mirror of
https://github.com/mosip/inji-wallet.git
synced 2026-01-08 21:18:14 -05:00
fe59309e88
* [INJIMOB-1629] add an api to fetch the trusted verifiers list for vp sharing flow Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] add screens for showing vcs matching openId4vp authorization request and selecting VCs Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] add states in scan machine to show loader screen when vp sharing is started Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] send events to parent machine from openId4vp machine to update UI when performing vp sharing Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] change the position of check box in vc container in vp sharing flow Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] add styles to send vp screen elements to match wireframe and add context variable to store vp sharing purpose Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] show error screen if no credential in wallet matches with authorization request Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] show confirmation pop up when user decline the consent for sharing vp Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] show error screen if the verifier authentication is failed after scanning vp sharing qr code Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] move error and overlay details assigning logic to send vp screen controller Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] add translations for vp sharing flow texts in all languages Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] make changes in card skeleton component to show vc card loader in vp sharing flow Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] fix issues with reject button in sharing vp screen Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] add support for sharing vp with out selfie from kebab menu Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] add support for sharing vp with selfie from kebab menu Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] add missing translations for error and overlay screen texts of vp sharing flow Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] add logic in scan screen to show error screens in vp sharing from kebab menu flow Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] add logic to filter the VCs based on the type of the VC in vp sharing flow Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812]: generate proof for vp token and send vp Signed-off-by: adityankannan-tw <adityan410pm@gmail.com> * [INJIMOB-1629] show generic error message if any error occured while validating vp qr code Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] add logic to allow user retry vp sharing 3 times if any technical error occurred Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] add react method in native module to send the generated vp response metadata and make changes to show any errors occured after sharing vp Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-1629] show success screen if vp is shared successfully to the verifier Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812]: refactor proof generation and integrate remote openid4vp package Signed-off-by: adityankannan-tw <adityan410pm@gmail.com> * [INJIMOB-812]: refactor proof generation and integrate remote openid4vp package Signed-off-by: adityankannan-tw <adityan410pm@gmail.com> * [INJIMOB-812] make changes in the code to fetch the VCs properly if scope is present in the authorization code Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] fix the logic of checking if order field value in issuer wellknown is null and empty or not Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] move qr login and openid4vp red id's to scan actions Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] remove unnecessary logs Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] rename openid4vp actions to make them more meaningful and remove unnecessary events in send vp screen controller Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] show error screen if none of the selected VC has image but user chosen share with selfie option Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] add guard logic for checking if any of the selected VC has image or not Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812]: update package resolved with openid4vp library Signed-off-by: adityankannan-tw <adityan410pm@gmail.com> * [INJIMOB-812] fix the logic of retry button in technical error screen and perform the vp sharing again when user click on retry button Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] show specific error screen if required info is missing in qr code Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812]: refactor native module and wrapper with updated library name Signed-off-by: adityankannan-tw <adityan410pm@gmail.com> * [INJIMOB-1709]: Integrate VC verifier aar for Vc verification of Mosip VC (#1624) * [INJIMOB-1709]: integrate VC verifier aar for Vc verification of Mosip VC Signed-off-by: Alka Prasad <prasadalka1998@gmail.com> * [INJIMOB-1709]: Handling Response from Vc Verifier Library Signed-off-by: BalachandarG <balachandar.g@thoughtworks.com> * [INJIMOB-1709]: Removed mavenLocal from build.gradle Signed-off-by: BalachandarG <balachandar.g@thoughtworks.com> * [INJIMOB-1709]: Updated build.gradle Signed-off-by: BalachandarG <balachandar.g@thoughtworks.com> * [INJIMOB-1709]: Removed Certify from isMosipVC Condition. Signed-off-by: BalachandarG <balachandar.g@thoughtworks.com> * [INJIMOB-1709]: Adding isAndroid check and verifying using digital bazaar for iOs. Signed-off-by: BalachandarG <balachandar.g@thoughtworks.com> --------- Signed-off-by: Alka Prasad <prasadalka1998@gmail.com> Signed-off-by: BalachandarG <balachandar.g@thoughtworks.com> Co-authored-by: Alka Prasad <prasadalka1998@gmail.com> * [INJIMOB-1629] rename openId4VP to openID4VP in all files and address pr comments Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] fetch trusted verifiers list from mimoto end point Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] rename openId4VP to openID4VP in all files Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] make trusted verifier api call cache preferred Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] rename openId4VP to openID4VP in all places Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812]: refactor and update openid4vp swift library Signed-off-by: adityankannan-tw <adityan410pm@gmail.com> * [INJIMOB-812] remove code related to scope in openid4vp flow Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] remove code related to type in openid4vp actions Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] rename response_uri to response_uris in openid4vp native wrappers Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] rename typegen file in openid4vp machine Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] change target state of checkFaceAuthConsent to getTrustedVerifiersList Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812]: update openid4vp swift package Signed-off-by: adityankannan-tw <adityan410pm@gmail.com> * [INJIMOB-2097]: bump up app version to 0.15.0 (#1631) Signed-off-by: adityankannan-tw <adityan410pm@gmail.com> Co-authored-by: adityankannan-tw <adityan410pm@gmail.com> * [INJIMOB-1884] remove SetupKeySelectionScreen (#1632) Signed-off-by: Abhishek Paul <paul.apaul.abhishek.ap@gmail.com> * [INJIMOB-812] change the conditional logic for checking if downloading error is generic or not in issuer guards and selectors Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] fetch the trusted verifiers list properly from api response Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] send the list of selected vcs images to face scanner machine only if face is available Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] fix home button navigation issue in error screen of vp sharing flow Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] move openid4vp machine to showError state if there is any occurred in vp sharing flow and reset error when user navigates to home screen Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] fix some flows in vp sharing flow Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> * [INJIMOB-812] fix the logic for showing the error screen as part of scan screen in vp sharing flow Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> --------- Signed-off-by: PuBHARGAVI <46226958+PuBHARGAVI@users.noreply.github.com> Signed-off-by: adityankannan-tw <adityan410pm@gmail.com> Signed-off-by: Alka Prasad <prasadalka1998@gmail.com> Signed-off-by: BalachandarG <balachandar.g@thoughtworks.com> Signed-off-by: Abhishek Paul <paul.apaul.abhishek.ap@gmail.com> Co-authored-by: adityankannan-tw <adityan410pm@gmail.com> Co-authored-by: balachandarg-tw <115633327+balachandarg-tw@users.noreply.github.com> Co-authored-by: Alka Prasad <prasadalka1998@gmail.com> Co-authored-by: adityankannan-tw <109274996+adityankannan-tw@users.noreply.github.com> Co-authored-by: abhip2565 <74866247+abhip2565@users.noreply.github.com>
419 lines
12 KiB
TypeScript
419 lines
12 KiB
TypeScript
import jwtDecode from 'jwt-decode';
|
|
import jose from 'node-jose';
|
|
import {isIOS} from '../constants';
|
|
import {displayType, issuerType} from '../../machines/Issuers/IssuersMachine';
|
|
import getAllConfigurations, {CACHED_API} from '../api';
|
|
import base64url from 'base64url';
|
|
import i18next from 'i18next';
|
|
import {getJWT} from '../cryptoutil/cryptoUtil';
|
|
import i18n from '../../i18n';
|
|
import {
|
|
CredentialTypes,
|
|
CredentialWrapper,
|
|
VerifiableCredential,
|
|
} from '../../machines/VerifiableCredential/VCMetaMachine/vc';
|
|
import {
|
|
BOTTOM_SECTION_FIELDS_WITH_DETAILED_ADDRESS_FIELDS,
|
|
DETAIL_VIEW_ADD_ON_FIELDS,
|
|
getIdType,
|
|
} from '../../components/VC/common/VCUtils';
|
|
import {getVerifiableCredential} from '../../machines/VerifiableCredential/VCItemMachine/VCItemSelectors';
|
|
import {vcVerificationBannerDetails} from '../../components/BannerNotificationContainer';
|
|
import {getErrorEventData, sendErrorEvent} from '../telemetry/TelemetryUtils';
|
|
import {TelemetryConstants} from '../telemetry/TelemetryConstants';
|
|
import {NativeModules} from 'react-native';
|
|
import {KeyTypes} from '../cryptoutil/KeyTypes';
|
|
import {VCFormat} from '../VCFormat';
|
|
import {UnsupportedVcFormat} from '../error/UnsupportedVCFormat';
|
|
import {VCMetadata} from '../VCMetadata';
|
|
|
|
export const Protocols = {
|
|
OpenId4VCI: 'OpenId4VCI',
|
|
OTP: 'OTP',
|
|
};
|
|
|
|
export const Issuers = {
|
|
MosipOtp: '',
|
|
Mosip: 'Mosip',
|
|
};
|
|
|
|
export function getVcVerificationDetails(
|
|
statusType,
|
|
vcMetadata: VCMetadata,
|
|
verifiableCredential,
|
|
wellknown: Object,
|
|
): vcVerificationBannerDetails {
|
|
const idType = getIdType(
|
|
wellknown,
|
|
getVerifiableCredential(verifiableCredential).credentialConfigurationId,
|
|
);
|
|
return {
|
|
statusType: statusType,
|
|
vcType: idType,
|
|
vcNumber: vcMetadata.displayId,
|
|
};
|
|
}
|
|
|
|
export const ACTIVATION_NEEDED = [Issuers.Mosip, Issuers.MosipOtp];
|
|
|
|
export const isActivationNeeded = (issuer: string) => {
|
|
return ACTIVATION_NEEDED.indexOf(issuer) !== -1;
|
|
};
|
|
|
|
export const Issuers_Key_Ref = 'OpenId4VCI_KeyPair';
|
|
|
|
export const getIdentifier = (context, credential: VerifiableCredential) => {
|
|
const credentialIdentifier = credential.credential.id;
|
|
if (credentialIdentifier === undefined) {
|
|
return (
|
|
context.selectedIssuer.credential_issuer +
|
|
':' +
|
|
context.selectedIssuer.protocol +
|
|
':' +
|
|
CredentialIdForMsoMdoc(credential)
|
|
);
|
|
} else {
|
|
const credId = credentialIdentifier.startsWith('did')
|
|
? credentialIdentifier.split(':')
|
|
: credentialIdentifier.split('/');
|
|
return (
|
|
context.selectedIssuer.credential_issuer +
|
|
':' +
|
|
context.selectedIssuer.protocol +
|
|
':' +
|
|
credId[credId.length - 1]
|
|
);
|
|
}
|
|
};
|
|
|
|
export const updateCredentialInformation = (
|
|
context,
|
|
credential: VerifiableCredential,
|
|
): CredentialWrapper => {
|
|
return {
|
|
verifiableCredential: {
|
|
...credential,
|
|
wellKnown: context.selectedIssuer['wellknown_endpoint'],
|
|
credentialConfigurationId: context.selectedCredentialType.id,
|
|
issuerLogo: getDisplayObjectForCurrentLanguage(
|
|
context.selectedIssuer.display,
|
|
)?.logo,
|
|
},
|
|
format: context.selectedCredentialType.format,
|
|
identifier: getIdentifier(context, credential),
|
|
generatedOn: new Date(),
|
|
vcMetadata:
|
|
{...context.vcMetadata, format: context.selectedCredentialType.format} ||
|
|
{},
|
|
};
|
|
};
|
|
|
|
export const getDisplayObjectForCurrentLanguage = (
|
|
display: [displayType],
|
|
): displayType => {
|
|
const currentLanguage = i18next.language;
|
|
const languageKey = Object.keys(display[0]).includes('language')
|
|
? 'language'
|
|
: 'locale';
|
|
let displayType = display.filter(
|
|
obj => obj[languageKey] == currentLanguage,
|
|
)[0];
|
|
if (!displayType) {
|
|
displayType = display.filter(obj => obj[languageKey] === 'en')[0];
|
|
}
|
|
return displayType;
|
|
};
|
|
|
|
export const constructAuthorizationConfiguration = (
|
|
selectedIssuer: issuerType,
|
|
supportedScope: string,
|
|
) => {
|
|
return {
|
|
issuer: selectedIssuer.credential_issuer,
|
|
clientId: selectedIssuer.client_id,
|
|
scopes: [supportedScope],
|
|
redirectUrl: selectedIssuer.redirect_uri,
|
|
additionalParameters: {ui_locales: i18n.language},
|
|
serviceConfiguration: {
|
|
authorizationEndpoint:
|
|
selectedIssuer.authorization_servers[0] + '/authorize',
|
|
tokenEndpoint: selectedIssuer.token_endpoint,
|
|
},
|
|
};
|
|
};
|
|
|
|
export const getCredentialIssuersWellKnownConfig = async (
|
|
issuer: string | undefined,
|
|
defaultFields: string[],
|
|
credentialConfigurationId: string,
|
|
format: string,
|
|
) => {
|
|
let fields: string[] = defaultFields;
|
|
let matchingWellknownDetails: any;
|
|
const wellknownResponse = await CACHED_API.fetchIssuerWellknownConfig(
|
|
issuer!,
|
|
);
|
|
try {
|
|
if (wellknownResponse) {
|
|
matchingWellknownDetails = getMatchingCredentialIssuerMetadata(
|
|
wellknownResponse,
|
|
credentialConfigurationId,
|
|
);
|
|
if (
|
|
matchingWellknownDetails.order != null &&
|
|
matchingWellknownDetails.order.length > 0
|
|
) {
|
|
fields = matchingWellknownDetails.order;
|
|
} else {
|
|
if (format === VCFormat.mso_mdoc) {
|
|
fields = [];
|
|
Object.keys(matchingWellknownDetails.claims).forEach(namespace => {
|
|
Object.keys(matchingWellknownDetails.claims[namespace]).forEach(
|
|
claim => {
|
|
fields.concat(`${namespace}~${claim}`);
|
|
},
|
|
);
|
|
});
|
|
