: >-
146 The request cannot be fulfilled because it contains an
147 invalid dpop proof
148 "401":
149 description: Unauthorized
150 headers:
151 WWW-Authenticate:
152 description: The request cannot be fulfilled because the Voucher is expired, revoked or otherwise malformed. See <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc6750.html#section-3">RFC6750</a> and <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc9449.html#section-7.1-11">RFC9449</a> for details.
153 schema:
154 type: string
155 "404":
156 description: Credentials not found
157 content:
158 application/json:
159 schema:
160 type: object
161 properties:
162 error:
163 type: string
164 description: The error code
165 example: not_found
166 error_description:
167 type: string
168 description: >-
169 Text in human-readable form providing further details to
170 clarify the nature of the error encountered
171 example: >-
172 The issuer cannot fulfill the request because the
173 credentials were not found
174 required:
175 - error
176 "500":
177 description: Internal Server Error
178 content:
179 application/json:
180 schema:
181 type: object
182 properties:
183 error:
184 type: string
185 description: server_error
186 error_description:
187 type: string
188 description: >-
189 The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
190 required:
191 - error
192 example:
193 error: invalid_request
194 error_description: >-
195 The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
196 "503":
197 description: Service Unavailable
198 content:
199 application/json:
200 schema:
201 type: object
202 properties:
203 error:
204 type: string
205 description: The error code
206 error_description:
207 type: string
208 description: >-
209 Text in human-readable form providing further details to
210 clarify the nature of the error encountered
211 required:
212 - error
213 example:
214 error: "temporarily_unavailable"
215 error_description: "The request cannot be fulfilled because the e-Service Endpoint is temporarily unavailable (e.g., due to maintainance or overload)"
216 /v0.9.0/notifyAvailableCredentials:
217 post:
218 tags:
219 - e-services PDND
220 summary: Notify Available Credential
221 description: >-
222 This service informs users when a specific credential has become
223 available to be entered into the Wallet
224 operationId: notifyAvailableCredentials
225 parameters:
226 - name: Authorization
227 in: header
228 description: >-
229 JWT token obtained from <a target="blank"
230 href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html#voucher-issuance">PDND
231 Interoperabilità</a>. Based on the implementation choices, it can be either Bearer or DPoP.<br/><br/><a target="blank"
232 href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.RQrkQvSrlJ0i3zxRuqxrs31FzGAy5yCR54VBR_v597R19OjiD4LR1u6H1_HK6GbhjJJJoENGG1fhV6MThqXMyw">EXAMPLE
233 ON JWT.IO</a>
234 required: true
235 schema:
236 type: string
237 format: Signed JWT
238 example: >-
239 DPoP
