UNPKG

@veramo/did-provider-peer

Version:

Veramo plugin that can enable creation and control of did:peer identifiers.

github.com/decentralized-identity/veramo

decentralized-identity/veramo

173 lines (151 loc) 5.67 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
import { IAgentContext, IIdentifier, IKey, IKeyManager, IService } from '@veramo/core-types' import { AbstractIdentifierProvider } from '@veramo/did-manager' import { bytesToBase64url, bytesToMultibase, hexToBytes, stringToUtf8Bytes } from '@veramo/utils' import Debug from 'debug' const debug = Debug('veramo:did-peer:identifier-provider') type IContext = IAgentContext<IKeyManager> const ServiceReplacements = { type: 't', DIDCommMessaging: 'dm', serviceEndpoint: 's', routingKeys: 'r', accept: 'a', } const encodeService = (service: IService): string => { let encoded = JSON.stringify(service) Object.values(ServiceReplacements).forEach((v: string, idx: number) => { encoded = encoded.replace(Object.keys(ServiceReplacements)[idx], v) }) return bytesToBase64url(stringToUtf8Bytes(encoded)) } type CreatePeerDidOptions = { num_algo: number // keyType?: keyof typeof keyCodecs // defaulting to Ed25519 keys only in this implementation authPrivateKeyHex?: string agreementPrivateKeyHex?: string service?: IService } /** * {@link @veramo/did-manager#DIDManager} identifier provider for `did:key` identifiers * * @beta This API may change without a BREAKING CHANGE notice. */ export class PeerDIDProvider extends AbstractIdentifierProvider { private defaultKms: string constructor(options: { defaultKms: string }) { super() this.defaultKms = options.defaultKms } async createIdentifier( { kms, options }: { kms?: string; options?: CreatePeerDidOptions }, context: IContext, ): Promise<Omit<IIdentifier, 'provider'>> { options = options ?? { num_algo: 0 } if (options.service) { options.num_algo = 2 } if (options.num_algo == 0) { let key: IKey if (options.authPrivateKeyHex) { key = await context.agent.keyManagerImport({ privateKeyHex: options.authPrivateKeyHex, type: 'Ed25519', kms: kms ?? this.defaultKms, }) } else { key = await context.agent.keyManagerCreate({ kms: kms || this.defaultKms, type: 'Ed25519' }) } const methodSpecificId = bytesToMultibase(hexToBytes(key.publicKeyHex), 'base58btc', 'ed25519-pub') const identifier: Omit<IIdentifier, 'provider'> = { did: 'did:peer:0' + methodSpecificId, controllerKeyId: key.kid, keys: [key], services: [], } debug('Created', identifier.did) return identifier } else if (options.num_algo == 1) { throw new Error(`'PeerDIDProvider num algo ${options.num_algo} not supported yet.'`) } else if (options.num_algo == 2) { let authKey: IKey let agreementKey: IKey if (options.authPrivateKeyHex) { authKey = await context.agent.keyManagerImport({ kms: kms ?? this.defaultKms, type: 'Ed25519', privateKeyHex: options.authPrivateKeyHex, }) } else { authKey = await context.agent.keyManagerCreate({ kms: kms || this.defaultKms, type: 'Ed25519' }) } if (options.agreementPrivateKeyHex) { agreementKey = await context.agent.keyManagerImport({ kms: kms ?? this.defaultKms, type: 'X25519', privateKeyHex: options.agreementPrivateKeyHex, }) } else { agreementKey = await context.agent.keyManagerCreate({ kms: kms ?? this.defaultKms, type: 'X25519', }) } const authKeyText = bytesToMultibase(hexToBytes(authKey.publicKeyHex), 'base58btc', 'ed25519-pub') const agreementKeyText = bytesToMultibase( hexToBytes(agreementKey.publicKeyHex), 'base58btc', 'x25519-pub', ) let serviceString = '' if (options.service) { serviceString = `.S${encodeService(options.service)}` } const identifier: Omit<IIdentifier, 'provider'> = { did: `did:peer:2.E${agreementKeyText}.V${authKeyText}${serviceString}`, controllerKeyId: authKey.kid, keys: [authKey, agreementKey], services: options.service ? [options.service] : [], } debug('Created', identifier.did) return identifier } else { throw new Error(`'not_supported: PeerDIDProvider num algo ${options.num_algo} not supported yet.'`) } } async updateIdentifier( args: { did: string; kms?: string | undefined; alias?: string | undefined; options?: any }, context: IAgentContext<IKeyManager>, ): Promise<IIdentifier> { throw new Error('not_supported: PeerDIDProvider updateIdentifier not supported yet.') } async deleteIdentifier(identifier: IIdentifier, context: IContext): Promise<boolean> { for (const { kid } of identifier.keys) { await context.agent.keyManagerDelete({ kid }) } return true } async addKey( { identifier, key, options }: { identifier: IIdentifier; key: IKey; options?: any }, context: IContext, ): Promise<any> { throw Error('not_supported: PeerDIDProvider addKey not supported') } async addService( { identifier, service, options }: { identifier: IIdentifier; service: IService; options?: any }, context: IContext, ): Promise<any> { throw Error('not_supported: PeerDIDProvider addService not supported') } async removeKey( args: { identifier: IIdentifier; kid: string; options?: any }, context: IContext, ): Promise<any> { throw Error('not_supported: PeerDIDProvider removeKey not supported') } async removeService( args: { identifier: IIdentifier; id: string; options?: any }, context: IContext, ): Promise<any> { throw Error('not_supported: PeerDIDProvider removeService not supported') } }