15.4. Credential Issuer PDND OpenAPI Specification

Below is the complete Open API Specification for the ACredential Issuer PDND e-services:

  1openapi: 3.0.1
  2info:
  3  title: IT Wallet API - Issuer web services
  4  version: 0.1.0
  5servers:
  6  - url: https://issuer.example.it
  7    description: Credential Issuer API
  8paths:
  9  /v0.9.0/notifyWalletRevocation:
 10    post:
 11      tags:
 12        - e-services PDND
 13      summary: >-
 14        Notify Wallet Instance Revocation
 15      description: >-
 16        This service revokes all digital credentials associated with a specific
 17        user
 18      operationId: notifyWalletRevocation
 19      parameters:
 20        - name: Authorization
 21          in: header
 22          description: >-
 23            JWT token obtained from <a target="blank"
 24            href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html#voucher-issuance">PDND
 25            Interoperabilità</a>. Based on the implementation choices, it can be either Bearer or DPoP.<br/><br/><a target="blank"
 26            href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA">EXAMPLE
 27            ON JWT.IO</a>
 28          required: true
 29          schema:
 30            type: string
 31            format: Signed JWT
 32            example: >-
 33              DPoP
 34              eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA
 35        - name: DPoP
 36          in: header
 37          description: >-
 38            DPoP proof JWT, to comply with the REST_JWS_2021_POP security
 39            pattern using the POP_DPoP implementation. See also <a target="blank"
 40            href="https://datatracker.ietf.org/doc/html/rfc9449.html">RFC
 41            9449</a>.<br/><br/>
 42
 43            <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6ImNiZGJmNmZlZWY0ODA2MjI4ZGJmNDY0Yjc1MGE5NGMyOGQ4ZTUzMDFhNzE1ZmZjM2U2Y2QyZjk0YjZlOGUxNTQiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.uL017GdfXzJ-9jhs6AUpwtkWLgyBgDWOtlrFvMltLp0C0NFwwMpOGnv-FxxwfYdJj--cteyCjGnmJZhekEKIEA">EXAMPLE
 44            ON JWT.IO</a>
 45          required: false
 46          schema:
 47            type: string
 48            format: JWT
 49            example: >-
 50              eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6ImNiZGJmNmZlZWY0ODA2MjI4ZGJmNDY0Yjc1MGE5NGMyOGQ4ZTUzMDFhNzE1ZmZjM2U2Y2QyZjk0YjZlOGUxNTQiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.uL017GdfXzJ-9jhs6AUpwtkWLgyBgDWOtlrFvMltLp0C0NFwwMpOGnv-FxxwfYdJj--cteyCjGnmJZhekEKIEA
 51        - name: Agid-JWT-Signature
 52          in: header
 53          description: >-
 54            JWT containing the signature of the message headers whose integrity
 55            needs to be guaranteed, to comply with the INTEGRITY_REST_02
 56            security pattern. <a target="blank"
 57            href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>. <br/><br/>
 58
 59            <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.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.0zncFKgLgIAhcX7aTIjC44NWYBiQKM4ZmdHfBqZ0O-W38NkBanT1tz9Z7Z0OBqQqDNsehJQa4IKNzbTjAhoccA">EXAMPLE
 60            ON JWT.IO</a>
 61          required: true
 62          schema:
 63            type: string
 64            format: JWT
 65            example: eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.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.0zncFKgLgIAhcX7aTIjC44NWYBiQKM4ZmdHfBqZ0O-W38NkBanT1tz9Z7Z0OBqQqDNsehJQa4IKNzbTjAhoccA
 66        - name: Digest
 67          in: header
 68          description: >-
 69            Digest of the message payload, to comply with the INTEGRITY_REST_02
 70            security pattern. According to <a target="blank" href="https://www.rfc-editor.org/rfc/rfc3230.html#section-4.2">RFC
 71            3230 §4.2</a>, the format MUST be the following: digest-algorithm=encoded
 72            digest output.