240 eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.eyJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMzE2NzAwOTItZWVjMC00Zjk1LTg4ZGEtZTFjN2NlNWU0NTA1IiwibmJmIjoxNzM2ODQ2MTkyLCJwdXJwb3NlSWQiOiI3MmUwMTk1OC1mZTI3LTQzYmQtYWI2Ny1iOTlhNjY5ZTQwYzAiLCJpc3MiOiJ1YXQuaW50ZXJvcC5wYWdvcGEuaXQiLCJleHAiOjE3MzY4NDY0OTIsImlhdCI6MTczNjg0NjE5MiwiY2xpZW50X2lkIjoiMzE2NzAwOTItZWVjMC00Zjk1LTg4ZGEtZTFjN2NlNWU0NTA1IiwianRpIjoiNTdkMjEzNjItOWZhZi00ZGRmLTkwMWQtZDRhODkyNDE5ZDhhIiwiZGlnZXN0Ijp7ImFsZyI6IlNIQTI1NiIsInZhbHVlIjoiYWMwYjc1YWFiNGIyYmQwZDE5MGY3ZWFhZjZhNjEzZmYyN2I2MWM5Zjg5NjUxMmU0NTQ3YzJiZGVlYjIzOTMzOCJ9LCJjbmYiOnsiamt0IjoiZjgyMTc2MDY2ZWIzOGZkMzM4MGQyZDNkMzRkZWI1ODkwZTY4NWVlOGU5ZTE1YTdlYjg0ODcyYTZmYWMzNDA2MyJ9fQ.RQrkQvSrlJ0i3zxRuqxrs31FzGAy5yCR54VBR_v597R19OjiD4LR1u6H1_HK6GbhjJJJoENGG1fhV6MThqXMyw
241 - name: DPoP
242 in: header
243 description: >-
244 DPoP proof JWT, to comply with the REST_JWS_2021_POP security
245 pattern using the POP_DPoP implementation. See also <a target="blank"
246 href="https://datatracker.ietf.org/doc/html/rfc9449.html">RFC
247 9449</a>.<br/><br/>
248
249 <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6ImE1OWU3YTQ3YjExOWIxYTRiY2RiNGU1MzE2Y2IxYWM1ZmJjOThiZjk4YmE4OTBjM2E4NThmNTM3MDIyZTNjNmEiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.Htc8JQ2v63SO-yyoFfsnX_zNNUymCV4OGEGTVsqofpHhxniw7N1PyMRrHYj9PlRGaU7_uPR0BGAHjrQQ1IlMow">EXAMPLE
250 ON JWT.IO</a>
251 required: false
252 schema:
253 type: string
254 format: JWT
255 example: >-
256 eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6ImE1OWU3YTQ3YjExOWIxYTRiY2RiNGU1MzE2Y2IxYWM1ZmJjOThiZjk4YmE4OTBjM2E4NThmNTM3MDIyZTNjNmEiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.Htc8JQ2v63SO-yyoFfsnX_zNNUymCV4OGEGTVsqofpHhxniw7N1PyMRrHYj9PlRGaU7_uPR0BGAHjrQQ1IlMow
257 - name: Agid-JWT-Signature
258 in: header
259 description: >-
260 JWT containing the signature of the message headers whose integrity
261 needs to be guaranteed, to comply with the INTEGRITY_REST_02
262 security pattern. <a target="blank"
263 href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>. <br/><br/>
264
265 <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.eyJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMzE2NzAwOTItZWVjMC00Zjk1LTg4ZGEtZTFjN2NlNWU0NTA1IiwibmJmIjoxNzM2ODQ2Njg4LCJwdXJwb3NlSWQiOiI3MmUwMTk1OC1mZTI3LTQzYmQtYWI2Ny1iOTlhNjY5ZTQwYzAiLCJpc3MiOiIzMTY3MDA5Mi1lZWMwLTRmOTUtODhkYS1lMWM3Y2U1ZTQ1MDUiLCJleHAiOjE3MzY4NDY5MjgsImlhdCI6MTczNjg0NjY4OCwiY2xpZW50X2lkIjoiMzE2NzAwOTItZWVjMC00Zjk1LTg4ZGEtZTFjN2NlNWU0NTA1IiwianRpIjoiNTdkMjEzNjItZTk5MC00NGZhLTkwMTMtMWIzNTNiZmM1YTBkIiwic2lnbmVkX2hlYWRlcnMiOnsiZGlnZXN0IjoiU0hBLTI1Nj0xMmJjNjVhNzk4MmI2YzA1MjczYzI5MDgwOGIwYzVmZDdhZDZhZjJkNjhhM2IyZDRkYTRiYTJjNGExZWI3YjUxIiwiY29udGVudC10eXBlIjoiYXBwbGljYXRpb24vanNvbiJ9fQ.FXeF6nv84W3Yeuup3tnF6hgYMsuUqkUESPVdcYuIRwDQ6-mUZABugVQcnSM4lRoVAf4BjW0S21zbM0uHFakBxw">EXAMPLE
266 ON JWT.IO</a>
267 required: true
268 schema:
269 type: string
270 format: JWT
271 example: eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.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.FXeF6nv84W3Yeuup3tnF6hgYMsuUqkUESPVdcYuIRwDQ6-mUZABugVQcnSM4lRoVAf4BjW0S21zbM0uHFakBxw
272 - name: Digest
273 in: header
274 description: >-
275 Digest of the message payload, to comply with the INTEGRITY_REST_02
276 security pattern. According to <a target="blank" href="https://www.rfc-editor.org/rfc/rfc3230.html#section-4.2">RFC
277 3230 §4.2</a>, the format MUST be the following: digest-algorithm=encoded
278 digest output.
279 required: true
280 schema:
281 type: string
282 format: JWT
283 example: SHA-256=12bc65a7982b6c05273c290808b0c5fd7ad6af2d68a3b2d4da4ba2c4a1eb7b51
284 - name: Agid-JWT-TrackingEvidence
285 in: header
286 description: >-
287 If the Voucher type is Bearer, this header represents a JWT acting as a proof of possession, to comply with the REST_JWS_2021_POP security
288 pattern using the POP_TPoP implementation. Otherwise, it is a JWT containing the data tracked in the Consumer's domain, to comply with AUDIT_REST_02 (see <a target="blank"
289 href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>). <br/><br/>
290 <a target="blank" href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA">EXAMPLE ON JWT.IO</a>
291 required: false
292 schema:
293 type: string
294 format: JWT
295 example: eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA
296 requestBody:
297 content:
298 application/json:
299 schema:
300 $ref: "#/components/schemas/AvailableCredentialsRequest"
301 required: true
302 responses:
303 "200":
304 description: 200 OK
305 content:
306 application/jwt:
307 schema:
308 $ref: "#/components/schemas/e-Service_Response"
309 example: "eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImE4ZDEzYzQ1ZWYyZTI4MzBmN2M0NGJkNDk0MWNjYSJ9.eyJpc3MiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0LzEuMC4wL3YxL25vdGlmeUF2YWlsYWJsZUNyZWRlbnRpYWxzIiwibmJmIjoxNzM2ODQ2Njg4LCJleHAiOjE3MzY4NDY5MjgsImlhdCI6MTczNjg0NjY4OCwiYXVkIjoiMzE2NzAwOTItZWVjMC00Zjk1LTg4ZGEtZTFjN2NlNWU0NTA1IiwianRpIjoiYzhiZDhhMmYtZTk5MC00NGZhLTkwMTMtMWIzNTNiZmM1YTBkIiwicmVzdWx0X2NvZGUiOiJyZXF1ZXN0X2FjY2VwdGVkIiwicmVzdWx0X2Rlc2NyaXB0aW9uIjoiVGhlIHNlcnZpY2UgY29ycmVjdGx5IHJlY2VpdmVkIHRoZSByZXF1ZXN0In0.5DbB-OIi2eXz6Txm3UhCrvpq10aOkae1huR7VSa2dGRW7XeOeS5ELURHp1YY9wBdHD2zJWx882Vpq3NHlEGkyA"
310 "400":
311 description: Bad Request
312 content:
313 application/json:
314 schema:
315 oneOf:
316 - type: object
317 properties:
318 error:
319 type: string
320 description: invalid_request
321 error_description:
322 type: string
323 description: >-
324 The request cannot be fulfilled because it is missing
325 required parameters, contains invalid parameters, or
326 is otherwise malformed.
327 required:
328 - error
329 - type: object
330 properties:
331 error:
332 type: string
333 description: invalid_dpop_proof
334 error_description:
335 type: string
336 description: >-
337 The request cannot be fulfilled because it contains an
338 invalid dpop proof.
339 required:
340 - error
341 examples:
342 invalid request:
343 value:
344 error: invalid_request
345 error_description: >-
346 The request cannot be fulfilled because it is missing
347 required parameters, contains invalid parameters, or is
348 otherwise malformed
349 invalid dpop proof:
350 value:
351 error: invalid_dpop_proof
352 error_description: >-
353 The request cannot be fulfilled because it contains an
354 invalid dpop proof
355 "401":
356 description: Unauthorized
357 headers:
358 WWW-Authenticate:
359 description: The request cannot be fulfilled because the Voucher is expired, revoked or otherwise malformed. See <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc6750.html#section-3">RFC6750</a> and <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc9449.html#section-7.1-11">RFC9449</a> for details.
360 schema:
361 type: string
362 "500":
363 description: Internal Server Error
364 content:
365 application/json:
366 schema:
367 type: object
368 properties:
369 error:
370 type: string
371 description: server_error
372 error_description:
373 type: string
374 description: >-
375 The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
376 required:
377 - error
378 example:
379 error: invalid_request
380 error_description: >-
381 The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
382 "503":
383 description: Service Unavailable
384 content:
385 application/json:
386 schema:
387 type: object
388 properties:
389 error:
390 type: string
391 description: The error code
392 error_description:
393 type: string
394 description: >-
395 Text in human-readable form providing further details to clarify the nature of the error encountered
396 required:
397 - error
398 example:
399 error: "temporarily_unavailable"
400 error_description: "The request cannot be fulfilled because the e-Service Endpoint is temporarily unavailable (e.g., due to maintainance or overload)"
401 /v0.9.0/notifyUpdateCredentials:
402 post:
403 tags:
404 - e-services PDND
405 summary: Notify Status Update
406 description: >-
407 The service is designed to receive from Authentic Source (AS), via PDND,
408 notification of a change of status of a specific attribute (e.g. MDL)
409 with which a digital document issued by the Credential Issuer is
410 associated.
411 operationId: notifyStatusCredentials
412 parameters:
413 - name: Authorization
414 in: header
415 description: >-
416 JWT token obtained from <a target="blank"
417 href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html#voucher-issuance">PDND
418 Interoperabilità</a>. Based on the implementation choices, it can be either Bearer or DPoP.<br/><br/><a target="blank"
419 href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.IrCeQjd3kyTXwdhrT2zv_8PE_MUCnbVn1jaNF5S2PfxlM_vzKDUiKxFIKkZ6M8Epj5M-dFbfvrdAe-B2vbAuXw">EXAMPLE
420 ON JWT.IO</a>
421 required: true
422 schema:
423 type: string
424 format: Signed JWT
425 example: >-
426 DPoP
427 eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.eyJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTk1ZGQ3NDI4IiwibmJmIjoxNzI5NTgwMzgyLCJwdXJwb3NlSWQiOiIwNjM0ZGIxNy03ZWJlLTRhNjctYWE0Ni02NWRhNTQ0ZjE2MTkiLCJpc3MiOiJpbnRlcm9wLnBhZ29wYS5pdCIsImV4cCI6MTcyOTU4MDY4MiwiaWF0IjoxNzI5NTgwMzgyLCJjbGllbnRfaWQiOiIxODVkYmNiYS04MzY2LTQ5NGQtYmUwMi01MjY1OTVkZDc0MjgiLCJqdGkiOiJjOGJkOGEyZi00YzI5LTQwODctODIxZS0wNjg3Mjc5ZWJmNGEiLCJkaWdlc3QiOnsiYWxnIjoiU0hBMjU2IiwidmFsdWUiOiI2OGRlYTAzZDA5MWQ1MDZjYzMyMzQ2ZWI3ZTBjZjNlM2E3NWEzYTUzZDVkODI4NWU4ODY5ZDVlOTZiNGJjZGYyIn0sImNuZiI6eyJqa3QiOiJmODIxNzYwNjZlYjM4ZmQzMzgwZDJkM2QzNGRlYjU4OTBlNjg1ZWU4ZTllMTVhN2ViODQ4NzJhNmZhYzM0MDYzIn19.IrCeQjd3kyTXwdhrT2zv_8PE_MUCnbVn1jaNF5S2PfxlM_vzKDUiKxFIKkZ6M8Epj5M-dFbfvrdAe-B2vbAuXw
428 - name: DPoP
429 in: header
430 description: >-
431 DPoP proof JWT, to comply with the REST_JWS_2021_POP security
432 pattern using the POP_DPoP implementation. See also <a target="blank"
433 href="https://datatracker.ietf.org/doc/html/rfc9449.html">RFC
434 9449</a>.<br/><br/>
435
436 <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6IjQ4NGMzMzRiMWZjNTExMGRiYTlmZmNkMDJiNDI1ZTk5ODBlNTczYWQ1NDMzYTg4ZjkwZDFmMDZkYTdlZTVkNjIiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.pfeYZtHqrach0IESBrKHnpI08P4LQpQG6Lmqt-I7Tddk2MKeO4BOc3NZjzNRX6Jpv2iWz4HdsEflL4SVdT6y-Q">EXAMPLE
437 ON JWT.IO</a>
438 required: false
439 schema:
440 type: string
441 format: JWT
442 example: >-
