Skip to main content

Credential Manager Deployment

This section covers deploying your own instance of the SIROS ID Credential Manager — the digital wallet infrastructure that allows users to receive, store, and present verifiable credentials.

This is not id.siros.org

These guides are for organizations deploying their own credential manager on a separate origin. If you want to use the hosted SaaS instance, point your users to id.siros.org and see the Quick Start Guide instead.

What You're Deploying

The credential manager is a self-contained wallet service consisting of three components:

ComponentImagePurpose
Wallet Frontendghcr.io/sirosfoundation/wallet-frontendReact PWA served via Nginx — the user-facing wallet UI
Wallet Backendghcr.io/sirosfoundation/go-wallet-backendGo service handling WebAuthn auth, credential storage, and OID4VCI/OID4VP protocol flows
Go-Trustghcr.io/sirosfoundation/go-trustAuthZEN trust evaluation — validates issuer and verifier trust against configured trust frameworks

Plus supporting infrastructure:

ServicePurpose
MongoDBPersistent storage for users, credentials, and tenant config
Redis(optional) WebSocket session store for horizontally scaled deployments

Prerequisites

  • Docker and Docker Compose (or a container orchestrator like Kubernetes)
  • A domain name with TLS termination (the wallet uses WebAuthn, which requires HTTPS)
  • DNS records pointing to your deployment
  • MongoDB 7+ (can be containerized or managed)

Sections

GuideDescription
ArchitectureComponent roles, data flow, and deployment topology
ConfigurationEnvironment variables and config files for each component
Docker ComposeReference docker-compose.yaml for a complete deployment

Source Code

RepositoryDescription
sirosfoundation/wallet-frontendWallet frontend (SIROS fork of wwWallet)
sirosfoundation/go-wallet-backendWallet backend
sirosfoundation/go-trustTrust evaluation service

For developing and testing changes locally, see Setting Up a Local Development Environment.

Last updated on