Incoming Proof Request Support
Currently the framework supports only the active request of proofs by getting all proofs. Technically the framework supports more as get by proofid or connection, but in the real world is this no manual action. In the most use cases a verifier will request a proof with the intention to challenge you. This means it must be either
- manually checked if the incoming proof request is granted by the OCM Owner
- automatically checked if the incoming proof request is granted by the OCM owner
In both cases the SSI-Abstraction misses a notification for this event. When something is incoming, it's hidden in the background. Have fun to find it out.
How should it be?
The Framework needs an NATS integration which triggers an event when a presentation/proof request comes in. The message should contain proof record id, connection id and DID of the verifier. A new service should pick up this and request from the TSA a decision if the presentation SHALL be made. If the answer is yes, the presentation is made so far possible, otherwise it's a message to the verifier send (e.g. you are not allowed to see it by policy etc. ).