Open jjeroch opened 5 months ago
@Phil91 ticket details updated. Regarding the discussion today of submitting the applicationID - any chance we switch this to businessPartnerNumber insteadß
@Phil91 ticket details updated. Regarding the discussion today of submitting the applicationID - any chance we switch this to businessPartnerNumber insteadß
@jjeroch sure, that should be possible since the bpn is a unique identifier as well. but we would pass the bpn as a separate field to the dim right? since we have a combination of bpn and company name for the tenantName I can't just split it in half
I've created the merge of the code into the repo provided by SAP:
Summary
As-Is: the current "CREATE_IDENTITY_WALLET" step is implemented to create based on the body
a wallet tenant and the bpnl credential.
In the new SSI Flow the process is changing. The process step only creates the Wallet Tenant (..not the BPNL credential). Therefore following data are supposed to get submitted via the REST API endpoint
Submitt Body
*the businessPartnerNumber and company name is expected to get merged into a tenantName => {companies.business_partnernumber}{company.name}
Response Body Based on the submitted data, the wallet will perform all necessary steps to create the customer wallet tenant, possible technical users as well as the didDocument. To enable to provider to send back the didDocument and other details - an asynchron resposne endpoint is needed. The endpoint body is defined below
Note: in our 24.05. integration scenario the outgoing interface spec as well as the ingoing interface spec does not directly connect to the wallet; instead we (portal) are running against the DIM wrapper
API In-Going Spec Details:
Asynchron POST API needed at which the DIM Wrapper can submit the didDocument; tech user, etc. Note - the did as well as the didDocument must get validated before storing them.
Primary Key for submission: businessPartnerNumber
Endpoint: POST /api/administration/registration/didDocument Permission: store_didDocument
Response Body
Below the validation details are added
did the did created MUST follow the following structure "did:web:{url}:{BPN123}" ..no further validations planned at this step of time, however ticket #517 created to resolve the did in a later stage the
didDocument the received did document need to get validated against the expected didDocument structure as per the cx standard (shared below).
In case the structure does not fit to the expected structure - the process step need to get set to "failed". Also the service "CredentialStore" is mandatorily needed with an serviceEndpoint defined.
If the did as well as the didDocument are fine; store the same inside the portal and set the process step "CREATE_IDENTITY_WALLET" to "DONE"
Special Error Scenarios:
Note - the stored didDocument needs to get published by the portal - to be rechecked with the SSI Architect how the publishing should happen in detail for standardization. The whole task is managed under the following ticket https://github.com/eclipse-tractusx/portal-backend/issues/478 and is not part of this ticket
ACCs