********
Glossary
********

.. glossary::

  Authentication Layer
     **Main article:** :doc:`/documentation/key-concepts/authentication`

     Security layer in front of a :term:`Provider Service` that implements the GAIA-X-Med authentication protocol and only lets requests from a valid :term:`Participant` pass. Consists of the :term:`Authentication Service` on the Federation side and either an :term:`Authentication Proxy` or an :term:`OpenID Connect Client` on the Provider side.

  Authentication Proxy
  Auth-Proxy
     **Main article:** :ref:`GAIA-X-Med Authentication#Proxy method <authentication-proxy-method>`

     Proxies incoming requests for :term:`Provider Services <Provider Service>`, only lets API-authenticated requests pass

  Authentication Service
     **Main article:** :doc:`/documentation/key-concepts/authentication`

     Authenticates a :term:`Participant` by validating their :term:`Credentials` for :term:`Compliance <Compliance Credential>`

  Catalog
  Service Registry
     **Main articles:** :doc:`/getting-started/consumer-guides/service-discovery-negotiation-guide`, :doc:`/getting-started/provider-guides/service-publication-guide`

     Federation Service that stores references to :term:`Service Offerings <Service Offering>` and provides an interface to start :term:`Contract` negotiations.

  Certificate Service
     **Main article:** :ref:`becoming-a-participant-trust-anchors`

     Answers Certificate Signing Requests (CSRs) with :term:`Participation or Service Certificates <Participation Certificate>`

  Claims
     **Main article:** :ref:`Becoming a Participant#Verifiable Credentials <becoming-a-participant-vc>`

     Statement about a :term:`Participant` or :term:`Service Offering` (resp. Legal Person Claims/Service Offering Claims), to be proven truthful and to be used as part of the description of a Participant/Service Offering

  Client Library
    **Main article:** :ref:`Consuming a Service#Using a client library <using-a-client-library>`

    A software library acting as a thin wrapper around a HTTP request library, adding a :term:`Login token` to request headers based on a :term:`Participant Identity File`, therefore enabling simplified connection to a :term:`Provider Service`'s :term:`Authentication Proxy`.

  Compliance Credential
     **Main article:** :ref:`Becoming a Participant#GAIA-X-Med Compliance <gaia-x-med-compliance>`

     A :term:`Verifiable Credential` from the :term:`Compliance Service` stating that a :term:`Self-Description` is valid & has been checked, making it trustworthy and effectively immutable

  Compliance Service
     **Main article:** :ref:`Becoming a Participant#GAIA-X-Med Compliance <gaia-x-med-compliance>`

     Part of the Gaia-X Trust Framework; a Federation Service that verifies a :term:`Self-Description` against shapes from the :term:`Registry Service`, signs them with a :term:`Compliance Credential`

  Consumer
     **Main article:** :doc:`/getting-started/consumer-guides/consuming-a-service`

     A :term:`Participant` who consumes a :term:`Provider Service`

  Consumer Client
     **Main article:** :ref:`Consuming a Service#Using a client library <using-a-client-library>`

     A library to be used by a :term:`Consumer` that implements the communication protocol to speak to a :term:`Provider Service` (through its :term:`Authentication Layer`) to consume its API

  Consumer Filter
    **Main article:** :ref:`Contract Negotiation#Consumer Filter <consumer-filter>`

    Part of a :term:`Contract Template`. A `JSON Schema <https://json-schema.org/>`__ object which the :term:`Consumer`'s :term:`Claims` are checked against. Negotiation is only possible if the Claims are successfully validated against this schema. Can be used to e.g. only allow Participants of a certain country to form :term:`Contracts <Contract>`.

  Contract
     **Main article:** :doc:`/documentation/key-concepts/contract-negotiation`

     A :term:`Verifiable Presentation` that contains signed :term:`Contract Offers <Contract Offer>` from a :term:`Consumer` and a :term:`Provider`'s :term:`Contract Service` as well as a :term:`Negotiation Credential` from the :term:`Negotiation Service`. Represents a finalized and legally binding contract.

  Contract Offer
     **Main article:** :ref:`Contract Negotiation#Consumer's Contract Offer <consumer-contract-offer>`

     A :term:`Contract Template` filled & signed by a :term:`Consumer` to be sent to a :term:`Provider`'s :term:`Contract Service` for countersigning (or rejection)

  Contract Service
     **Main article:** :ref:`Contract Negotiation#Contract Service Negotiation Handling <contract-service-negotiation-handling>`

     A :term:`Provider` Service that stores finalized :term:`Contracts <Contract>` and performs negotiation for the Provider based on their specified rules

  Contract Template
    **Main article:** :ref:`Contract Negotiation#Contract Template <contract-template>`

    Part of :term:`Service Offering` metadata. Contains information necessary for a :term:`Consumer` to create a :term:`Contract Offer` for a given :term:`Provider Service`, with the goal of creating a :term:`Contract`. Consists of free-form static contract terms; the :term:`Negotiable Terms`, the URL of the :term:`Contract Service` responsible for handling negotiation requests; and the lifetime of Contracts upon formation.

  Credential Manager
     **Main article:** :ref:`Participant Onboarding Guide#Create & Validate your Participant Credentials using the Credential Manager <participant-onboarding-guide-perform-participant-onboarding-using-the-credential-manager>`

     Web frontend for the :term:`Credential Store`; creates, validates and saves :term:`Credentials`

  Credential Store
  Identity Store
     **Main article:** :ref:`Participant Onboarding Guide#Setup & Host the Credential Store <participant-onboarding-guide-setup-host-the-credential-store>`

     "Wallet" solution for GAIA-X-Med :term:`Credentials`

  Credentials
     Vague all-encompassing collective term for identity-related documents like :term:`Verifiable Presentations <Verifiable Presentation>`, :term:`Verifiable Credentials <Verifiable Credential>`, :term:`Claims`, :term:`DID Documents <DID Document>`, etc.

  DID Document
     **Main article:** :ref:`Verifiable Credentials#Decentralized Identifiers (DIDs) <verifiable-credentials-decentralized-identifiers>`

     Contains a public key, link to a :term:`Self-Description`, link to Certificate. Hosted by a :term:`Participant` for either themselves or their :term:`Service <Provider Service>`

  DID-URL
     **Main article:** :ref:`Becoming a Participant#DID Document Discoverability <becoming-a-participant-did-document-discoverability>`

     Resolvable identifier to a :term:`DID Document`. GAIA-X-Med primarily uses the ``did:web`` method.

  JSON Web Token
  JWT
     **See:** https://jwt.io/

     An IETF standard that allows to sign a JSON payload in standardized format using a key pair. Used for :term:`Login Tokens <Login Token>`.

  Login Token
     **Main article:** :ref:`GAIA-X-Med Authentication#Login Token <login-token>`

     A :term:`JSON Web Token` that contains a :term:`DID-URL` and that is signed by the private key corresponding to the public key contained in the :term:`DID Document` it points to. Basically used for attesting "Here is the location of my :term:`Credentials`, and yes, those are indeed mine, proven by my signature"

  Negotiable Terms
    **Main article:** :ref:`Contract Negotiation#Negotiable Terms <negotiable-terms>`

    Part of a :term:`Contract Template`. A `JSON Schema <https://json-schema.org/>`__ object that describes the configurable or negotiable parts of a Contract. The :term:`Contract Offer` made by a :term:`Consumer` has to contain a Terms object that conforms to this schema.

  Negotiation Credential
     **Main article:** :ref:`Contract Negotiation#Notarized Contract Offer <notarized-contract-offer>`

     A :term:`Verifiable Credential` created by the :term:`Negotiation Service` signifying the current state of a negotiation (``pending`` or ``finalized``)

  Negotiation Service
     **Main article:** :ref:`Contract Negotiation#Notarized Contract Offer <notarized-contract-offer>`

     A Federation Service that handles :term:`Contract` negotiation as a notary between a :term:`Consumer` and a :term:`Provider`'s :term:`Contract Service`

  Notarized Contract Offer
     **Main article:** :ref:`Contract Negotiation#Notarized Contract Offer <notarized-contract-offer>`

     A :term:`Consumer`'s :term:`Contract Offer` and a :term:`Negotiation Credential` wrapped in a :term:`Verifiable Presentation` and signed by the :term:`Negotiation Service`, to be sent to a :term:`Provider`'s :term:`Contract Service` for negotiation

  OpenID Connect Client
  OIDC Client
     **Main article:** :ref:`GAIA-X-Med Authentication#OpenID Connect Method <authentication-openid-connect-method>`

     Part of the :term:`Authentication Layer`. Proxies incoming requests for :term:`Provider Services <Provider Service>`, only lets OpenID-authenticated requests pass. Unauthorized requests get redirected to the :term:`OpenID Connect Identity Provider`.

  OpenID Connect Identity Provider
  OIDC Provider
     **Main article:** :ref:`GAIA-X-Med Authentication#OpenID Connect Method <authentication-openid-connect-method>`

     A Federation Service that adapts GAIA-X-Med authentication to OpenID Connect

  Participant
     **Main article:** :doc:`/getting-started/becoming-a-participant`

     A legal person that has performed onboarding, received and stored their :term:`Credentials` (in particular a Participant :term:`Self-Description` that verifies their identity) and can participate in GAIA-X-Med activities

  Participant Identity File
  PIF
     **Main article:** :ref:`GAIA-X-Med Authentication#Participant Identity File <participant-identity-file>`

     Contains a :term:`Participant`'s private key and the :term:`DID-URL` pointing to their :term:`DID Document`. Participants need to provide their PIF to create and sign :term:`Login tokens <Login Token>` for authentification, either by the :term:`OpenID Connect Identity Provider` for Web Apps or by :term:`Client Libraries <Client Library>` for accessing a backend directly. They are also used to sign :term:`Contract Offers <Contract Offer>`.

  Participation Certificate
  Service Certificate
     **Main article:** :ref:`Becoming a Participant#GAIA-X-Med Trust Anchors <becoming-a-participant-trust-anchors>`

     X.509 certificate signed by a :term:`Trust Anchor` that allows creation of valid :term:`Self-Descriptions <Self-Description>`

  Provider
     A :term:`Participant` that offers one or more :term:`Provider Services <Provider Service>`

  Provider Service
     **Main article:** :doc:`/getting-started/provider-guides/hosting-your-own-service`

     Specific instance of a :term:`Service Offering`, operated by a :term:`Provider` and usable by :term:`Consumers <Consumer>` who have a valid :term:`Contract` for the Service

  Registry Service
     Part of the Gaia-X Trust Framework; a Federation Service that holds a list of valid :term:`Trust Anchors <Trust Anchor>` and JSON-LD shapes to which :term:`Self-Descriptions <Self-Description>` have to conform

  Self-Description
  SD
     **Main article:** :ref:`Becoming a Participant#Verifiable Credentials <becoming-a-participant-vc>`

     Gaia-X conform :term:`Verifiable Presentation` (with :term:`Compliance Credential`) describing a :term:`Participant` or :term:`Service Offering`

  Service Offering
  SO
     **Main article:** :doc:`/getting-started/provider-guides/service-onboarding-guide`

     Description of a :term:`Provider Service`, with a Service Offering :term:`Self-Description`

  Trust Anchor
     **Main article:** :ref:`Becoming a Participant#GAIA-X-Med Trust Anchors <becoming-a-participant-trust-anchors>`

     Part of the Gaia-X Trust Framework; an institution that is authorized to create compliant :term:`Participation or Service Certificates <Participation Certificate>`

  Verifiable Credential
  VC
     **Main article:** :doc:`/documentation/key-concepts/verifiable-credentials`

     W3C specification for signable and verifiable :term:`Claims`

  Verifiable Presentation
  VP
     **Main article:** :ref:`Verifiable Credentials#Verifiable Presentations <verifiable-credentials-verifiable-presentations>`

     W3C specification for a bundle of :term:`Verifiable Credentials <Verifiable Credential>` that can also be signed and verified