Skip to content

docs: update backend services | libraries section for inji-mobile#15

Open
KiruthikaJeyashankar wants to merge 4 commits into
inji:masterfrom
KiruthikaJeyashankar:update-bs-doc-rel-1.0.0-alpha.1
Open

docs: update backend services | libraries section for inji-mobile#15
KiruthikaJeyashankar wants to merge 4 commits into
inji:masterfrom
KiruthikaJeyashankar:update-bs-doc-rel-1.0.0-alpha.1

Conversation

@KiruthikaJeyashankar

@KiruthikaJeyashankar KiruthikaJeyashankar commented Jul 9, 2026

Copy link
Copy Markdown

Summary by CodeRabbit

  • Documentation
    • Updated backend services navigation to reflect the latest service names and structure.
    • Added new guides for online login and credential issuance flows.
    • Expanded wallet backend documentation with updated configuration, login, issuer, and trusted verifier details.
    • Reworked the PixelPass integration guide with clearer platform availability, feature summaries, APIs, and use cases.
    • Removed outdated backend service pages and replaced them with refreshed documentation.

Signed-off-by: KiruthikaJeyashankar <kiruthikavjshankar@gmail.com>
@coderabbitai

coderabbitai Bot commented Jul 9, 2026

Copy link
Copy Markdown

Review Change Stack

Walkthrough

Backend-services documentation was restructured: TOC/README entries renamed, eSignet.md and inji-certify.md removed and replaced by new login-using-credential.md and issuer.md pages, and mimoto.md rewritten with expanded configuration, OIDC token, and verifier-list sections. Separately, pixelpass.md was reorganized into Availability, Features, APIs Overview, and Use Cases sections.

Changes

Backend Services Documentation Rework

Layer / File(s) Summary
TOC and index link updates
SUMMARY.md, inji-wallet/inji-mobile/technical-overview/backend-services/README.md
Replaces Mimoto/eSignet/Inji Certify TOC and index entries with links to renamed and new documentation pages.
New Online Login documentation
inji-wallet/inji-mobile/technical-overview/backend-services/login-using-credential.md, .../esignet.md
Adds a new page documenting credential-based online login (overview, user journey, APIs, benefits, reference) replacing the removed eSignet page.
New Credential Issuer documentation
inji-wallet/inji-mobile/technical-overview/backend-services/issuer.md, .../inji-certify.md
Adds a new page describing the Issuer service and OpenID4VCI credential download/endpoint flow, replacing the removed Inji Certify page.
Mimoto documentation rewrite
inji-wallet/inji-mobile/technical-overview/backend-services/mimoto.md
Retitles and rewrites Mimoto docs covering issuer listing, OIDC token retrieval, online login/activation, configuration/property descriptions, and a new trusted verifier list section.

Estimated code review effort: 2 (Simple) | ~12 minutes

PixelPass Integration Guide Rewrite

Layer / File(s) Summary
PixelPass guide restructuring
inji-wallet/inji-mobile/technical-overview/integration-guide/building-verifiable-credentials-wallet-with-inji-libraries/pixelpass.md
Replaces prior usage/API/error sections with Availability, Features, APIs Overview, and two Use Cases subsections (QR sharing and mDoc display flows).

Estimated code review effort: 2 (Simple) | ~10 minutes

Possibly related issues

Poem

A hop through docs, both old and new,
eSignet fades, Issuer breaks through,
Mimoto's tale grows rich and wide,
PixelPass paths now clarified.
🐰 With whiskers twitched, I nibble the change—
Docs reorganized, nothing strange!

🚥 Pre-merge checks | ✅ 5
✅ Passed checks (5 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.
Title check ✅ Passed The title is concise and accurately reflects the two main documentation areas changed: backend services and the inji-mobile libraries section.
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands.

@KiruthikaJeyashankar KiruthikaJeyashankar changed the title Update bs doc rel 1.0.0 alpha.1 docs: update backend services Jul 9, 2026
@KiruthikaJeyashankar KiruthikaJeyashankar force-pushed the update-bs-doc-rel-1.0.0-alpha.1 branch 2 times, most recently from fba7842 to 22275f9 Compare July 9, 2026 07:14

@coderabbitai coderabbitai Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 7

🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@inji-wallet/inji-mobile/technical-overview/backend-services/issuer.md`:
- Around line 29-33: The credential endpoint block in issuer.md uses a signed
OpenAPI asset URL that has expired, so the rendered docs will contain a dead
link. Update the openapi-operation reference for /vci/credential to use a
stable, non-expiring asset source or a publishing-time generated link, keeping
the surrounding Inji Certify documentation reference intact.
- Around line 5-8: The Issuer overview incorrectly implies that Inji Certify
authenticates users; update the wording in the Issuer section to keep
authentication separate from issuance. Rephrase the description around Inji
Certify so it only covers issuing Verifiable Credentials via OpenID4VCI, and
make clear that user login/authentication is handled by the authorization server
before the issuer is involved.

In
`@inji-wallet/inji-mobile/technical-overview/backend-services/login-using-credential.md`:
- Around line 42-81: The OpenAPI embeds in the authentication flow docs use
time-limited cloudflarestorage signed URLs, and the lingering TODO shows this
page is still unfinished. Update the Link Login Transaction, Authenticate User,
and Submit User Consent sections to reference a stable OpenAPI asset/source
through the existing openapi-operation usage, then remove the TODO comment so
the page no longer depends on stale signatures.

In `@inji-wallet/inji-mobile/technical-overview/backend-services/mimoto.md`:
- Around line 14-16: The OpenAPI embeds in mimoto.md are all pointing to a
signed, expiring R2 asset, so the rendered docs will eventually break. Update
every {% swagger %} block on this page to use a stable, non-expiring source or
asset instead of the signed mimoto (1).json URL, and make sure all repeated
embeds in the page are switched consistently.
- Line 92: The heading hierarchy is skipped in the Property Descriptions
section, which triggers markdown linting. Update the Property Descriptions
heading in mimoto.md to use the correct intermediate level (for example, align
it with the surrounding section headings like `###`), keeping the document’s
heading structure consistent and lint-clean.

In
`@inji-wallet/inji-mobile/technical-overview/integration-guide/building-verifiable-credentials-wallet-with-inji-libraries/pixelpass.md`:
- Around line 28-47: The APIs Overview in pixelpass.md is inconsistent: it
claims six primary APIs but lists seven entries, including toJson. Update the
overview in the PixelPass API list so the stated count matches the actual number
of APIs, and make sure the summary and bullet list stay aligned with the public
methods named generateQRCode, generateQRData, decode, decodeBinary,
getMappedData, decodeMappedData, and toJson.
- Around line 48-84: The QR flow description is inaccurate:
`pixelPass.generateQRData(data, header)` returns the encoded base45 payload, not
the final QR image. Update the wording in the PixelPass use case section to say
the wallet first generates the payload with `generateQRData`, then renders that
payload as a QR code for sharing or scanning; keep the rest of the flow aligned
with the Inji Wallet and Inji Verify integration descriptions.
🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

  • Push a commit to this branch (recommended)
  • Create a new PR with the fixes

ℹ️ Review info
⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 8a3b5e74-138e-401e-b7e2-b89938786d40

📥 Commits

Reviewing files that changed from the base of the PR and between b2ccd39 and 22275f9.

⛔ Files ignored due to path filters (2)
  • .gitbook/assets/verify-decode.png is excluded by !**/*.png
  • .gitbook/assets/wallet-encode.png is excluded by !**/*.png
📒 Files selected for processing (9)
  • .gitbook/assets/mimoto (1).json
  • SUMMARY.md
  • inji-wallet/inji-mobile/technical-overview/backend-services/README.md
  • inji-wallet/inji-mobile/technical-overview/backend-services/esignet.md
  • inji-wallet/inji-mobile/technical-overview/backend-services/inji-certify.md
  • inji-wallet/inji-mobile/technical-overview/backend-services/issuer.md
  • inji-wallet/inji-mobile/technical-overview/backend-services/login-using-credential.md
  • inji-wallet/inji-mobile/technical-overview/backend-services/mimoto.md
  • inji-wallet/inji-mobile/technical-overview/integration-guide/building-verifiable-credentials-wallet-with-inji-libraries/pixelpass.md
💤 Files with no reviewable changes (2)
  • inji-wallet/inji-mobile/technical-overview/backend-services/inji-certify.md
  • inji-wallet/inji-mobile/technical-overview/backend-services/esignet.md

