UNPKG

crypto-ld

Version:

A Javascript library for generating and performing common operations on Linked Data cryptographic key pairs.

github.com/digitalbazaar/crypto-ld

digitalbazaar/crypto-ld

178 lines (162 loc) 5.55 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
/*! * Copyright (c) 2020-2022 Digital Bazaar, Inc. All rights reserved. */ /** * General purpose key generation driver for Linked Data cryptographic key * pairs. * * @param {Map} [suites] - Optional map of supported suites, by suite id. */ export class CryptoLD { constructor({suites} = {}) { this.suites = suites || new Map(); } /** * Installs support for a key type (suite). * * @param {LDKeyPair} keyPairLib - Conforming key pair library for a suite. */ use(keyPairLib) { this.suites.set(keyPairLib.suite, keyPairLib); } /** * Generates a public/private LDKeyPair. * * @param {object} options - Suite-specific key options. * @param {string} options.type - Key suite id (for example, * 'Ed25519VerificationKey2020'). * @param {string} [options.controller] - Controller DID or URL for the * generated key pair. If present, used to auto-initialize the key.id. * * @returns {Promise<LDKeyPair>} Generated key pair. */ async generate(options = {}) { const Suite = this._suiteForType(options); return Suite.generate(options); } /** * Imports a public/private key pair from serialized data. * * @param {object} serialized - Serialized key object. * * @throws {Error} - On missing or invalid serialized key data. * * @returns {Promise<LDKeyPair>} Imported key pair. */ async from(serialized = {}) { const Suite = this._suiteForType(serialized); if(serialized['@context']) { // presume this may be an untrusted (fetched, etc) key document return Suite.fromKeyDocument({document: serialized}); } return Suite.from(serialized); } /** * Imports a key pair instance from a provided externally fetched key * document (fetched via a secure JSON-LD `documentLoader` or via * `cryptoLd.fromKeyId()`), optionally checking it for revocation and required * context. * * @param {object} options - Options hashmap. * @param {string} options.document - Externally fetched key document. * @param {boolean} [options.checkContext=true] - Whether to check that the * fetched key document contains the context required by the key's crypto * suite. * @param {boolean} [options.checkRevoked=true] - Whether to check the key * object for the presence of the `revoked` timestamp. * * @returns {Promise<LDKeyPair>} Resolves with the resulting key pair * instance. */ async fromKeyDocument({ document, checkContext = true, checkRevoked = true } = {}) { if(!document) { throw new TypeError('The "document" parameter is required.'); } const Suite = this._suiteForType(document); return Suite.fromKeyDocument({document, checkContext, checkRevoked}); } /** * Imports a key pair instance via the provided `documentLoader` function, * optionally checking it for revocation and required context. * * @param {object} options - Options hashmap. * @param {string} options.id - Key ID or URI. * @param {Function} options.documentLoader - JSON-LD Document Loader. * @param {boolean} [options.checkContext=true] - Whether to check that the * fetched key document contains the context required by the key's crypto * suite. * @param {boolean} [options.checkRevoked=true] - Whether to check the key * object for the presence of the `revoked` timestamp. * * @returns {Promise<LDKeyPair>} Resolves with the appropriate key pair * instance. */ async fromKeyId({ id, documentLoader, checkContext = true, checkRevoked = true } = {}) { if(!id) { throw new TypeError('The "id" parameter is required.'); } if(!documentLoader) { throw new TypeError('The "documentLoader" parameter is required.'); } let keyDocument; try { ({document: keyDocument} = await documentLoader(id)); // the supplied documentLoader may not be properly implemented if(!keyDocument) { throw new Error( 'The "documentLoader" function must return a "document" object.'); } } catch(e) { const error = new Error('Error fetching document: ' + e.message); error.cause = e; throw error; } const fetchedType = keyDocument.type; if(!fetchedType) { throw new Error('Key suite type not found in fetched document.'); } const keySuite = this.suites.get(fetchedType); if(!keySuite) { throw new Error(`Support for suite "${fetchedType}" is not installed.`); } return keySuite.fromKeyDocument({document: keyDocument, checkContext, checkRevoked}); } /** * Tests if a given key type is currently installed. * * @param {string} [type] - Key suite id ('Ed25519VerificationKey2020'). * @private * * @returns {boolean} True if key type installed. */ _installed({type}) { return this.suites.has(type); } /** * Returns the installed crypto suite class for a given document's type. * * @param {object} document - A serialized key document (or options document). * @param {string} document.type - Key suite id (for example, * 'Ed25519VerificationKey2020'). * * @returns {object} LDKeyPair (crypto suite) class. */ _suiteForType(document) { const type = document && document.type; if(!type) { throw new TypeError('Missing key type.'); } if(!this._installed({type})) { throw new Error(`Support for key type "${type}" is not installed.`); } return this.suites.get(type); } } /** * @typedef LDKeyPair */