Skip to main content

APIs

Updated the 3rd of May 2025.

This is a list of APIs available to help developers. The server is available at https://talao.co.

POST /api/analyze-qrcode

Analyze a base64-encoded QR code representing an OIDC4VC authorization request and presentation definition. The system uses OpenAI to evaluate the request structure, protocol compliance (OIDC4VCI / OIDC4VP), and semantic correctness, then returns a detailed technical report in Markdown format (also base64-encoded). This API is used to serve https://talao.co/ai/qrcode .

Authentication

HeaderValue
Api-KeyYour authorized key

Request (JSON)

{
"qrcode": "c29tZS1hc3NpZ24tdGV4dA==", // Base64-encoded QR code content
"oidc4vciDraft": "15", // (optional) OIDC4VCI draft version
"oidc4vpDraft": "22" // (optional) OIDC4VP draft version
}

Note: The qrcode value must be base64-encoded. This allows for safe transmission of binary or non-UTF-8 data.


Successful Response

{
"report_base64": "<base64-encoded markdown report>"
}

To decode the Markdown report in Python:

import base64
decoded = base64.b64decode(response["report_base64"]).decode()
print(decoded)

Error Responses

HTTP CodeMessageDescription
400{"error": "missing qrcode"}QR code field was not provided
400{"error": "invalid base64 format"}QR code could not be decoded
403{"error": "access denied"}Invalid or missing API key
500{"error": "internal processing error"}Unhandled exception occurred

Example cURL

curl -X POST https://talao.co/api/analyze-qrcode   -H "Content-Type: application/json"   -H "Api-Key: your-api-key"   -d '{
"qrcode": "c29tZS1hc3NpZ24tdGV4dA==",
"oidc4vciDraft": "15",
"oidc4vpDraft": "22"
}'

POST /api/analyze-vc

Analyze a base64-encoded Verifiable Credential (VC). The system detects whether the VC is in SD-JWT VC, JWT VC (compact), or JSON-LD VC format, then evaluates its compliance using OpenAI. The response is a Markdown diagnostic report encoded in base64.

This endpoint is used to analyze a credential submitted via the AI sandbox.This API is used to serve https://talao.co/ai/vc .

Authentication

HeaderValue
Api-KeyYour authorized key

Request (JSON)

{
"vc": "BASE64_ENCODED_VC_STRING", // Required
"sdjwtvc_draft": "8", // Optional - for SD-JWT VC format
"vcdm_draft": "1.1" // Optional - for JWT VC format
}

Successful Response

{
"report_base64": "<base64-encoded markdown report>"
}

To decode the Markdown report in Python:

import base64
print(base64.b64decode(response["report_base64"]).decode())

Error Responses

HTTP CodeMessageDescription
400{"error": "Missing 'vc' field"}No VC was provided
400{"error": "Invalid base64 encoding for VC"}VC could not be base64-decoded
403{"error": "Access denied"}API key is missing or invalid
500{"error": "Internal processing error"}Unexpected error in processing

Example cURL

curl -X POST https://talao.co/api/analyze-vc \
-H "Content-Type: application/json" \
-H "Api-Key: your-api-key" \
-d '{
"vc": "BASE64_ENCODED_VC_STRING",
"sdjwtvc_draft": "8",
"vcdm_draft": "1.1"
}'