DAO Quantum Identity Protocol

DAO Quantum Identity Protocol is a decentralized identity service for issuing and verifying post-quantum-ready credentials. It combines decentralized identifiers, algorithm-aware verifiable credentials, selective disclosure presentations, revocation tracking, and audit-style anchoring into a single operational backend.

The original system footprint spans multiple implementation layers and languages. This public repository presents the public-safe product surface while preserving that technical breadth in the project narrative.

See PUBLIC_EDITION_SCOPE.md for boundary notes.

What It Does

The service exposes six core capability groups:

1. Identity registration Create decentralized identifiers with algorithm metadata and DID documents.

2. Credential issuance Issue verifiable credentials with signed claims and commitment generation.

3. Credential lifecycle Track active, expired, and revoked credential states.

4. Selective disclosure Create presentation payloads that disclose only selected attributes.

5. Verification Verify presentations, credential state, and anchor consistency.

6. Algorithm registry Expose supported post-quantum algorithm profiles and security metadata.

Source Language Footprint

The broader source architecture behind this node includes these implementation layers:

• Python for API services, identity logic, and simulation workflows
• JavaScript for frontend and runtime service layers
• Rust for protocol-oriented backend experimentation
• Go for ledger and chaincode-oriented components
• Shell for runtime scripts and startup orchestration

The public edition intentionally focuses on the Python service layer and safe runtime assets.

Capability Summary

• authenticated identity and credential workflow
• seeded local admin and sample DIDs for immediate use
• DID document generation and algorithm-aware identity metadata
• verifiable credential issuance with signature simulation
• selective disclosure presentations with hidden attribute commitments
• revocation checks and anchor verification endpoints
• Docker and local development workflow

Architecture Overview

• main.py exposes the API surface and startup seeding
• database.py manages SQLAlchemy engine and sessions
• models.py defines users, DIDs, credentials, presentations, anchors, and revocations
• schemas.py defines API contracts
• security.py handles password hashing and bearer-token auth
• identity_engine.py contains DID, signing, commitment, and verification logic
• seeded_identity_data.py provides the local demo dataset
• tests/test_api.py validates the public API surface

Data Mode

The default runtime uses seeded_demo mode so the service can run locally without external protocol infrastructure.

Quick Start

Docker

docker compose up --build

By default, the service is published on http://localhost:18009.

Swagger UI:

http://localhost:18009/docs

Local Development

pip install -r requirements.txt
uvicorn main:app --reload --port 18009
pytest -q

Authentication

The API uses Bearer tokens for protected endpoints.

Seeded local credentials:

• username: admin
• password: changeme

Main Endpoints

Public endpoints:

• GET /health
• POST /api/v1/auth/token
• GET /api/v1/algorithms
• GET /api/v1/revocation/check/{credential_id}

Protected endpoints:

• POST /api/v1/auth/register
• POST /api/v1/did/create
• GET /api/v1/did
• GET /api/v1/did/{did_encoded}
• POST /api/v1/credentials/issue
• GET /api/v1/credentials
• GET /api/v1/credentials/{credential_id}
• POST /api/v1/credentials/revoke
• POST /api/v1/presentations/create
• POST /api/v1/presentations/verify
• GET /api/v1/blockchain/anchors
• GET /api/v1/blockchain/verify/{entity_id}

Ecosystem Context

DAO Quantum Identity Protocol is one of the trust and identity services within the broader Sampo AI OS ecosystem. It can operate as a standalone identity backend or as a specialized trust component inside a larger orchestration layer.