npm - @bedrock/vc-verifier - Versions diffs - 11.0.0 → 12.0.0 - Mend

@bedrock/vc-verifier 11.0.0 → 12.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (22) hide show

package/README.md +4 -4
package/lib/challenges.js +1 -3
package/lib/documentLoader.js +8 -8
package/lib/http.js +8 -12
package/lib/index.js +1 -1
package/lib/status.js +8 -10
package/package.json +28 -23
package/.eslintrc.cjs +0 -12
package/.github/workflows/main.yml +0 -77
package/CHANGELOG.md +0 -175
package/test/mocha/.eslintrc.cjs +0 -9
package/test/mocha/10-provision.js +0 -868
package/test/mocha/20-verify.js +0 -390
package/test/mocha/30-credential-status.js +0 -651
package/test/mocha/cert.pem +0 -18
package/test/mocha/helpers.js +0 -232
package/test/mocha/key.pem +0 -28
package/test/mocha/mock-credential.json +0 -39
package/test/mocha/mock.data.js +0 -21
package/test/package.json +0 -72
package/test/test.config.js +0 -40
package/test/test.js +0 -40

package/test/mocha/helpers.js DELETED Viewed

@@ -1,232 +0,0 @@
-/*
- * Copyright (c) 2019-2022 Digital Bazaar, Inc. All rights reserved.
- */
-import * as bedrock from '@bedrock/core';
-import {httpsAgent} from '@bedrock/https-agent';
-import {createRequire} from 'module';
-import {didIo} from '@bedrock/did-io';
-import {getAppIdentity} from '@bedrock/app-identity';
-import {mockData} from './mock.data.js';
-import {httpClient} from '@digitalbazaar/http-client';
-const require = createRequire(import.meta.url);
-const {Ed25519Signature2020} = require('@digitalbazaar/ed25519-signature-2020');
-const {EdvClient} = require('@digitalbazaar/edv-client');
-const {KeystoreAgent, KmsClient} = require('@digitalbazaar/webkms-client');
-const {ZcapClient} = require('@digitalbazaar/ezcap');
-const edvBaseUrl = `${mockData.baseUrl}/edvs`;
-const kmsBaseUrl = `${mockData.baseUrl}/kms`;
-const FIVE_MINUTES = 1000 * 60 * 5;
-export async function createMeter({capabilityAgent, serviceType} = {}) {
-  // create signer using the application's capability invocation key
-  const {keys: {capabilityInvocationKey}} = getAppIdentity();
-  const zcapClient = new ZcapClient({
-    agent: httpsAgent,
-    invocationSigner: capabilityInvocationKey.signer(),
-    SuiteClass: Ed25519Signature2020
-  });
-  // create a meter
-  const meterService = `${bedrock.config.server.baseUri}/meters`;
-  let meter = {
-    controller: capabilityAgent.id,
-    product: {
-      // mock ID for service type
-      id: mockData.productIdMap.get(serviceType)
-    }
-  };
-  ({data: {meter}} = await zcapClient.write({url: meterService, json: meter}));
-  // return full meter ID
-  const {id} = meter;
-  return {id: `${meterService}/${id}`};
-}
-export async function createConfig({
-  capabilityAgent, ipAllowList, meterId, zcaps
-} = {}) {
-  if(!meterId) {
-    // create a meter for the keystore
-    ({id: meterId} = await createMeter({
-      capabilityAgent, serviceType: 'vc-verifier'
-    }));
-  }
-  // create service object
-  const config = {
-    sequence: 0,
-    controller: capabilityAgent.id,
-    meterId
-  };
-  if(ipAllowList) {
-    config.ipAllowList = ipAllowList;
-  }
-  if(zcaps) {
-    config.zcaps = zcaps;
-  }
-  const zcapClient = createZcapClient({capabilityAgent});
-  const url = `${mockData.baseUrl}/verifiers`;
-  const response = await zcapClient.write({url, json: config});
-  return response.data;
-}
-export async function getConfig({id, capabilityAgent}) {
-  const zcapClient = createZcapClient({capabilityAgent});
-  const {data} = await zcapClient.read({url: id});
-  return data;
-}
-export async function createChallenge({
-  capabilityAgent, capability, verifierId
-}) {
-  const zcapClient = createZcapClient({capabilityAgent});
-  return zcapClient.write({
-    url: `${verifierId}/challenges`,
-    capability: capability ||
-      `urn:zcap:root:${encodeURIComponent(verifierId)}`,
