eID Easy Docs

Austria Valera EUDI Wallet

The Austria Valera Wallet is an EUDI-compliant digital identity wallet that lets users share verified personal identity data (PID) from their mobile device. It is the first wallet method supported by the eID Easy OIDC service.

The integration follows the standard eID Easy OIDC flow. This page covers only what is specific to Valera: prerequisites, the user-facing steps, the identity claims returned, and how to set up the wallet for testing.

Prerequisites

Before starting, ensure the following are in place:

  1. You have a working OIDC client set up on test.eideasy.comopen in new window with a registered redirect_uri.
  2. Austrian EUDI Wallet (Valera) is enabled for your client in the eID Easy admin panel.
  3. You have configured your JWK public key for private_key_jwt authentication. If not yet done, send us your client_id and your JWKs JSON or public JWKs URL so we can configure it for you.
  4. The Valera Wallet app is installed and has a PID credential loaded on your test device. See Setting up the Valera Wallet below.

Running the flow

1. Start the authorization request

Follow Step 1 of the OIDC guide and include the pid scope to request verified identity claims:

scope=openid profile pid

2. Select the wallet on the authorization page

Once the eID Easy authorization page opens:

  1. Select Austria as the country
  2. Choose Valera as the method

3. Complete the wallet authentication

On the Valera screen:

  1. Scan the QR code with your Valera Wallet app — or, if you are on the same mobile device, tap the QR code to open the wallet directly
  2. Inside the wallet, select PID (ISO mDoc) when prompted to choose a credential
  3. Approve the sharing request (biometric confirmation may be required)

Once approved, the wallet redirects back to eID Easy, which redirects your user to your redirect_uri with an authorization code.

4. Exchange the code and validate the ID token

Follow Steps 3–5 of the OIDC guide to exchange the code and validate the returned ID token.

The ID token is a signed JWS. Verify it using the public key published via the discovery document:

https://test.eideasy.com/.well-known/jwks.json

Identity claims returned

When the user successfully authenticates with Valera, the ID token includes a verified_claims object with government-issued identity data:

{
  "verified_claims": {
    "verification": {
      "trust_framework": "eidas",
      "time": "2026-03-11 12:29:34",
      "evidence": [
        {
          "type": "electronic_record",
          "document_details": {
            "type": "EudiPid"
          }
        }
      ]
    },
    "claims": {
      "given_name": "Bernd",
      "family_name": "Abt",
      "birthdate": "1962-10-26",
      "nationalities": ["AT"],
      "birth_place": {
        "country": "AT",
        "region": "Niederösterreich",
        "locality": "St. Pölten"
      }
    }
  }
}
FieldDescription
verification.trust_frameworkAlways eidas for EUDI Wallet credentials
verification.timeTimestamp of when the verification was performed
verification.evidence[].typeelectronic_record for wallet-issued PID
verification.evidence[].document_details.typeEudiPid for EU Digital Identity PID credentials
claims.given_nameFirst name as on the official document
claims.family_nameLast name as on the official document
claims.birthdateDate of birth in YYYY-MM-DD format
claims.nationalitiesArray of ISO 3166-1 alpha-2 country codes
claims.birth_placeStructured birth location (country, region, locality)

TIP

Standard profile claims (name, given_name, family_name, birthdate) may also appear at the top level of the ID token payload alongside verified_claims.

Setting up the Valera Wallet (Android)

Use these steps to install the wallet and load a test PID credential on your Android device.

Install the wallet app

  1. Go to https://wallet.a-sit.at/open in new window
  2. Download the Valera Wallet app following the instructions shown in the Valera Wallet App section of that page

Load a test PID credential

  1. Open your device's default browser and navigate to https://wallet.a-sit.at/m7/
  2. Click Login and sign in with:
    • Username: user
    • Password: password
  3. Click Sign in
  4. Open the Valera Wallet app and tap the + (Plus) button, then choose Load via Browser
  5. The app shows an in-browser page with the URL of the issuing service — tap Continue
  6. You will see the credential type selector. If not already selected, choose PID (ISO mDoc) from the dropdown
  7. Tap Load Data and confirm with your biometric lock (fingerprint or face ID)

Your wallet is now loaded with a test PID credential and ready to use in the OIDC flow.

Last Updated: