Apple Identity Access certificates

Specifies paths and operations for managing Apple Identity Access certificates for mDocs verification.

Create an Apple Identity Access CSR

Creates an Apple Identity Access Certificate Signing Request (CSR) that can be uploaded to the Apple Developer Portal.

This certificate contains the public key that will be used to decrypt the response from the Apple Wallet.

Analytic events

  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_CREATE_START
  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_CREATE_SUCCESS
  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_CREATE_FAIL
SecuritybearerAuth
Request
Request Body schema: application/json
required

Apple Identity Access CSR payload

teamId
required
string

Team ID of the iOS app.

merchantId
required
string

The merchantIdentifier used by PassKit to retrieve credential data.

Responses
201

Apple Identity Access CSR created

400

Bad Request. The request was malformed or missing required parameters.

post/v2/presentations/certificates/apple-identity-access-certificates
Request samples
application/json
{
  • "teamId": "A2B3C4D5E6",
  • "merchantId": "com.domain.subdomain"
}
Response samples
application/json
{
  • "id": "fd44e792-45ac-11f0-bef8-bb24f133065e",
  • "teamId": "A2B3C4D5E6",
  • "merchantId": "com.domain.subdomain",
  • "csrPem": "string"
}

Retrieve all Apple Identity Access CSRs

Retrieves all Apple Identity Access CSRs created by the tenant.

Analytic events

  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_RETRIEVE_LIST_START
  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_RETRIEVE_LIST_SUCCESS
  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_RETRIEVE_LIST_FAIL
Roles: ["Admin","Verifier"]
SecuritybearerAuth
Responses
200

Apple Identity Access CSRs retrieved

get/v2/presentations/certificates/apple-identity-access-certificates
Request samples
Response samples
application/json
{
  • "nextCursor": "Y3JlYXRlZEF0PTIwMjAtMDgtMjVUMDY6NDY6MDkuNTEwWiZpZD1hNjZmZmVhNS04NDhlLTQzOWQtODBhNC1kZGE1NWY1M2UzNmM",
  • "data": [
    ]
}

Retrieve an Apple Identity Access CSR

Retrieves an existing Apple Identity Access CSR.

Analytic events

  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_RETRIEVE_START
  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_RETRIEVE_SUCCESS
  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_RETRIEVE_FAIL
Roles: ["Admin","Verifier"]
SecuritybearerAuth
Request
path Parameters
certificateId
required
string <uuid>

Unique identifier for the Apple Identity Access CSR.

Example: 673a20c3-97a3-40dd-b29a-115ff32b02c3
Responses
200

Apple Identity Access Certificate CSR retrieved

400

Bad Request. The request was malformed or missing required parameters.

404

Not Found. The specified resource was not found.

get/v2/presentations/certificates/apple-identity-access-certificates/{certificateId}
Request samples
Response samples
application/json
{
  • "id": "fd44e792-45ac-11f0-bef8-bb24f133065e",
  • "teamId": "A2B3C4D5E6",
  • "merchantId": "com.domain.subdomain",
  • "csrPem": "string"
}

Delete an Apple Identity Access CSR

Deletes an existing Apple Identity Access CSR.

Analytic events

  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_DELETE_START
  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_DELETE_SUCCESS
  • CREDENTIAL_PRESENTATION_APPLE_IDENTITY_ACCESS_CERTIFICATE_DELETE_FAIL
Roles: ["Admin","Verifier"]
SecuritybearerAuth
Request
path Parameters
certificateId
required
string <uuid>

Unique identifier for the Apple Identity Access CSR.

Example: 673a20c3-97a3-40dd-b29a-115ff32b02c3
Responses
204

Apple Identity Access Certificate CSR deleted

400

Bad Request. The request was malformed or missing required parameters.

404

Not Found. The specified resource was not found.

delete/v2/presentations/certificates/apple-identity-access-certificates/{certificateId}
Request samples
Response samples
application/json
{
  • "code": "string",
  • "message": "string",
  • "details": [
    ]
}