UNPKG

@sphereon/gx-compliance-client

Version:

<!--suppress HtmlDeprecatedAttribute --> <h1 align="center"> <br> <a href="https://www.sphereon.com"><img src="https://sphereon.com/content/themes/sphereon/assets/img/logo.svg" alt="Sphereon" width="400"></a> <br>Gaia-X Compliance client (Typescript

github.com/Sphereon/gx-agent

Sphereon/gx-agent

88 lines (77 loc) 3.26 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
import { GXRequiredContext, ISignInfo } from '../types' import { DIDDocument, DIDDocumentSection, IIdentifier, IService, TKeyType } from '@veramo/core' import { mapIdentifierKeysToDocWithJwkSupport } from '@sphereon/ssi-sdk-did-utils' export function convertDidWebToHost(did: string) { did = did.substring(8) did = did.replace(/:/g, '/') did = did.replace(/%/g, ':') return did } export async function extractSignInfo( { did, section, keyRef }: { did: string; section?: DIDDocumentSection; keyRef?: string }, context: GXRequiredContext ): Promise<ISignInfo> { const verificationRelationship: DIDDocumentSection = section ? section : 'verificationMethod' const id = await context.agent.didManagerGet({ did }) const didDoc = await exportToDIDDocument(id) const keys = await mapIdentifierKeysToDocWithJwkSupport(id, verificationRelationship, context, didDoc) if (!keys || keys.length === 0) { throw Error(`No suitable keys found to issue a verifiable credential for ${did} and ${verificationRelationship} Verification Relationship`) } const key = keyRef ? keys.find((key) => key.kid === keyRef) : keys[0] if (!key) { // Can only be keyref, as we already checked for an empty array above throw Error(`Could not find key with keyref ${keyRef}`) } return { keyRef: keyRef ? keyRef : key.kid, keys, key, participantDID: did, participantDomain: convertDidWebToHost(did), verificationRelationship, } } export async function exportToDIDDocument(identifier: IIdentifier, opts?: { services?: IService[] }): Promise<DIDDocument> { const keyMapping: Record<TKeyType, string> = { Secp256k1: 'EcdsaSecp256k1VerificationKey2019', Secp256r1: 'EcdsaSecp256r1VerificationKey2019', Ed25519: 'Ed25519VerificationKey2018', X25519: 'X25519KeyAgreementKey2019', Bls12381G1: 'Bls12381G1Key2020', Bls12381G2: 'Bls12381G2Key2020', RSA: 'JsonWebKey2020', } as Record<TKeyType, string> const allKeys = identifier.keys.map((key) => ({ id: identifier.did + '#' + key.kid, type: keyMapping[key.type], controller: identifier.did, ...(key?.meta?.publicKeyJwk ? { publicKeyJwk: key?.meta?.publicKeyJwk } : {}), ...(!key?.meta?.publicKeyJwk ? { publicKeyHex: key.publicKeyHex } : {}), })) // ed25519 keys can also be converted to x25519 for key agreement const keyAgreementKeyIds = allKeys .filter((key) => ['Ed25519VerificationKey2018', 'X25519KeyAgreementKey2019'].includes(key.type)) .map((key) => key.id) const signingKeyIds = allKeys.filter((key) => key.type !== 'X25519KeyAgreementKey2019').map((key) => key.id) const didDoc = { '@context': 'https://w3id.org/did/v1', id: identifier.did, verificationMethod: allKeys, ...(signingKeyIds.length > 0 ? { authentication: signingKeyIds, assertionMethod: signingKeyIds, } : {}), ...(keyAgreementKeyIds.length > 0 ? { keyAgreement: keyAgreementKeyIds } : {}), service: [...(opts?.services || []), ...(identifier?.services || [])], } return didDoc } export function asDID(input: string) { if (input.startsWith(`did:web:`)) { return input } return `did:web:${input.replace(/https?:\/\/([^/?#]+).*/i, '$1').toLowerCase()}` }