-    json: {}
-  });
-}
-export async function createEdv({
-  capabilityAgent, keystoreAgent, keyAgreementKey, hmac, meterId
-}) {
-  if(!meterId) {
-    // create a meter for the keystore
-    ({id: meterId} = await createMeter({
-      capabilityAgent, serviceType: 'edv'
-    }));
-  }
-  if(!(keyAgreementKey && hmac) && keystoreAgent) {
-    // create KAK and HMAC keys for edv config
-    ([keyAgreementKey, hmac] = await Promise.all([
-      keystoreAgent.generateKey({type: 'keyAgreement'}),
-      keystoreAgent.generateKey({type: 'hmac'})
-    ]));
-  }
-  // create edv
-  const newEdvConfig = {
-    sequence: 0,
-    controller: capabilityAgent.id,
-    keyAgreementKey: {id: keyAgreementKey.id, type: keyAgreementKey.type},
-    hmac: {id: hmac.id, type: hmac.type},
-    meterId
-  };
-  const edvConfig = await EdvClient.createEdv({
-    config: newEdvConfig,
-    httpsAgent,
-    invocationSigner: capabilityAgent.getSigner(),
-    url: edvBaseUrl
-  });
-  const edvClient = new EdvClient({
-    id: edvConfig.id,
-    keyResolver,
-    keyAgreementKey,
-    hmac,
-    httpsAgent
-  });
-  return {edvClient, edvConfig, hmac, keyAgreementKey};
-}
-export async function createKeystore({
-  capabilityAgent, ipAllowList, meterId,
-  kmsModule = 'ssm-v1'
-}) {
-  if(!meterId) {
-    // create a meter for the keystore
-    ({id: meterId} = await createMeter(
-      {capabilityAgent, serviceType: 'webkms'}));
-  }
-  // create keystore
-  const config = {
-    sequence: 0,
-    controller: capabilityAgent.id,
-    meterId,
-    kmsModule
-  };
-  if(ipAllowList) {
-    config.ipAllowList = ipAllowList;
-  }
-  return KmsClient.createKeystore({
-    url: `${kmsBaseUrl}/keystores`,
-    config,
-    invocationSigner: capabilityAgent.getSigner(),
-    httpsAgent
-  });
-}
-export async function createKeystoreAgent({capabilityAgent, ipAllowList}) {
-  let err;
-  let keystore;
-  try {
-    keystore = await createKeystore({capabilityAgent, ipAllowList});
-  } catch(e) {
-    err = e;
-  }
-  assertNoError(err);
-  // create kmsClient only required because we need to use httpsAgent
-  // that accepts self-signed certs used in test suite
-  const kmsClient = new KmsClient({httpsAgent});
-  const keystoreAgent = new KeystoreAgent({
-    capabilityAgent,
-    keystoreId: keystore.id,
-    kmsClient
-  });
-  return keystoreAgent;
-}
-export function createZcapClient({
-  capabilityAgent, delegationSigner, invocationSigner
-}) {
-  const signer = capabilityAgent && capabilityAgent.getSigner();
-  return new ZcapClient({
-    agent: httpsAgent,
-    invocationSigner: invocationSigner || signer,
-    delegationSigner: delegationSigner || signer,
-    SuiteClass: Ed25519Signature2020
-  });
-}
-export async function delegate({
-  capability, controller, invocationTarget, expires, allowedActions,
-  delegator
-}) {
-  const zcapClient = createZcapClient({capabilityAgent: delegator});
-  expires = expires || (capability && capability.expires) ||
-    new Date(Date.now() + FIVE_MINUTES).toISOString().slice(0, -5) + 'Z';
-  return zcapClient.delegate({
-    capability, controller, expires, invocationTarget, allowedActions
-  });
-}
-export async function revokeDelegatedCapability({
-  serviceObjectId, capabilityToRevoke, invocationSigner
-}) {
-  const url = `${serviceObjectId}/zcaps/revocations/` +
-    encodeURIComponent(capabilityToRevoke.id);
-  const zcapClient = createZcapClient({invocationSigner});
-  return zcapClient.write({url, json: capabilityToRevoke});
-}
-async function keyResolver({id}) {
-  // support DID-based keys only
-  if(id.startsWith('did:')) {
-    return didIo.get({url: id});
-  }
-  // support HTTP-based keys; currently a requirement for WebKMS
-  const {data} = await httpClient.get(id, {agent: httpsAgent});
-  return data;
-}

package/test/mocha/key.pem DELETED Viewed

@@ -1,28 +0,0 @@
------BEGIN PRIVATE KEY-----
-MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQC5egV0Yz8iZziL
-p5HNSiIfMISiDd/wqArJKJjr9aY96Sa9cVLSBt+4xJrAxKpCVlgAl/6ZNnVrftZ+
-SwqBvQ9I2WlodQhu4Gs1ImrSj44P+SooyGO6IT1mhZMt++0oUj/ZjdaIoFaNjzKo
-D1N0RLdI5l6lSSbO/E86sXMX9tHGrjSElMO0EF5dXPLMLrRFjRQ4md819aKpH8Ob
-yCI02wRK8j2LI8Cfqka0kxdxQSLQ4z5yDsb3ajd5avJzgCEprOOvwy36dvtuT11X
-pstS0Sqgwk1BRhYvYn99H4euSwx9BpoA6GiVM2OaI4SctpvfGxbnhh0Z5SU+JaxJ
-xPAnQe9JAgMBAAECggEBAJmBQ8Jv4XC3vTTYGvOsx1DI9vyoPw8OBN83mlivlkbn
-EAj6IXFx/vcMwIeKPN9qVqsnIK/tQoEVGLCtqqR1tJC2X2b0dWZOlmwDcCWUah8O
-OLZII0GJASg4pPcJ6d3VNML5gPTSvs+qFGLDTG6N8KOFBhAF2vi0GV6aPoc236du
-W7r45/2uawN2k+M+5EiHDy+E96bMkN+urI9PUbrcEySqgKtdLZJLKvzQXMCT4gAN
-2bR2CltO/3j/lMC2MRXtrDt0rc7NDTABBer9qGzd1YPDGghlW1/I2EsSLPxiF0lA
-ChuwJaZIAJhra0izGN63rh5NyVKzIE6EJmS/OClmIAECgYEA8TZNuGKQor9rcFVX
-bFgv/LU9i6ZrPQ1krVTGrTZGYSZSXdON13EGsmVx/y7IQtTom+fy7XatnPiL7ANc
-bNor+XPDNTHWgVsCgXB6177PitdTNN7EaL6yJFych2chBgxzX6iyjivUCqsbKLjF
-svnREQdTlI/Jyo/LeZSMIExEYekCgYEAxNj6m5lI3ffM2Xzx07+MGiAJhtswHmoL
-E5F78H2vTc5lZi8P+npXK3R0zA8xk1EWJvvptmGnySJ6+g1QBhzp31Ej37IltNdF
-9YWWfR55OwppqyJSFaDZLA/ZRzHMJCO9k5/6Vw79mNGGTXKF+KuEQsoD1A2sQXNt
-u82ppdPmZmECgYEA0EZfXXJeCOjX0CsgTYDoDoBAIDEWL6U85R1qX22Z35DDVhix
-RPFnIurNP9YZPPuxzcy9yaTLy9ogly1fxO2tQrteNrRNz2vSAgopR9iORAgg5Gnl
-lbvy/cqprZCyxxJBHLwBURkvAfc0gDjrG9rxVo7I8GInjywSOWy2gbzY3uECgYA7
-3vbSLpwQDxd6KttumPrm00myf6YyCfTWfdBhhAi2tIj4vGWyvFUY/XGsww5EDUyc
-jNA3zZn3vgoDVds6EL89UfOETS3UxAkeNQRhh8w9ndwn1ed7dpG3Khbe5ZF+iHRX
-mzfMFN4jBc9AbQ28ZYZzvffOHl5/BbmhflsT+dBA4QKBgDO+i82xY/athz2caAve
-8ZN+66/O4sesjLVrEgSNiwCNmxJK01dk7dpH0Yu1RNbCWTrcejrOX6oH0Xc2cU2t
-9riivDJkPvOe6AhrzGGQqbGdL4EOCBKEEHQZP4WSwHZwTvEn0arQfzvz9MecT5WU
-X+bA8m6q9sVohy1RtvGNzZBu
------END PRIVATE KEY-----

