Key Series Addition

Once a DID is registered, its owner has the option to add more key series with did_add operation. This operation requires another active key series to sign and verify its HTTP request. In the did_add request, the client must specify the SHA-256 hash of the first public key in the new series must be given.

A new key series cannot be used to sign and verify its own addition.

did_add

POST https://test-network.finema.co/did/<did_address>/key

Request Body

Name
Type
Description

operation

string

The method's name that is "did_add".

did_address

string

The DID address.

current_key

string

The current public key in the series. It is used to verify the request's signature.

next_key_hash

string

The SHA-256 hash of the next public key in the series.

new_key_hash

string

The SHA256 hash of the first public key in the new series.

nonce

number

The request nonce.

{
     "operation": "did_add",
     "did_address": "did:idin:afb7ba88c76edbda55c344b70ae0cf0556d770ec256820d7185000de395391b5",
     "key_id": "f975e5f2e4a06fced2d65bd59e12c33c901814555b026264b8377ace79cee60a"
}

Example Message and Request

The above message can then be encoded in Base64 and signed with ECDSA to obtain the following HTTP request

PreviousDID RegistrationNextKey Series Revocation

Last updated

Was this helpful?