Comment on lines +29 to +33
{% openapi-operation spec="api" path="/vci/credential" method="post" %}
[OpenAPI api](https://4401d86825a13bf607936cc3a9f3897a.r2.cloudflarestorage.com/gitbook-x-prod-openapi/raw/a642986d423ac4ddb8b24e8d67b93a4e7b72f36ba27efafa5dd7ad15507aba07.txt?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=dce48141f43c0191a2ad043a6888781c%2F20260619%2Fauto%2Fs3%2Faws4_request&X-Amz-Date=20260619T063153Z&X-Amz-Expires=172800&X-Amz-Signature=9b94089a8690b19e0b374d14c6d4fa809f268501594b2b68b212edd04cb0b2a0&X-Amz-SignedHeaders=host&x-amz-checksum-mode=ENABLED&x-id=GetObject)
{% endopenapi-operation %}

> **For more details**: Refer to the [Inji Certify Documentation](../../../../inji-certify/overview/README.md) to understand credential issuance workflows.

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

📐 Maintainability & Code Quality | 🟠 Major | 🏗️ Heavy lift

Replace the signed OpenAPI asset link.

This signed R2 URL is already past its expiry window, so the credential endpoint block will render a dead link in published docs. Please point it at a stable asset or regenerate the spec link during publishing.

🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@inji-wallet/inji-mobile/technical-overview/backend-services/issuer.md` around
lines 29 - 33, The credential endpoint block in issuer.md uses a signed OpenAPI
asset URL that has expired, so the rendered docs will contain a dead link.
Update the openapi-operation reference for /vci/credential to use a stable,
non-expiring asset source or a publishing-time generated link, keeping the
surrounding Inji Certify documentation reference intact.

Comment on lines +42 to +81
### Link Login Transaction
After successfully scanning the QR code, Inji Wallet will access the API below and transmit the link code.

{% openapi-operation spec="api" path="/linked-authorization/v2/link-transaction" method="post" %}
[OpenAPI api](https://4401d86825a13bf607936cc3a9f3897a.r2.cloudflarestorage.com/gitbook-x-prod-openapi/raw/a642986d423ac4ddb8b24e8d67b93a4e7b72f36ba27efafa5dd7ad15507aba07.txt?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=dce48141f43c0191a2ad043a6888781c%2F20260619%2Fauto%2Fs3%2Faws4_request&X-Amz-Date=20260619T063153Z&X-Amz-Expires=172800&X-Amz-Signature=9b94089a8690b19e0b374d14c6d4fa809f268501594b2b68b212edd04cb0b2a0&X-Amz-SignedHeaders=host&x-amz-checksum-mode=ENABLED&x-id=GetObject)
{% endopenapi-operation %}

### Authenticate User

After successful face authentication, the wallet authenticates the user.

{% openapi-operation spec="api" path="/linked-authorization/v2/authenticate" method="post" %}
[OpenAPI api](https://4401d86825a13bf607936cc3a9f3897a.r2.cloudflarestorage.com/gitbook-x-prod-openapi/raw/a642986d423ac4ddb8b24e8d67b93a4e7b72f36ba27efafa5dd7ad15507aba07.txt?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=dce48141f43c0191a2ad043a6888781c%2F20260619%2Fauto%2Fs3%2Faws4_request&X-Amz-Date=20260619T063153Z&X-Amz-Expires=172800&X-Amz-Signature=9b94089a8690b19e0b374d14c6d4fa809f268501594b2b68b212edd04cb0b2a0&X-Amz-SignedHeaders=host&x-amz-checksum-mode=ENABLED&x-id=GetObject)
{% endopenapi-operation %}

### Submit User Consent

Once the user approves the requested claims, the wallet submits the consent.

{% openapi-operation spec="api" path="/linked-authorization/v2/consent" method="post" %}
[OpenAPI api](https://4401d86825a13bf607936cc3a9f3897a.r2.cloudflarestorage.com/gitbook-x-prod-openapi/raw/a642986d423ac4ddb8b24e8d67b93a4e7b72f36ba27efafa5dd7ad15507aba07.txt?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=dce48141f43c0191a2ad043a6888781c%2F20260619%2Fauto%2Fs3%2Faws4_request&X-Amz-Date=20260619T063153Z&X-Amz-Expires=172800&X-Amz-Signature=9b94089a8690b19e0b374d14c6d4fa809f268501594b2b68b212edd04cb0b2a0&X-Amz-SignedHeaders=host&x-amz-checksum-mode=ENABLED&x-id=GetObject)
{% endopenapi-operation %}

---

## Benefits

* Passwordless authentication using digital credentials.
* User-controlled sharing of identity attributes.
* Explicit consent before any information is shared.
* Reusable across multiple service provider portals.
* Secure authentication using trusted verifiable credentials.

---

## Reference

For details about the Wallet Authentication APIs, refer to the [eSignet Wallet Authenticator documentation](https://docs.esignet.io/esignet-authentication/develop/integration/wallet/wallet-authenticator#wallet-authentication-apis)

[//]: # (TODO: Fix swagger esignet links) No newline at end of file

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

📐 Maintainability & Code Quality | 🟠 Major | 🏗️ Heavy lift

Replace the signed OpenAPI assets and remove the TODO.

These cloudflarestorage.com links are time-limited; the June 19, 2026 signatures are already stale, so the API embeds will break on rebuild. The trailing TODO confirms this page still isn’t finished. Please switch to a stable asset/source before publishing.

🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In
`@inji-wallet/inji-mobile/technical-overview/backend-services/login-using-credential.md`
around lines 42 - 81, The OpenAPI embeds in the authentication flow docs use
time-limited cloudflarestorage signed URLs, and the lingering TODO shows this
page is still unfinished. Update the Link Login Transaction, Authenticate User,
and Submit User Consent sections to reference a stable OpenAPI asset/source
through the existing openapi-operation usage, then remove the TODO comment so
the page no longer depends on stale signatures.

Comment on lines +14 to +16
{% swagger src="../../../../.gitbook/assets/mimoto (1).json" path="/issuers" method="get" %}
[mimoto (1).json](<../../../../.gitbook/assets/mimoto%20(1).json>)
{% endswagger %}

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

📐 Maintainability & Code Quality | 🟠 Major | 🏗️ Heavy lift

Replace the signed swagger assets throughout this page.

Every OpenAPI embed here points at the same signed R2 object with a June 19, 2026 timestamp and a 2-day TTL, so the rendered docs will break after the signature expires. Please point these blocks at a stable asset/source instead.

Also applies to: 23-25, 41-43, 47-49, 67-69, 129-131

🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@inji-wallet/inji-mobile/technical-overview/backend-services/mimoto.md` around
lines 14 - 16, The OpenAPI embeds in mimoto.md are all pointing to a signed,
expiring R2 asset, so the rendered docs will eventually break. Update every {%
swagger %} block on this page to use a stable, non-expiring source or asset
instead of the signed mimoto (1).json URL, and make sure all repeated embeds in
the page are switched consistently.

Comment thread inji-wallet/inji-mobile/technical-overview/backend-services/mimoto.md Outdated
Signed-off-by: KiruthikaJeyashankar <kiruthikavjshankar@gmail.com>
@KiruthikaJeyashankar KiruthikaJeyashankar force-pushed the update-bs-doc-rel-1.0.0-alpha.1 branch from 22275f9 to 34910b9 Compare July 9, 2026 07:48
Signed-off-by: KiruthikaJeyashankar <kiruthikavjshankar@gmail.com>
@KiruthikaJeyashankar KiruthikaJeyashankar changed the title docs: update backend services docs: update backend services | libraries section Jul 9, 2026
Signed-off-by: KiruthikaJeyashankar <kiruthikavjshankar@gmail.com>
@KiruthikaJeyashankar KiruthikaJeyashankar changed the title docs: update backend services | libraries section docs: update backend services | libraries section for inji-mobile Jul 9, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Inji Documentation : Rework Backend Services Documentation for Mimoto, eSignet and Issuer Integration

1 participant