Skip to content
This repository has been archived by the owner on Feb 21, 2023. It is now read-only.

Cleanup of REST API #44

Closed
wants to merge 9 commits into from
Closed

Cleanup of REST API #44

Changes from 6 commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
275b982
proposal for vendor-neutral rest api
letmaik Feb 9, 2023
0b6f24f
operations
letmaik Feb 13, 2023
fc3e696
fix
letmaik Feb 13, 2023
0a4fcf2
headers
letmaik Feb 14, 2023
62b4b9b
rename "registered" operation status to "succeeded" & remove status f…
letmaik Feb 15, 2023
0359dc4
use Problem JSON for errors
letmaik Feb 15, 2023
52d1869
Update draft-birkholz-scitt-architecture.md
letmaik Feb 15, 2023
92f81ef
json tagging
letmaik Feb 15, 2023
61829ca
separate 201/202 responses on submit
letmaik Feb 16, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
153 changes: 123 additions & 30 deletions draft-birkholz-scitt-architecture.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -53,6 +53,8 @@ normative:
# RFC9054: COSE-HASH
RFC9162: CT
RFC6838:
RFC7807:
RFC7231:
IANA.cose:
DID-CORE:
target: https://www.w3.org/TR/did-core/
Expand Down Expand Up @@ -544,6 +546,31 @@ Editor's Note: This may be moved to appendix.

## Messages

All messages are sent as HTTP GET or POST requests.

If the transparency service cannot process a client's request, it MUST return an HTTP 4xx or 5xx status code, and the body SHOULD be a JSON problem details object ({{RFC6838}}) containing:

- type: A URI reference identifying the problem. To facilitate automated response to errors, this document defines a set of standard tokens for use in the type field within the URN namespace of: "urn:ietf:params:scitt:error:".

- detail: A human-readable string describing the error that prevented the transparency service from processing the request, ideally with sufficient detail to enable the error to be rectified.

Error responses SHOULD be sent with the `Content-Type: application/problem+json` HTTP header.

As an example, submitting a claim with an unsupported signature algorithm would return a `400 Bad Request` status code and the following body:

~~~
{
"type": "urn:ietf:params:scitt:error:badSignatureAlgorithm"
letmaik marked this conversation as resolved.
Show resolved Hide resolved
"detail": "The claim was signed with an algorithm the server does not support"
}
~~~

Most error types are specific to the type of request and are defined in the respective subsections below. The one exception is the "malformed" error type, which indicates that the transparency service could not parse the client's request because it did not comply with this document:

- Error code: `malformed` (The request could not be parsed).

Clients SHOULD treat 500 and 503 HTTP status code responses as transient failures and MAY retry the same request without modification at a later date. Note that in the case of a 503 response, the transparency service MAY include a `Retry-After` header field per {{RFC7231}} in order to request a minimum time for the client to wait before retrying the request. In the absence of this header field, this document does not specify a minimum.

### Register Signed Claims

#### Request
Expand All @@ -552,64 +579,130 @@ Editor's Note: This may be moved to appendix.
POST <Base URL>/entries
~~~

Headers:

- `Content-Type: application/cose`

Body: SCITT COSE_Sign1 message

#### Response

One of the following:

- HTTP Status `201` - Registration was tentatively successful pending service consensus.
- HTTP Status `400` - Registration was unsuccessful.
- Error code `AwaitingDIDResolutionTryLater`
- Error code `InvalidInput`
- Status 202 - Registration is successful.
letmaik marked this conversation as resolved.
Show resolved Hide resolved
- Header `Location: <Base URL>/operations/<Operation ID>`
- Header `Content-Type: application/json`
- Body `{ "operationId": "<Operation ID>", "status": "succeeded", "entryId": "<Entry ID"> }`

[TODO] Use 5xx for AwaitingDIDResolutionTryLater
- Status 202 - Registration is pending.
- Header `Location: <Base URL>/operations/<Operation ID>`
- Header `Content-Type: application/json`
- Body `{ "operationId": "<Operation ID>", "status": "pending" }`

The `201` response contains the `x-ms-ccf-transaction-id` HTTP header which can be used to retrieve the Registration Receipt with the given transaction ID. [TODO] this has to be made generic
- Status 400 - Registration was unsuccessful due to invalid input.
- Error code `badSignatureAlgorithm`
- Error code `TBD`

[TODO] probably a bad idea to define a new header, or is it ok? can we register a new one? https://www.iana.org/assignments/http-fields/http-fields.xhtml
If 202 is returned with status `pending`, then clients should wait until registration succeeded or failed by polling the registration status using the Operation ID returned in the response. Clients should always obtain a receipt as a proof that registration has succeeded.

The `400` response has a `Content-Type: application/json` header and a body containing details about the error:
### Retrieve Operation Status

```json
{
"error": {
"code": "<error code>",
"message": "<message>"
}
}
```
#### Request

~~~
GET <Base URL>/operations/<Operation ID>
~~~

`AwaitingDIDResolutionTryLater` means the service does not have an up-to-date DID document of the DID referenced in the Signed Claims but is performing or will perform a DID resolution after which the client may retry the request. The response may contain the HTTP header `Retry-After` to inform the client about the expected wait time.
#### Response

One of the following:

`InvalidInput` means either the Signed Claims message is syntactically malformed, violates the signing profile (e.g. signing algorithm), or has an invalid signature relative to the currently resolved DID document.
- Status 200 - Registration is pending
letmaik marked this conversation as resolved.
Show resolved Hide resolved
- Header: `Content-Type: application/json`
- (Optional) Header: `Retry-After: <seconds>`
- Body: `{ "operationId": "<Operation ID>", "status": "pending" }`

### Retrieve Registration Receipt
- Status 200 - Registration was successful
- Header: `Location: <Base URL>/entries/<Entry ID>`
- Header: `Content-Type: application/json`
- Body: `{ "operationId": "<Operation ID>", "status": "succeeded", "entryId": "<Entry ID>" }`

- Status 200 - Registration failed
- Header `Content-Type: application/json`
- Body: `{ "operationId": "<Operation ID>", "status": "failed", "error": { "type": "<type>", "detail": "<detail>" } }`
- Error code: `badSignatureAlgorithm`
- Error code: `TBD`

- Status 404 - Unknown Operation ID
- Error code: `operationNotFound`
- This can happen if the operation ID has expired and been deleted.

If an operation failed, then error details are embedded as a JSON problem details object in the `"error"` field.

If an operation ID is invalid (i.e., it does not correspond to any submit operation), a service may return either a 404 or a `pending` status. This is because differentiating between the two may not be possible in an eventually consistent system.

### Retrieve Registration Entry

#### Request

~~~
GET <Base URL>/entries/<Transaction ID>/receipt
GET <Base URL>/entries/<Entry ID>
~~~

#### Response

One of the following:

- HTTP Status `200` - Registration was successful and the Receipt is returned.
- HTTP Status `400` - Transaction exists but does not correspond to a Registration Request.
- Error code `TransactionMismatch`
- HTTP Status `404` - Transaction is pending, unknown, or invalid.
- Error code `TransactionPendingOrUnknown`
- Error code `TransactionInvalid`
- Status 200.
- Header `Content-Type: application/json`
- Body `{ "entryId": "<Entry ID>" }`
- Status 404 - Entry not found.
- Error code: `entryNotFound`

The `200` response contains the SCITT_Receipt in the body.
### Retrieve Registered Claim

The `400` and `404` responses return the error details as described earlier.
#### Request

The retrieved Receipt may be embedded in the corresponding COSE_Sign1 document in the unprotected header, see TBD.
~~~
GET <Base URL>/entries/<Entry ID>/claim
~~~

Query parameters:

- (Optional) `embedReceipt=true`

If the query parameter `embedReceipt=true` is provided, then the claim is returned with the corresponding registration receipt embedded in the claim's COSE unprotected header.

#### Response

One of the following:

- Status 200.
- Header: `Content-Type: application/cose`
letmaik marked this conversation as resolved.
Show resolved Hide resolved
- Body: COSE_Sign1 claim

[TODO] There's also the `GET <Base URL>/entries/<Transaction ID>` endpoint which returns the submitted COSE_Sign1 with the Receipt already embedded. Is this useful?
- Status 404 - Entry not found.
- Error code: `entryNotFound`

### Retrieve Registration Receipt

#### Request

~~~
GET <Base URL>/entries/<Entry ID>/receipt
~~~

#### Response

One of the following:

- Status 200.
- Header: `Content-Type: application/cbor`
letmaik marked this conversation as resolved.
Show resolved Hide resolved
- Body: SCITT_Receipt
- Status 404 - Entry not found.
- Error code: `entryNotFound`

The retrieved Receipt may be embedded in the corresponding COSE_Sign1 document in the unprotected header, see TBD.


# Privacy Considerations
Expand Down