This web-based tool allows you to add your Ontario Vaccination Receipt as a pass into your Apple Wallet on iOS in a privacy-respecting way. It achieves this without sending your data to a server and instead uses a hashed representation for the signing step.
Here is a demo
yarn install
yarn dev
docker build . -t covidpass -t gcr.io/broadcast2patients/covidpass
docker run --rm -t -i -p 3000:3000 covidpass
setup.md has the details on how to bring the components together.
Processing of your data happens entirely in your browser and only a hashed representation is sent to the server for the signing step. For more details of this, please see https://toronto.ctvnews.ca/video?clipId=2294461
Navigate to the "TouchID & Code" or "FaceID & Code" or just "Code" section in the Settings and switch the toggle to off for Wallet in the section "Allow access from the lock screen". Also see this official guide from Apple.
Sign into your Apple Developer Account
Go to Certificates, Identifiers and Profiles
Register a new Pass Type Identifier under the Identifiers tab
Create a new Pass Type ID Certificate under the Certificates tab
Select your previously created Pass Type Identifier in the process
Move your new certificate to the My Certificates tab in the keychain
Export your certificate as a .p12 file
Install node.js and download the passkit-keys script
Create a keys
folder and put the .p12 file inside
Run ./passkit-keys <path to your keys folder>
You may have to type in the passphrase you defined during the export step
A description of how you can use your certificate locally with the API will be provided in the readme of the CovidPass API.
To connect the web app to your local server, you have to set the API_BASE_URL
environment variable accordingly.
The whole process of generating the pass file happens locally in your browser. For the signing step, a hashed representation of your data is sent to the server.
First, the following steps happen locally in your browser:
Second, the following steps happen on the server:
Finally, the following steps happen locally in your browser:
The idea for this web app originated from the solution of an Austrian web developer, which only works for Austrian certificates at the moment.
The main codebase is forked from covidpass and added Ontario specifcs.
Contributions to this project is welcome. Feel free to leave your suggestions, issues or pull requests.