GLEIF-IT · m00sey · Oct 23, 2025 · Oct 23, 2025 · Oct 23, 2025
diff --git a/internal/data/ecr-data.json b/internal/data/ecr-data.json
@@ -0,0 +1,5 @@
+{
+  "LEI": "506700GE1G29325QX363",
+  "personLegalName": "Christoph",
+  "engagementContextRole": "Test"
+}
diff --git a/internal/data/ecr-edge-data.json b/internal/data/ecr-edge-data.json
@@ -0,0 +1 @@
+{"d": "EHuq0qQKt-tcyZI-cebG1rGmLM4OPp2wy8M4kmN_bJ8S", "le": {"n": "ENSqR65OvYBmA3ZJst0eI6yX1k5s01r76bMbliWQIV_f", "s": "ENPXp1vQzRF6JwIuS-mp2U8Uf1MoADoP_GqQ62VsDZWY"}}
diff --git a/internal/scripts/create-ecr-auth-credential.sh b/internal/scripts/create-ecr-auth-credential.sh
@@ -30,6 +30,6 @@ echo "\"${le_said}\"" | jq -f "${INT_GAR_SCRIPT_DIR}/ecr-auth-edges-filter.jq" >
 kli saidify --file /data/ecr-auth-edge-data.json
 
 # Prepare the RULES section
-cp "${INT_GAR_SCRIPT_DIR}/ecr-rules.json" "${INT_GAR_DATA_DIR}/ecr-rules.json"
+cp "${INT_GAR_SCRIPT_DIR}/ecr-auth-rules.json" "${INT_GAR_DATA_DIR}/ecr-auth-rules.json"
 
-kli vc create --name "${INT_GAR_NAME}" --passcode "${passcode}" --alias "${INT_GAR_AID_ALIAS}" --registry-name "${INT_GAR_REG_NAME}" --schema EH6ekLjSr8V32WyFbGe1zXjTzFs9PkTYmupJ9H65O14g --recipient "${recipient}" --data @"/data/ecr-auth-data.json" --edges @"/data/ecr-auth-edge-data.json" --rules @"/data/ecr-rules.json"  --time "${datetime}"
+kli vc create --name "${INT_GAR_NAME}" --passcode "${passcode}" --alias "${INT_GAR_AID_ALIAS}" --registry-name "${INT_GAR_REG_NAME}" --schema EH6ekLjSr8V32WyFbGe1zXjTzFs9PkTYmupJ9H65O14g --recipient "${recipient}" --data @"/data/ecr-auth-data.json" --edges @"/data/ecr-auth-edge-data.json" --rules @"/data/ecr-auth-rules.json"  --time "${datetime}"
diff --git a/internal/scripts/create-ecr-credential.sh b/internal/scripts/create-ecr-credential.sh
@@ -18,6 +18,18 @@ read -p "Enter your LEI : " -r lei
 read -p "Enter requested person legal name: " -r personLegalName
 read -p "Enter requested engagement context role: " -r engagementContextRole
 read -p "Enter the Alias of the recipient: " -r recipient
+echo "Do you need to create nonce?"
+read -p "[y/N] " -r yn
+case $yn in
+  "Y" | "y")
+    kli nonce
+    ;;
+  *)
+    ;;
+esac
+echo ""
+
+read -p "Type or paste a nonce: " -r nonce
 read -p "Enter the datetime to use: " -r datetime
 
