Writing ingredients
Overview
Digital assets are often not created entirely from scratch, but instead created from one or more existing assets, for example placing an image into a layer in Photoshop. Such constituent assets are called ingredients.
Old manifests may contain deprecated v1 and v2 ingredients, but applications should only write v3 ingredients.
Applications should write only v3 ingredients, with label starting with c2pa.ingredient.v3 as described in the C2PA specification.
The API will only write v3 ingredients to a v2 claim. It will write v2 ingredients to a v1 claim and will read any of the three formats.
The C2PA Technical Specification describes ingredient assertions but the CAI SDK treats ingredients separately as their own objects in the JSON manifest rather than as a type of assertion.
Ingredient objects
The ingredients array contains an element for each ingredient used to create an asset. When an ingredient itself has Content Credentials, those manifests are included in the composed asset's manifest store to keep the provenance data intact.
The ingredients array contains an ingredient object for each ingredient. The only required property of the ingredient object is the title property, which usually is the source file name.
When reading an ingredient, label property for the first ingredient in a manifest is c2pa.ingredient.v3 When there is more than one ingredient, subsequent labels have a monotonically increasing index: c2pa.ingredient.v3__1, c2pa.ingredient.v3__2, and so on. you can use your own labels when creating new ingredients, but those labels are only temporary and will be replaced.
Other important properties of the ingredient object include:
format: MIME type of the source file (optional).document_id(optional) andinstance_id(required) which are derived from the ingredient asset's XMP metadata.thumbnail: Object with properties that identify the thumbnail image.active_manifest: For an ingredient with a manifest store, the label of the active manifest.relationship: One ofparentOf,componentOf, orinputTo. See Relationship below.
For example:
"ingredients": [
{
"title": "turkey.jpeg",
"format": "image/jpeg",
"instance_id": "xmp.iid:3250038a-22ca-459b-8392-de275f8b155c",
"relationship": "parentOf",
"label": "c2pa.ingredient.v3"
},
...
],
Relationship
The ingredient object's relationship property describes its relationship to the current asset. This property can have one of three values, as described in the table below.
Value of relationship | Description |
|---|---|
parentOf | The current asset is a derived asset or asset rendition of this ingredient. This relationship value is also used with update manifests. There can be at most one parent ingredient in a manifest. |
componentOf | This ingredient is one of the assets that composes the current asset. |
inputTo | This ingredient was used as input to a computational process, such as an AI/ML model, that led to the creation or modification of this asset. |
Note that parentOf ingredients must have a matching c2pa.opened action as the first action in the manifest and componentOf ingredients must have an associated c2pa.placed action.
Validation results
See Validation results in the manifest JSON reference.
When ingredients are added, the SDK validates their Content Credentials (if any). However, the validation status of an ingredient does not imply anything about the validation status of the composed asset containing the ingredient. In other words:
- A composed asset's Content Credentials may be valid, but one or more of its ingredients may have invalid Content Credentials. For example, test file adobe-20220124-XCA.jpg
- A composed asset's Content Credentials may be invalid, but one or more of its ingredients may have valid Content Credentials. For example, test file adobe-20220124-CIE-sig-CA.jpg.
Ingredient certificates are validated when they are added to the manifest store, NOT during validation of the composed asset.