Giter Site home page Giter Site logo

irma-demo-schememanager's Introduction

The irma-demo scheme manager

This repository contains the credential definitions, issuer information, and their public and private keys of the irma-demo scheme manager.

CAREFUL! This scheme manager is only ever meant to be used for development, demoing and experimenting! Because the issuer private keys are included in this repository everyone can issue any credential from this scheme manager, choosing the attributes freely. Thus their authenticity cannot be trusted. (For an actual scheme manager, see the Privacy by Design Foundation scheme manager.)

Use this repository by putting it in the irma_configuration folder of your project (for example, the IRMA mobile app or the IRMA API server). Be sure to call the folder irma-demo! E.g.,

git clone https://github.com/privacybydesign/irma-demo-schememanager irma-demo

Directory structure

A scheme manager, issuer, or credential type (call it an entity) is always stored in description.xml, contained in a folder whose name must be that of the entity as specified by the xml file. Multiple issuers are grouped under the scheme manager, and each issuer may issue multiple credential types.

SchemeManager
+-- IssuerName
|   +-- Issues
|   |   +-- CredentialName
|   |       +--- description.xml
|   |       +--- logo.png
|   +-- PublicKeys
|   |   +-- 0.xml
|   |   +-- 1.xml
|   +-- PrivateKeys (need not be present)
|   |   +-- 0.xml
|   |   +-- 1.xml
|   +-- description.xml
|   +-- logo.png
+-- description.xml
+-- index
+-- index.sig
+-- pk.pem
+-- timestamp

Some notes on adding a new organization

First setup up the description.xml files of the scheme manager, issuers, and the credentials types that fall under your scheme manager, laying out the files as above. Make sure you add logos for your issuers and credential types.

Idemix public-private keypairs can be generated using the irma command from irmago. Be sure to put the keys in the correct place in the directory tree. The default options should be ok for most situations. For example:

irma scheme issuer keygen path/to/issuer/directory

The index file must contain the SHA256-hash of each file along with its location in the directory tree; the index.sig file must contain an ECDSA signature over this file (which thus effectively signs the entire directory tree), and the public key of this signature must be in pk.pem. The IRMA app verifies this signature when starting and when downloading new scheme manager files, and will refuse to use the entire scheme manager when this signature verification fails. You can use the scheme subcommand of the irma command from the irmago repository to generate an ECDSA private-public keypair, the index file, and the index.sig signature file.

Note

This repository contains the same tree as (the now deprecated) github.com/credentials/irma_configuration but with the outer irma_configuration folder removed.

irma-demo-schememanager's People

Contributors

azaaiman avatar confiks avatar davidv1992 avatar ehsan-fj avatar fvdbroek avatar gerbrand-bosch avatar harm-van-stekelenburg avatar ivard avatar jpvdplasse avatar koen92 avatar leonbotros avatar marnixdessing avatar mhe avatar michielmayer avatar pimvullers avatar puiterwijk avatar rafaelbernard avatar reinier-chipsoft avatar ruberuby avatar sanderhollaar avatar sgort avatar sietseringers avatar stanvanlier avatar thomwiggers avatar timenolthof avatar tomdemeyer avatar webpatser avatar wouterl avatar woutslakhorst avatar yaelgoede avatar

Stargazers

avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar avatar avatar

Forkers

maxvisser koen92 nedap jastam ivard wigo4it fvdbroek marc4gov sguldemond waagsociety webpatser reinier-chipsoft sjefvanleeuwen mikeclickr discipl rafaelbernard mrvanes internetnz surfnet-niels gerbrand-bosch ondesmartenot sgort ams-azaaiman yael-goede yaelgoede jobdoesburg stanvanlier tweedegolf harm-van-stekelenburg ruberuby michielmayer jpvdplasse awesterb ricklambrechts marnixdessing wzoet

irma-demo-schememanager's Issues

Issue Demo KVK credentials

@michielmayer I believe this is relevant for you.

When issuing demo credentials via the organisatiegegevens.signicat.dev there are 2 problems:

  • When trying to issue KVK credentials with an empty demo persoonsgegevens there is an infinite loop in step 2 of the KVK. See screenprints; IMG_7004
    IMG_7007
    IMG_7005
  • When trying to issue KVK credentials with a random populated demo persoonsgegevens you get to step 3 'vind je bedrijf' where you can search on KVK nummer or handelsnaam. No entry gives any results and you are therefore unable to proceed.
    image0

Cannot alter credentials attributes

Hello,

I am trying to play a bit with irma-demo-schememanager. I am trying to change something inside the MijnOverheid credentials (i.e. logo.png or attributes fields names for example), but it remains unchanged.

irma_demo_schememanager is installed on ${HOME_GO} location:

/Users/vn/go/src/github.com/privacybydesign/irma_mobile/irma_configuration/irma-demo

And 'shared' between keyshare_server and irma_api_server through the symbolic links:

irma_keyshare_server/src/main/resources:
config.json
irma_configuration -> /Users/vn/go/src/github.com/privacybydesign/irma_mobile/irma_configuration
database.xml
logback.xml
pk.der
pk.pem
sk.der

irma_api_server/src/main/resources
config.json
logback.xml
irma_configuration -> /Users/vn/go/src/github.com/privacybydesign/irma_mobile/irma_configuration

I was able to download application container from my iPhone with Xcode and see that all data related to the credentials is in the initial state, not changed...

How attributes forms on mobile phone application? From the local scheme manager or every time downloading from somewhere?

Key generation

Hi,
Is there a way to generate credentials directly in Java without irmatool or silvia_keygen?
Thank you,
Ricardo

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.