Module ockam_identity::credentials
source · Expand description
Services for creating and validating credentials
Structs
- An AuthorityService represents an authority which issued credentials
- Structure with both
CredentialData
andPurposeKeyAttestationData
that we get after parsing and verifying corresponding [Credential
] andsuper::super::models::PurposeKeyAttestation
- Service for managing [
Credential
]s - Service for managing
Credential
s - This struct runs as a Worker to issue credentials based on a request/response protocol
- Credentials retriever that retrieves a credential from memory
- Implementation of the CredentialsService
- Service for managing [
Credential
]s - A one-time code can be used to enroll a node with some authenticated attributes It can be retrieve with a command like
ockam project ticket --attribute component=control
- Credentials retriever for credentials located on a different node
- Information necessary to connect to a remote credential retriever
- A trust context defines which authorities are trusted to attest to which attributes, within a context. Our first implementation assumes that there is only one authority and it is trusted to attest to all attributes within this context.
Constants
- Maximum duration for a valid credential in seconds (30 days)
- Identifier for the schema of a project credential
- Name of the attribute identifying the trust context for that attribute, meaning from which set of trusted authorities the attribute comes from
- The same as above but in string format
Traits
- Trait for retrieving a credential for a given identity
- This trait allows an identity to send its credential to another identity located at the end of a secure channel route
Functions
- Return a response on the return route stating that a secure channel is needed to access the service