NemLog‐in services - kmd-identity/documentation GitHub Wiki

Environments

KMD Identity API offers access to Nemlog-in services in following of Nemlog-ins environments:

• Integrationtest
• Prod

Services currently offered

SubjectMatchesCpr

This service will allow caller to verify if an authenticated identity, identified by an OIOSAML3 Subject NameID, possesses a given CPR number.

Format of subjectNameID: Persistent Subject NameID value received in SAML assertion according to [OIOSAML] for either person or professional (employee). For example: https://data.gov.dk/model/core/eid/person/uuid/123e4567-e89b-12d3-a456-426655440000

Format of cpr: CPR number to be matched, ten digits.

Possible return values:

• Match – returned if subject matches CPR
• NoMatch – returned if the subject does not match the given CPR
• SubjectNotFound – returned if passed Subject NameID could not be found

To use the service on KMD Identity API you will need scopes depending on the Nemlog-in integration (public or private) and the environment (prod or integrationtest)

The scopes are:

• nemlogin.integrationtest
• nemlogin.prod
• nemlogin.private
• nemlogin.public