This reference documents the configuration options for the validator service. The validator service validates credential structure, format, and completeness before cryptographic verification.
This section documents the complete configuration provided by Vidos.
The complete JSON Schema for the validator configuration is available:
For CORS configuration options see the CORS Configuration Reference.
The policies section consists of independent validation policies that can be configured separately. Each policy controls a specific aspect of credential validation and focuses on structural integrity rather than cryptographic verification. Policies can be:
skip: true/false
The validator supports the following validation policies:
credentialFormat
: Format and structure validationtrustedIssuer
: Trusted issuer certificate validationpresentationSubmission
: Presentation submission validationExample of policy configuration:
Each policy section below details its specific configuration options.
Controls credential format and structure validation.
object
standards
: Supported credential format standards
w3c
: W3C Verifiable Credentials Data Modeliso
: ISO standard formatsThe credential format policy validates that credentials conform to the expected structure, contain required fields, and follow the format specification before any cryptographic verification takes place.
Example configuration:
Standard | Version | Description | Validation Focus |
---|---|---|---|
w3c.vc-data-model.v1.1 | 1.1 | W3C Verifiable Credentials Data Model v1.1 | JSON-LD structure, required fields, context validation |
w3c.vc-data-model.v2.0 | 2.0 | W3C Verifiable Credentials Data Model v2.0 | Enhanced structure, multi-proof support, secured formats |
iso.18013-5:2021 | 2021 | ISO 18013-5 Mobile Driving License | CBOR structure, mDL-specific fields, ISO compliance |
Controls trusted issuer certificate validation.
object
skip
: boolean
- Whether to skip trusted issuer validationtrustedIssuerRootCertificates
: Array of trusted certificate configurationsThe trusted issuer policy validates that credentials are issued by trusted entities based on certificate chains and root certificates.
Example configuration:
The validator supports multiple methods for specifying trusted issuer certificates:
Direct PEM-encoded certificate specification:
VICAL (Verifiable Issuer Certificate Authority List) format:
VICAL certificate list retrieved from URL:
Predefined certificate sets for common trust anchors:
Tag | Description | Use Case |
---|---|---|
vidos | Vidos default trust anchors | Standard Vidos ecosystem certificates |
aamva | AAMVA (American Association of Motor Vehicle Administrators) | US/Canada driver's license credentials |
Controls presentation submission validation.
object
skip
: boolean
- Whether to skip presentation submission validationonPresentationEvaluationWarning
: "valid" | "error" | "warning"
- Action when presentation evaluation warnings occurThe presentation submission policy validates that verifiable presentations properly fulfill presentation definition requirements and contain the expected structure.
Example configuration:
Action | Description | Use Case |
---|---|---|
valid | Treat warnings as valid | Lenient validation, warnings don't fail validation |
warning | Generate warnings | Standard validation, warnings logged but don't fail |
error | Treat warnings as errors | Strict validation, warnings cause validation failure |
Example presentation submission validation:
The validator supports three validation outcomes:
error
: Validation fails, stops processingwarning
: Validation continues with warningsvalid
: Successful validationCommon scenarios:
Scenario | Default Action | Configuration Option |
---|---|---|
Unsupported credential format | Error | credentialFormat.standards.{standard}.enabled |
Missing required fields | Error | Built-in validation rules |
Invalid certificate chain | Error | trustedIssuer.skip |
Presentation evaluation warning | Warning | presentationSubmission.onPresentationEvaluationWarning |
The validator service supports configuration through environment variables:
VALIDATOR_CORS_ENABLED
- Enable CORSVALIDATOR_POLICIES_CREDENTIALFORMAT_STANDARDS_W3C_VC_DATA_MODEL_V1_1_ENABLED
- Enable W3C VC Data Model v1.1VALIDATOR_POLICIES_TRUSTEDISSUER_SKIP
- Skip trusted issuer validationVALIDATOR_POLICIES_PRESENTATIONSUBMISSION_SKIP
- Skip presentation submission validationThe validator service validates its own configuration on startup to ensure:
The validator service integrates with other Vidos services: