Getting Started
Verifier2 is an open-source HTTP API service that acts as the relying party in a digital credential exchange. It sends a presentation request to a holder's wallet, receives the signed credential presentation in response, and validates it against configurable policies. Credential exchange runs over OID4VP v1.0, with additional support for the Digital Credentials API and ISO/IEC 18013-7. Supported credential formats include W3C VC, SD-JWT VC (IETF), ISO 18013-5 mDL, and ISO 23220 PhotoID.
The original verifier service, which supports Draft 14 and Draft 20 of the OID4VP specification, is deprecated and will be removed in Q2 2026. If you require documentation for it, see the existing Verifier documentation. For new projects, use Verifier2 instead. If you're migrating from Verifier (v1), see the Migration Guide.
Supported Standards
Verifier2 supports the following standards:
| Credential Formats: | SD-JWT VC (IETF), W3C VC (v1.1+, v2.0), ISO 18013-5 mDL, ISO 23220 PhotoID |
| Credential Exchange: | OID4VP (Version 1.0), ISO/IEC 18013-7, Digital Credentials API |
| Signature Algorithms: | ed25519, secp256k1, secp256r1, RSA |
Setup
If you are new to the stack, the Docker Compose quick start is the fastest way to get running — it spins up the
Verifier, Issuer, and Wallet together in one command, which mirrors a real verification flow. Once running, the API
is available at http://localhost:7004.
When running via Docker Compose, the original Verifier (v1) runs on port 7003 and Verifier2 runs on port 7004
to avoid conflicts. When running Verifier2 standalone with Docker, it uses the default port 7003.
- Docker Compose quick start - Spin up the verifier API locally together with the other services. (Recommended for first-time users)
- Run standalone with Docker - Pull and run the verifier container in isolation using the walt.id identity repo. See the configuration reference for available config options.
- Full API reference - Explore all available endpoints via Swagger.
Features
- Credential Verification - Request and verify various digital credential types and formats (W3C, SD-JWT, mDL) via OID4VP.
- Policies - Apply built-in or custom policies to control validation checks such as expiry, schema conformance, and trust anchor verification.
- Callbacks & SSE - Get notified when a verification session completes via a webhook callback or a Server-Sent Events (SSE) stream, including the session status, policy results, and presented credentials.
Start Verifying
Choose the credential type and exchange protocol that matches your use case: