Skip to content
This repository has been archived by the owner on Feb 21, 2023. It is now read-only.

Cleanup of REST API #44

Closed
wants to merge 9 commits into from
Closed
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
154 changes: 124 additions & 30 deletions draft-birkholz-scitt-architecture.md
Original file line number Diff line number Diff line change
Expand Up @@ -53,6 +53,8 @@ normative:
# RFC9054: COSE-HASH
RFC9162: CT
RFC6838:
RFC7807:
RFC7231:
IANA.cose:
DID-CORE:
target: https://www.w3.org/TR/did-core/
Expand Down Expand Up @@ -544,6 +546,31 @@ Editor's Note: This may be moved to appendix.

## Messages

All messages are sent as HTTP GET or POST requests.

If the transparency service cannot process a client's request, it MUST return an HTTP 4xx or 5xx status code, and the body SHOULD be a JSON problem details object ({{RFC6838}}) containing:

- type: A URI reference identifying the problem. To facilitate automated response to errors, this document defines a set of standard tokens for use in the type field within the URN namespace of: "urn:ietf:params:scitt:error:".

- detail: A human-readable string describing the error that prevented the transparency service from processing the request, ideally with sufficient detail to enable the error to be rectified.

Error responses SHOULD be sent with the `Content-Type: application/problem+json` HTTP header.

As an example, submitting a claim with an unsupported signature algorithm would return a `400 Bad Request` status code and the following body:

~~~json
{
"type": "urn:ietf:params:scitt:error:badSignatureAlgorithm",
"detail": "The claim was signed with an algorithm the server does not support"
}
~~~

Most error types are specific to the type of request and are defined in the respective subsections below. The one exception is the "malformed" error type, which indicates that the transparency service could not parse the client's request because it did not comply with this document:

- Error code: `malformed` (The request could not be parsed).

Clients SHOULD treat 500 and 503 HTTP status code responses as transient failures and MAY retry the same request without modification at a later date. Note that in the case of a 503 response, the transparency service MAY include a `Retry-After` header field per {{RFC7231}} in order to request a minimum time for the client to wait before retrying the request. In the absence of this header field, this document does not specify a minimum.

### Register Signed Claims

#### Request
Expand All @@ -552,64 +579,131 @@ Editor's Note: This may be moved to appendix.
POST <Base URL>/entries
~~~

Headers:

- `Content-Type: application/cose`

Body: SCITT COSE_Sign1 message

#### Response

One of the following:

- HTTP Status `201` - Registration was tentatively successful pending service consensus.
- HTTP Status `400` - Registration was unsuccessful.
- Error code `AwaitingDIDResolutionTryLater`
- Error code `InvalidInput`
- Status 201 - Registration is successful.
- Header `Location: <Base URL>/entries/<Entry ID>`
- Header `Content-Type: application/json`
- Body `{ "entryId": "<Entry ID"> }`

[TODO] Use 5xx for AwaitingDIDResolutionTryLater
- Status 202 - Registration is pending.
- Header `Location: <Base URL>/operations/<Operation ID>`
- Header `Content-Type: application/json`
- (Optional) Header: `Retry-After: <seconds>`
- Body `{ "operationId": "<Operation ID>", "status": "pending" }`

The `201` response contains the `x-ms-ccf-transaction-id` HTTP header which can be used to retrieve the Registration Receipt with the given transaction ID. [TODO] this has to be made generic
- Status 400 - Registration was unsuccessful due to invalid input.
- Error code `badSignatureAlgorithm`
- Error code `TBD`

[TODO] probably a bad idea to define a new header, or is it ok? can we register a new one? https://www.iana.org/assignments/http-fields/http-fields.xhtml
If 202 is returned, then clients should wait until registration succeeded or failed by polling the registration status using the Operation ID returned in the response. Clients should always obtain a receipt as a proof that registration has succeeded.

The `400` response has a `Content-Type: application/json` header and a body containing details about the error:
### Retrieve Operation Status

```json
{
"error": {
"code": "<error code>",
"message": "<message>"
}
}
```
#### Request

~~~
GET <Base URL>/operations/<Operation ID>
~~~

`AwaitingDIDResolutionTryLater` means the service does not have an up-to-date DID document of the DID referenced in the Signed Claims but is performing or will perform a DID resolution after which the client may retry the request. The response may contain the HTTP header `Retry-After` to inform the client about the expected wait time.
#### Response

One of the following:

`InvalidInput` means either the Signed Claims message is syntactically malformed, violates the signing profile (e.g. signing algorithm), or has an invalid signature relative to the currently resolved DID document.
- Status 200 - Registration is pending
letmaik marked this conversation as resolved.
Show resolved Hide resolved
- Header: `Content-Type: application/json`
- (Optional) Header: `Retry-After: <seconds>`
- Body: `{ "operationId": "<Operation ID>", "status": "pending" }`

### Retrieve Registration Receipt
- Status 200 - Registration was successful
- Header: `Location: <Base URL>/entries/<Entry ID>`
- Header: `Content-Type: application/json`
- Body: `{ "operationId": "<Operation ID>", "status": "succeeded", "entryId": "<Entry ID>" }`

- Status 200 - Registration failed
- Header `Content-Type: application/json`
- Body: `{ "operationId": "<Operation ID>", "status": "failed", "error": { "type": "<type>", "detail": "<detail>" } }`
- Error code: `badSignatureAlgorithm`
- Error code: `TBD`

- Status 404 - Unknown Operation ID
- Error code: `operationNotFound`
- This can happen if the operation ID has expired and been deleted.

If an operation failed, then error details SHOULD be embedded as a JSON problem details object in the `"error"` field.

If an operation ID is invalid (i.e., it does not correspond to any submit operation), a service may return either a 404 or a `pending` status. This is because differentiating between the two may not be possible in an eventually consistent system.

### Retrieve Registration Entry

#### Request

~~~
GET <Base URL>/entries/<Transaction ID>/receipt
GET <Base URL>/entries/<Entry ID>
~~~

#### Response

One of the following:

- HTTP Status `200` - Registration was successful and the Receipt is returned.
- HTTP Status `400` - Transaction exists but does not correspond to a Registration Request.
- Error code `TransactionMismatch`
- HTTP Status `404` - Transaction is pending, unknown, or invalid.
- Error code `TransactionPendingOrUnknown`
- Error code `TransactionInvalid`
- Status 200.
- Header `Content-Type: application/json`
- Body `{ "entryId": "<Entry ID>" }`
- Status 404 - Entry not found.
- Error code: `entryNotFound`

The `200` response contains the SCITT_Receipt in the body.
### Retrieve Registered Claim

The `400` and `404` responses return the error details as described earlier.
#### Request

The retrieved Receipt may be embedded in the corresponding COSE_Sign1 document in the unprotected header, see TBD.
~~~
GET <Base URL>/entries/<Entry ID>/claim
~~~

Query parameters:

- (Optional) `embedReceipt=true`

If the query parameter `embedReceipt=true` is provided, then the claim is returned with the corresponding registration receipt embedded in the claim's COSE unprotected header.

#### Response

One of the following:

- Status 200.
- Header: `Content-Type: application/cose`
letmaik marked this conversation as resolved.
Show resolved Hide resolved
- Body: COSE_Sign1 claim

[TODO] There's also the `GET <Base URL>/entries/<Transaction ID>` endpoint which returns the submitted COSE_Sign1 with the Receipt already embedded. Is this useful?
- Status 404 - Entry not found.
- Error code: `entryNotFound`

### Retrieve Registration Receipt

#### Request

~~~
GET <Base URL>/entries/<Entry ID>/receipt
~~~

#### Response

One of the following:

- Status 200.
- Header: `Content-Type: application/cbor`
letmaik marked this conversation as resolved.
Show resolved Hide resolved
- Body: SCITT_Receipt
- Status 404 - Entry not found.
- Error code: `entryNotFound`

The retrieved Receipt may be embedded in the corresponding COSE_Sign1 document in the unprotected header, see TBD.


# Privacy Considerations
Expand Down