} else if (format === VCFormat.ldp_vc) {
|
|
fields = Object.keys(
|
|
matchingWellknownDetails.credential_definition.credentialSubject,
|
|
);
|
|
} else {
|
|
console.error(`Unsupported credential format - ${format} found`);
|
|
throw new UnsupportedVcFormat(format);
|
|
}
|
|
}
|
|
}
|
|
} catch (error) {
|
|
console.error(
|
|
`Error occurred while parsing well-known response of credential type - ${credentialConfigurationId} so returning default fields only. Error is `,
|
|
error.toString(),
|
|
);
|
|
return {
|
|
matchingCredentialIssuerMetadata: matchingWellknownDetails,
|
|
fields: fields,
|
|
};
|
|
}
|
|
return {
|
|
matchingCredentialIssuerMetadata: matchingWellknownDetails,
|
|
wellknownResponse,
|
|
fields: fields,
|
|
};
|
|
};
|
|
|
|
export const getDetailedViewFields = async (
|
|
issuer: string,
|
|
credentialConfigurationId: string,
|
|
defaultFields: string[],
|
|
format: string,
|
|
) => {
|
|
let response = await getCredentialIssuersWellKnownConfig(
|
|
issuer,
|
|
defaultFields,
|
|
credentialConfigurationId,
|
|
format,
|
|
);
|
|
|
|
let updatedFieldsList = response.fields.concat(DETAIL_VIEW_ADD_ON_FIELDS);
|
|
|
|
updatedFieldsList = removeBottomSectionFields(updatedFieldsList);
|
|
|
|
return {
|
|
matchingCredentialIssuerMetadata: response.matchingCredentialIssuerMetadata,
|
|
fields: updatedFieldsList,
|
|
wellknownResponse: response.wellknownResponse,
|
|
};
|
|
};
|
|
|
|
export const removeBottomSectionFields = fields => {
|
|
return fields.filter(
|
|
fieldName =>
|
|
!BOTTOM_SECTION_FIELDS_WITH_DETAILED_ADDRESS_FIELDS.includes(fieldName) &&
|
|
fieldName !== 'address',
|
|
);
|
|
};
|
|
|
|
export const vcDownloadTimeout = async (): Promise<number> => {
|
|
const response = await getAllConfigurations();
|
|
|
|
return Number(response['openId4VCIDownloadVCTimeout']) || 30000;
|
|
};
|
|
|
|
// OIDCErrors is a collection of external errors from the OpenID library or the issuer
|
|
export enum OIDCErrors {
|
|
OIDC_FLOW_CANCELLED_ANDROID = 'User cancelled flow',
|
|
OIDC_FLOW_CANCELLED_IOS = 'org.openid.appauth.general error -3',
|
|
|
|
INVALID_TOKEN_SPECIFIED = 'Invalid token specified',
|
|
OIDC_CONFIG_ERROR_PREFIX = 'Config error',
|
|
}
|
|
|
|
// ErrorMessage is the type of error message shown in the UI
|
|
|
|
export enum ErrorMessage {
|
|
NO_INTERNET = 'noInternetConnection',
|
|
GENERIC = 'generic',
|
|
REQUEST_TIMEDOUT = 'technicalDifficulty',
|
|
BIOMETRIC_CANCELLED = 'biometricCancelled',
|
|
TECHNICAL_DIFFICULTIES = 'technicalDifficulty',
|
|
CREDENTIAL_TYPE_DOWNLOAD_FAILURE = 'credentialTypeListDownloadFailure',
|
|
}
|
|
|
|
export function CredentialIdForMsoMdoc(credential: VerifiableCredential) {
|
|
return credential.credential['issuerSigned']['nameSpaces'][
|
|
'org.iso.18013.5.1'
|
|
].find(element => element.elementIdentifier === 'document_number')
|
|
.elementValue;
|
|
}
|
|
|
|
export async function constructProofJWT(
|
|
publicKey: string,
|
|
privateKey: string,
|
|
accessToken: string,
|
|
selectedIssuer: issuerType,
|
|
keyType: string,
|
|
): Promise<string> {
|
|
const jwtHeader = {
|
|
alg: keyType,
|
|
jwk: await getJWK(publicKey, keyType),
|
|
typ: 'openid4vci-proof+jwt',
|
|
};
|
|
const decodedToken = jwtDecode(accessToken);
|
|
const jwtPayload = {
|
|
iss: selectedIssuer.client_id,
|
|
nonce: decodedToken.c_nonce,
|
|
aud: selectedIssuer.credential_audience,
|
|
iat: Math.floor(new Date().getTime() / 1000),
|
|
exp: Math.floor(new Date().getTime() / 1000) + 18000,
|
|
};
|
|
|
|
return await getJWT(
|
|
jwtHeader,
|
|
jwtPayload,
|
|
Issuers_Key_Ref,
|
|
privateKey,
|
|
keyType,
|
|
);
|
|
}
|
|
|
|
export const getJWK = async (publicKey, keyType) => {
|
|
