ID for Trust Providers is a digital identity service from Mastercard that helps you apply for, enroll in, log in to, and access services more simply, securely and privately. Rather than manually providing your information when you are trying to complete tasks online or in apps, ID enables you to share your verified information automatically, more securely, and with your consent and control. ID also enables you to do away with passwords and protects your personal information. Please see here for more details on the API: ID for Trust Providers.
For more information regarding the program, refer to ID Service
- Mastercard's OAuth Signer library
- Using OAuth 1.0a to Access Mastercard APIs
- Mastercard's Payload Encryption/Decryption library
- Using Payload Encryption
- Mastercard Developers Account with access to ID for Trust Providers API
- IntelliJ IDEA (or any other IDE)
- Spring Boot 2.2+ up to 2.7.x
- Apache Maven 3.3+
- Java 8 or later is installed
- Set up the
JAVA_HOMEenvironment variable to match the location of your Java installation
-
Create an account at Mastercard Developers.
-
Create a new project and add
ID for Trust ProvidersAPI to your project. -
Download Sandbox Signing Key, a .p12 file will be downloaded.
-
In the Client Encryption Keys section of the dashboard, click on the
Actionsdropdown and download the client encryption key, a.pemfile will be downloaded. -
Select all
.p12and.pemfiles, and copy them tosrc/main/resourcesin the project folder. -
Open
${project.basedir}/src/main/resources/application.propertiesand configure the below parameters.Authentication
mastercard.api.key.file=classpath: Path to keystore (.p12) file, just change the name as per the downloaded file in step 5 and set value as "classpath:your-Mastercard_ID_Service_MTF-sandbox.p12"
mastercard.api.consumer.key= This refers to your consumer key. Copy it from the "Keys" section on your project page in Mastercard Developers.
mastercard.api.keystore.alias= Alias of your key. Default key alias for sandbox is
keyalias.mastercard.api.keystore.password= Password of your Keystore. Default keystore password for sandbox project is
keystorepassword.mastercard.user.selectedCountry= Replace this country code as required. Following ISO 3166-1 alpha-3 standard. Example: USA.
mastercard.client.userProfileId= This will be used by /user-profiles API to register a user profile using the given userProfileId. An error will be returned if the user profile already exists.
mastercard.client.enrollment.workflowId= This workflowId is created by the identity verification provider during the enrollment of the user, and it will be used by other APIs to retrieve the extracted data of the document in a subsequent call.
mastercard.client.sessionId= This sessionId is the tpAuditMetadata sessionId from the client.
mastercard.client.transactionGroupId= This is the tpAuditMetadata transactionGroupId from the client.
Encryption
mastercard.api.encryption.certificateFile=classpath: Copy your downloaded certificate (.pem) file to src/main/resources and set value as "classpath:your-mastercard-ID-ServiceClientEnc.pem"
mastercard.api.encryption.fingerPrint= Fingerprint, copy this from the "Client Encryption Keys" section on your project page in Mastercard Developers.
Decryption
mastercard.api.decryption.keystore=classpath: Copy your downloaded .p12 file to src/main/resources and set value as "classpath:keyalias-encryption-mc.p12"
mastercard.api.decryption.alias= Alias of your key. Default key alias for sandbox is
keyalias.mastercard.api.decryption.keystore.password= Password of your Keystore. Default keystore password for sandbox project is
keystorepassword.server.port= Application port.
mastercard.api.pds.update.conflict.attribute= Replace this value with "FATHERS_NAME" or "MOTHERS_NAME" or "LEGAL_NAME". More information about it. Please search for IdentityAttributeItem at the mids-reference-app-spec.yaml file.
mastercard.api.pds.update.conflict.attribute.value= This name should be present in one of the scanned documents(Drivers License or Passport).
mastercard.api.scanID= Replace this value with updated value.
api.session.token= Replace this value with X-user-identity obtained for the user profileID.
OpenAPI Generator generates API client libraries from OpenAPI Specs. It provides generators and library templates for supporting multiple languages and frameworks.
See also:
<!-- https://mvnrepository.com/artifact/org.openapitools/openapi-generator-maven-plugin -->
<plugin>
<groupId>org.openapitools</groupId>
<artifactId>openapi-generator-maven-plugin</artifactId>
<version>${openapi-generator.version}</version>
<executions>
<execution>
<goals>
<goal>generate</goal>
</goals>
<configuration>
<inputSpec>${project.basedir}/src/main/resources/mastercard-idservice-reference_api_spec.yaml</inputSpec>
<generatorName>java</generatorName>
<library>okhttp-gson</library>
<generateApiTests>false</generateApiTests>
<generateModelTests>false</generateModelTests>
<configOptions>
<sourceFolder>src/gen/main/java</sourceFolder>
<dateLibrary>java8</dateLibrary>
</configOptions>
</configuration>
</execution>
</executions>
</plugin>Now that you have all the required dependencies, you can generate the sources. To do this, use one of the following methods:
-
Using IDE
In IntelliJ IDEA (or any other IDE of your choice), open the Maven menu. Click the iconsReimport All Maven ProjectsandGenerate Sources and Update Folders for All Projects. -
Using Terminal or CMD
Navigate to the project's root directory within a terminal window and execute themvn clean compilecommand.
-
VM Parameter for country selection
Pass VM Options foruserSelectedCountry.USAset as default.
Example:-DuserSelectedCountry=BRA -
Using IDE
Navigate to thecom.mastercard.dis.mids.referencepackage and right-click to runMIDSReferenceApplication -
Using Terminal or CMD
Navigate to the project's root directory within a terminal window and execute themvn spring-boot:runcommand. -
After that you can see all the menu options, such as:
- Registering a User Profile
- Access Token API (SDKToken)
- Create User Identity
- Multi-Access Token API (MultiSDKToken)
- Access User Identity
- Update ID Confirmations (Enrollment)
- Update ID Confirmations (Re-authentication)
- User Account Activity Searches
- Email OTP
- SMS OTP
- User Profiles Identity Searches
- Share User Identity (TP-TP)
- RP Activity Searches
- Audit Events
- Delete ID
- Share User Identity (TP-RP) (Enrollment)
- Additional Document Support
- Share User Identity (TP-RP) (Re-authentication)
- TP Scopes
- TP Data Shares
- Update Identity
- Delete Identity Attribute
- Authentication Decisions
- Exit
The main use cases in ID for Trust Providers Reference APIs are Personal Data Storage, SMS One Time Password, Email One Time Password, Document Verification, Multi Document Verification, Re-Authentication, GPA-Authentication, Claims Sharing, Audit Events, User Profile, Delete ID, TP Scopes Request and Fraud Data.
More details can be found here.
- Run mvn clean install from the root of the project directory.
- There are two ways to execute the user cases :
- Execute the test cases
- At the
src/test/javawhich is the main root folder for all Junit tests of the application. - Run the tests.
- Select the menu options provided by the application
- Run
mvn spring-boot:runcommand to run the application. - Once the application is running, you should be able chose the options.
-
To develop a client application that consumes the ID for Trust Providers API with Spring Boot, refer to the ID for Trust Providers Reference.
-
The OpenAPI specification with
idserviceendpoints can be found here.
You can change the default input passed to APIs, modify values in following file:
com.mastercard.dis.mids.reference.constants.Constants
- For further information, send an e-mail to
apisupport@mastercard.com. - For information regarding licensing, refer to the LICENSE.
- For copyright information, refer to the COPYRIGHT.
- For instructions on how to contribute to this project, refer to the CONTRIBUTING.
- For changelog information, refer to the CHANGELOG.