 73          required: true
 74          schema:
 75            type: string
 76            example: SHA-256=9ddda086a3b9027508a971f16e0c44aa2c9d8d91334f2d4aedd1cd6a0a2ad3a8
 77        - name: Agid-JWT-TrackingEvidence
 78          in: header
 79          description: >-
 80             If the Voucher type is Bearer, this header represents a JWT acting as a proof of possession, to comply with the REST_JWS_2021_POP security
 81             pattern using the POP_TPoP implementation. Otherwise, it is a JWT containing the data tracked in the Consumer's domain, to comply with AUDIT_REST_02 (see <a target="blank"
 82             href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>). <br/><br/>
 83             <a target="blank" href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA">EXAMPLE ON JWT.IO</a>
 84          required: false
 85          schema:
 86            type: string
 87            format: JWT
 88            example: eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2F1dGhlbnRpYy1zb3VyY2UuZXhhbXBsZS5pdCIsImV4cCI6MTczMzA1MjYwMCwibmJmIjoxNzMzMDM2NDUwLCJpYXQiOjE3MzMwMzY0MDAsImp0aSI6ImE0YjVjNmQ3LWU4ZjktYWJjZC1lZjEyLTM0NTY3ODkwMTIzNCIsImRub25jZSI6NjUyODQyNDIxMzY4NSwicHVycG9zZUlkIjoiYjJjM2Q0ZTUtZjZnNy1oOGk5LWowazEtbG1ubzEyMzQ1Njc4IiwidXNlcklEIjoiYThiN2M2ZDUtZTRmMy1nMmgxLWk5ajAta2xtbm9wcXJzdHV2IiwibG9hIjoic3Vic3RhbnRpYWwifQ.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA
 89      requestBody:
 90        content:
 91          application/json:
 92            schema:
 93              $ref: "#/components/schemas/RevokeAllCredentials"
 94        required: true
 95      responses:
 96        "200":
 97          description: 200 OK
 98          content:
 99            application/jwt:
100              schema:
101                $ref: "#/components/schemas/e-Service_Response"
102              example: "eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImE4ZDEzYzQ1ZWYyZTI4MzBmN2M0NGJkNDk0MWNjYSJ9.eyJpc3MiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0LzEuMC4wL3YxL25vdGlmeVdhbGxldFJldm9jYXRpb24iLCJuYmYiOjE3MzY4NDY2ODgsImV4cCI6MTczNjg0NjkyOCwiaWF0IjoxNzM2ODQ2Njg4LCJhdWQiOiIzMTY3MDA5Mi1lZWMwLTRmOTUtODhkYS1lMWM3Y2U1ZTQ1MDUiLCJqdGkiOiJjOGJkOGEyZi1lOTkwLTQ0ZmEtOTAxMy0xYjM1M2JmYzVhMGQiLCJyZXN1bHRfY29kZSI6InJlcXVlc3RfYWNjZXB0ZWQiLCJyZXN1bHRfZGVzY3JpcHRpb24iOiJUaGUgc2VydmljZSBjb3JyZWN0bHkgcmVjZWl2ZWQgdGhlIHJlcXVlc3QifQ.ExthZCx8LHMlTTtBm9qA8Y3FhlKvTl-_sWXq35e_vTRMmKukrLhBhNa-C1xfli8g_JBixYhsBzUWhE0ING_kIQ"
103        "400":
104          description: Bad Request
105          content:
106            application/json:
107              schema:
108                oneOf:
109                  - type: object
110                    properties:
111                      error:
112                        type: string
113                        description: invalid_request
114                      error_description:
115                        type: string
116                        description: >-
117                          The request cannot be fulfilled because it is missing
118                          required parameters, contains invalid parameters, or
119                          is otherwise malformed.
120                    required:
121                      - error
122                  - type: object
123                    properties:
124                      error:
125                        type: string
126                        description: invalid_dpop_proof
127                      error_description:
128                        type: string
129                        description: >-
130                          The request cannot be fulfilled because it contains an
131                          invalid dpop proof.
132                    required:
133                      - error
134              examples:
135                invalid request:
136                  value:
137                    error: invalid_request
138                    error_description: >-
139                      The request cannot be fulfilled because it is missing
140                      required parameters, contains invalid parameters, or is
141                      otherwise malformed
142                invalid dpop proof:
143                  value:
144                    error: invalid_dpop_proof
145                    error_description: >-
146                      The request cannot be fulfilled because it contains an
147                      invalid dpop proof
148        "401":
149          description: Unauthorized
150          headers:
151            WWW-Authenticate:
152              description: The request cannot be fulfilled because the Voucher is expired, revoked or otherwise malformed. See <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc6750.html#section-3">RFC6750</a> and <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc9449.html#section-7.1-11">RFC9449</a> for details.
153              schema:
154                type: string
155        "404":
156          description: Credentials not found
157          content:
158            application/json:
159              schema:
160                type: object
161                properties:
162                  error:
163                    type: string
164                    description: The error code
165                    example: not_found
166                  error_description:
167                    type: string
168                    description: >-
169                      Text in human-readable form providing further details to
170                      clarify the nature of the error encountered
171                    example: >-
172                      The issuer cannot fulfill the request because the
173                      credentials were not found
174                required:
175                  - error
176        "500":
177          description: Internal Server Error
178          content:
179            application/json:
180              schema:
181                type: object
182                properties:
183                  error:
184                    type: string
185                    description: server_error
186                  error_description:
187                    type: string
188                    description: >-
189                      The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
190                required:
191                  - error
192              example:
193                error: invalid_request
194                error_description: >-
195                  The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
196        "503":
197          description: Service Unavailable
198          content:
199            application/json:
200              schema:
201                type: object
202                properties:
203                  error:
204                    type: string
205                    description: The error code
206                  error_description:
207                    type: string
208                    description: >-
209                      Text in human-readable form providing further details to
210                      clarify the nature of the error encountered
211                required:
212                  - error
213              example:
214                error: "temporarily_unavailable"
215                error_description: "The request cannot be fulfilled because the e-Service Endpoint is temporarily unavailable (e.g., due to maintainance or overload)"
216  /v0.9.0/notifyAvailableCredentials:
217    post:
218      tags:
219        - e-services PDND
220      summary: Notify Available Credential
221      description: >-
222        This service informs users when a specific credential has become
223        available to be entered into the Wallet
224      operationId: notifyAvailableCredentials
225      parameters:
226        - name: Authorization
227          in: header
228          description: >-
229            JWT token obtained from <a target="blank"
230            href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html#voucher-issuance">PDND
231            Interoperabilità</a>. Based on the implementation choices, it can be either Bearer or DPoP.<br/><br/><a target="blank"
232            href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.RQrkQvSrlJ0i3zxRuqxrs31FzGAy5yCR54VBR_v597R19OjiD4LR1u6H1_HK6GbhjJJJoENGG1fhV6MThqXMyw">EXAMPLE
233            ON JWT.IO</a>
234          required: true
235          schema:
236            type: string
237            format: Signed JWT
238            example: >-
239              DPoP
240              eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.RQrkQvSrlJ0i3zxRuqxrs31FzGAy5yCR54VBR_v597R19OjiD4LR1u6H1_HK6GbhjJJJoENGG1fhV6MThqXMyw
241        - name: DPoP
242          in: header
243          description: >-
244            DPoP proof JWT, to comply with the REST_JWS_2021_POP security
245            pattern using the POP_DPoP implementation. See also <a target="blank"
246            href="https://datatracker.ietf.org/doc/html/rfc9449.html">RFC
247            9449</a>.<br/><br/>
248
249            <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6ImE1OWU3YTQ3YjExOWIxYTRiY2RiNGU1MzE2Y2IxYWM1ZmJjOThiZjk4YmE4OTBjM2E4NThmNTM3MDIyZTNjNmEiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.Htc8JQ2v63SO-yyoFfsnX_zNNUymCV4OGEGTVsqofpHhxniw7N1PyMRrHYj9PlRGaU7_uPR0BGAHjrQQ1IlMow">EXAMPLE
250            ON JWT.IO</a>
251          required: false
252          schema:
253            type: string
254            format: JWT
255            example: >-
256              eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6ImE1OWU3YTQ3YjExOWIxYTRiY2RiNGU1MzE2Y2IxYWM1ZmJjOThiZjk4YmE4OTBjM2E4NThmNTM3MDIyZTNjNmEiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.Htc8JQ2v63SO-yyoFfsnX_zNNUymCV4OGEGTVsqofpHhxniw7N1PyMRrHYj9PlRGaU7_uPR0BGAHjrQQ1IlMow
257        - name: Agid-JWT-Signature
258          in: header
259          description: >-
260            JWT containing the signature of the message headers whose integrity
261            needs to be guaranteed, to comply with the INTEGRITY_REST_02
262            security pattern. <a target="blank"
263            href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>. <br/><br/>
264
265            <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.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.FXeF6nv84W3Yeuup3tnF6hgYMsuUqkUESPVdcYuIRwDQ6-mUZABugVQcnSM4lRoVAf4BjW0S21zbM0uHFakBxw">EXAMPLE
266            ON JWT.IO</a>
267          required: true
268          schema:
269            type: string
270            format: JWT
271            example: eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.eyJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMzE2NzAwOTItZWVjMC00Zjk1LTg4ZGEtZTFjN2NlNWU0NTA1IiwibmJmIjoxNzM2ODQ2Njg4LCJwdXJwb3NlSWQiOiI3MmUwMTk1OC1mZTI3LTQzYmQtYWI2Ny1iOTlhNjY5ZTQwYzAiLCJpc3MiOiIzMTY3MDA5Mi1lZWMwLTRmOTUtODhkYS1lMWM3Y2U1ZTQ1MDUiLCJleHAiOjE3MzY4NDY5MjgsImlhdCI6MTczNjg0NjY4OCwiY2xpZW50X2lkIjoiMzE2NzAwOTItZWVjMC00Zjk1LTg4ZGEtZTFjN2NlNWU0NTA1IiwianRpIjoiNTdkMjEzNjItZTk5MC00NGZhLTkwMTMtMWIzNTNiZmM1YTBkIiwic2lnbmVkX2hlYWRlcnMiOnsiZGlnZXN0IjoiU0hBLTI1Nj0xMmJjNjVhNzk4MmI2YzA1MjczYzI5MDgwOGIwYzVmZDdhZDZhZjJkNjhhM2IyZDRkYTRiYTJjNGExZWI3YjUxIiwiY29udGVudC10eXBlIjoiYXBwbGljYXRpb24vanNvbiJ9fQ.FXeF6nv84W3Yeuup3tnF6hgYMsuUqkUESPVdcYuIRwDQ6-mUZABugVQcnSM4lRoVAf4BjW0S21zbM0uHFakBxw
272        - name: Digest
273          in: header
274          description: >-
275            Digest of the message payload, to comply with the INTEGRITY_REST_02
276            security pattern. According to <a target="blank" href="https://www.rfc-editor.org/rfc/rfc3230.html#section-4.2">RFC
277            3230 §4.2</a>, the format MUST be the following: digest-algorithm=encoded
278            digest output.
279          required: true
280          schema:
281            type: string
282            format: JWT
283            example: SHA-256=12bc65a7982b6c05273c290808b0c5fd7ad6af2d68a3b2d4da4ba2c4a1eb7b51
284        - name: Agid-JWT-TrackingEvidence
285          in: header
286          description: >-
287             If the Voucher type is Bearer, this header represents a JWT acting as a proof of possession, to comply with the REST_JWS_2021_POP security
288             pattern using the POP_TPoP implementation. Otherwise, it is a JWT containing the data tracked in the Consumer's domain, to comply with AUDIT_REST_02 (see <a target="blank"
289             href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>). <br/><br/>
290             <a target="blank" href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA">EXAMPLE ON JWT.IO</a>
291          required: false
292          schema:
293            type: string
294            format: JWT
295            example: eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA
296      requestBody:
297        content:
298          application/json:
299            schema:
300              $ref: "#/components/schemas/AvailableCredentialsRequest"
301        required: true
302      responses:
303        "200":
304          description: 200 OK
305          content:
306            application/jwt:
307              schema:
308                $ref: "#/components/schemas/e-Service_Response"
309              example: "eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImE4ZDEzYzQ1ZWYyZTI4MzBmN2M0NGJkNDk0MWNjYSJ9.eyJpc3MiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0LzEuMC4wL3YxL25vdGlmeUF2YWlsYWJsZUNyZWRlbnRpYWxzIiwibmJmIjoxNzM2ODQ2Njg4LCJleHAiOjE3MzY4NDY5MjgsImlhdCI6MTczNjg0NjY4OCwiYXVkIjoiMzE2NzAwOTItZWVjMC00Zjk1LTg4ZGEtZTFjN2NlNWU0NTA1IiwianRpIjoiYzhiZDhhMmYtZTk5MC00NGZhLTkwMTMtMWIzNTNiZmM1YTBkIiwicmVzdWx0X2NvZGUiOiJyZXF1ZXN0X2FjY2VwdGVkIiwicmVzdWx0X2Rlc2NyaXB0aW9uIjoiVGhlIHNlcnZpY2UgY29ycmVjdGx5IHJlY2VpdmVkIHRoZSByZXF1ZXN0In0.5DbB-OIi2eXz6Txm3UhCrvpq10aOkae1huR7VSa2dGRW7XeOeS5ELURHp1YY9wBdHD2zJWx882Vpq3NHlEGkyA"
310        "400":
311          description: Bad Request
312          content:
313            application/json:
314              schema:
315                oneOf:
316                  - type: object
317                    properties:
318                      error:
319                        type: string
320                        description: invalid_request
321                      error_description:
322                        type: string
323                        description: >-
324                          The request cannot be fulfilled because it is missing
325                          required parameters, contains invalid parameters, or
326                          is otherwise malformed.
327                    required:
328                      - error
329                  - type: object
330                    properties:
331                      error:
332                        type: string
333                        description: invalid_dpop_proof
334                      error_description:
335                        type: string
336                        description: >-
337                          The request cannot be fulfilled because it contains an
338                          invalid dpop proof.
339                    required:
340                      - error
341              examples:
342                invalid request:
343                  value:
344                    error: invalid_request
345                    error_description: >-
346                      The request cannot be fulfilled because it is missing
347                      required parameters, contains invalid parameters, or is
348                      otherwise malformed
349                invalid dpop proof:
350                  value:
351                    error: invalid_dpop_proof
352                    error_description: >-
353                      The request cannot be fulfilled because it contains an
354                      invalid dpop proof
355        "401":
356          description: Unauthorized
357          headers:
358            WWW-Authenticate:
359              description: The request cannot be fulfilled because the Voucher is expired, revoked or otherwise malformed. See <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc6750.html#section-3">RFC6750</a> and <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc9449.html#section-7.1-11">RFC9449</a> for details.
360              schema:
361                type: string
362        "500":
363          description: Internal Server Error
364          content:
365            application/json:
366              schema:
367                type: object
368                properties:
369                  error:
370                    type: string
371                    description: server_error
372                  error_description:
373                    type: string
374                    description: >-
375                      The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
376                required:
377                  - error
378              example:
379                error: invalid_request
380                error_description: >-
381                  The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
382        "503":
383          description: Service Unavailable
384          content:
385            application/json:
386              schema:
387                type: object
388                properties:
389                  error:
390                    type: string
391                    description: The error code
392                  error_description:
393                    type: string
394                    description: >-
395                      Text in human-readable form providing further details to clarify the nature of the error encountered
396                required:
397                  - error
398              example:
399                error: "temporarily_unavailable"
400                error_description: "The request cannot be fulfilled because the e-Service Endpoint is temporarily unavailable (e.g., due to maintainance or overload)"
401  /v0.9.0/notifyUpdateCredentials:
402    post:
403      tags:
404        - e-services PDND
405      summary: Notify Status Update
406      description: >-
407        The service is designed to receive from Authentic Source (AS), via PDND,
408        notification of a change of status of a specific attribute (e.g. MDL)
409        with which a digital document issued by the Credential Issuer is
410        associated.
