EVSS
Last Updated:
Note: EVSS APIs are currently being migrated to Lighthouse.
The Enterprise Veteran Self-Service Portal Platform (EVSS), is integrated with the http://va.gov platform API. Access is provided over mutual TLS authentication. A self signed root certificate managed by the http://vets.gov team is used to sign environment-specific client certificates for the development and staging environments. The production integration requires a VA trusted CA verification.
Integration Endpoints
All integration endpoints must be validated with TLS 1.2 using the following ssl settings:
{
version: :TLSv1_2,
verify: true,
client_cert: OpenSSL::X509::Certificate.new File.read(ENV['EVSS_CERT_FILE_PATH']),
client_key: OpenSSL::PKey::RSA.new File.read(ENV['EVSS_CERT_KEY_PATH']),
ca_file: ENV['EVSS_ROOT_CERT_FILE_PATH']
}
GI Bill Status Service
Integration Type: REST
Endpoint:
${ENV[EVSS_BASE_URL]}/wss-education-services-web/rest/education/chapter33/v1Error Indicator:
StatsD:
vets_api.statsd.api_external_http_request_EVSS_GiBillStatus_failed
Datadog:
vets_api.statsd.api_external_http_request_EVSS_GiBillStatus_failedvets_api.statsd.api_external_http_request_EVSS_GiBillStatus_success
Disability Claim Service
Integration Type: REST
Endpoint:
${ENV[EVSS_BASE_URL]}/wss-claims-services-web-3.0/restError Indicator:
StatsD:
vets_api.statsd.api_external_http_request_EVSS_Claims_success
Datadog:
vets_api.statsd.api_external_http_request_EVSS_Claims_successvets_api.statsd.api_external_http_request_EVSS_Claims_failed
Document Service
Integration Type: REST
Endpoint:
${ENV[EVSS_BASE_URL]}/wss-document-services-web-3.0/restError Indicator:
StatsD:
vets_api.statsd.api_external_http_request_EVSS_Documents_success
Datadog:
vets_api.statsd.api_external_http_request_EVSS_Documents_success
Common Service
Integration Type: REST
Endpoint:
${ENV[EVSS_BASE_URL]}/wss-common-services-web-11.0/restError Indicator:
StatsD:
vets_api.statsd.api_external_http_request_EVSS_Common_success
Datadog:
vets_api.statsd.api_external_http_request_EVSS_Common_successvets_api.statsd.api_external_http_request_EVSS_Common_failed
Trust Chains
int.ebenefits.va.gov (You must have access to the internal VA network to access this link.)
0 s:/C=US/ST=Texas/L=Austin/O=US Department of Veterans Affairs/OU=AITC/CN=int.ebenefits.va.gov/emailAddress=CDCOWebLogicAdministrators@va.gov
i:/DC=gov/DC=va/CN=VA Internal Subordinate CA 1
1 s:/DC=gov/DC=va/CN=VA Internal Subordinate CA 1
i:/DC=gov/DC=va/CN=VA Internal Root CA
2 s:/DC=gov/DC=va/CN=VA Internal Root CA
i:/DC=gov/DC=va/CN=VA Internal Root CA
pint.ebenefits.va.gov (You must have access to the internal VA network to access this link.)
0 s:/C=US/ST=Texas/L=Austin/O=U.S. Department of Veterans Affairs/OU=AITC/CN=pint.ebenefits.va.gov/emailAddress=cdcoweblogicadministrators@va.gov
i:/DC=gov/DC=va/CN=VA Internal Subordinate CA 1
1 s:/DC=gov/DC=va/CN=VA Internal Subordinate CA 1
i:/DC=gov/DC=va/CN=VA Internal Root CA
2 s:/DC=gov/DC=va/CN=VA Internal Root CA
i:/DC=gov/DC=va/CN=VA Internal Root CA
0 s:/C=US/ST=Texas/L=Austin/O=U.S. Department of Veterans Affairs/OU=AITC/CN=www.ebenefits.va.gov/emailAddress=cdcoweblogicadministrators@va.gov
i:/DC=gov/DC=va/CN=VA Internal Subordinate CA 1
1 s:/DC=gov/DC=va/CN=VA Internal Subordinate CA 1
i:/DC=gov/DC=va/CN=VA Internal Root CA
2 s:/DC=gov/DC=va/CN=VA Internal Root CA
i:/DC=gov/DC=va/CN=VA Internal Root CA
Client Certificate Verification
EVSS does not examine the subject of the client certificate; it only verifies that the client certificate has a trusted VA Issuer.
Required Configuration
Requests to EVSS go through the forward proxy. Settings for each environment can be found in this repo.
Outage Status and Maintenance Windows
(Not accessible on the VA network)
Slack Channels
#evss-dev- for generic EVSS questions#evss-prod- for questions relating to EVSS production
Help and feedback
Get help from the Platform Support Team in Slack.
Submit a feature idea to the Platform.