๐๏ธ Onboarding a user
Individuals who would like to access the Composer or GraphQL API will need to be granted access via VO enterprise application user roles.
๐๏ธ Onboarding an app
For apps to integrate with VO platform, they will need to be granted access to VO application roles. Which roles are granted will depend on the tasks the app will carry out and the access model used.
๐๏ธ Integration options
The VO platform offers integration options to suit different use cases. The following sections describes options and considerations by function and architecture.
๐๏ธ Application integration
7 items
๐๏ธ Limited access tokens
1 item
๐๏ธ Issuance
Issuance is the process of adding a credential to the recipient's wallet (Microsoft Authenticator or custom wallet implementation). The recipient can then use the credential to prove claims about themselves to a verifier.
๐๏ธ Remote issuance
Remote issuance allows you to issue credentials to recipients who are not present at the time of issuance.
๐๏ธ Presentation
Presentation is the process of having a credential holder present credentials from their wallet, to prove claims about themselves to a verifier.
๐๏ธ Identity stores
Identity stores make it easy to organise, group, and manage identities in VO. Each identity store represents a source of identities, such as your organisationโs directory or a manually managed group.
๐๏ธ Wallet link handling
Credential issuance and presentation requests must be opened in a wallet, such as the Microsoft Authenticator app. This guide explains how to handle opening wallet links from your application.
๐๏ธ Identity mapping
This guide describes how to use VO identity references, which are used by issuances and presentations to reliably link back to your organisation's own identities (e.g., internal users, partners, and customers).
๐๏ธ Credential migration
This guide explains how to migrate users from existing (non-VO) verifiable credentials to VO-managed credentials. Identity resolvers allow users to authenticate with credentials issued outside of VO by mapping a claim value from the legacy credential to a user identity in your organisation's directory.
๐๏ธ Authentication and authorization
2 items
๐๏ธ Presentation flows
The VO platform supports presentation flows โ asynchronous, link-based credential presentation requests that can be sent to a person and actioned at their convenience. A presentation flow combines credential verification with optional data entry and custom actions, making it suitable for a wide range of use cases.
๐๏ธ Instance configuration
The following configuration settings can be administered for each instance of the VO platform.
๐๏ธ Branding
You can customize the appearance of the Concierge to align with your organisation's branding by leveraging our branding capabilities.
๐๏ธ Audit
1 item
๐๏ธ RBAC permissions
This page documents which roles can access which GraphQL operations.