Learn how to build a login with IOTA use-case
In this tutorial, you will learn how to configure the wallet kit + other needed frontend projects to build a Login With IOTA use-case. The tutorial is divided into two sections. First, we will set up and configure the backend handling the business logic, followed by the frontend projects which are provided for an easy and fast lauch.
Make sure you have Docker installed on your machine
Cloning the project
2. Change directory
3. Running the project
To make sure only Verifiable Credentials with a "did:iota" can pass the verification (login), we will create a policy and use it in our verifier configuration.
IOTA policy
Registering the policy
The Wallet-Kit has multi tenant support, which means multiple customers, or tenants, can use a single instance of the wallet-kit, with each tenant having their own data and configurations isolated from others. And we will now create + use our IOTA tenant to register the policy
POST /verifier-api/{tenantId}/config/policies/create/{name} Use swagger to make the request
The Wallet-Kit has multi tenant support, which means multiple customers, or tenants, can use a single instance of the wallet-kit, with each tenant having their own data and configurations isolated from others. And we will now create our IOTA tenant to handle all IOTA related operations.
First, we get the configuration of the default tenant and use it as a baseline for the configuration of our IOTA tenant.
GET /verifier-api/{tenantId}/config/getConfiguration Use swagger to make the request
Using the response, we just got from the default tenant configuration, we will update additionalPolicies
as well as the verifierApiUrl
as follows:
Let's now set the above configuration object as the configuration for our IOTA tenant.
POST /verifier-api/{tenantId}/config/setConfiguration Use swagger to make the request
To have the fully working Login With IOTA Demo up and running, we need three more projects:
The Waltid-Wallet - To create an IOTA DID and get a Verifiable Credential based on an IOTA DID issued
The Waltid-Issuer-Portal - The application responsible for issuing a Verifiable Credential to the DID IOTA holder (Wallet)
The Waltid-Verifier-Portal - The application in which the holder will log in to using a Verifiable Credential based on a DID IOTA
Make sure you have node.js installed on your machine
Cloning the project
2. Change directory
3. Install dependencies
4. Run the project
Cloning the project
2. Change directory
3. Install dependencies
4. Run the project
Cloning the project
2. Change directory
3. Checkout feat-iota brunch
4. Install dependencies
5. Run the project
Now that we have the backend and all frontend applications up and running, we can start the Login with IOTA flow.
Creating a "did:iota" and registering it on the IOTA tangle. Thankfully, the Wallet frontend, which we can now reach under localhost:3000, already implements that logic, so we can easily open the settings, view Ecosystems, choose IOTA and register our DID. This will send a request to our running wallet-kit instance requesting the creation of DID as well as and registration of it with the IOTA tangle.
Make sure you set the newly created IOTA DID as default DID of the wallet in the ecosystem overview as shown in the video
Claiming a VerifiableID Credential. Visit http:localhost:3000 where our walt-id-web-wallet is running and issue yourself a VerifiableId by clicking the "Request Credential" button and selecting the Walt.id Issuer portal (the other frontend we spun up earlier) running on localhost:8000. Now what we have the Verifiable Credential, we can use it and login to the application.
Login into the Verifier Portal. Visit http:localhost:4000 where our walt-id-verifer-portal is running and click the "Login With IOTA" button to start the login flow. In background, the verifier portal will call our running instance of the wallet-kit, requesting a verification of the present credential. Using our custom policy from earlier, it will check that the subject of the present Verifiable Credential is an "iota:did". On the result screen of the verification, you will see a list of all the policies which were validated and if the validation has been successful.
We apologize that our current implementation does not yet support the Stardust Upgrade from IOTA. As such, you cannot issue or verify credentials associated via a did:iota. Please refer to our roadmap for more information on when our products will be updated to include this latest changes.
Depending on your preference, start exploring with the deep dive or a tutorial.
Deep dive
Architecture - See how IOTA was integrated into the SSI-Kit. The Wallet-Kit uses the SSI-Kit internally; therefore, we get all the functionality with the Wallet-Kit + more for easier integration with any app.
OIDC4VP Profile - Learn more about the OIDC4VP profile used for Login with IOTA
Tutorials
Login With IOTA - Learn how to configure the wallet kit + other needed frontend projects to build a Login With IOTA use-case
Demo
Hands on dive in
Login With IOTA
Learn how to set up Login With IOTA