Aadhaar Verification in Laravel

A centralized Identity system a la SSN in the USA has been sorely lacking in India. But with the critical mass Aadhaar scheme has gained and the API ecosystem maturing around it, finally we have a viable option for identity.

We have been leveraging this in many applications to implement disruptive use cases like social lending.

Here, we are going to show how to integrate Aadhaar verification using Aadhaar Bridge  in Laravel.

Aadhaar Bridge Flow Diagram

Following are the steps to achieve the verification process

  1. Create Digital Signature Agreement
  2. IP Whitelisting
  3. Server Setup
  4. Integration with Laravel

1. Create Digital Signature Agreement

To create a digital agreement, we have to register in the Aadhaar Bridge website. There are four Aadhaar verification transactions available. We have created an account in the Aadhaar Bridge for “AUTH” Aadhaar transaction.

Click on the link and perform the “Sign-Up” process. After this, the User will receive the User Activation link via Email post which the User should create an account.

To create the Digital Agreement(SUB AUA Agreement) we have to log in to the site and download the agreement. Upload the signed agreement in the same Aadhaar Bridge URL as shown in the figure below. Once the agreement verification and validation are performed, the account will be activated.

2.IP Whitelisting

To Whitelist the IP from which our request will be originating, we have to create .cer file and upload in the following form:

2.1 Create private key with a validity

keytool -genkey -alias ALIAS_NAME -keyalg RSA -keystore COMP_NAME.jks -keysize 2048 -dname “CN=COMMON_NAME, EMAILADDRESS=sample@abc.com, C=IN, OU=ORG_UNIT, O=ORGANIZATION_NAME”

 

2.2 Create CSR (Certificate Signing Request) for above key

keytool -certreq -alias ALIAS_NAME -file COMP_NAME.csr -keystore COMP_NAME.jks

 

Details to be ensured while generating the “CSR” through the terminal window by the customer:

  • ALIAS_NAME : This could be anything.
  • COMP_NAME : This could be anything.
  • COMMON_NAME : This should be the same as the contact person’s name.
  • sample@abc.com : This should be same as the login email id.
  • ORG_UNIT : Value should be “Khosla Labs”
  • ORGANIZATION_NAME : This should be same as the organization name in the Sub-AUA’s profile for an organization. Can be anything for an individual.

Generation of a new Certificate: Once the CSR file is generated, generate the certificate by uploading the CSR on the same page itself. If the CSR file is validated, a certificate will be generated and thereafter will be shown on the screen. Download the certificate and save it in the local system.

3.Server Setup

To setup the server we need to download the setup zip file from the following link:
Resources –>JAVA DEVELOPERS

Setup Zip file will contain the .jar and application.properties file. We need to configure the application.properties file to complete the server setup.

Generating and adding the P12 file path is one of the important configuration processes. Run the following command to generate the P12 file

keytool -importkeystore -srckeystore COMP_NAME.jks -destkeystore COMP_NAME.p12 -srcstoretype jks -deststoretype pkcs12

 

In the application properties file, enter the configuration based on our profile. URLs for the same are mentioned below:

Property Endpoint
keystore.location P12 file location
keystore.pass Password (Same password what we have used to generate the .jks file)
keystore.alias Alias name
x09cert.location .cer file location
aua.host.auth.url https://bridge.aadhaarconnect.com/aua/auth
subaua.code SUB AUA Code
timeout.in.sec Time limit
server.port Port number

Once the properties file is configured with our certificate location, keystore passcode, service URL and SubAUA code, run the gateway application using the following command:

java -jar aadhaar-gateway-.jar 

(Note : On Executing the command, the JAR will auto-launch the Tomcat server, which requires Java-7 to be installed on our server.)

4.Integration with Laravel

Here are a few code snippets for the Laravel API calls.

Sample Base URL: http://128.199.50.45:5181 (server is running on IP 128.199.50.45 at port 5181)

Add the following route in the routes.php:

Route::group(['prefix' => 'aadhaar/'], function () {
    Route::post('verification', 'AadhaarVerificationController@adhaarVerification');
});

 

Add the following controller file AadhaarVerificationController.php with function adhaarVerification

public function adhaarVerification(Request $request)
{
  
    $validator = Validator::make($request->all(), [
        'aadhaarid' => 'required',
        'name' => 'required',
        'pincode' => 'required'
        ]);

    if ($validator->fails()) {
      return response(array(
        'message' => 'parameters missing',
        'missing_parameters' =>  $validator->errors()
      ), 400);
    }
     
    $aadhaarid = $request->input('aadhaarid');
    $name = $request->input('name');
    $pincode = $request->input('pincode');

    $client = new Client([ 'headers' => [ 'Content-Type' => 'application/json' ]]);
    $res = $client->post('http://128.199.50.45:5181/auth/raw',
        ['body' => json_encode(
            ['aadhaar-id'=>$aadhaarid,
                "location" => ["type" => "pincode", "pincode" => $pincode ],
                "modality" => "demo",
                "certificate-type" => "prod",
                "demographics" =>
                ["name" =>
                    ["matching-strategy" => "exact",  "name-value" => $name]
                ]
            ]
        )]
    );
   
    if($res->getStatusCode()==200){
      if($reply->success){
      	$reply=json_decode($res->getBody()->getContents());
	return response()->json(['message'=>'Aadhaar Verification Successful'],200);
      } else{
        return response()->json(['errmessage'=>'Aadhaar Verification Not Successful'],400); 
      }
    } else{
      return response()->json(['errmessage'=>'Aadhaar Verification Not Successful'],400); 
    }
}

 

Sample API call for Aadhaar verification:

http://128.199.50.45:8000/api/v1/aadhaar/verification

 

Input:

{"aadhaarid":"640000000000","name":"xxxxxxxxxx","pincode":"600000"}

 

Output:

{"message":"Aadhaar Verification Successful"}

2 thoughts on “Aadhaar Verification in Laravel

    1. You seem to have used the sample IP that we’d given in the post. That’s just a dummy we used to illustrate our point. You’ll need to use your server IP to get the right results.

Leave a Reply

Your email address will not be published. Required fields are marked *