UNPKG

factom-identity-lib

Version:

Library to read and update Factom identities

github.com/PaulBernier/factom-identity

PaulBernier/factom-identity

153 lines (131 loc) 5.75 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
const { Entry, isValidEcAddress } = require('factom'); const { getIdentityRootChain } = require('./identity-chains'); const { isValidSk1, isValidServerIdentityChainId } = require('./validation'); const { getNowTimestamp8BytesBuffer } = require('./common'); const { verify, extractSecretFromIdentityKey, sign } = require('./common'); const { sha256d, secretToPublicKey } = require('../crypto'); const { VERSION_0 } = require('./constant'); ///////////////// Read ///////////////// function extract(rootChainId, managementEntries, identityKey1) { for (const entry of managementEntries.reverse()) { if (isValidEfficiencyRegistration(entry, rootChainId, identityKey1)) { return { registrationEntryHash: entry.hash().toString('hex'), registrationTimestamp: entry.blockContext.entryTimestamp, registrationDirectoryBlockHeight: entry.blockContext.directoryBlockHeight, efficiency: parseInt(entry.extIds[3].toString('hex'), 16) / 100 }; } } } function extractHistory(rootChainId, managementEntries, identityKey1) { return managementEntries .reverse() .filter(e => isValidEfficiencyRegistration(e, rootChainId, identityKey1)) .map(e => ({ registrationEntryHash: e.hash().toString('hex'), registrationTimestamp: e.blockContext.entryTimestamp, registrationDirectoryBlockHeight: e.blockContext.directoryBlockHeight, efficiency: parseInt(e.extIds[3].toString('hex'), 16) / 100 })); } function isValidEfficiencyRegistration(entry, rootChainId, identityKey1) { const extIds = entry.extIds; if ( extIds.length !== 7 || !extIds[0].equals(VERSION_0) || extIds[1].toString() !== 'Server Efficiency' || extIds[2].toString('hex') !== rootChainId || extIds[3].length !== 2 || !sha256d(extIds[5]).equals(identityKey1) ) { return false; } const data = Buffer.concat(extIds.slice(0, 5)); if (!verify(extIds[5], data, extIds[6])) { return false; } return true; } ///////////////// Update ///////////////// async function update(cli, rootChainId, efficiency, sk1, ecAddress) { if (!isValidSk1(sk1)) { throw new Error('Lowest level identity key (sk1) is not valid'); } if (typeof efficiency !== 'number' || efficiency < 0 || efficiency > 100) { throw new Error('Efficiency must be a number between 0 and 100'); } if (!isValidEcAddress(ecAddress)) { throw new Error(`Invalid EC address ${ecAddress}`); } const balance = await cli.getBalance(ecAddress); if (balance < 1) { throw new Error('Insufficient EC balance to pay for updating efficiency'); } const rootChain = await getIdentityRootChain(cli, rootChainId); const identityKey = sha256d( Buffer.concat([ Buffer.from('01', 'hex'), secretToPublicKey(extractSecretFromIdentityKey(sk1)) ]) ); if (!rootChain.identityKeys[0].equals(identityKey)) { throw new Error(`The SK1 cannot sign in the Identity Root Chain ${rootChainId}`); } const entry = Entry.builder( getEfficiencyUpdateEntry(rootChainId, rootChain.serverManagementSubchainId, efficiency, sk1) ).build(); return await cli.add(entry, ecAddress); } /** * Generate Entry object to update a server identity efficiency. * @memberof server * @function generateEfficiencyUpdateEntry * @param {string} rootChainId - Identity Root Chain Id. * @param {string} serverManagementSubchainId - Server Management Subchain Id. * @param {number} efficiency - Efficiency between 0 and 100. * @param {string} sk1 - Server identity Secret Key 1. * @returns {{chainId: Buffer, extIds: Buffer[], content: Buffer}} */ function generateUpdateEntry(rootChainId, serverManagementSubchainId, efficiency, sk1) { if (rootChainId === serverManagementSubchainId) { throw new Error( `The root chain id cannot be the same as the server management subchain id (${rootChainId})` ); } if (!isValidServerIdentityChainId(rootChainId)) { throw new Error(`Invalid root chain id ${rootChainId}`); } if (!isValidServerIdentityChainId(serverManagementSubchainId)) { throw new Error(`Invalid server management subchain id ${serverManagementSubchainId}`); } if (!isValidSk1(sk1)) { throw new Error('Lowest level identity key (sk1) is not valid'); } if (typeof efficiency !== 'number' || efficiency < 0 || efficiency > 100) { throw new Error('Efficiency must be a number between 0 and 100'); } return getEfficiencyUpdateEntry(rootChainId, serverManagementSubchainId, efficiency, sk1); } function getEfficiencyUpdateEntry(rootChainId, serverManagementSubchainId, eff, sk1) { const version = Buffer.from('00', 'hex'); const marker = Buffer.from('Server Efficiency', 'utf8'); const chainId = Buffer.from(rootChainId, 'hex'); let effHex = Math.round(eff * 100).toString('16'); effHex = effHex.padStart(4, '0'); const efficiency = Buffer.from(effHex, 'hex'); const timestamp = getNowTimestamp8BytesBuffer(); const dataToSign = Buffer.concat([version, marker, chainId, efficiency, timestamp]); const { identityKeyPreImage, signature } = sign(extractSecretFromIdentityKey(sk1), dataToSign); return { chainId: Buffer.from(serverManagementSubchainId, 'hex'), extIds: [version, marker, chainId, efficiency, timestamp, identityKeyPreImage, signature], content: Buffer.from('') }; } module.exports = { update, extract, extractHistory, generateUpdateEntry };