Configure Inji to download Beneficiary VCs
Last updated
Was this helpful?
Last updated
Was this helpful?
This guide contains the procedure to install and set up the backend required for the Inji App to download PBMS Beneficiary VCs.
eSignet is available with the National ID system and is ready for authentication. If not available, a mock eSignet can be installed with PBMS.
, , odoo modules are installed on PBMS.
(Only required for testing. Not required for production.)
Create an with the following parameters:
clientId: mimoto-oidc
clientName: Inji Wallet
logoUrl:
redirectUris: io.mosip.residentapp.inji://oauthredirect .
relyingPartyId: mpartner-default-mimoto .
clientId: openg2p-mimoto-oidc
clientName: Inji Wallet
redirectUris: io.mosip.residentapp.inji://oauthredirect .
relyingPartyId: openg2p-auth-partner .
(Only required for testing. Not required for production.)
Collect public-key-private-key pairs from both the OIDC clients created above.
Import the Mimoto OIDC client key pair with the name mpartner-default-mimotooidc and an appropriate password (The rest of this guide assumes this password is openg2p123 ).
Import the OpenG2P Mimoto OIDC client key pair with the name openg2p-mimotooidc with the same password as the one for the above key pair, openg2p123.
Set keystore password. The password should be the same as the above, openg2p123.
Create a K8s secret with the name mimoto-oidc-secret, for the above P12 file:
Install Mimoto in your OpenG2P namespace using Rancher:
Select the namespace in the Rancher namespace filter.
Go to Rancher -> Apps -> Charts. Refresh all charts. Search and select Mimoto. Choose version 0.13.0 or higher. On the config page, give the name of the Kubernetes secret containing the OIDC keystore, the keystore password, URL of the mosip-config repo from step 3.1, along with any other details asked. Finish installation.
Go to PBMS -> Settings -> VCI Issuers. Create one VC Issuer for each program for which VC download should be supported. Configure VC Issuer with the following parameters:
Name: Name to identify the VC Issuer and to be displayed on the Inji App when downloading.
Issuer Type: Beneficiary
Program: Choose the relevant program
Auth Subject ID Type: NATIONAL ID TOKEN.
Auth Allowed Issuers: eSignet Issuer URL (Example: https://esignet.explore.openg2p.org.)
Leave the rest of the fields with default values and save. Upon saving all the other fields will get auto-populated.
Download Inji App version 0.13.0 or higher.
Go to Inji -> Settings -> Credential Registry. Edit :
Credential Registry: Mimoto Base URL given in step 4.4. (Example: https://mimoto.explore.openg2p.org)
Esignet Host: eSignet Base URL (Example: https://esignet.explore.openg2p.org)
Now the Inji App should be ready to download Beneficiary credentials. (Beneficiary should be enrolled in the program and should be an active beneficiary to be able to download the card.)
Create an with the following parameters:
logoUrl:
Fork this repository .
Edit with appropriate names and URLs.
Create a P12 file using .
Go to Rancher -> Apps -> Repositories. Add a repository with this URL if it doesn't exist (name can be given as openg2p-extras).
Scope: Scope should be one of the entries present in the scopes_supported field in .