try {
|
|
let publicKeyJWK;
|
|
switch (keyType) {
|
|
case KeyTypes.RS256:
|
|
publicKeyJWK = await getJWKRSA(publicKey);
|
|
break;
|
|
case KeyTypes.ES256:
|
|
publicKeyJWK = await getJWKECR1(publicKey);
|
|
break;
|
|
case KeyTypes.ES256K:
|
|
publicKeyJWK = await getJWKECK1(publicKey);
|
|
break;
|
|
case KeyTypes.ED25519:
|
|
publicKeyJWK = await getJWKED(publicKey);
|
|
break;
|
|
default:
|
|
throw Error;
|
|
}
|
|
return {
|
|
...publicKeyJWK,
|
|
alg: keyType,
|
|
use: 'sig',
|
|
};
|
|
} catch (e) {
|
|
console.error(
|
|
'Exception occurred while constructing JWK from PEM : ' +
|
|
publicKey +
|
|
' Exception is ',
|
|
e,
|
|
);
|
|
}
|
|
};
|
|
async function getJWKRSA(publicKey): Promise<any> {
|
|
const publicKeyJWKString = await jose.JWK.asKey(publicKey, 'pem');
|
|
return publicKeyJWKString.toJSON();
|
|
}
|
|
async function getJWKECR1(publicKey): Promise<any> {
|
|
if (isIOS()) return JSON.parse(publicKey);
|
|
const publicKeyJWKString = await jose.JWK.asKey(publicKey, 'pem');
|
|
return publicKeyJWKString.toJSON();
|
|
}
|
|
function getJWKECK1(publicKey): any {
|
|
const x = base64url(Buffer.from(publicKey.slice(1, 33))); // Skip the first byte (0x04) in the uncompressed public key
|
|
const y = base64url(Buffer.from(publicKey.slice(33)));
|
|
const jwk = {
|
|
kty: 'EC',
|
|
crv: 'secp256k1',
|
|
x: x,
|
|
y: y,
|
|
};
|
|
return jwk;
|
|
}
|
|
function getJWKED(publicKey): any {
|
|
throw new Error('Function not implemented.');
|
|
}
|
|
export async function hasKeyPair(keyType: any): Promise<boolean> {
|
|
const {RNSecureKeystoreModule} = NativeModules;
|
|
try {
|
|
return await RNSecureKeystoreModule.hasAlias(keyType);
|
|
} catch (e) {
|
|
console.error('key not found');
|
|
return false;
|
|
}
|
|
}
|
|
|
|
export function selectCredentialRequestKey(
|
|
keyTypes: string[],
|
|
keyOrder: object,
|
|
) {
|
|
for (const index in keyOrder) {
|
|
if (keyTypes.includes(keyOrder[index])) return keyOrder[index];
|
|
}
|
|
return '';
|
|
}
|
|
|
|
export const constructIssuerMetaData = (
|
|
selectedIssuer: issuerType,
|
|
selectedCredentialType: CredentialTypes,
|
|
downloadTimeout: Number,
|
|
): Object => {
|
|
const issuerMeta: Object = {
|
|
credentialAudience: selectedIssuer.credential_audience,
|
|
credentialEndpoint: selectedIssuer.credential_endpoint,
|
|
downloadTimeoutInMilliSeconds: downloadTimeout,
|
|
credentialFormat: selectedCredentialType.format,
|
|
};
|
|
if (selectedCredentialType.format === VCFormat.ldp_vc) {
|
|
issuerMeta['credentialType'] = selectedCredentialType?.credential_definition
|
|
?.type ?? ['VerifiableCredential'];
|
|
} else if (selectedCredentialType.format === VCFormat.mso_mdoc) {
|
|
issuerMeta['doctype'] = selectedCredentialType.doctype;
|
|
issuerMeta['claims'] = selectedCredentialType.claims;
|
|
}
|
|
return issuerMeta;
|
|
};
|
|
|
|
export function getMatchingCredentialIssuerMetadata(
|
|
wellknown: any,
|
|
credentialConfigurationId: string,
|
|
): any {
|
|
for (const credentialTypeKey in wellknown.credential_configurations_supported) {
|
|
if (credentialTypeKey === credentialConfigurationId) {
|
|
return wellknown.credential_configurations_supported[credentialTypeKey];
|
|
}
|
|
}
|
|
console.error(
|
|
'Selected credential type is not available in wellknown config supported credentials list',
|
|
);
|
|
sendErrorEvent(
|
|
getErrorEventData(
|
|
TelemetryConstants.FlowType.wellknownConfig,
|
|
TelemetryConstants.ErrorId.mismatch,
|
|
TelemetryConstants.ErrorMessage.wellknownConfigMismatch,
|
|
),
|
|
);
|
|
throw new Error(
|
|
`Selected credential type - ${credentialConfigurationId} is not available in wellknown config supported credentials list`,
|
|
);
|
|
}
|