Pre-Authorized Code Flow

This flow covers your application creating a credential offer, and the wallet claiming it via OID4VCI with no user login. Set "authMethod": "PRE_AUTHORIZED" when creating the offer to use it.

Components involved:

  • Your Application — creates the credential offer and displays the QR code
  • Wallet (Holder) — scans the QR code, completes the OID4VCI flow, stores the credential
  • Issuer2 API — manages the issuance session, validates the code/PIN, and signs the credential

Loading diagram...

This diagram is a simplified overview focused on how the Issuer2 API behaves. It omits some protocol details (e.g. metadata discovery of the Nonce Endpoint, PKCE, and exact .well-known paths). For the complete, normative sequence see the OpenID for Verifiable Credential Issuance 1.0 specification.

Last updated on July 1, 2026