Authorizer Configuration Reference
This reference documents the configuration options for the Authorizer service in the Vidos ecosystem. The Authorizer works with Validator and Verifier services to process verification requests and relies on the Resolver for DID document retrieval.
This reference documents the configuration options for the authorizer service.
Core Configuration
This section documents the complete configuration provided by Vidos.
Configuration Schema
The complete JSON Schema for the authorizer configuration is available:
Configuration Options
cors Configuration
For CORS configuration options see the CORS Configuration Reference.
policies Configuration
The policies section configures how the authorizer integrates with other Vidos services for credential validation and verification.
validate
Controls credential validation behavior through the validator service.
- Type:
object - Properties:
skip:booleanvalidator: Service instance reference
- Default:
- Description: Configures whether and how credential validation should be performed
Example configuration with managed validator:
Example configuration with custom validator instance:
Example configuration skipping validation:
verify
Controls credential verification behavior through the verifier service.
- Type:
object - Properties:
skip:booleanverifier: Service instance reference
- Default:
- Description: Configures whether and how credential verification should be performed
Example configuration with managed verifier:
Example configuration with custom verifier instance:
Example configuration skipping verification:
openId4vp Configuration
The openId4vp section configures the OpenID for Verifiable Presentations settings.
- Type:
object - Properties:
authorizationEndpoint:stringexpiresAfter:numberclientMetadata: Client metadata object
- Description: Controls OpenID4VP protocol settings and client information
authorizationEndpoint
- Type:
string(enum) - Default:
"openid4vp:" - Description: The authorization endpoint URI scheme
- See: OpenID for Verifiable Presentations
expiresAfter
- Type:
number - Default:
300000(milliseconds = 5 minutes) - Description: Expiration time in milliseconds for authorization requests
- Effects:
- Controls how long authorization requests remain valid
- Affects security window for presentations
- Influences user experience timeframe
clientMetadata
Controls client information displayed to users during authorization flows.
- Type:
object - Properties:
clientName:stringclientUri:stringlocation:stringlogoUri:string
- Default:
- Description: Client metadata used in OpenID4VP flows
Example custom configuration:
Service Instance References
Both the validator and verifier properties use service instance references to specify which service instances should be used. For complete details, see the Service Instances Reference. The Authorizer can be configured to use either the Resolver or Verifier services. There are two types of references:
Managed Instance
- Type:
object - Properties:
type:"managed"
- Description: References the Vidos-managed service instance
- Use When: You want to use the default Vidos-provided service instance
Example:
Custom Instance
- Type:
object - Properties:
type:"instance"resourceId:stringserviceRole: Service role reference
- Description: References a specific service instance
- Use When: You need custom behavior or configuration
Example:
Service Role Reference
Service role references specify the permissions used when accessing a service. For complete details, see the Service Roles Reference.
- Type:
object - Properties:
owner:"account"or"managed"resourceId:string
- Description: References a service role with appropriate permissions
Example account-owned role:
Example managed role:
Configuration Scenarios
Basic Setup
Minimal configuration using all managed services:
Custom Integration
Configuration using custom validator and verifier instances:
Skipping Validation
Configuration that skips validation but keeps verification: