Skip to content
Help · Principality of Kaharagia

For developers

For developers

Section titled “For developers”

The Principality of Kaharagia exposes a small set of APIs to authorised integrators through the Veritas API gateway. This page is a high-level orientation; full developer documentation, including endpoint references and SDKs, is published separately.

Veritas — the API gateway

Section titled “Veritas — the API gateway”

veritas.kaharagia.org is the single entry point for programmatic access to State data. Veritas:

  • Authenticates every request against an issued consumer key.
  • Authorises the request against the scopes granted to that consumer.
  • Audits every request against the State audit log.
  • Routes the request to the appropriate Office of State system.

Direct access to underlying systems (Citadel, registry databases) is not available — all programmatic access flows through Veritas.

Who can integrate

Section titled “Who can integrate”

Integration access is granted on application to the Office of Digital Government. Typical integrators are:

  • Receiving institutions that need to verify Kaharagian documents at scale (beyond the public single-document portal at verify.kaharagia.org).
  • Other states’ authorities with formal agreements in place.
  • Authorised research partners with limited, scoped, time-boxed access.

To apply, write to digital@state.kaharagia.org with a description of your use case, the scopes you require, and the expected request volume.

Authentication

Section titled “Authentication”

Integrators authenticate to Veritas with a consumer key issued at provisioning time. The key is presented as a bearer token in the Authorization header. Keys are scoped — a key issued for document verification cannot be used to read registry records, even if the underlying Office of State system would allow it.

Public OpenID Connect

Section titled “Public OpenID Connect”

For applications signing users in with their Kaharagian account (rather than acting on behalf of an institution), the public OpenID Connect endpoint is at auth.kaharagia.org. Standard OAuth 2.0 authorisation code flow with PKCE applies.

Application registration is available to authorised partners on application — the same email above.

Stability and versioning

Section titled “Stability and versioning”

Veritas endpoints are versioned in the URL path (/v1/...). A breaking change to an endpoint produces a new path version; the old version remains available for a published deprecation period (currently twelve months).

Reporting issues

Section titled “Reporting issues”

Security issues should be reported in confidence to digital@state.kaharagia.org; please do not file public reports.