# Authorization Process

# Overview

This document describes the authorization process facilitated through the EUDI Wallet. The process ensures secure identity verification by interacting with the /ui/presentations endpoint and handling user authentication via QR codes.

# Steps

# 1. Initialize Transaction

• The system initializes an authorization transaction using a predefined configuration.
• This configuration defines the required attestations and constructs the request body accordingly.
• The constructed request body is sent to the /ui/presentations endpoint via the proxy.
• The response contains transaction information, confirming the transaction's initialization.

# 2. Generate QR Code for Authentication

• Using the client_id and request_uri from the response, a URI is created.
• The URI is encoded into a QR code.
• On mobile devices, a button is displayed for initiating authentication.

# 3. Poll for Authorization Status

• The system immediately starts polling the /ui/presentations/{transaction_id} endpoint via the proxy.
• Polling continues for a maximum of 2 minutes, checking for user confirmation.

# 4. User Confirmation & Authentication Completion

• The user confirms the transaction in the EUDI Wallet application.
• If the user holds all required attestations, the authorization is marked as complete.
• Otherwise a dialog appears with a message informing the user that he is missing a required document.
• The user is redirected to the original website upon successful authentication.

# Security Considerations

• Polling Timeout: The system enforces a 2-minute timeout to prevent indefinite polling.
• QR Code Encoding: The authentication URI is securely encoded to avoid manipulation.
• Proxy Handling: Requests pass through a secure proxy to prevent direct exposure of backend endpoints.

# Conclusion

This process ensures secure and efficient user authentication using the EUDI Wallet, minimizing security risks while maintaining a seamless user experience.