443 eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6IjQ4NGMzMzRiMWZjNTExMGRiYTlmZmNkMDJiNDI1ZTk5ODBlNTczYWQ1NDMzYTg4ZjkwZDFmMDZkYTdlZTVkNjIiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.pfeYZtHqrach0IESBrKHnpI08P4LQpQG6Lmqt-I7Tddk2MKeO4BOc3NZjzNRX6Jpv2iWz4HdsEflL4SVdT6y-Q
444 - name: Agid-JWT-Signature
445 in: header
446 description: >-
447 JWT containing the signature of the message headers whose integrity
448 needs to be guaranteed, to comply with the INTEGRITY_REST_02
449 security pattern. <a target="blank"
450 href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>. <br/><br/>
451
452 <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.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.9vHIePhOQ-RNKeM2MNc1q4Ht6iLHWoUu7a6Ey3B-I3cCLkhyV0Jb8qEXsyyjIFmy4d71Z4-EM2zYcuu3GJ02VA">EXAMPLE
453 ON JWT.IO</a>
454 required: true
455 schema:
456 type: string
457 format: JWT
458 example: eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.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.9vHIePhOQ-RNKeM2MNc1q4Ht6iLHWoUu7a6Ey3B-I3cCLkhyV0Jb8qEXsyyjIFmy4d71Z4-EM2zYcuu3GJ02VA
459 - name: Digest
460 in: header
461 description: >-
462 Digest of the message payload, to comply with the INTEGRITY_REST_02
463 security pattern. According to <a target="blank" href="https://www.rfc-editor.org/rfc/rfc3230.html#section-4.2">RFC
464 3230 §4.2</a>, the format MUST be the following: digest-algorithm=encoded
465 digest output.
466 required: true
467 schema:
468 type: string
469 format: JWT
470 example: SHA-256=5412d4a0d851d89b479e3709a93d533383b4902467dc588849e5d49ba4833e88
471 - name: Agid-JWT-TrackingEvidence
472 in: header
473 description: >-
474 If the Voucher type is Bearer, this header represents a JWT acting as a proof of possession, to comply with the REST_JWS_2021_POP security
475 pattern using the POP_TPoP implementation. Otherwise, it is a JWT containing the data tracked in the Consumer's domain, to comply with AUDIT_REST_02 (see <a target="blank"
476 href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>). <br/><br/>
477 <a target="blank" href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTk1IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA">EXAMPLE ON JWT.IO</a>
478 required: false
479 schema:
480 type: string
481 format: JWT
482 example: eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTk1IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA
483 requestBody:
484 content:
485 application/json:
486 schema:
487 $ref: "#/components/schemas/NotifyStatusCredRequest"
488 required: true
489 responses:
490 "200":
491 description: 200 OK
492 content:
493 application/jwt:
494 schema:
495 $ref: "#/components/schemas/e-Service_Response"
496 example: "eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImE4ZDEzYzQ1ZWYyZTI4MzBmN2M0NGJkNDk0MWNjYSJ9.eyJpc3MiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0LzEuMC4wL3YxL25vdGlmeVN0YXR1c0NyZWRlbnRpYWxzIiwibmJmIjoxNzM2ODQ2Njg4LCJleHAiOjE3MzY4NDY5MjgsImlhdCI6MTczNjg0NjY4OCwiYXVkIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTkiLCJqdGkiOiJjOGJkOGEyZi1lOTkwLTQ0ZmEtOTAxMy0xYjM1M2JmYzVhMGQiLCJyZXN1bHRfY29kZSI6InJlcXVlc3RfYWNjZXB0ZWQiLCJyZXN1bHRfZGVzY3JpcHRpb24iOiJUaGUgc2VydmljZSBjb3JyZWN0bHkgcmVjZWl2ZWQgdGhlIHJlcXVlc3QifQ.iVMm66lcfOMve7wqB2yEsq6TFCDGEpAEvzCA7NYoZRHsHxMu8_5N4DGI8xWQ5BRG_fZMumNt-eO29ig1K_G3kA"
497 "400":
498 description: Bad Request
499 content:
500 application/json:
501 schema:
502 oneOf:
503 - type: object
504 properties:
505 error:
506 type: string
507 description: invalid_request
508 error_description:
509 type: string
510 description: >-
511 The request cannot be fulfilled because it is missing
512 required parameters, contains invalid parameters, or
513 is otherwise malformed.
514 required:
515 - error
516 - type: object
517 properties:
518 error:
519 type: string
520 description: invalid_dpop_proof
521 error_description:
522 type: string
523 description: >-
524 The request cannot be fulfilled because it contains an
525 invalid dpop proof.
526 required:
527 - error
528 examples:
529 invalid request:
530 value:
531 error: invalid_request
532 error_description: >-
533 The request cannot be fulfilled because it is missing
534 required parameters, contains invalid parameters, or is
535 otherwise malformed
536 invalid dpop proof:
537 value:
538 error: invalid_dpop_proof
539 error_description: >-
540 The request cannot be fulfilled because it contains an
541 invalid dpop proof
542 "401":
543 description: Unauthorized
544 headers:
545 WWW-Authenticate:
546 description: The request cannot be fulfilled because the Voucher is expired, revoked or otherwise malformed. See <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc6750.html#section-3">RFC6750</a> and <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc9449.html#section-7.1-11">RFC9449</a> for details.
547 schema:
548 type: string
549 "500":
550 description: Internal Server Error
551 content:
552 application/json:
553 schema:
554 type: object
555 properties:
556 error:
557 type: string
558 description: server_error
559 error_description:
560 type: string
561 description: >-
562 The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
563 required:
564 - error
565 example:
566 error: invalid_request
567 error_description: >-
568 The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
569 /v0.9.0/wallet-report/{api}:
570 get:
571 tags:
572 - e-services PDND
573 summary: Get Statistics
574 description: This service returns statistical data on issued Digital Credentials
575 operationId: walletGetReport
576 parameters:
577 - name: api
578 in: path
579 required: true
580 schema:
581 type: string
582 - name: typesCredentials
583 in: query
584 required: false
585 schema:
586 type: array
587 items:
588 type: string
589 - name: typeData
590 in: query
591 required: false
592 schema:
593 type: string
594 - name: fromData
595 in: query
596 required: false
597 schema:
598 type: string
599 format: date-time
600 - name: toData
601 in: query
602 required: false
603 schema:
604 type: string
605 format: date-time
606 - name: Authorization
607 in: header
608 description: >-
609 JWT token obtained from <a target="blank"
610 href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html#voucher-issuance">PDND
611 Interoperabilità</a>. Based on the implementation choices, it can be either Bearer or DPoP.<br/><br/><a target="blank"
612 href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.mhy3gsKKcstrk9lbD6ia97KqPvPS4xZ7hggsUAk7SkkTNV1af9t9xh7yic_sxUORoYbwQi_J1IVAtOiEN_Gysw">EXAMPLE
613 ON JWT.IO</a>
614 required: true
615 schema:
616 type: string
617 format: Signed JWT
618 example: >-
619 DPoP
620 eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.eyJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMzE2NzAwOTItZWVjMC00Zjk1LTg4ZGEtZTFjN2NlNWU0NTA1IiwibmJmIjoxNzM2ODQ3NDM2LCJwdXJwb3NlSWQiOiI3MThjZmFkNC00ZmJhLTQwZjMtYjMwNC0wYWJkMjA4YTBiMjAiLCJpc3MiOiJ1YXQuaW50ZXJvcC5wYWdvcGEuaXQiLCJleHAiOjE3MzY4NDc2NzYsImlhdCI6MTczNjg0NzQzNiwiY2xpZW50X2lkIjoiMzE2NzAwOTItZWVjMC00Zjk1LTg4ZGEtZTFjN2NlNWU0NTA1IiwianRpIjoiMTA1NmVlZGItMTdkYS00NDY2LWJjNWItYTQzZDg3N2Y0NGM4IiwiZGlnZXN0Ijp7ImFsZyI6IlNIQTI1NiIsInZhbHVlIjoiNjhkZWEwM2QwOTFkNTA2Y2MzMjM0NmViN2UwY2YzZTNhNzVhM2E1M2Q1ZDgyODVlODg2OWQ1ZTk2YjRiY2RmMiJ9LCJjbmYiOnsiamt0IjoiZjgyMTc2MDY2ZWIzOGZkMzM4MGQyZDNkMzRkZWI1ODkwZTY4NWVlOGU5ZTE1YTdlYjg0ODcyYTZmYWMzNDA2MyJ9fQ.mhy3gsKKcstrk9lbD6ia97KqPvPS4xZ7hggsUAk7SkkTNV1af9t9xh7yic_sxUORoYbwQi_J1IVAtOiEN_Gysw
