Closed salty-horse closed 3 years ago
@salty-horse Interesting! Can you describe the process of how you created your certificate so we can attempt to reproduce it successfully?
I didn't "create" anything. This JSON (before I removed personal info from it) was in the QR code that I got from Clalit.
Right :) how did you get it?
I logged on to Clalit's wesite and downloaded the PDF with my vaccination certificate. Note that this isn't the "green passport" (I understand people are having trouble accessing that website...?) but it includes a QR code with the same signed message.
DM me on Twitter if you want the full signed certificate.
No need for the full cert with your PII, it seems MOH (Ramzor) and Clalit have two separate and possibly incompatible implementations. We'll fix the script accordingly to support both, regardless.
Sorry, I seem to have scrubbed out an important detail. As I said, this was based on the vaccination certificate, and not the green pass.
The real value of ct
in my certificate is 2 (Vaccination), not 1 (GreenPass).
@salty-horse Can you confirm the rest of the payload is the same?
Looks like it. Here's the data again, with less redacted fields. It matches the Ramzor documentation.
{
"id": "...",
"et": 1,
"c": "IL MOH",
"ct": 2,
"cn": null,
"fn": null,
"g": "..",
"f": "..",
"gl": "..",
"fl": "..",
"idl": "..",
"idp": "..",
"b": "YYYY-MM-DD",
"e": "YYYY-MM-DD",
"a": "YYYY-MM-DD",
"d1": {
"d": "YYYY-MM-DD",
"vv": "Pfizer",
"vt": "BNT162b2",
"vb": "..",
"vc": null,
"o": "Clalit",
"ol": "כללית",
"oc": null,
"c": null
},
"d2": {
"d": "YYYY-MM-DD",
"vv": "Pfizer",
"vt": "BNT162b2",
"vb": "..",
"vc": null,
"o": "Clalit",
"ol": "כללית",
"oc": null,
"c": null
}
}
Now I downloaded a real "green pass" and can confirm the p
exists.
Green pass has an array of passes "p". While a vaccination certificate (which is for 1 person only) contains the 2 doses given "d1" and "d2".
Updated version should now support both implementations.
The JSON in
verify.py
has this format:The end of the script tries to print
idl
andp
from inside ap
list, that as of now is not in the Ramzor documentation.My certificate has this format: