Key Binder Plugin
The Key Binder plugin interface provides a method to bind an individual's ID with a public key. On successful binding, it returns a signed certificate called Wallet User ID which uniquely identifies the user and the wallet.
When a new binding request is received, it is expected that the key binder implementation takes care of overriding previously bound certificates with the newly generated signed certificate for a user.
The individual needs to be authenticated before binding the key. The interface is structured to accept any type of authentication challenge, namely OTP or biometrics.
The bound certificate will then be usable to do token-based authentication like WLA (Wallet Local Authentication) from any digital wallet app.
Below is the key binder interface.
Who uses this interface?
How to implement this plugin?
The Key Binder implementation class must be annotated with ConditionalOnProperty
with mosip.esignet.integration.key-binder
property.
Appendix - Key Binding
The Key Binding functionality is depicted in the diagram below:
Last updated
Was this helpful?