411      operationId: notifyStatusCredentials
412      parameters:
413        - name: Authorization
414          in: header
415          description: >-
416            JWT token obtained from <a target="blank"
417            href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html#voucher-issuance">PDND
418            Interoperabilità</a>. Based on the implementation choices, it can be either Bearer or DPoP.<br/><br/><a target="blank"
419            href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.eyJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTk1ZGQ3NDI4IiwibmJmIjoxNzI5NTgwMzgyLCJwdXJwb3NlSWQiOiIwNjM0ZGIxNy03ZWJlLTRhNjctYWE0Ni02NWRhNTQ0ZjE2MTkiLCJpc3MiOiJpbnRlcm9wLnBhZ29wYS5pdCIsImV4cCI6MTcyOTU4MDY4MiwiaWF0IjoxNzI5NTgwMzgyLCJjbGllbnRfaWQiOiIxODVkYmNiYS04MzY2LTQ5NGQtYmUwMi01MjY1OTVkZDc0MjgiLCJqdGkiOiJjOGJkOGEyZi00YzI5LTQwODctODIxZS0wNjg3Mjc5ZWJmNGEiLCJkaWdlc3QiOnsiYWxnIjoiU0hBMjU2IiwidmFsdWUiOiI2OGRlYTAzZDA5MWQ1MDZjYzMyMzQ2ZWI3ZTBjZjNlM2E3NWEzYTUzZDVkODI4NWU4ODY5ZDVlOTZiNGJjZGYyIn0sImNuZiI6eyJqa3QiOiJmODIxNzYwNjZlYjM4ZmQzMzgwZDJkM2QzNGRlYjU4OTBlNjg1ZWU4ZTllMTVhN2ViODQ4NzJhNmZhYzM0MDYzIn19.IrCeQjd3kyTXwdhrT2zv_8PE_MUCnbVn1jaNF5S2PfxlM_vzKDUiKxFIKkZ6M8Epj5M-dFbfvrdAe-B2vbAuXw">EXAMPLE
420            ON JWT.IO</a>
421          required: true
422          schema:
423            type: string
424            format: Signed JWT
425            example: >-
426              DPoP
427              eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.IrCeQjd3kyTXwdhrT2zv_8PE_MUCnbVn1jaNF5S2PfxlM_vzKDUiKxFIKkZ6M8Epj5M-dFbfvrdAe-B2vbAuXw
428        - name: DPoP
429          in: header
430          description: >-
431            DPoP proof JWT, to comply with the REST_JWS_2021_POP security
432            pattern using the POP_DPoP implementation. See also <a target="blank"
433            href="https://datatracker.ietf.org/doc/html/rfc9449.html">RFC
434            9449</a>.<br/><br/>
435
436            <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6IjQ4NGMzMzRiMWZjNTExMGRiYTlmZmNkMDJiNDI1ZTk5ODBlNTczYWQ1NDMzYTg4ZjkwZDFmMDZkYTdlZTVkNjIiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.pfeYZtHqrach0IESBrKHnpI08P4LQpQG6Lmqt-I7Tddk2MKeO4BOc3NZjzNRX6Jpv2iWz4HdsEflL4SVdT6y-Q">EXAMPLE
437            ON JWT.IO</a>
438          required: false
439          schema:
440            type: string
441            format: JWT
442            example: >-
443              eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiUE9TVCIsImF0aCI6IjQ4NGMzMzRiMWZjNTExMGRiYTlmZmNkMDJiNDI1ZTk5ODBlNTczYWQ1NDMzYTg4ZjkwZDFmMDZkYTdlZTVkNjIiLCJodHUiOiJodHRwczovL3NlcnZlci5leGFtcGxlLmNvbS90b2tlbiIsImlhdCI6MTc2MjI2MjYxNn0.pfeYZtHqrach0IESBrKHnpI08P4LQpQG6Lmqt-I7Tddk2MKeO4BOc3NZjzNRX6Jpv2iWz4HdsEflL4SVdT6y-Q
444        - name: Agid-JWT-Signature
445          in: header
446          description: >-
447            JWT containing the signature of the message headers whose integrity
448            needs to be guaranteed, to comply with the INTEGRITY_REST_02
449            security pattern. <a target="blank"
450            href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>. <br/><br/>
451
452            <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.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.9vHIePhOQ-RNKeM2MNc1q4Ht6iLHWoUu7a6Ey3B-I3cCLkhyV0Jb8qEXsyyjIFmy4d71Z4-EM2zYcuu3GJ02VA">EXAMPLE
453            ON JWT.IO</a>
454          required: true
455          schema:
456            type: string
457            format: JWT
458            example: eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImY3YjI1NDhjYTZjYjM4NzY2YTU5NTFiYiJ9.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.9vHIePhOQ-RNKeM2MNc1q4Ht6iLHWoUu7a6Ey3B-I3cCLkhyV0Jb8qEXsyyjIFmy4d71Z4-EM2zYcuu3GJ02VA
459        - name: Digest
460          in: header
461          description: >-
462            Digest of the message payload, to comply with the INTEGRITY_REST_02
463            security pattern. According to <a target="blank" href="https://www.rfc-editor.org/rfc/rfc3230.html#section-4.2">RFC
464            3230 §4.2</a>, the format MUST be the following: digest-algorithm=encoded
465            digest output.
466          required: true
467          schema:
468            type: string
469            format: JWT
470            example: SHA-256=5412d4a0d851d89b479e3709a93d533383b4902467dc588849e5d49ba4833e88
471        - name: Agid-JWT-TrackingEvidence
472          in: header
473          description: >-
474             If the Voucher type is Bearer, this header represents a JWT acting as a proof of possession, to comply with the REST_JWS_2021_POP security
475             pattern using the POP_TPoP implementation. Otherwise, it is a JWT containing the data tracked in the Consumer's domain, to comply with AUDIT_REST_02 (see <a target="blank"
476             href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>). <br/><br/>
477             <a target="blank" href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTk1IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA">EXAMPLE ON JWT.IO</a>
478          required: false
479          schema:
480            type: string
481            format: JWT
482            example: eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTk1IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA
483      requestBody:
484        content:
485          application/json:
486            schema:
487              $ref: "#/components/schemas/NotifyStatusCredRequest"
488        required: true
489      responses:
490        "200":
491          description: 200 OK
492          content:
493            application/jwt:
494              schema:
495                $ref: "#/components/schemas/e-Service_Response"
496              example: "eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImE4ZDEzYzQ1ZWYyZTI4MzBmN2M0NGJkNDk0MWNjYSJ9.eyJpc3MiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0LzEuMC4wL3YxL25vdGlmeVN0YXR1c0NyZWRlbnRpYWxzIiwibmJmIjoxNzM2ODQ2Njg4LCJleHAiOjE3MzY4NDY5MjgsImlhdCI6MTczNjg0NjY4OCwiYXVkIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTkiLCJqdGkiOiJjOGJkOGEyZi1lOTkwLTQ0ZmEtOTAxMy0xYjM1M2JmYzVhMGQiLCJyZXN1bHRfY29kZSI6InJlcXVlc3RfYWNjZXB0ZWQiLCJyZXN1bHRfZGVzY3JpcHRpb24iOiJUaGUgc2VydmljZSBjb3JyZWN0bHkgcmVjZWl2ZWQgdGhlIHJlcXVlc3QifQ.iVMm66lcfOMve7wqB2yEsq6TFCDGEpAEvzCA7NYoZRHsHxMu8_5N4DGI8xWQ5BRG_fZMumNt-eO29ig1K_G3kA"
497        "400":
498          description: Bad Request
499          content:
500            application/json:
501              schema:
502                oneOf:
503                  - type: object
504                    properties:
505                      error:
506                        type: string
507                        description: invalid_request
508                      error_description:
509                        type: string
510                        description: >-
511                          The request cannot be fulfilled because it is missing
512                          required parameters, contains invalid parameters, or
513                          is otherwise malformed.
514                    required:
515                      - error
516                  - type: object
517                    properties:
518                      error:
519                        type: string
520                        description: invalid_dpop_proof
521                      error_description:
522                        type: string
523                        description: >-
524                          The request cannot be fulfilled because it contains an
525                          invalid dpop proof.
526                    required:
527                      - error
528              examples:
529                invalid request:
530                  value:
531                    error: invalid_request
532                    error_description: >-
533                      The request cannot be fulfilled because it is missing
534                      required parameters, contains invalid parameters, or is
535                      otherwise malformed
536                invalid dpop proof:
537                  value:
538                    error: invalid_dpop_proof
539                    error_description: >-
540                      The request cannot be fulfilled because it contains an
541                      invalid dpop proof
542        "401":
543          description: Unauthorized
544          headers:
545            WWW-Authenticate:
546              description: The request cannot be fulfilled because the Voucher is expired, revoked or otherwise malformed. See <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc6750.html#section-3">RFC6750</a> and <a target="blank" href="https://datatracker.ietf.org/doc/html/rfc9449.html#section-7.1-11">RFC9449</a> for details.
547              schema:
548                type: string
549        "500":
550          description: Internal Server Error
551          content:
552            application/json:
553              schema:
554                type: object
555                properties:
556                  error:
557                    type: string
558                    description: server_error
559                  error_description:
560                    type: string
561                    description: >-
562                      The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
563                required:
564                  - error
565              example:
566                error: invalid_request
567                error_description: >-
568                  The request cannot be fulfilled because the e-Service Endpoint encountered an internal problem.
569  /v0.9.0/wallet-report/{api}:
570    get:
571      tags:
572        - e-services PDND
573      summary: Get Statistics
574      description: This service returns statistical data on issued Digital Credentials
575      operationId: walletGetReport
576      parameters:
577        - name: api
578          in: path
579          required: true
580          schema:
581            type: string
582        - name: typesCredentials
583          in: query
584          required: false
585          schema:
586            type: array
587            items:
588              type: string
589        - name: typeData
590          in: query
591          required: false
592          schema:
593            type: string
594        - name: fromData
595          in: query
596          required: false
597          schema:
598            type: string
599            format: date-time
600        - name: toData
601          in: query
602          required: false
603          schema:
604            type: string
605            format: date-time
606        - name: Authorization
607          in: header
608          description: >-
609            JWT token obtained from <a target="blank"
610            href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html#voucher-issuance">PDND
611            Interoperabilità</a>. Based on the implementation choices, it can be either Bearer or DPoP.<br/><br/><a target="blank"
612            href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.mhy3gsKKcstrk9lbD6ia97KqPvPS4xZ7hggsUAk7SkkTNV1af9t9xh7yic_sxUORoYbwQi_J1IVAtOiEN_Gysw">EXAMPLE
613            ON JWT.IO</a>
614          required: true
615          schema:
616            type: string
617            format: Signed JWT
618            example: >-
619              DPoP
620              eyJhbGciOiJFUzI1NiIsImtpZCI6ImI4MzlmNGM3LTFlNWQtNGE4YS05ZmM2LTcyZDNiN2YwOTFlYyIsInR5cCI6ImF0K2p3dCJ9.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.mhy3gsKKcstrk9lbD6ia97KqPvPS4xZ7hggsUAk7SkkTNV1af9t9xh7yic_sxUORoYbwQi_J1IVAtOiEN_Gysw
621        - name: DPoP
622          in: header
623          description: >-
624            DPoP proof JWT, to comply with the REST_JWS_2021_POP security
625            pattern using the POP_DPoP implementation. See also <a target="blank"
626            href="https://datatracker.ietf.org/doc/html/rfc9449.html">RFC
627            9449</a>.<br/><br/>
628
629            <a target="blank" href="https://jwt.io/#debugger-io?token=eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiR0VUIiwiYXRoIjoiNzFkZWY4MWYyZjE3MWI1MmFkYWMxNzg5ODI3NmFlZWU5OTlhZWUzZDNkZmE3NjkyMjJjODA0NDBmNDQ0ODgxYSIsImh0dSI6Imh0dHBzOi8vc2VydmVyLmV4YW1wbGUuY29tL3Rva2VuIiwiaWF0IjoxNzYyMjYyNjE2fQ.H9r1N2s8xp_rcNr4Bs7_n-6vNKN4BPsvXzsV_UWwWiyr314xPMv4v6_8ac2SIbM-cJ-O4hlZysOUrjC7rewlag">EXAMPLE
630            ON JWT.IO</a>
631          required: false
632          schema:
633            type: string
634            format: JWT
635            example: >-
636              eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkVTMjU2IiwiandrIjp7Imt0eSI6IkVDIiwia2V5X29wcyI6WyJzaWduIl0sImtpZCI6ImRGVTNNRDI4REpfamZzZmloUHZpMm8tQ3RqTEVVejNwT0lWMEJkTk1mZjgiLCJjcnYiOiJQLTI1NiIsIngiOiJodXlYSVFOdjkwMm9Mc3BYNF96b25DOTRHNnlFbG42bHNkbS0xd003MzJvIiwieSI6Ikk5UERFYXdXSHFhRkRHeDFaa05rLTJQVjZXZHBjYUgzQWZPYkJTTGloZ3cifX0.eyJqdGkiOiItQndDM0VTYzZhY2MybFRjIiwiaHRtIjoiR0VUIiwiYXRoIjoiNzFkZWY4MWYyZjE3MWI1MmFkYWMxNzg5ODI3NmFlZWU5OTlhZWUzZDNkZmE3NjkyMjJjODA0NDBmNDQ0ODgxYSIsImh0dSI6Imh0dHBzOi8vc2VydmVyLmV4YW1wbGUuY29tL3Rva2VuIiwiaWF0IjoxNzYyMjYyNjE2fQ.H9r1N2s8xp_rcNr4Bs7_n-6vNKN4BPsvXzsV_UWwWiyr314xPMv4v6_8ac2SIbM-cJ-O4hlZysOUrjC7rewlag
637        - name: Agid-JWT-TrackingEvidence
638          in: header
639          description: >-
640             If the Voucher type is Bearer, this header represents a JWT acting as a proof of possession, to comply with the REST_JWS_2021_POP security
641             pattern using the POP_TPoP implementation. Otherwise, it is a JWT containing the data tracked in the Consumer's domain, to comply with AUDIT_REST_02 (see <a target="blank"
642             href="https://italia.github.io/eid-wallet-it-docs/v1.0.0/en/e-service-pdnd.html">e-Service PDND</a>). <br/><br/>
643             <a target="blank" href="https://jwt.io/#debugger-io?token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTk1IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA">EXAMPLE ON JWT.IO</a>
644          required: false
645          schema:
646            type: string
647            format: JWT
648            example: eyJhbGciOiJFUzI1NiIsImtpZCI6ImQ0YzNiMmExLTk4NzYtNTQzMi0xMGZlLWRjYmE5ODc2NTQzMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiI4MjkxNGIzZi02MGIyLTQ1MjktYjRkNi0zZDRlNjdmMGE5MzMiLCJhdWQiOiJodHRwczovL2lzc3Vlci5leGFtcGxlLml0Iiwic3ViIjoiMTg1ZGJjYmEtODM2Ni00OTRkLWJlMDItNTI2NTk1IiwiZXhwIjoxNzMzMDUyNjAwLCJuYmYiOjE3MzMwMzY0NTAsImlhdCI6MTczMzAzNjQwMCwianRpIjoiYTRiNWM2ZDctZThmOS1hYmNkLWVmMTItMzQ1Njc4OTAxMjM0IiwiZG5vbmNlIjo2NTI4NDI0MjEzNjg1LCJwdXJwb3NlSWQiOiJiMmMzZDRlNS1mNmc3LWg4aTktajBrMS1sbW5vMTIzNDU2NzgiLCJ1c2VySUQiOiJhOGI3YzZkNS1lNGYzLWcyaDEtaTlqMC1rbG1ub3BxcnN0dXYiLCJsb2EiOiJzdWJzdGFudGlhbCJ9.y42yfMeW2H9h0b0j0BODUml8yF20stY9q3BwoVU5BB90afBj852Q0QlInncdhjXhUjLS1V76cGBxkutDNvxRNA
649      responses:
650        "200":
651          description: 200 OK
652          content:
653            application/json:
654              schema:
655                $ref: "#/components/schemas/ResponseReport"
656        "400":
657          description: Bad request
658          content:
659            application/json:
660              schema:
661                $ref: "#/components/schemas/ErrorDTO"
662        "401":
663          description: Unauthorized
664          content:
665            application/json:
666              schema:
667                $ref: "#/components/schemas/ErrorDTO"
668        "500":
669          description: Internal server error
670          content:
671            application/json:
672              schema:
673                $ref: "#/components/schemas/ErrorDTO"
674components:
675  schemas:
676    e-Service_Response:
677      properties:
678        Header:
679          type: object
680          properties:
681            alg:
682              description: A digital signature algorithm identifier.
683              type: string
684              example: RS256
685            kid:
686              description: Unique identifier of the JWK used by the Provider to sign the JWT.
687              type: string
688              example: "cdb52532-dd94-40ef-824d-9c55b10e6bc9"
689            typ:
690              description: It MUST be set to 'JWT'.
691              type: string
692              example: "JWT"
693            use:
694              description: Usage of the algorithm. If present, it MUST be 'sig'.
695              type: string
696              example: "sig"
697          required: [alg, kid, typ]
698        Payload:
699          type: object
700          properties:
701            iss:
702              description: The identifier of the e-Service.
703              type: string
704              example: "https://pre.api.gateway.ipzs.it/t/itwallet.api/utility-wallet/1.0.0/v1/revokeAll"
705            aud:
706              description: The identifier of the Consumer.
707              type: string
708              example: "31670092-eec0-4f95-88da-e1c7ce5e4505"
709            exp:
710              description: UNIX timestamp representing the JWT expiration time.
711              type: integer
712              example: 1736846928
713            iat:
714              description: UNIX timestamp representing the JWT issuance time.
715              type: integer
716              example: 1736846688
717            jti:
718              description: Unique identifier of the JWT to prevent replay attacks.
719              type: string
720              example: "8b971b43-e990-44fa-9013-1b353bfc5a0f"
721            nbf:
722              description: UNIX timestamp representing the JWT first validity time.
723              type: string
724              example: "1736846688"
725            result_code:
726              description: Response Code.
727              type: string
728              example: request_accepted
729              enum:
730                - request_accepted
731                - request_processed
732            result_description:
733              description: Response Description.
734              type: string
735              example: The service correctly received the request
736          required: [iss, aud, exp, iat, jti, result_code, result_description]
737    RevokeAllCredentials:
738      required:
739        - object_id
740        - wallet_provider
741        - signal_type
742      type: object
743      properties:
744        object_id:
745          type: string
746          description: ID ANPR or Tax identification number
747        wallet_provider:
748          type: string
749          description: URL identifier of the Wallet Provider
750        signal_type:
751          type: string
752          enum:
753            - DELETE
754            - SUSPENDED
755          description: URL identifier of the Wallet Provider
756    AvailableCredentials:
757      required:
758        - tax_id_codes
759      type: object
760      properties:
761        unique_ids:
762          type: array
763          items:
764            type: string
765          description: ID ANPR
766        tax_id_codes:
767          type: array
768          items:
769            type: string
770          description: Tax identification number
771    AvailableCredentialsRequest:
772      type: object
773      properties:
774        Available:
775          $ref: "#/components/schemas/AvailableCredentials"
776        Unavailable:
777          $ref: "#/components/schemas/AvailableCredentials"
778    ErrorDTO:
779      type: object
780      properties:
781        error:
782          type: string
783        error_description:
784          type: string
785    NotifyStatusCredRequest:
786      type: array
787      items:
788        required:
789          - object_type
790          - object_id
791          - eservice_id
792          - status_details
793        type: object
794        properties:
795          object_type:
796            type: string
797            example: a0eebc99-9c0b-4ef8-bb6d-6bb9bd380a11
798            description: >-
799              The UUID of the Credential dataset transmitted by the AS to
800              the Credential Issuer used to create the single digital
801              credential
802          object_id:
803            type: string
804            description: >-
805              The ID ANPR or Tax Identification Number of the user to whom the
806              attribute refers
807          eservice_id:
808            type: string
809            example: b8c6d7ad-93fc-4eaf-9018-3cd8bf98163f
810            description: >-
811              Unique identifier of the e-service Get Attribute Claims provided by the Authentic Source
812          status_details:
813            type: object
814            properties:
815              state:
816                type: string
817                example: invalid
818                enum:
819                  - INVALID
820                  - SUSPENDED
821                  - UPDATE
822                description: >-
823                  string indicating the status of the Credential dataset. INVALID: attributes are no longer valid, SUSPENDED: attributes are temporarily invalid, UPDATE: attributes have changed.
824              description:
825                type: string
826                example: The attributes provided for the credential issuance are no longer valid
827                description: >-
828                  description of attribute status
829            required:
830              - state
831    ResponseReport:
832      type: object
833      properties:
834        countEid:
835          type: integer
836          format: int64
837        count:
838          type: integer
839          format: int64
840        countPid:
841          $ref: "#/components/schemas/TotalCountCredential"
842        countMdl:
843          $ref: "#/components/schemas/TotalCountCredential"
844        countEdc:
845          $ref: "#/components/schemas/TotalCountCredential"
846        countTeam:
847          $ref: "#/components/schemas/TotalCountCredential"
848    TotalCountCredential:
849      type: object
850      properties:
851        credEmesse:
852          type: integer
853          format: int64
854        credValide:
855          type: integer
856          format: int64
857        credInvalide:
858          type: integer
859          format: int64