KORD Guardian services are micro-services that expose a single HTTP endpoint. Requests can be sent to this endpoint with a verifiable claim object in the body. This claim will be verified and, if all verification checks pass, a verified KORD Claim object will be returned. This verified claim can then be added to a KORD Graph in the KORD Network. KORD Graphs can be queried by other services to establish the credentials of a KORD Agent.
Currently, Node.js is the only officially supported language. Although KORD
Guardian micro-services could be written in other languages, the supporting
documentation and boilerplate code depend on the
kord.js library. Official support
for other languages will be added as other external libraries are developed.
-
A verifiable claim is sent to the KORD Guardian micro-service via an HTTP request
-
The KORD Guardian micro-service MUST recover the sender's Ethereum address from the claim signature and verify that it matches the address sent in the body of the claim
verifyIdentityClaim(address, claimHash, signature) -
Additional verification MAY be made on the claim. For example: OAuth, TLS Notary, JWT, 2FA, social network statements, national ID document checks.
-
The KORD Guardian micro-service MUST return a verified KORD Claim object
createVerifiedIdentityClaimObject(claimMessage, graph, issuer, property, subject)
-
The verified KORD Claim MAY then be added to a KORD Graph in the KORD Network by the claim subject.