API Support: kokleong.l@affinidi.com‍

URL: https://affinidi.zendesk.com/hc/en-us/requests/new?ticket_form_id=360013052396

You can find out more about CommonCheck at https://www.commoncheck.org//

Travel Use Case

The CommonCheck QR Verifier is an API that allows customers to verify digital COVID-19 test, vaccination and recovery credentials both for authenticity, ownership and compliance with the destination’s entry requirements. By integrating this API into existing systems, airlines, governments and other organizations that need to verify COVID-19 credentials can automatically verify the health status of their travelers or customers. With the API, supported health certificates/documents can be checked for authenticity and evaluated against country-specific health-related entry requirements.

Non-travel Use Case

The Verifier API can also be used for non-travel use cases, for instance, for verifying the health certificates of a concert or sporting event attendees. It can also be used in domestic verification apps within a particular country. For domestic verification, the same endpoints can be invoked with a slight variation in the request body(more on this below).

How it works?

The QR Verifier API takes in a QR content (the string that a QR code represents) and performs the following services:

• Normalization of payload: Extracts and normalizes the information contained in dozens of different COVID-19 digital cert standards into standard schemas.
• Checking of certificate authenticity: Checks if the digital signature on the credential(tests, vaccines and recovery certificates) is valid including validity checks of the Document Signing Certificates used to sign the credential. This functionality can be turned on/off in the API request.
• Checking of certificate revocation: Checks whether the certificate has been revoked by the Issuer (when the Issuer provides a dedicated revocation check service). This functionality can be turned on/off in the API request.
• Checking of certificate data against pre-specified rules: Evaluates the health related data contained in the certificate against pre-specified rules. This is useful in helping enforce business decisions such as permitting only a specific set of vaccinations. This functionality can be turned on/off in the API request.
• Checking of certificate data against personal details: Matches the details within the certs against the personal details provided by the customer. This functionality can be turned on/off in the API request.

Sample Non-Travel Request

Below is the list of issuers that the Verifier API supports

To get access to the API, you must have API keys provided by CommonCheck team. Please reach out using the form above if you require assistance.

This section covers the possible HTTP errors

This section covers the status codes that the Verifier API will respond

This section covers the full API request that should be used as payload.

VerifyV1.1

We understand that there are many libraries and tools that can be used to read QR content. For the ease of your integration we have also included a QR code reader API to read and return the qrContent

ReadFile

The Api-Key must be provided in the request header for authorization.

The input file must be provided in the form-data and must be below 1 MB.

Accepted file types:

• PNG
• JPEG
• Single page PDF

The output will be the QR content of the respective input file.