621 - name: DPoP
622 in: header
623 description: >-
624 DPoP proof JWT, to comply with the REST_JWS_2021_POP security
625 pattern using the POP_DPoP implementation. See also <a target="blank"
626 href="https://datatracker.ietf.org/doc/html/rfc9449.html">RFC
627 9449</a>.<br/><br/>
628
629 <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiR0VUIiwiYXRoIjoiNzFkZWY4MWYyZjE3MWI1MmFkYWMxNzg5ODI3NmFlZWU5OTlhZWUzZDNkZmE3NjkyMjJjODA0NDBmNDQ0ODgxYSIsImh0dSI6Imh0dHBzOi8vc2VydmVyLmV4YW1wbGUuY29tL3Rva2VuIiwiaWF0IjoxNzYyMjYyNjE2fQ.H9r1N2s8xp_rcNr4Bs7_n-6vNKN4BPsvXzsV_UWwWiyr314xPMv4v6_8ac2SIbM-cJ-O4hlZysOUrjC7rewlag">EXAMPLE
630 ON JWT.IO</a>
631 required: false
632 schema:
633 type: string
634 format: JWT
635 example: >-
636 eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiR0VUIiwiYXRoIjoiNzFkZWY4MWYyZjE3MWI1MmFkYWMxNzg5ODI3NmFlZWU5OTlhZWUzZDNkZmE3NjkyMjJjODA0NDBmNDQ0ODgxYSIsImh0dSI6Imh0dHBzOi8vc2VydmVyLmV4YW1wbGUuY29tL3Rva2VuIiwiaWF0IjoxNzYyMjYyNjE2fQ.H9r1N2s8xp_rcNr4Bs7_n-6vNKN4BPsvXzsV_UWwWiyr314xPMv4v6_8ac2SIbM-cJ-O4hlZysOUrjC7rewlag
637 - name: Agid-JWT-TrackingEvidence
638 in: header
639 description: >-
640 If the Voucher type is Bearer, this header represents a JWT acting as a proof of possession, to comply with the REST_JWS_2021_POP security
641 pattern using the POP_TPoP implementation. Otherwise, it is a JWT containing the data tracked in the Consumer's domain, to comply with AUDIT_REST_02 (see <a target="blank"
642 href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>). <br/><br/>
643 <a target="blank" href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTk1IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA">EXAMPLE ON JWT.IO</a>
644 required: false
645 schema:
646 type: string
647 format: JWT
648 example: eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTk1IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA
649 responses:
650 "200":
651 description: 200 OK
652 content:
653 application/json:
654 schema:
655 $ref: "#/components/schemas/ResponseReport"
656 "400":
657 description: Bad request
658 content:
659 application/json:
660 schema:
661 $ref: "#/components/schemas/ErrorDTO"
662 "401":
663 description: Unauthorized
664 content:
665 application/json:
666 schema:
667 $ref: "#/components/schemas/ErrorDTO"
668 "500":
669 description: Internal server error
670 content:
671 application/json:
672 schema:
673 $ref: "#/components/schemas/ErrorDTO"
674components:
675 schemas:
676 e-Service_Response:
677 properties:
678 Header:
679 type: object
680 properties:
681 alg:
682 description: A digital signature algorithm identifier.
683 type: string
684 example: RS256
685 kid:
686 description: Unique identifier of the JWK used by the Provider to sign the JWT.
687 type: string
688 example: "cdb52532-dd94-40ef-824d-9c55b10e6bc9"
689 typ:
690 description: It MUST be set to 'JWT'.
691 type: string
692 example: "JWT"
693 use:
694 description: Usage of the algorithm. If present, it MUST be 'sig'.
695 type: string
696 example: "sig"
697 required: [alg, kid, typ]
698 Payload:
699 type: object
700 properties:
701 iss:
702 description: The identifier of the e-Service.
703 type: string
704 example: "https://pre.api.gateway.ipzs.it/t/itwallet.api/utility-wallet/1.0.0/v1/revokeAll"
705 aud:
706 description: The identifier of the Consumer.
707 type: string
708 example: "31670092-eec0-4f95-88da-e1c7ce5e4505"
709 exp:
710 description: UNIX timestamp representing the JWT expiration time.
711 type: integer
712 example: 1736846928
713 iat:
714 description: UNIX timestamp representing the JWT issuance time.
715 type: integer
716 example: 1736846688
717 jti:
718 description: Unique identifier of the JWT to prevent replay attacks.
719 type: string
720 example: "8b971b43-e990-44fa-9013-1b353bfc5a0f"
721 nbf:
722 description: UNIX timestamp representing the JWT first validity time.
723 type: string
724 example: "1736846688"
725 result_code:
726 description: Response Code.
727 type: string
728 example: request_accepted
729 enum:
730 - request_accepted
731 - request_processed
732 result_description:
733 description: Response Description.
734 type: string
735 example: The service correctly received the request
736 required: [iss, aud, exp, iat, jti, result_code, result_description]
737 RevokeAllCredentials:
738 required:
739 - object_id
740 - wallet_provider
741 - signal_type
742 type: object
743 properties:
744 object_id:
745 type: string
746 description: ID ANPR or Tax identification number
747 wallet_provider:
748 type: string
749 description: URL identifier of the Wallet Provider
750 signal_type:
751 type: string
752 enum:
753 - DELETE
754 - SUSPENDED
755 description: URL identifier of the Wallet Provider
756 AvailableCredentials:
757 required:
758 - tax_id_codes
759 type: object
760 properties:
761 unique_ids:
762 type: array
763 items:
764 type: string
765 description: ID ANPR
766 tax_id_codes:
767 type: array
768 items:
769 type: string
770 description: Tax identification number
771 AvailableCredentialsRequest:
772 type: object
773 properties:
774 Available:
775 $ref: "#/components/schemas/AvailableCredentials"
776 Unavailable:
777 $ref: "#/components/schemas/AvailableCredentials"
778 ErrorDTO:
779 type: object
780 properties:
781 error:
782 type: string
783 error_description:
784 type: string
785 NotifyStatusCredRequest:
786 type: array
787 items:
788 required:
789 - object_type
790 - object_id
791 - eservice_id
792 - status_details
793 type: object
794 properties:
795 object_type:
796 type: string
797 example: a0eebc99-9c0b-4ef8-bb6d-6bb9bd380a11
798 description: >-
799 The UUID of the Credential dataset transmitted by the AS to
800 the Credential Issuer used to create the single digital
801 credential
802 object_id:
803 type: string
804 description: >-
805 The ID ANPR or Tax Identification Number of the user to whom the
806 attribute refers
807 eservice_id:
808 type: string
809 example: b8c6d7ad-93fc-4eaf-9018-3cd8bf98163f
810 description: >-
811 Unique identifier of the e-service Get Attribute Claims provided by the Authentic Source
812 status_details:
813 type: object
814 properties:
815 state:
816 type: string
817 example: invalid
818 enum:
819 - INVALID
820 - SUSPENDED
821 - UPDATE
822 description: >-
823 string indicating the status of the Credential dataset. INVALID: attributes are no longer valid, SUSPENDED: attributes are temporarily invalid, UPDATE: attributes have changed.
824 description:
825 type: string
826 example: The attributes provided for the credential issuance are no longer valid
827 description: >-
828 description of attribute status
829 required:
830 - state
831 ResponseReport:
832 type: object
833 properties:
834 countEid:
835 type: integer
836 format: int64
837 count:
838 type: integer
839 format: int64
840 countPid:
841 $ref: "#/components/schemas/TotalCountCredential"
842 countMdl:
843 $ref: "#/components/schemas/TotalCountCredential"
844 countEdc:
845 $ref: "#/components/schemas/TotalCountCredential"
846 countTeam:
847 $ref: "#/components/schemas/TotalCountCredential"
848 TotalCountCredential:
849 type: object
850 properties:
851 credEmesse:
852 type: integer
853 format: int64
854 credValide:
855 type: integer
856 format: int64
857 credInvalide:
858 type: integer
859 format: int64