package/test/mocha/mock-credential.json DELETED Viewed

@@ -1,39 +0,0 @@
-{
-  "@context": [
-    "https://www.w3.org/2018/credentials/v1",
-    {
-      "ex": "https://example.org/examples#",
-      "schema": "http://schema.org/",
-      "rdf": "http://www.w3.org/1999/02/22-rdf-syntax-ns#",
-      "BachelorDegree": "ex:BachelorDegree",
-      "UniversityDegreeCredential": "ex:UniversityDegreeCredential",
-      "degree": "ex:degree",
-      "name": {
-        "@id": "schema:name",
-        "@type": "rdf:HTML"
-      }
-    },
-    "https://w3id.org/security/suites/ed25519-2020/v1"
-  ],
-  "id": "http://example.gov/credentials/3732",
-  "type": [
-    "VerifiableCredential",
-    "UniversityDegreeCredential"
-  ],
-  "issuer": "did:key:z6MkmHipNuE35C6ona8Hkgpq3mpn4C3rX5kp1SjwcZ7HCWnH",
-  "issuanceDate": "2020-03-11T23:09:06.803Z",
-  "credentialSubject": {
-    "id": "did:example:ebfeb1f712ebc6f1c276e12ec21",
-    "degree": {
-      "type": "BachelorDegree",
-      "name": "Bachelor of Science and Arts"
-    }
-  },
-  "proof": {
-    "type": "Ed25519Signature2020",
-    "created": "2021-05-11T18:44:41Z",
-    "verificationMethod": "did:key:z6MkmHipNuE35C6ona8Hkgpq3mpn4C3rX5kp1SjwcZ7HCWnH#z6MkmHipNuE35C6ona8Hkgpq3mpn4C3rX5kp1SjwcZ7HCWnH",
-    "proofPurpose": "assertionMethod",
-    "proofValue": "zqvrFELnqNYWBEsqkHPhqxXuQaNf3dpsQ3s6dLgkS1jAtAwXfwxf2TirW4kyPAUHNU3TXbS7JT38aF4jtnXGwiBT"
-  }
-}

package/test/mocha/mock.data.js DELETED Viewed

@@ -1,21 +0,0 @@
-/*!
-* Copyright (c) 2019-2022 Digital Bazaar, Inc. All rights reserved.
-*/
-import {config} from '@bedrock/core';
-export const mockData = {};
-// mock product IDs and reverse lookup for service products
-mockData.productIdMap = new Map([
-  // edv service
-  ['edv', 'urn:uuid:dbd15f08-ff67-11eb-893b-10bf48838a41'],
-  ['urn:uuid:dbd15f08-ff67-11eb-893b-10bf48838a41', 'edv'],
-  // vc-verifier service
-  ['vc-verifier', 'urn:uuid:66aad4d0-8ac1-11ec-856f-10bf48838a41'],
-  ['urn:uuid:66aad4d0-8ac1-11ec-856f-10bf48838a41', 'vc-verifier'],
-  // webkms service
-  ['webkms', 'urn:uuid:80a82316-e8c2-11eb-9570-10bf48838a41'],
-  ['urn:uuid:80a82316-e8c2-11eb-9570-10bf48838a41', 'webkms']
-]);
-mockData.baseUrl = config.server.baseUri;

package/test/package.json DELETED Viewed

@@ -1,72 +0,0 @@
-{
-  "name": "bedrock-vc-verifier-test",
-  "version": "0.0.1-0",
-  "type": "module",
-  "description": "Bedrock VC Verifier Test",
-  "private": true,
-  "scripts": {
-    "test": "node --preserve-symlinks test.js test",
-    "coverage": "cross-env NODE_ENV=test c8 --reporter=lcov --reporter=text-summary npm test",
-    "coverage-ci": "cross-env NODE_ENV=test c8 --reporter=lcovonly npm test",
-    "coverage-report": "c8 report"
-  },
-  "author": {
-    "name": "Digital Bazaar, Inc.",
-    "email": "support@digitalbazaar.com",
-    "url": "http://digitalbazaar.com"
-  },
-  "dependencies": {
-    "@bedrock/app-identity": "^3.0.0",
-    "@bedrock/core": "^6.0.0",
-    "@bedrock/credentials-context": "^3.0.0",
-    "@bedrock/did-context": "^4.0.0",
-    "@bedrock/did-io": "^8.0.0",
-    "@bedrock/edv-storage": "^15.0.0",
-    "@bedrock/express": "^8.0.0",
-    "@bedrock/https-agent": "^4.0.0",
-    "@bedrock/jsonld-document-loader": "^3.0.0",
-    "@bedrock/kms": "^10.0.0",
-    "@bedrock/kms-http": "^14.0.0",
-    "@bedrock/ledger-context": "^23.0.0",
-    "@bedrock/meter": "^3.0.0",
-    "@bedrock/meter-http": "^8.0.0",
-    "@bedrock/meter-usage-reporter": "^7.0.0",
-    "@bedrock/mongodb": "^10.0.0",
-    "@bedrock/package-manager": "^3.0.0",
-    "@bedrock/security-context": "^7.0.0",
-    "@bedrock/server": "^5.0.0",
-    "@bedrock/service-agent": "^5.0.0",
-    "@bedrock/service-context-store": "^7.0.0",
-    "@bedrock/service-core": "5.0.0",
-    "@bedrock/ssm-mongodb": "^9.0.0",
-    "@bedrock/test": "^8.0.0",
-    "@bedrock/validation": "^7.0.0",
-    "@bedrock/vc-revocation-list-context": "^3.0.0",
-    "@bedrock/vc-status-list-context": "^4.0.0",
-    "@bedrock/vc-verifier": "file:..",
-    "@bedrock/veres-one-context": "^14.0.0",
-    "@bedrock/zcap-storage": "^7.0.0",
-    "@digitalbazaar/did-method-key": "^2.0.0",
-    "@digitalbazaar/ed25519-signature-2020": "^3.0.0",
-    "@digitalbazaar/ed25519-verification-key-2020": "^3.2.0",
-    "@digitalbazaar/edv-client": "^14.0.0",
-    "@digitalbazaar/ezcap": "^2.0.2",
-    "@digitalbazaar/http-client": "^3.0.1",
-    "@digitalbazaar/vc": "^2.1.0",
-    "@digitalbazaar/vc-status-list-context": "^3.0.0",
-    "@digitalbazaar/webkms-client": "^10.0.0",
-    "c8": "^7.11.0",
-    "cross-env": "^7.0.3",
-    "express": "^4.17.2",
-    "vc-revocation-list-context": "^1.0.0"
-  },
-  "c8": {
-    "excludeNodeModules": false,
-    "include": [
-      "node_modules/@bedrock/vc-verifier/**"
-    ],
-    "exclude": [
-      "node_modules/@bedrock/vc-verifier/node_modules/**"
-    ]
-  }
-}

package/test/test.config.js DELETED Viewed

@@ -1,40 +0,0 @@
-/*!
- * Copyright (c) 2012-2022 Digital Bazaar, Inc. All rights reserved.
- */
-import {config} from '@bedrock/core';
-import {fileURLToPath} from 'url';
-import path from 'path';
-import '@bedrock/app-identity';
-import '@bedrock/https-agent';
-import '@bedrock/mongodb';
-import '@bedrock/service-agent';
-import '@bedrock/vc-verifier';
-const __dirname = path.dirname(fileURLToPath(import.meta.url));
-config.mocha.options.fullTrace = true;
-config.mocha.tests.push(path.join(__dirname, 'mocha'));
-// MongoDB
-config.mongodb.name = 'bedrock_vc_verifier_test';
-config.mongodb.dropCollections.onInit = true;
-config.mongodb.dropCollections.collections = [];
-// drop all collections on initialization
-config.mongodb.dropCollections = {};
-config.mongodb.dropCollections.onInit = true;
-config.mongodb.dropCollections.collections = [];
-// allow self-signed certs in test framework
-config['https-agent'].rejectUnauthorized = false;
-// create test application identity
-// ...and `ensureConfigOverride` has already been set via
-// `bedrock-app-identity` so it doesn't have to be set here
-config['app-identity'].seeds.services['vc-verifier'] = {
-  id: 'did:key:z6MkrH839XwPCUQ2TkA6ifehciWnEvzuQ2njc6J19fpuP5oN',
-  seedMultibase: 'z1AgvAGfbairK3AV6GqbeF8gSpYZXftQsGb5DTjptgawNyn',
-  serviceType: 'vc-verifier'
-};
-// use local KMS for testing
-config['service-agent'].kms.baseUrl = 'https://localhost:18443/kms';

package/test/test.js DELETED Viewed

@@ -1,40 +0,0 @@
-/*!
- * Copyright (c) 2016-2022 Digital Bazaar, Inc. All rights reserved.
- */
-import * as bedrock from '@bedrock/core';
-import '@bedrock/ssm-mongodb';
-import '@bedrock/kms';
-import '@bedrock/https-agent';
-import '@bedrock/meter';
-import '@bedrock/meter-usage-reporter';
-import {getServiceIdentities} from '@bedrock/app-identity';
-import {handlers} from '@bedrock/meter-http';
-import '@bedrock/server';
-import '@bedrock/kms-http';
-import '@bedrock/edv-storage';
-import '@bedrock/vc-verifier';
-import {mockData} from './mocha/mock.data.js';
-bedrock.events.on('bedrock.init', async () => {
-  /* Handlers need to be added before `bedrock.start` is called. These are
-  no-op handlers to enable meter usage without restriction */
-  handlers.setCreateHandler({
-    handler({meter} = {}) {
-      // use configured meter usage reporter as service ID for tests
-      const clientName = mockData.productIdMap.get(meter.product.id);
-      const serviceIdentites = getServiceIdentities();
-      const serviceIdentity = serviceIdentites.get(clientName);
-      if(!serviceIdentity) {
-        throw new Error(`Could not find identity "${clientName}".`);
-      }
-      meter.serviceId = serviceIdentity.id;
-      return {meter};
-    }
-  });
-  handlers.setUpdateHandler({handler: ({meter} = {}) => ({meter})});
-  handlers.setRemoveHandler({handler: ({meter} = {}) => ({meter})});
-  handlers.setUseHandler({handler: ({meter} = {}) => ({meter})});
-});
-import '@bedrock/test';
-bedrock.start();