Skip to content

Verified email attribute#3637

Merged
aterga merged 9 commits intomainfrom
sea-snake/verified-email
Feb 27, 2026
Merged

Verified email attribute#3637
aterga merged 9 commits intomainfrom
sea-snake/verified-email

Conversation

@sea-snake
Copy link
Contributor

@sea-snake sea-snake commented Feb 26, 2026
edited by aterga
Loading

Support new identity attributes verified_email that are certified by II only upon evidence that the email address is actually controlled by the authenticated user.

Changes

  • Added VerifiedEmail variant to the AttributeName enum for certifying verified email addresses
  • Introduced OpenIdEmailVerificationScheme enum with Google and Microsoft variants, along with corresponding Candid types
  • Implemented provider-specific email verification logic: Google uses email_verified claim, Microsoft validates personal account tenant IDs
  • Refactored attribute preparation to use dedicated getter methods with improved maintainability

Tests

Verified email attribute tests (verified_email_tests)

Sets up real Google and Microsoft providers via openid::setup so config_issuer(), get_verified_email(), and scope matching all work end-to-end through prepare_openid_attributes.

Google (email_verified claim, case-insensitive):

  • Returns verified email when email_verified is "true"
  • Returns nothing when email_verified is "false"
  • Returns nothing when email_verified metadata is absent
  • Returns nothing when email metadata is absent (even if email_verified is "true")
  • Accepts case variations ("True") — verifies case-insensitive check
  • Returns nothing when email_verified is stored as Bytes instead of String

Microsoft (tid-based personal account check):

  • Returns verified email when tid matches the personal account tenant ID
  • Returns nothing for enterprise (non-personal) tenant IDs
  • Skips credential entirely when tid is missing (provider can't resolve {tid} placeholder)
  • Returns nothing when email metadata is absent

Combined / cross-cutting:

  • Both Google and Microsoft verified emails returned in a single multi-credential anchor
  • Verified email returned alongside email and name attributes in one request
  • Credential with unknown issuer (no matching provider) is skipped entirely

All tests also assert that requested is properly drained (empty after call) when the scope was consumed, or remains non-empty when the credential was skipped.

@aterga
Copy link
Contributor

aterga commented Feb 26, 2026

LGTM, just needs some tests

@aterga aterga requested review from aterga and Copilot and removed request for Copilot February 27, 2026 12:51
@aterga aterga marked this pull request as ready for review February 27, 2026 12:51
Copilot AI reviewed Feb 27, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This pull request adds support for verified email attributes in the Internet Identity OpenID integration. The feature allows certification of email addresses that have been verified by identity providers (Google and Microsoft), ensuring that the authenticated user actually controls the email address.

Changes:

  • Added VerifiedEmail variant to the AttributeName enum for certifying verified email addresses
  • Introduced OpenIdEmailVerificationScheme enum with Google and Microsoft variants, along with corresponding Candid types
  • Implemented provider-specific email verification logic: Google uses email_verified claim, Microsoft validates personal account tenant IDs
  • Refactored attribute preparation to use dedicated getter methods with improved maintainability

Reviewed changes

Copilot reviewed 10 out of 10 changed files in this pull request and generated 2 comments.

Show a summary per file
File Description
src/internet_identity_interface/src/internet_identity/types/attributes.rs Adds VerifiedEmail to AttributeName enum with string conversions
src/internet_identity_interface/src/internet_identity/types.rs Defines OpenIdEmailVerificationScheme enum and adds email_verification field to OpenIdConfig
src/internet_identity/src/openid/generic.rs Implements email_verified claim parsing (supporting both bool and string types), validation, and metadata storage
src/internet_identity/src/openid.rs Adds email verification methods for Google and Microsoft, extends OpenIdProvider trait with email_verification_schema method
src/internet_identity/src/attributes.rs Refactors attribute preparation to use getter methods and adds comprehensive unit tests for verified email scenarios
src/internet_identity/internet_identity.did Adds OpenIdEmailVerification variant type to Candid interface
src/internet_identity/tests/integration/*.rs Updates all OpenIdConfig instantiations to include email_verification field (set to None)

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@aterga aterga enabled auto-merge February 27, 2026 14:26
@aterga aterga added this pull request to the merge queue Feb 27, 2026
Merged via the queue into main with commit 5f7de94 Feb 27, 2026
63 checks passed
@aterga aterga deleted the sea-snake/verified-email branch February 27, 2026 14:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@aterga aterga aterga approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@sea-snake @aterga