UNPKG

@investorid/identity-sdk

Version:

Interact with BlockChain Identities.

github.com/investorid/identity-sdk

investorid/identity-sdk

479 lines 19.9 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
"use strict"; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : new P(function (resolve) { resolve(result.value); }).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; Object.defineProperty(exports, "__esModule", { value: true }); const ethers_1 = require("ethers"); const utils_1 = require("ethers/utils"); const Config_1 = require("../core/Config"); const ERC735_interface_1 = require("./ERC735.interface"); const ERC725_interface_1 = require("./ERC725.interface"); const Key_interface_1 = require("./Key.interface"); const ClaimHolder_interface_1 = require("./ClaimHolder.interface"); const ENS_1 = require("../core/utils/ENS"); const Claim_1 = require("../claims/Claim"); class Identity { /** * Instantiate a new Identity with the provided address or ENS string that will be resolved. * @param addressOrENS Must be a valid Ethereum address, checksumed, all lower-case or all uppercase. * @param [provider] If provided, the identity will use this provider for all blockchain operation (unless override) instead of the SDK default provider. */ static at(addressOrENS, provider) { return __awaiter(this, void 0, void 0, function* () { let address; if (!addressOrENS.includes('.')) { address = ENS_1.normalizeAddress(addressOrENS); } else { address = yield ENS_1.resolveENS(addressOrENS, provider); } return new Identity(address, provider); }); } /** * Deploy a new Identity, and return the Identity object. * The signer will pay for the deployment, and will be added in the MANAGEMENT keys. * If not given, the Signer will use the default provider from the SDK if it is defined and is a Signer. * Note that the identity will be returned with the provided Signer, thus management operation can be chained. * @param [signer] */ static deployNew(signer) { return __awaiter(this, void 0, void 0, function* () { const _signer = signer || Config_1.getProvider(); if (!ethers_1.Signer.isSigner(_signer)) { throw new Config_1.InvalidProviderError('Contract deployment requires a Signer.'); } const contract = yield new ethers_1.ContractFactory(ClaimHolder_interface_1.ClaimHolderABI.abi, ClaimHolder_interface_1.ClaimHolderABI.bytecode, _signer).deploy(); const identity = new Identity(contract.address, _signer); identity.claimHolderInstance = contract; return identity; }); } /** * Instantiate an Identity. * @param address A valid Ethereum address (not an ENS, use `Identity#at(ens)`.). * @param provider Override the default provider of SDK, and use for all operation of this Identity. */ constructor(address, provider) { this.address = ENS_1.normalizeAddress(address); this.claimHolderInstance = undefined; this.keyHolderInstance = undefined; this.provider = provider; } /** * Add a claim to an Identity. * The signature must have been signed with a keypair having the public key in the CLAIM keys of Identity. * @param claimType * @param scheme * @param issuer * @param signature * @param data * @param uri * @param [signer] */ addClaim(claimType, scheme, issuer, signature, data, uri, signer) { return __awaiter(this, void 0, void 0, function* () { const _signer = signer || this.provider || Config_1.getProvider(); if (!ethers_1.Signer.isSigner(_signer)) { throw new Config_1.InvalidProviderError('Contract operations require a Signer.'); } let instance = this.claimHolderInstance; if (!instance) { instance = yield this.instantiateClaimHolder(_signer); } const claimKey = yield this.getKey(utils_1.keccak256(issuer), _signer); if (!claimKey || claimKey.purpose > Key_interface_1.KeyPurpose.CLAIM) { throw new Error('ClaimData Issuer key is not in CLAIM keys of Identity.'); } if (!utils_1.isHexString(signature)) { throw new Error('signature must be a valid hex string.'); } const signatureBytes = utils_1.arrayify(signature); if (!utils_1.isHexString(data)) { throw new Error('data must be a valid hex string.'); } const dataBytes = utils_1.arrayify(data); return instance.addClaim(claimType, scheme, issuer, signatureBytes, dataBytes, uri); }); } /** * Add a Key to an Identity. * The Signer must have a MANAGEMENT key in the Identity. * @param key Must be a valid byte32 hex string (pass the keccak256 hash of the key string). * @param purpose Must be an integer. It is recommended to use the standard KeyPurpose enum. * @param type Must be a an integer. It is recommended to use the standard KeyType enum. * @param [signer] Blockchain signer. */ addKey(key, purpose, type, signer) { return __awaiter(this, void 0, void 0, function* () { const _signer = signer || this.provider || Config_1.getProvider(); if (!ethers_1.Signer.isSigner(_signer)) { throw new Config_1.InvalidProviderError('Contract operations require a Signer.'); } let instance = this.keyHolderInstance; if (!instance) { instance = yield this.instantiateKeyHolder(_signer); } const claimKey = yield this.getKey(utils_1.keccak256(yield _signer.getAddress())); if (!claimKey || claimKey.type < Key_interface_1.KeyPurpose.MANAGEMENT) { throw new Error('Signer key is not in MANAGEMENT keys of Identity.'); } return instance.addKey(key, purpose, type); }); } /** * Get ClaimData details for an Identity. * @param claimId * @param [provider] */ getClaim(claimId, provider) { return __awaiter(this, void 0, void 0, function* () { const _provider = provider || this.provider || Config_1.getProvider(); let instance = this.claimHolderInstance; if (!instance) { instance = yield this.instantiateClaimHolder(_provider); } return instance.getClaim(claimId).then((claim) => { return { id: claimId, type: claim[0].toNumber(), scheme: claim[1].toNumber(), issuer: claim[2], signature: claim[3], data: claim[4], uri: claim[5], }; }); }); } /** * Get claims details for an Identity. * @deprecated * @param claimId * @param [provider] */ getClaims(claimId, provider) { return __awaiter(this, void 0, void 0, function* () { throw new Error('Claim retrieval must be performed by exploring ClaimAdded and ClaimRemoved events.'); }); } /** * Get Claims details by type for an Identity. * @param claimType * @param [provider] */ getClaimsByType(claimType, provider) { return __awaiter(this, void 0, void 0, function* () { const _provider = provider || this.provider || Config_1.getProvider(); const promises = yield this.getClaimIdsByType(claimType, _provider) .then((claimIds) => claimIds.map((claimId) => __awaiter(this, void 0, void 0, function* () { return this.getClaim(claimId); }))); return Promise.all(promises); }); } /** * Get ClaimData IDs by type for an Identity. * @param claimType * @param [provider] */ getClaimIdsByType(claimType, provider) { return __awaiter(this, void 0, void 0, function* () { const _provider = provider || this.provider || Config_1.getProvider(); let instance = this.claimHolderInstance; if (!instance) { instance = yield this.instantiateClaimHolder(_provider); } return instance.getClaimIdsByType(claimType); }); } /** * Get the details of a key in an Identity. * @param key * @param [provider] */ getKey(key, provider) { return __awaiter(this, void 0, void 0, function* () { const _provider = provider || this.provider || Config_1.getProvider(); let instance = this.keyHolderInstance; if (!instance) { instance = yield this.instantiateKeyHolder(_provider); } return instance.getKey(key).then((key) => { return { purpose: key[0].toNumber(), type: key[1].toNumber(), key: key[2], }; }); }); } /** * Get the purpose of a key in an identity. * @param key * @param [provider] */ getKeyPurpose(key, provider) { return __awaiter(this, void 0, void 0, function* () { const _provider = provider || this.provider || Config_1.getProvider(); let instance = this.keyHolderInstance; if (!instance) { instance = yield this.instantiateKeyHolder(_provider); } return instance.getKeyPurpose(key).then((key) => { return key.toNumber(); }); }); } /** * Get the details of the keys contained in an Identity by purpose. * @param purpose * @param [provider] */ getKeysByPurpose(purpose, provider) { return __awaiter(this, void 0, void 0, function* () { const _provider = provider || this.provider || Config_1.getProvider(); let instance = this.keyHolderInstance; if (!instance) { instance = yield this.instantiateKeyHolder(_provider); } const promises = yield instance.getKeysByPurpose(purpose) .then((keys) => { return keys.map((key) => __awaiter(this, void 0, void 0, function* () { return this.getKey(key); })); }); return Promise.all(promises); }); } /** * Instantiate the Identity ClaimHolder Contract with the Identity's address. * @param [providerOrSigner] */ instantiateClaimHolder(providerOrSigner) { return __awaiter(this, void 0, void 0, function* () { const _provider = providerOrSigner || this.provider || Config_1.getProvider(); if (this.claimHolderInstance) { return this.claimHolderInstance; } this.claimHolderInstance = yield this.instantiate(ERC735_interface_1.ERC735ABI.abi, _provider); return this.claimHolderInstance; }); } /** * Instantiate the Identity KeyHolder Contract with the Identity's address. * @param [providerOrSigner] */ instantiateKeyHolder(providerOrSigner) { return __awaiter(this, void 0, void 0, function* () { const _provider = providerOrSigner || this.provider || Config_1.getProvider(); if (this.keyHolderInstance) { return this.keyHolderInstance; } this.keyHolderInstance = yield this.instantiate(ERC725_interface_1.ERC725ABI.abi, _provider); return this.keyHolderInstance; }); } /** * Instantiate an Identity with the given abi using the object's address. * @param abi * @param [providerOrSigner] */ instantiate(abi, providerOrSigner) { return __awaiter(this, void 0, void 0, function* () { if (!this.address) { throw new Error('Identity has no address defined. Use .instantiateAtAddress() or set .address first.'); } const _provider = providerOrSigner || this.provider || Config_1.getProvider(); return this.instantiateAtAddress(this.address, abi, _provider); }); } /** * Instantiate an Identity with the given abi at a given address. * @param address * @param abi * @param [providerOrSigner] */ instantiateAtAddress(address, abi, providerOrSigner) { return __awaiter(this, void 0, void 0, function* () { const _provider = providerOrSigner || this.provider || Config_1.getProvider(); return new ethers_1.Contract(address, abi, _provider); }); } /** * Check if a key has at least the given purpose. * @param key * @param purpose * @param [provider] */ keyHasPurpose(key, purpose, provider) { return __awaiter(this, void 0, void 0, function* () { const keyPurpose = yield this.getKeyPurpose(key, provider); if (keyPurpose === 0) { return false; } return keyPurpose <= purpose; }); } /** * Remove a claim, provided the signer has the right to do so. * @param claimId * @param [signer] */ removeClaim(claimId, signer) { return __awaiter(this, void 0, void 0, function* () { const _signer = signer || this.provider || Config_1.getProvider(); if (!ethers_1.Signer.isSigner(_signer)) { throw new Config_1.InvalidProviderError('Contract operations require a Signer.'); } const claim = yield this.getClaim(claimId); if (!claim || claim.type === 0) { throw new Error('There is no such claim.'); } const managementKey = yield this.getKey(utils_1.keccak256(yield _signer.getAddress())); if (!managementKey || managementKey.type < Key_interface_1.KeyPurpose.MANAGEMENT) { throw new Error('Signer key is not in MANAGEMENT keys of Identity.'); } let instance = this.claimHolderInstance; if (!instance) { instance = yield this.instantiateClaimHolder(_signer); } return instance.removeClaim(claimId); }); } /** * Remove a Key from an Identity. * The Signer must have a MANAGEMENT key in the Identity. * @param key Key must be a valid byte32 hex string. * @param [signer] Override the identity or default SDK signer. */ removeKey(key, signer) { return __awaiter(this, void 0, void 0, function* () { const _signer = signer || this.provider || Config_1.getProvider(); if (!ethers_1.Signer.isSigner(_signer)) { throw new Config_1.InvalidProviderError('Contract operations require a Signer.'); } let instance = this.keyHolderInstance; if (!instance) { instance = yield this.instantiateKeyHolder(_signer); } const claimKey = yield this.getKey(utils_1.keccak256(yield _signer.getAddress())); if (!claimKey || claimKey.type < Key_interface_1.KeyPurpose.MANAGEMENT) { throw new Error('Signer key is not in MANAGEMENT keys of Identity.'); } return instance.removeKey(key); }); } /** * Use another provider or signer to interact with the Identity. * This will reset all contract instances of the identity that will need to be instantiated once again with the new provider. * @param providerOrSigner */ useProvider(providerOrSigner) { this.provider = providerOrSigner; // Reset contract instances. this.claimHolderInstance = undefined; this.keyHolderInstance = undefined; } /** * Verify if the message was signed with a key that is authorized to perform action for this Identity. * @param message * @param signature * @param providerOrSigner */ validateSignature(message, signature, providerOrSigner) { return __awaiter(this, void 0, void 0, function* () { let signingKey; try { signingKey = utils_1.verifyMessage(message, signature); } catch (err) { return false; } return yield this.keyHasPurpose(utils_1.keccak256(signingKey), Key_interface_1.KeyPurpose.ACTION, providerOrSigner); }); } /** * Verify a specific claim given with full data or by ID. * @param claim Claim object or ID. * @param [provider] */ verifyClaim(claim, provider) { return __awaiter(this, void 0, void 0, function* () { if (!this.address) { return { valid: false, reason: 'Identity is not deployed.', }; } let _claim; if (typeof claim === 'string') { _claim = yield this.getClaim(claim); } else { _claim = claim; } let claimHash; try { claimHash = Claim_1.Claim.generateBlockchainHash(this.address, claim.type, claim.data); } catch (err) { return { valid: false, reason: 'Claim hash could not be computed properly.', }; } let signingKey; try { signingKey = yield utils_1.verifyMessage(utils_1.arrayify(claimHash), _claim.signature); } catch (err) { return { valid: false, reason: 'Claim signature could not be verified.', details: err.message, }; } let signerKeyPurpose; try { const issuerIdentity = new Identity(_claim.issuer); signerKeyPurpose = yield issuerIdentity.getKeyPurpose(utils_1.keccak256(signingKey), provider); } catch (err) { return { valid: false, reason: 'The key used to sign the claim could not be found, is the issuer still a valid contract address?', signingKey, signerKeyPurpose, details: err.message, }; } if (signerKeyPurpose === 0) { return { valid: false, reason: 'The key used to sign the claim does not exist in the Claim Issuer contract that emitted the claim, maybe it was removed.', signingKey, signerKeyPurpose, }; } if (signerKeyPurpose > 3) { return { valid: false, reason: 'The key used to sign the claim does not have enough rights to sign claims. The Claim Issuer must define it as a CLAIM key.', signingKey, signerKeyPurpose, }; } return { valid: true, signingKey, signerKeyPurpose, }; }); } } exports.default = Identity; //# sourceMappingURL=Identity.js.map