 # Prepare DATA Section
@@ -29,5 +41,4 @@ kli saidify --file /data/ecr-edge-data.json
 
 # Prepare the RULES section
 cp "${INT_GAR_SCRIPT_DIR}/ecr-rules.json" "${INT_GAR_DATA_DIR}/ecr-rules.json"
-
-kli vc create --name "${INT_GAR_NAME}" --passcode "${passcode}" --alias "${INT_GAR_AID_ALIAS}" --registry-name "${INT_GAR_REG_NAME}" --schema EEy9PkikFcANV1l7EHukCeXqrzT1hNZjGlUk7wuMO5jw --recipient "${recipient}" --data @"/data/ecr-data.json" --edges @"/data/ecr-edge-data.json" --rules @"/data/ecr-rules.json"  --time "${datetime}"
+kli vc create --name "${INT_GAR_NAME}" --passcode "${passcode}" --alias "${INT_GAR_AID_ALIAS}" --registry-name "${INT_GAR_REG_NAME}" --schema EEy9PkikFcANV1l7EHukCeXqrzT1hNZjGlUk7wuMO5jw --recipient "${recipient}" --data @"/data/ecr-data.json" --edges @"/data/ecr-edge-data.json" --rules @"/data/ecr-rules.json"  --time "${datetime}" --private-subject-nonce "${nonce}" --private-credential-nonce "${nonce}" --private
diff --git a/internal/scripts/ecr-auth-rules.json b/internal/scripts/ecr-auth-rules.json
@@ -0,0 +1,12 @@
+{
+  "d": "EDIai3Wkd-Z_4cezz9nYEcCK3KNH5saLvZoS_84JL6NU",
+  "usageDisclaimer": {
+    "l": "Usage of a valid, unexpired, and non-revoked vLEI Credential, as defined in the associated Ecosystem Governance Framework, does not assert that the Legal Entity is trustworthy, honest, reputable in its business dealings, safe to do business with, or compliant with any laws or that an implied or expressly intended purpose will be fulfilled."
+  },
+  "issuanceDisclaimer": {
+    "l": "All information in a valid, unexpired, and non-revoked vLEI Credential, as defined in the associated Ecosystem Governance Framework, is accurate as of the date the validation process was complete. The vLEI Credential has been issued to the legal entity or person named in the vLEI Credential as the subject; and the qualified vLEI Issuer exercised reasonable care to perform the validation process set forth in the vLEI Ecosystem Governance Framework."
+  },
+  "privacyDisclaimer": {
+    "l": "Privacy Considerations are applicable to QVI ECR AUTH vLEI Credentials.  It is the sole responsibility of QVIs as Issuees of QVI ECR AUTH vLEI Credentials to present these Credentials in a privacy-preserving manner using the mechanisms provided in the Issuance and Presentation Exchange (IPEX) protocol specification and the Authentic Chained Data Container (ACDC) specification.  https://github.com/WebOfTrust/IETF-IPEX and https://github.com/trustoverip/tswg-acdc-specification."
+  }
+}
diff --git a/internal/scripts/ecr-rules.json b/internal/scripts/ecr-rules.json
@@ -7,6 +7,6 @@
     "l": "All information in a valid, unexpired, and non-revoked vLEI Credential, as defined in the associated Ecosystem Governance Framework, is accurate as of the date the validation process was complete. The vLEI Credential has been issued to the legal entity or person named in the vLEI Credential as the subject; and the qualified vLEI Issuer exercised reasonable care to perform the validation process set forth in the vLEI Ecosystem Governance Framework."
   },
   "privacyDisclaimer": {
-    "l": "Privacy Considerations are applicable to QVI ECR AUTH vLEI Credentials.  It is the sole responsibility of QVIs as Issuees of QVI ECR AUTH vLEI Credentials to present these Credentials in a privacy-preserving manner using the mechanisms provided in the Issuance and Presentation Exchange (IPEX) protocol specification and the Authentic Chained Data Container (ACDC) specification.  https://github.com/WebOfTrust/IETF-IPEX and https://github.com/trustoverip/tswg-acdc-specification."
+    "l": "It is the sole responsibility of Holders as Issuees of an ECR vLEI Credential to present that Credential in a privacy-preserving manner using the mechanisms provided in the Issuance and Presentation Exchange (IPEX) protocol specification and the Authentic Chained Data Container (ACDC) specification. https://github.com/WebOfTrust/IETF-IPEX and https://github.com/trustoverip/tswg-acdc-specification."
   }
 }
diff --git a/internal/scripts/issue-ecr-auth-credential.sh b/internal/scripts/issue-ecr-auth-credential.sh
@@ -29,10 +29,10 @@ echo "\"${le_said}\"" | jq -f "${INT_GAR_SCRIPT_DIR}/ecr-auth-edges-filter.jq" >
 kli saidify --file /data/ecr-auth-edge-data.json
 
 # Prepare the RULES section
-cp "${INT_GAR_SCRIPT_DIR}/ecr-rules.json" "${INT_GAR_DATA_DIR}/ecr-rules.json"
+cp "${INT_GAR_SCRIPT_DIR}/ecr-auth-rules.json" "${INT_GAR_DATA_DIR}/ecr-auth-rules.json"
 
 # wip
-kli vc create --name "${INT_GAR_NAME}" --passcode "${passcode}" --alias "${INT_GAR_AID_ALIAS}" --registry-name "${INT_GAR_REG_NAME}" --schema EH6ekLjSr8V32WyFbGe1zXjTzFs9PkTYmupJ9H65O14g --recipient "${recipient}" --data @"/data/ecr-auth-data.json" --edges @"/data/ecr-auth-edge-data.json" --rules @"/data/ecr-rules.json"  --time 2024-03-18T14:52:55+00:00
+kli vc create --name "${INT_GAR_NAME}" --passcode "${passcode}" --alias "${INT_GAR_AID_ALIAS}" --registry-name "${INT_GAR_REG_NAME}" --schema EH6ekLjSr8V32WyFbGe1zXjTzFs9PkTYmupJ9H65O14g --recipient "${recipient}" --data @"/data/ecr-auth-data.json" --edges @"/data/ecr-auth-edge-data.json" --rules @"/data/ecr-auth-rules.json"  --time 2024-03-18T14:52:55+00:00
 
 SAID=$(kli vc list --name "${INT_GAR_NAME}" --passcode "${passcode}" --alias "${INT_GAR_AID_ALIAS}" --issued --said --schema EH6ekLjSr8V32WyFbGe1zXjTzFs9PkTYmupJ9H65O14g)
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1 @@
		{"d": "EHuq0qQKt-tcyZI-cebG1rGmLM4OPp2wy8M4kmN_bJ8S", "le": {"n": "ENSqR65OvYBmA3ZJst0eI6yX1k5s01r76bMbliWQIV_f", "s": "ENPXp1vQzRF6JwIuS-mp2U8Uf1MoADoP_GqQ62VsDZWY"}}