Create a CWT credential configuration
Creates a new CWT credential configuration, a specific set of rules and parameters that are used to create and validate a particular type of verifiable credential. These rules and parameters define how the credential is structured and what data it contains when issued.
Analytics Events
Roles
/v2/credentials/compact/configurationsIn: header
The credential configuration payload
Used to differentiate between different CWT/Semantic CWT credential configurations on your tenant. Thus, its value must:
- Be unique across all CWT/Semantic CWT credential configurations on your tenant.
- Not be VerifiableCredential.
1 <= length <= 1024This is where you specify how to map claims (user attributes) into issued credentials. Each field in the object corresponds to a claim in the issued credential, and contains one or more from the following attributes:
mapFrom: References the path in the user object where the claim is available.- When using a URL as a claims namespace identifier, use bracket notation to access the claim value (e.g.
mapFrom: "claims['https://example.com/claim-name']"). mapFromis optional whendefaultValueis provided, as the latter will be used for all issued credentials. This is referred to as a static claim.
- When using a URL as a claims namespace identifier, use bracket notation to access the claim value (e.g.
defaultValue: Indicates what value is used if required is set tofalse(field is optional) and no value is provided by the claims source. WhendefaultValueis provided,mapFromis optional.required: Indicates whether the claim is required (default:false). When a required claim cannot be retrieved and nodefaultValueis available, credential issuance will fail. Exampleclaimsobject inside theuserobject
{
"claims": {
"given_name": "Jamie",
"family_name": "Doe",
"address": {
"formatted": "116-118 Quay Street, Auckland CBD, Auckland 1010"
}
},
"authenticationProvider": {
"subjectId": "6d3aab7d-73af-5f61-b47c-109ef6f7558c",
"url": "https://accounts.google.com"
}
}Empty Object
When set to true (default), the created credential can later be revoked. When set to false, the credential cannot be revoked.
trueReferences the unique identifier of a claims source that can be used to retrieve claims and include them in the issued credential.
uuidUsed to determine when will issued credentials expire. Can include any combination of years, months, weeks, days, hours, minutes and seconds.
Response Body
curl -X POST "https://example.vii.au01.mattr.global/v2/credentials/compact/configurations" \ -H "Content-Type: application/json" \ -d '{ "claimMappings": { "firstName": { "mapFrom": "claims.given_name", "required": true }, "address": { "mapFrom": "claims.address.formatted" }, "picture": { "mapFrom": "claims.picture", "defaultValue": "http://example.edu/img/placeholder.png" }, "badge": { "defaultValue": "http://example.edu/img/badge.png" }, "providerSubjectId": { "mapFrom": "authenticationProvider.subjectId" } } }'{
"id": "983c0a86-204f-4431-9371-f5a22e506599",
"type": "CourseCredential",
"claimMappings": {
"firstName": {
"mapFrom": "claims.given_name",
"required": true
},
"address": {
"mapFrom": "claims.address.formatted"
},
"picture": {
"mapFrom": "claims.picture",
"defaultValue": "http://example.edu/img/placeholder.png"
},
"badge": {
"defaultValue": "http://example.edu/img/badge.png"
},
"providerSubjectId": {
"mapFrom": "authenticationProvider.subjectId"
}
},
"revocable": true,
"claimSourceId": "78e1b90c-401d-45bb-89c0-938da4d44c60",
"expiresIn": {
"years": 1,
"months": 12,
"weeks": 52,
"days": 365,
"hours": 24,
"minutes": 1440,
"seconds": 3600
}
}{
"code": "string",
"message": "string",
"details": [
{
"value": "string",
"msg": "Invalid value",
"param": "id",
"location": "body"
}
]
}How would you rate this page?