Tabella dei contenuti
Vouchers
What they are and what they are for
Vouchers are JWT tokens (JSON Web Tokens) that act as an authorization issued by the platform to the consumer to access an e-service published by a producer.
The voucher ensures the security, legitimacy, and traceability of data exchanges between parties by guaranteeing that:
- The consumer is reliably identified, since the voucher is issued only after PDND has verified the entire chain: active e-service version, active service request, active purpose linked to the e-service, client associated with the purpose, and public key associated with the client.
- The producer can verify the authorization of the request, confirming that it originates from an authorized consumer, for the correct resource and an active purpose.
- Each interaction is secure and verifiable, thanks to the digital signature applied by PDND to the token.
PDND implements authorization mechanisms based on the OAuth 2.0 standard (RFC 6750).
Client authentication follows what is defined in RFC 7521.
Any additional technical specifications (RFCs) depend on the type of voucher issued and are indicated in the respective sections of the manual.
Client authentication follows what is defined in RFC 7521.
Any additional technical specifications (RFCs) depend on the type of voucher issued and are indicated in the respective sections of the manual.
More information, examples, and tutorials
The following sections of this guide describe the different voucher request methods and their features. In the tutorial section, you can find step-by-step guides on how to obtain [TODO] and verify [TODO] a voucher.
Next page → Types of voucher requests
Hai bisogno di aiuto?
Apri un ticket utilizzando l’apposita funzione all’interno della tua Area Riservata
