Skip to content

Commit 9ec05d3

Browse files
fix: openid4vci, handle default_target_authentication_backend
1 parent dbc9f63 commit 9ec05d3

4 files changed

Lines changed: 9 additions & 7 deletions

File tree

iam-proxy-italia-project/conf/microservices/target_based_routing.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
module: satosa.micro_services.custom_routing.DecideBackendByTargetIssuer
22
name: TargetRouter
33
config:
4-
default_backend: Saml2
4+
default_backend: "spidSaml2"
55

66
target_mapping:
77
# test platforms
@@ -26,4 +26,4 @@ config:
2626
"https://idp.intesigroup.com": "spidSaml2"
2727
"https://idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST/SSO": "cieSaml2"
2828
#IT Wallet
29-
"wallet": "OpenID4VP"
29+
"openid4vp": "OpenID4VP"

iam-proxy-italia-project/static/locales/wallets-en.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@
2020
"name": "IT-Wallet",
2121
"logo_text": "Login with IT-Wallet",
2222
"logo": "wallet-it/wallet_icon.svg",
23-
"login_url": "https://localhost/Saml2/disco?entityID=wallet",
23+
"login_url": "https://localhost/Saml2/disco?entityID=openid4vp",
2424
"learn_more_descr": "IT-Wallet è il Sistema di portafoglio digitale italiano che ti dà il pieno controllo sulle tue informazioni, senza che l'ente che le ha rilasciate venga a conoscenza di quando e come vengono usate."
2525
},
2626
"spid": {

iam-proxy-italia-project/static/locales/wallets-it.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@
2020
"name": "IT-Wallet",
2121
"logo_text": "Entra con IT-Wallet",
2222
"logo": "wallet-it/wallet_icon.svg",
23-
"login_url": "https://localhost/Saml2/disco?entityID=wallet",
23+
"login_url": "https://localhost/Saml2/disco?entityID=openid4vp",
2424
"learn_more_descr": "IT-Wallet è il Sistema di portafoglio digitale italiano che ti dà il pieno controllo sulle tue informazioni, senza che l'ente che le ha rilasciate venga a conoscenza di quando e come vengono usate."
2525
},
2626
"spid": {

iam-proxy-italia-project/wwwallet/configs/openid4vci_frontend.yaml

Lines changed: 5 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -3,6 +3,8 @@ name: OpenID4VCI
33

44
config:
55

6+
default_target_authentication_backend: spidSaml2
7+
68
endpoints:
79
par:
810
module: pyeudiw.satosa.frontends.openid4vci.endpoints.pushed_authorization_request_endpoint
@@ -122,8 +124,8 @@ config:
122124
oauth_authorization_server:
123125
issuer: https://satosa-nginx/OpenID4VCI # this field if not set will be autopopulated using internal variables base_url and name using the following format: "<base_url>/<name>"
124126
pushed_authorization_request_endpoint: https://satosa-nginx/OpenID4VCI/par
125-
authorization_endpoint: /authorize
126-
token_endpoint: /token
127+
authorization_endpoint: https://localhost/OpenID4VCI/authorization
128+
token_endpoint: https://satosa-nginx/OpenID4VCI/token
127129
client_registration_types_supported:
128130
- automatic
129131
code_challenge_methods_supported:
@@ -504,7 +506,7 @@ config:
504506

505507
security:
506508
wallet_attestation_required: false # this is the flag to enable the wallet attestation interoperability, if missing it will be set to true by default
507-
signed_par_requests: false # this is the flag to enable the PAR request signing, if missing it will be set to true by default
509+
signed_par_request: 'false' # this is the flag to enable the PAR request signing, if missing it will be set to true by default
508510

509511
# this is the custom configuration for credential management.
510512
credential_configurations:

0 commit comments

Comments
 (0)