npm - @cef-ebsi/cli - Versions diffs - 1.3.2 → 1.5.0 - Mend

@cef-ebsi/cli 1.3.2 → 1.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (202) hide show

package/bin/cli.js +1 -1
package/dist/abi/pilot/DidRegistry.js +568 -0
package/dist/abi/pilot/DidRegistry.js.map +1 -0
package/dist/abi/{test/TirV4.js → pilot/Ptr.js} +255 -299
package/dist/abi/pilot/Ptr.js.map +1 -0
package/dist/abi/pilot/SchemaSCRegistry.js +264 -0
package/dist/abi/pilot/SchemaSCRegistry.js.map +1 -0
package/dist/abi/{test/TprV3.js → pilot/Tcr.js} +269 -261
package/dist/abi/pilot/Tcr.js.map +1 -0
package/dist/abi/pilot/Timestamp.js +658 -0
package/dist/abi/pilot/Timestamp.js.map +1 -0
package/dist/abi/pilot/Tir.js +428 -0
package/dist/abi/pilot/Tir.js.map +1 -0
package/dist/abi/pilot/TnT.js +842 -0
package/dist/abi/pilot/TnT.js.map +1 -0
package/dist/abi/pilot/Tpr.js +492 -0
package/dist/abi/pilot/Tpr.js.map +1 -0
package/dist/abi/test/DidRegistry.js +144 -658
package/dist/abi/test/DidRegistry.js.map +1 -1
package/dist/abi/{pilot/TirV4.js → test/Ptr.js} +255 -299
package/dist/abi/test/Ptr.js.map +1 -0
package/dist/abi/test/SchemaSCRegistry.js +122 -795
package/dist/abi/test/SchemaSCRegistry.js.map +1 -1
package/dist/abi/{pilot/TprV3.js → test/Tcr.js} +269 -261
package/dist/abi/test/Tcr.js.map +1 -0
package/dist/abi/test/Timestamp.js +239 -673
package/dist/abi/test/Timestamp.js.map +1 -1
package/dist/abi/test/Tir.js +167 -636
package/dist/abi/test/Tir.js.map +1 -1
package/dist/abi/test/TnT.js +842 -0
package/dist/abi/test/TnT.js.map +1 -0
package/dist/abi/test/Tpr.js +166 -942
package/dist/abi/test/Tpr.js.map +1 -1
package/dist/app.js +447 -443
package/dist/app.js.map +1 -1
package/dist/buildParam/{didV3.js → didr.js} +210 -204
package/dist/buildParam/didr.js.map +1 -0
package/dist/buildParam/index.js +42 -48
package/dist/buildParam/index.js.map +1 -1
package/dist/buildParam/ptr.js +80 -0
package/dist/buildParam/ptr.js.map +1 -0
package/dist/buildParam/tcr.js +36 -0
package/dist/buildParam/tcr.js.map +1 -0
package/dist/buildParam/{timestampV3.js → timestamp.js} +179 -136
package/dist/buildParam/timestamp.js.map +1 -0
package/dist/buildParam/{tirV3.js → tir.js} +67 -59
package/dist/buildParam/tir.js.map +1 -0
package/dist/buildParam/{tntV1.js → tnt.js} +90 -61
package/dist/buildParam/tnt.js.map +1 -0
package/dist/buildParam/{tprV2.js → tpr.js} +44 -33
package/dist/buildParam/tpr.js.map +1 -0
package/dist/buildParam/{tsrV2.js → tsr.js} +45 -40
package/dist/buildParam/tsr.js.map +1 -0
package/dist/cli.js +1 -0
package/dist/cli.js.map +1 -1
package/dist/commands/{authorisation-v5.js → authorisation.js} +95 -72
package/dist/commands/authorisation.js.map +1 -0
package/dist/commands/compute.js +429 -389
package/dist/commands/compute.js.map +1 -1
package/dist/commands/{conformance-v3.js → conformance.js} +236 -248
package/dist/commands/conformance.js.map +1 -0
package/dist/commands/hardwarewallet.js +5 -5
package/dist/commands/hardwarewallet.js.map +1 -1
package/dist/commands/index.js +4 -4
package/dist/commands/index.js.map +1 -1
package/dist/commands/{ledger-v4.js → ledger.js} +203 -127
package/dist/commands/ledger.js.map +1 -0
package/dist/commands/ptr.js +56 -0
package/dist/commands/ptr.js.map +1 -0
package/dist/commands/tcr.js +51 -0
package/dist/commands/tcr.js.map +1 -0
package/dist/commands/tnl.js +10 -9
package/dist/commands/tnl.js.map +1 -1
package/dist/commands/tsr.js +46 -0
package/dist/commands/tsr.js.map +1 -0
package/dist/commands/view.js +8 -8
package/dist/commands/view.js.map +1 -1
package/dist/config.js +311 -279
package/dist/config.js.map +1 -1
package/dist/index.js +3 -3
package/dist/index.js.map +1 -1
package/dist/interfaces/index.js +1 -1
package/dist/interfaces/index.js.map +1 -1
package/dist/programs/migrateDid.js +33 -33
package/dist/programs/migrateDid.js.map +1 -1
package/dist/programs/migrateDids.js +39 -42
package/dist/programs/migrateDids.js.map +1 -1
package/dist/programs/migrateTsr.js +153 -113
package/dist/programs/migrateTsr.js.map +1 -1
package/dist/scripts/accreditAndAuthorize/conformance/step1 +1 -1
package/dist/scripts/accreditAndAuthorize/test/step1 +1 -1
package/dist/scripts/accreditTI +1 -1
package/dist/scripts/assets/CTRevocableCredential.json +1 -1
package/dist/scripts/assets/CredentialToAttestVerifiableAuthorisationForTrustChain.json +2 -2
package/dist/scripts/assets/TrustedNodesList.json +1 -1
package/dist/scripts/assets/VerifiableAccreditationToAccredit.json +2 -2
package/dist/scripts/assets/VerifiableAccreditationToAttest.json +2 -2
package/dist/scripts/assets/VerifiableAuthorisationForTrustChain.json +1 -1
package/dist/scripts/assets/VerifiableAuthorisationToInvoke.json +24 -0
package/dist/scripts/assets/VerifiableAuthorisationToOnboard.json +1 -1
package/dist/scripts/bootstrap/1-populateTPR +18 -15
package/dist/scripts/bootstrap/6-setupConformanceIssuer +1 -1
package/dist/scripts/issueVcInvoke +10 -0
package/dist/scripts/issueVcOnboard +1 -1
package/dist/scripts/issueVcRootTAO +1 -1
package/dist/scripts/issueVcTAO +2 -2
package/dist/scripts/issueVcTI +2 -2
package/dist/scripts/issueVcTnl +1 -1
package/dist/scripts/issue_CTRevocableCredential +1 -1
package/dist/scripts/issue_SelfAttestationSupportOffice +2 -2
package/dist/scripts/issue_VerifiableAccreditationToAccredit +2 -2
package/dist/scripts/issue_VerifiableAccreditationToAttest +2 -2
package/dist/scripts/issue_VerifiableAuthorisationForTrustChain +1 -1
package/dist/scripts/issue_VerifiableAuthorisationToOnboard +1 -1
package/dist/scripts/updateVcRootTAO +1 -1
package/dist/scripts/updateVcTAO +2 -2
package/dist/scripts/updateVcTI +2 -2
package/dist/scripts/{wctv3 → wct}/accreditAndAuthorize +1 -1
package/dist/tsconfig.build.tsbuildinfo +1 -0
package/dist/utils/Client.js +81 -68
package/dist/utils/Client.js.map +1 -1
package/dist/utils/HardwareWallet.js +169 -165
package/dist/utils/HardwareWallet.js.map +1 -1
package/dist/utils/http.js +24 -27
package/dist/utils/http.js.map +1 -1
package/dist/utils/index.js +3 -3
package/dist/utils/index.js.map +1 -1
package/dist/utils/jsonrpc.js +14 -14
package/dist/utils/jsonrpc.js.map +1 -1
package/dist/utils/print.js +19 -19
package/dist/utils/print.js.map +1 -1
package/dist/utils/utils.js +180 -173
package/dist/utils/utils.js.map +1 -1
package/package.json +70 -46
package/dist/abi/pilot/DidRegistryV3.js +0 -1082
package/dist/abi/pilot/DidRegistryV3.js.map +0 -1
package/dist/abi/pilot/DidRegistryV4.js +0 -942
package/dist/abi/pilot/DidRegistryV4.js.map +0 -1
package/dist/abi/pilot/SchemaSCRegistryV2.js +0 -474
package/dist/abi/pilot/SchemaSCRegistryV2.js.map +0 -1
package/dist/abi/pilot/TimestampV2.js +0 -1128
package/dist/abi/pilot/TimestampV2.js.map +0 -1
package/dist/abi/pilot/TimestampV3.js +0 -995
package/dist/abi/pilot/TimestampV3.js.map +0 -1
package/dist/abi/pilot/TirV3.js +0 -496
package/dist/abi/pilot/TirV3.js.map +0 -1
package/dist/abi/pilot/TirV4.js.map +0 -1
package/dist/abi/pilot/TnTV1.js +0 -1375
package/dist/abi/pilot/TnTV1.js.map +0 -1
package/dist/abi/pilot/TprV2.js +0 -889
package/dist/abi/pilot/TprV2.js.map +0 -1
package/dist/abi/pilot/TprV3.js.map +0 -1
package/dist/abi/pilot/TsrV3.js +0 -571
package/dist/abi/pilot/TsrV3.js.map +0 -1
package/dist/abi/test/DidRegistryV3.js +0 -1089
package/dist/abi/test/DidRegistryV3.js.map +0 -1
package/dist/abi/test/DidRegistryV4.js +0 -960
package/dist/abi/test/DidRegistryV4.js.map +0 -1
package/dist/abi/test/SchemaSCRegistryV2.js +0 -474
package/dist/abi/test/SchemaSCRegistryV2.js.map +0 -1
package/dist/abi/test/TimestampV2.js +0 -1128
package/dist/abi/test/TimestampV2.js.map +0 -1
package/dist/abi/test/TimestampV3.js +0 -995
package/dist/abi/test/TimestampV3.js.map +0 -1
package/dist/abi/test/TirV3.js +0 -496
package/dist/abi/test/TirV3.js.map +0 -1
package/dist/abi/test/TirV4.js.map +0 -1
package/dist/abi/test/TnTV1.js +0 -1375
package/dist/abi/test/TnTV1.js.map +0 -1
package/dist/abi/test/TprV2.js +0 -889
package/dist/abi/test/TprV2.js.map +0 -1
package/dist/abi/test/TprV3.js.map +0 -1
package/dist/abi/test/TsrV3.js +0 -571
package/dist/abi/test/TsrV3.js.map +0 -1
package/dist/buildParam/didV3.js.map +0 -1
package/dist/buildParam/didV4.js +0 -326
package/dist/buildParam/didV4.js.map +0 -1
package/dist/buildParam/timestampV2.js +0 -317
package/dist/buildParam/timestampV2.js.map +0 -1
package/dist/buildParam/timestampV3.js.map +0 -1
package/dist/buildParam/tirV3.js.map +0 -1
package/dist/buildParam/tirV4.js +0 -119
package/dist/buildParam/tirV4.js.map +0 -1
package/dist/buildParam/tntV1.js.map +0 -1
package/dist/buildParam/tntV2.js +0 -185
package/dist/buildParam/tntV2.js.map +0 -1
package/dist/buildParam/tprV2.js.map +0 -1
package/dist/buildParam/tprV3.js +0 -82
package/dist/buildParam/tprV3.js.map +0 -1
package/dist/buildParam/tsrV2.js.map +0 -1
package/dist/buildParam/tsrV3.js +0 -110
package/dist/buildParam/tsrV3.js.map +0 -1
package/dist/commands/authorisation-v4.js +0 -119
package/dist/commands/authorisation-v4.js.map +0 -1
package/dist/commands/authorisation-v5.js.map +0 -1
package/dist/commands/conformance-v3.js.map +0 -1
package/dist/commands/ledger-v4.js.map +0 -1
package/dist/tsconfig.tsbuildinfo +0 -1
/package/dist/scripts/{wctv3 → wct}/holderWallet +0 -0
/package/dist/scripts/{wctv3 → wct}/issueToHolder +0 -0
/package/dist/scripts/{wctv3 → wct}/pda1 +0 -0
/package/dist/scripts/{wctv3 → wct}/verifier +0 -0

package/dist/commands/compute.js CHANGED Viewed

@@ -1,271 +1,29 @@
-import { randomUUID, randomBytes, createHash, } from "node:crypto";
-import Multihash from "multihashes";
-import { ethers } from "ethers";
-import { base64url, calculateJwkThumbprint } from "jose";
 import { util } from "@cef-ebsi/ebsi-did-resolver";
-import Joi from "joi";
-import { decodeJWT } from "did-jwt";
 import { ValidationError, verifyCredentialJwt, } from "@cef-ebsi/verifiable-credential";
 import { verifyPresentationJwt, } from "@cef-ebsi/verifiable-presentation";
 import { EbsiWallet } from "@cef-ebsi/wallet-lib";
-import { formatEthersUnsignedTransaction, removePrefix0x, yellow, red, computeSchemaId, multibaseEncode, encodePublicKey, encodePrivateKey, } from "../utils/index.js";
-import { ledgerGetTransaction, ledgerGetTransactionReceipt, } from "./ledger-v4.js";
-export function getUserPin(did) {
-    return createHash("sha256")
-        .update(did)
-        .digest()
-        .slice(-4)
-        .map((byte) => byte % 10)
-        .reduce((acc, digit) => `${acc}${digit}`, "");
-}
-export async function computeVerifyVcJwt(inputs, context) {
-    const [vcJwt, options, expectedResult] = inputs;
-    const ebsiEnvConfig = {
-        hosts: [context.config.domain.replace(/^https?:\/\//, "")],
-        scheme: "ebsi",
-        network: {
-            name: context.config.env,
-            isOptional: false,
-        },
-        services: {
-            "did-registry": context.config.api.did.version,
-            "trusted-issuers-registry": context.config.api.tir.version,
-            "trusted-policies-registry": context.config.api.tpr.version,
-            "trusted-schemas-registry": context.config.api.tsr.version,
-        },
-    };
-    try {
-        await verifyCredentialJwt(vcJwt, ebsiEnvConfig, options);
-        switch (expectedResult) {
-            case "expectRevoked": {
-                throw new Error("Credential is not revoked");
-            }
-            default:
-                return "Verifiable Credential is valid";
-        }
-    }
-    catch (error) {
-        if (expectedResult === "expectRevoked") {
-            if (error.message === "Credential is not revoked")
-                throw error;
-            if (error.message.includes("revoked")) {
-                return "Verifiable Credential is revoked";
-            }
-        }
-        throw error;
-    }
-}
-export async function computeVerifyVpJwt(inputs, context) {
-    const [vpJwt, audience, options] = inputs;
-    const ebsiEnvConfig = {
-        hosts: [context.config.domain.replace(/^https?:\/\//, "")],
-        scheme: "ebsi",
-        network: {
-            name: context.config.env,
-            isOptional: false,
-        },
-        services: {
-            "did-registry": context.config.api.did.version,
-            "trusted-issuers-registry": context.config.api.tir.version,
-            "trusted-policies-registry": context.config.api.tpr.version,
-            "trusted-schemas-registry": context.config.api.tsr.version,
-        },
-    };
-    await verifyPresentationJwt(vpJwt, audience, ebsiEnvConfig, options);
-    return "Verifiable Presentation is valid";
-}
-export function sha256(data) {
-    let hash = createHash("sha256");
-    if (data.startsWith("0x")) {
-        hash = hash.update(removePrefix0x(data), "hex");
-    }
-    else {
-        hash = hash.update(data, "utf8");
-    }
-    return hash.digest().toString("hex");
-}
-export function getProperties(input) {
-    return Object.keys(input)
-        .filter((key) => Number.isNaN(Number(key)))
-        .reduce((obj, key) => {
-        /* eslint-disable-next-line no-param-reassign */
-        obj[key] = input[key];
-        return obj;
-    }, {});
-}
-export function getApiByContractId(contractId, context) {
-    const apiName = Object.keys(context.config.api).find((a) => {
-        const api = context.config.api[a];
-        return (api.contract &&
-            contractId.toLowerCase() === api.contract.address.toLowerCase());
-    });
-    if (!apiName)
-        throw new Error(`cannot get API with address ${contractId}`);
-    return context.config.api[apiName];
-}
-export function decodeLog(log, context) {
-    const api = getApiByContractId(log.address, context);
-    const logDecoded = api.contract.interface.parseLog(log);
-    const { name, signature, topic, args: argsWithArray } = logDecoded;
-    const args = getProperties(argsWithArray);
-    return { name, signature, topic, args };
-}
-export async function decodeLogs(input, context) {
-    if (!input)
-        throw new Error("Invalid logs: no input provided");
-    let receipt;
-    let logs;
-    if (typeof input === "string") {
-        receipt = await ledgerGetTransactionReceipt([input], false, context);
-    }
-    if (input.receipt) {
-        receipt = input.receipt;
-    }
-    if (input.logs) {
-        receipt = input;
-    }
-    if (receipt) {
-        if (!Array.isArray(receipt.logs)) {
-            throw new Error("Invalid logs: The input must be a transaction hash, a transaction receipt, or an array of logs");
-        }
-        logs = receipt.logs;
-    }
-    else {
-        if (!Array.isArray(input)) {
-            throw new Error("Invalid logs: The input must be a transaction hash, a transaction receipt, or an array of logs");
-        }
-        logs = input;
-    }
-    return logs.map((log) => decodeLog(log, context));
-}
-export async function decodeTransaction(tx, context) {
-    let txData;
-    if (typeof tx === "string") {
-        txData = (await ledgerGetTransaction([tx], false, context));
-    }
-    else {
-        txData = tx;
-    }
-    if (!txData.data && !txData.input) {
-        throw new Error("Invalid transaction: There is no input or data");
-    }
-    const api = getApiByContractId(txData.to, context);
-    const { args, functionFragment } = api.contract.interface.parseTransaction({
-        data: (txData.data || txData.input),
-    });
-    return { name: functionFragment.name, args: getProperties(args) };
-}
+import { decodeJWT } from "did-jwt";
+import { ethers } from "ethers";
+import Joi from "joi";
+import { base64url, calculateJwkThumbprint } from "jose";
+import Multihash from "multihashes";
+import { createHash, randomBytes, randomUUID, } from "node:crypto";
+import { computeSchemaId, encodePrivateKey, encodePublicKey, formatEthersUnsignedTransaction, JoiHexadecimal, multibaseEncode, prefixWith0x, red, removePrefix0x, yellow, } from "../utils/index.js";
+import { ledgerGetTransaction, ledgerGetTransactionReceipt } from "./ledger.js";
 export async function compute(method, inputs, context) {
     const { client } = context;
     switch (method) {
-        case "signTransaction": {
-            const unsignedTransaction = inputs[0];
-            const uTx = formatEthersUnsignedTransaction(JSON.parse(JSON.stringify(unsignedTransaction)));
-            const sgnTx = await client.ethWallet.signTransaction(uTx);
-            yellow(sgnTx);
-            return sgnTx;
-        }
-        case "createVpJwt": {
-            const inputVerifiableCredential = inputs[0];
-            const payloadVp = inputs[1];
-            const payloadJwt = inputs[2];
-            const alg = inputs[3] || "ES256K";
-            const verifiableCredential = typeof inputVerifiableCredential === "string"
-                ? [inputVerifiableCredential]
-                : inputVerifiableCredential;
-            // NOTE: We cannot use @cef-ebsi/verifiable-presentation library
-            // because it requires the private key and the CLI tool
-            // now supports Hardware Wallets, which do not expose private keys.
-            const now = Math.floor(Date.now() / 1000);
-            const jti = `urn:did:${randomUUID()}`;
-            const payload = {
-                iat: now,
-                jti,
-                nbf: now - 60, // 1 minute in the past
-                exp: now + 120, // 2 minutes in the future
-                sub: client.did,
-                iss: client.did,
-                vp: {
-                    "@context": ["https://www.w3.org/2018/credentials/v1"],
-                    id: jti,
-                    type: ["VerifiablePresentation"],
-                    holder: client.did,
-                    verifiableCredential,
-                    ...payloadVp,
-                },
-                aud: "any",
-                nonce: randomUUID(),
-                ...payloadJwt,
-            };
-            const vp = await client.signJWT(payload, {}, alg);
-            yellow(vp);
-            return vp;
-        }
-        case "createVcJwt": {
-            const payloadVc = inputs[0];
-            const payloadJwt = inputs[1];
-            const alg = (inputs[2] || "ES256K");
-            Joi.assert(alg, Joi.string().valid("ES256K", "ES256", "RS256", "EdDSA").required());
-            const iat = Math.floor(Date.now() / 1000) - 10;
-            const exp = iat + 5 * 365 * 24 * 3600;
-            const issuanceDate = `${new Date(iat * 1000)
-                .toISOString()
-                .slice(0, -5)}Z`;
-            const expirationDate = `${new Date(exp * 1000)
-                .toISOString()
-                .slice(0, -5)}Z`;
-            const jti = payloadVc.id || `urn:uuid:${randomUUID()}`;
-            const sub = payloadVc.credentialSubject?.id;
-            const payload = {
-                iat,
-                jti,
-                nbf: iat,
-                exp,
-                sub,
-                iss: client.did,
-                vc: {
-                    "@context": ["https://www.w3.org/2018/credentials/v1"],
-                    id: jti,
-                    type: ["VerifiableCredential"],
-                    issuer: client.did,
-                    issuanceDate,
-                    issued: issuanceDate,
-                    validFrom: issuanceDate,
-                    expirationDate,
-                    ...payloadVc,
-                },
-                ...payloadJwt,
-            };
-            const vc = await client.signJWT(payload, {}, alg);
-            yellow(vc);
-            return vc;
-        }
-        case "signJwt": {
-            const [payload, alg, headers] = inputs;
-            const jwt = await client.signJWT(payload, headers, alg);
-            yellow(jwt);
-            return jwt;
-        }
-        case "wait": {
-            const [seconds] = inputs;
-            const milliseconds = Math.round(Number(seconds) * 1000);
-            console.log(`waiting ${milliseconds / 1000} seconds`);
-            await new Promise((r) => {
-                setTimeout(r, milliseconds);
-            });
-            return 0;
-        }
-        case "userPin": {
-            const [did] = inputs;
-            const userPin = getUserPin(did);
-            yellow(userPin);
-            return userPin;
-        }
-        case "schemaId": {
-            const [schema, base] = inputs;
-            const schemaId = await computeSchemaId(schema, base);
-            yellow(schemaId);
-            return schemaId;
+        case "address": {
+            const [hexOrJwk] = inputs;
+            const publicKeyHex = typeof hexOrJwk === "string"
+                ? hexOrJwk
+                : encodePublicKey({
+                    format: "hex",
+                    key: hexOrJwk,
+                });
+            const address = ethers.utils.computeAddress(publicKeyHex);
+            yellow(address);
+            return address;
         }
         case "checkStatusList2021CredentialSchema": {
             const [credential] = inputs;
@@ -279,24 +37,24 @@ export async function compute(method, inputs, context) {
                         .required())
                         .items(Joi.string().uri())
                         .required(),
-                    type: Joi.array()
-                        .ordered(
-                    // First item must be "VerifiableCredential"
-                    Joi.string().valid("VerifiableCredential").required())
-                        .items(
-                    // "StatusList2021Credential" must be present
-                    Joi.string().valid("StatusList2021Credential").required(), Joi.string())
-                        .required(),
                     credentialSubject: Joi.object({
+                        encodedList: Joi.string().required(),
                         id: Joi.string().uri().required(),
-                        type: Joi.string().valid("StatusList2021").required(),
                         statusPurpose: Joi.string()
                             .valid("revocation", "suspension")
                             .required(),
-                        encodedList: Joi.string().required(),
+                        type: Joi.string().valid("StatusList2021").required(),
                     })
                         .unknown(true)
                         .required(),
+                    type: Joi.array()
+                        .ordered(
+                    // First item must be "VerifiableCredential"
+                    Joi.string().valid("VerifiableCredential").required())
+                        .items(
+                    // "StatusList2021Credential" must be present
+                    Joi.string().valid("StatusList2021Credential").required(), Joi.string())
+                        .required(),
                 })
                     // Allow additional properties
                     .unknown(true));
@@ -346,58 +104,80 @@ export async function compute(method, inputs, context) {
             yellow(did);
             return did;
         }
-        case "sha256": {
-            const [data] = inputs;
-            if (typeof data === "object") {
-                return sha256(JSON.stringify(data));
-            }
-            return sha256(data);
-        }
-        case "decodeJWT": {
-            const jwt = inputs[0];
-            Joi.assert(jwt, Joi.string());
-            const decoded = decodeJWT(jwt);
-            yellow(decoded);
-            return decoded;
-        }
-        case "encodePublicKey": {
-            const [key, options] = inputs;
-            Joi.assert(options, Joi.object({
-                format: Joi.string().valid("jwk", "hex", "pem"),
-                alg: Joi.string()
-                    .valid("ES256K", "ES256", "RS256", "EdDSA")
-                    .optional(),
-            }));
-            const result = encodePublicKey({ key, ...options });
-            yellow(result);
-            return result;
-        }
-        case "encodePrivateKey": {
-            const [key, options] = inputs;
-            Joi.assert(options, Joi.object({
-                format: Joi.string().valid("jwk", "hex", "pem"),
-                alg: Joi.string()
-                    .valid("ES256K", "ES256", "RS256", "EdDSA")
-                    .optional(),
-                type: Joi.string().valid("pkcs1", "pkcs8", "sec1", "spki").optional(),
-            }));
-            const result = encodePrivateKey({ key, ...options });
-            yellow(result);
-            return result;
-        }
-        case "encodeBase64": {
-            const dec = inputs[0];
-            Joi.assert(dec, Joi.string());
-            const encoded = Buffer.from(removePrefix0x(dec), "hex").toString("base64");
-            yellow(encoded);
-            return encoded;
+        case "createVcJwt": {
+            const payloadVc = inputs[0];
+            const payloadJwt = inputs[1];
+            const alg = (inputs[2] || "ES256K");
+            Joi.assert(alg, Joi.string().valid("ES256K", "ES256", "RS256", "EdDSA").required());
+            const iat = Math.floor(Date.now() / 1000) - 10;
+            const exp = iat + 5 * 365 * 24 * 3600;
+            const issuanceDate = `${new Date(iat * 1000)
+                .toISOString()
+                .slice(0, -5)}Z`;
+            const expirationDate = `${new Date(exp * 1000)
+                .toISOString()
+                .slice(0, -5)}Z`;
+            const jti = payloadVc.id || `urn:uuid:${randomUUID()}`;
+            const sub = payloadVc.credentialSubject?.id;
+            const payload = {
+                exp,
+                iat,
+                iss: client.did,
+                jti,
+                nbf: iat,
+                sub,
+                vc: {
+                    "@context": ["https://www.w3.org/2018/credentials/v1"],
+                    expirationDate,
+                    id: jti,
+                    issuanceDate,
+                    issued: issuanceDate,
+                    issuer: client.did,
+                    type: ["VerifiableCredential"],
+                    validFrom: issuanceDate,
+                    ...payloadVc,
+                },
+                ...payloadJwt,
+            };
+            const vc = await client.signJWT(payload, {}, alg);
+            yellow(vc);
+            return vc;
         }
-        case "encodeBase64url": {
-            const dec = inputs[0];
-            Joi.assert(dec, Joi.string());
-            const encoded = base64url.encode(Buffer.from(removePrefix0x(dec), "hex"));
-            yellow(encoded);
-            return encoded;
+        case "createVpJwt": {
+            const inputVerifiableCredential = inputs[0];
+            const payloadVp = inputs[1];
+            const payloadJwt = inputs[2];
+            const alg = inputs[3] || "ES256K";
+            const verifiableCredential = typeof inputVerifiableCredential === "string"
+                ? [inputVerifiableCredential]
+                : inputVerifiableCredential;
+            // NOTE: We cannot use @cef-ebsi/verifiable-presentation library
+            // because it requires the private key and the CLI tool
+            // now supports Hardware Wallets, which do not expose private keys.
+            const now = Math.floor(Date.now() / 1000);
+            const jti = `urn:did:${randomUUID()}`;
+            const payload = {
+                aud: "any",
+                exp: now + 120, // 2 minutes in the future
+                iat: now,
+                iss: client.did,
+                jti,
+                nbf: now - 60, // 1 minute in the past
+                nonce: randomUUID(),
+                sub: client.did,
+                vp: {
+                    "@context": ["https://www.w3.org/2018/credentials/v1"],
+                    holder: client.did,
+                    id: jti,
+                    type: ["VerifiablePresentation"],
+                    verifiableCredential,
+                    ...payloadVp,
+                },
+                ...payloadJwt,
+            };
+            const vp = await client.signJWT(payload, {}, alg);
+            yellow(vp);
+            return vp;
         }
         case "decodeBase64": {
             const enc = inputs[0];
@@ -424,6 +204,28 @@ export async function compute(method, inputs, context) {
             yellow(decoded);
             return decoded;
         }
+        case "decodeContractData": {
+            const [types, dataInput, hasFn] = inputs;
+            Joi.assert(types, Joi.array().items(Joi.string()));
+            Joi.assert(dataInput, JoiHexadecimal);
+            Joi.assert(hasFn, Joi.string().valid("true", "false").optional());
+            let fn;
+            let data;
+            if (hasFn === "true") {
+                fn = `0x${removePrefix0x(dataInput).slice(0, 8)}`;
+                data = `0x${removePrefix0x(dataInput).slice(8)}`;
+            }
+            else {
+                data = dataInput;
+            }
+            const decoded = ethers.utils.defaultAbiCoder.decode(types, data);
+            const result = {
+                data: decoded,
+                ...(fn && { functionSig: fn }),
+            };
+            yellow(result);
+            return result;
+        }
         case "decodeHex": {
             const enc = inputs[0];
             Joi.assert(enc, Joi.string());
@@ -431,26 +233,102 @@ export async function compute(method, inputs, context) {
             yellow(decoded);
             return decoded;
         }
+        case "decodeJWT": {
+            const jwt = inputs[0];
+            Joi.assert(jwt, Joi.string());
+            const decoded = decodeJWT(jwt);
+            yellow(decoded);
+            return decoded;
+        }
         case "decodeLogs": {
             const logs = inputs[0];
             const logsDecoded = await decodeLogs(logs, context);
             yellow(logsDecoded);
             return logsDecoded;
         }
-        case "decodeTransaction": {
-            const tx = inputs[0];
-            const txDecoded = await decodeTransaction(tx, context);
-            yellow(txDecoded);
-            return txDecoded;
+        case "decodeTransaction": {
+            const tx = inputs[0];
+            const txDecoded = await decodeTransaction(tx, context);
+            yellow(txDecoded);
+            return txDecoded;
+        }
+        case "encodeBase64": {
+            const dec = inputs[0];
+            Joi.assert(dec, Joi.string());
+            const encoded = Buffer.from(removePrefix0x(dec), "hex").toString("base64");
+            yellow(encoded);
+            return encoded;
+        }
+        case "encodeBase64url": {
+            const dec = inputs[0];
+            Joi.assert(dec, Joi.string());
+            const encoded = base64url.encode(Buffer.from(removePrefix0x(dec), "hex"));
+            yellow(encoded);
+            return encoded;
+        }
+        case "encodeContractData": {
+            const [types, data, fn] = inputs;
+            Joi.assert(data, Joi.array().items(Joi.string()));
+            Joi.assert(types, Joi.array().items(Joi.string()));
+            Joi.assert(fn, Joi.string().optional());
+            const encoded = ethers.utils.defaultAbiCoder.encode(types, data);
+            let result = encoded;
+            if (fn) {
+                // get the function hash
+                const fnHash = /^(?:0x)?[0-9a-fA-F]+$/.test(fn)
+                    ? fn
+                    : ethers.utils.keccak256(Buffer.from(fn)).slice(0, 10);
+                // prefix the function hash with the encoded data
+                result = `${prefixWith0x(fnHash)}${encoded.slice(2)}`;
+            }
+            yellow(result);
+            return result;
+        }
+        case "encodePrivateKey": {
+            const [key, options] = inputs;
+            Joi.assert(options, Joi.object({
+                alg: Joi.string()
+                    .valid("ES256K", "ES256", "RS256", "EdDSA")
+                    .optional(),
+                format: Joi.string().valid("jwk", "hex", "pem"),
+                type: Joi.string().valid("pkcs1", "pkcs8", "sec1", "spki").optional(),
+            }));
+            const result = encodePrivateKey({ key, ...options });
+            yellow(result);
+            return result;
+        }
+        case "encodePublicKey": {
+            const [key, options] = inputs;
+            Joi.assert(options, Joi.object({
+                alg: Joi.string()
+                    .valid("ES256K", "ES256", "RS256", "EdDSA")
+                    .optional(),
+                format: Joi.string().valid("jwk", "hex", "pem"),
+            }));
+            const result = encodePublicKey({ key, ...options });
+            yellow(result);
+            return result;
+        }
+        case "epochtime": {
+            let result;
+            if (!inputs[0])
+                result = Math.round(Date.now() / 1000);
+            else if (typeof inputs[0] === "string")
+                result = Math.round(new Date(inputs[0]).getTime() / 1000);
+            else
+                result = new Date(inputs[0] * 1000).toISOString();
+            yellow(result);
+            return result;
+        }
+        case "length": {
+            const [array] = inputs;
+            Joi.assert(array, Joi.array());
+            const len = array.length;
+            yellow(len);
+            return len;
         }
-        case "timestampId": {
-            const hash = inputs[0];
-            Joi.assert(hash, Joi.string());
-            const bufferSha256 = Buffer.from(sha256(hash), "hex");
-            const multihash = Multihash.encode(bufferSha256, "sha2-256", 32);
-            const timestampId = `u${base64url.encode(multihash)}`;
-            yellow(timestampId);
-            return timestampId;
+        case "randomID": {
+            return randomBytes(32).toString("hex");
         }
         case "recordId": {
             const [address, blockNumber, hashValue] = inputs;
@@ -461,37 +339,33 @@ export async function compute(method, inputs, context) {
             yellow(recordId);
             return recordId;
         }
-        case "randomID": {
-            return randomBytes(32).toString("hex");
+        case "schemaId": {
+            const [schema, base] = inputs;
+            const schemaId = await computeSchemaId(schema, base);
+            yellow(schemaId);
+            return schemaId;
         }
-        case "length": {
-            const [array] = inputs;
-            Joi.assert(array, Joi.array());
-            const len = array.length;
-            yellow(len);
-            return len;
+        case "sha256": {
+            const [data] = inputs;
+            if (typeof data === "object") {
+                return sha256(JSON.stringify(data));
+            }
+            return sha256(data);
         }
-        case "epochtime": {
-            let result;
-            if (!inputs[0])
-                result = Math.round(Date.now() / 1000);
-            else if (typeof inputs[0] === "string")
-                result = Math.round(new Date(inputs[0]).getTime() / 1000);
-            else
-                result = new Date(inputs[0] * 1000).toISOString();
-            yellow(result);
-            return result;
+        case "signJwt": {
+            const [payload, alg, headers] = inputs;
+            const jwt = await client.signJWT(payload, headers, alg);
+            yellow(jwt);
+            return jwt;
         }
-        case "subaccountDid": {
-            const [did] = inputs;
-            Joi.assert(did, Joi.string());
-            const subaccountMsiBytes = createHash("sha256")
-                .update(did, "utf8")
-                .digest()
-                .slice(0, 16);
-            const subaccount = util.createDid(subaccountMsiBytes);
-            yellow(subaccount);
-            return subaccount;
+        case "signTransaction": {
+            const unsignedTransaction = inputs[0];
+            const uTx = formatEthersUnsignedTransaction(
+            // eslint-disable-next-line unicorn/prefer-structured-clone
+            JSON.parse(JSON.stringify(unsignedTransaction)));
+            const sgnTx = await client.ethWallet.signTransaction(uTx);
+            yellow(sgnTx);
+            return sgnTx;
         }
         case "statusListIndex": {
             const [did] = inputs;
@@ -500,46 +374,212 @@ export async function compute(method, inputs, context) {
                 .update(did, "utf8")
                 .digest()
                 .slice(0, 6)
-                .readUInt32BE() % 131072).toString();
+                .readUInt32BE() % 131_072).toString();
             yellow(statusListIndex);
             return statusListIndex;
         }
+        case "subaccountDid": {
+            const [did] = inputs;
+            Joi.assert(did, Joi.string());
+            const subaccountMsiBytes = createHash("sha256")
+                .update(did, "utf8")
+                .digest()
+                .slice(0, 16);
+            const subaccount = util.createDid(subaccountMsiBytes);
+            yellow(subaccount);
+            return subaccount;
+        }
         case "thumbprint": {
             const [hexOrJwk, alg] = inputs;
-            let publicKeyJwk;
-            if (typeof hexOrJwk === "string") {
-                publicKeyJwk = encodePublicKey({
-                    key: hexOrJwk,
-                    format: "jwk",
+            const publicKeyJwk = typeof hexOrJwk === "string"
+                ? encodePublicKey({
                     alg,
-                });
-            }
-            else {
-                publicKeyJwk = hexOrJwk;
-            }
+                    format: "jwk",
+                    key: hexOrJwk,
+                })
+                : hexOrJwk;
             const thumbprint = await calculateJwkThumbprint(publicKeyJwk, "sha256");
             yellow(thumbprint);
             return thumbprint;
         }
-        case "address": {
-            const [hexOrJwk] = inputs;
-            let publicKeyHex;
-            if (typeof hexOrJwk === "string") {
-                publicKeyHex = hexOrJwk;
+        case "timestampId": {
+            const hash = inputs[0];
+            Joi.assert(hash, Joi.string());
+            const bufferSha256 = Buffer.from(sha256(hash), "hex");
+            const multihash = Multihash.encode(bufferSha256, "sha2-256", 32);
+            const timestampId = `u${base64url.encode(multihash)}`;
+            yellow(timestampId);
+            return timestampId;
+        }
+        case "userPin": {
+            const [did] = inputs;
+            const userPin = getUserPin(did);
+            yellow(userPin);
+            return userPin;
+        }
+        case "wait": {
+            const [seconds] = inputs;
+            const milliseconds = Math.round(Number(seconds) * 1000);
+            console.log(`waiting ${milliseconds / 1000} seconds`);
+            await new Promise((r) => {
+                setTimeout(r, milliseconds);
+            });
+            return 0;
+        }
+        default: {
+            throw new Error(`Invalid method '${method}'`);
+        }
+    }
+}
+export async function computeVerifyVcJwt(inputs, context) {
+    const [vcJwt, options, expectedResult] = inputs;
+    const ebsiEnvConfig = {
+        hosts: [context.config.domain.replace(/^https?:\/\//, "")],
+        network: {
+            isOptional: false,
+            name: context.config.env,
+        },
+        scheme: "ebsi",
+        services: {
+            "did-registry": context.config.api.did.version,
+            "trusted-issuers-registry": context.config.api.tir.version,
+            "trusted-policies-registry": context.config.api.tpr.version,
+            "trusted-schemas-registry": context.config.api.tsr.version,
+        },
+    };
+    try {
+        await verifyCredentialJwt(vcJwt, ebsiEnvConfig, options);
+        switch (expectedResult) {
+            case "expectRevoked": {
+                throw new Error("Credential is not revoked");
             }
-            else {
-                publicKeyHex = encodePublicKey({
-                    key: hexOrJwk,
-                    format: "hex",
-                });
+            default: {
+                return "Verifiable Credential is valid";
             }
-            const address = ethers.utils.computeAddress(publicKeyHex);
-            yellow(address);
-            return address;
         }
-        default:
-            throw new Error(`Invalid method '${method}'`);
     }
+    catch (error) {
+        if (expectedResult === "expectRevoked") {
+            if (error.message === "Credential is not revoked")
+                throw error;
+            if (error.message.includes("revoked")) {
+                return "Verifiable Credential is revoked";
+            }
+        }
+        throw error;
+    }
+}
+export async function computeVerifyVpJwt(inputs, context) {
+    const [vpJwt, audience, options] = inputs;
+    const ebsiEnvConfig = {
+        hosts: [context.config.domain.replace(/^https?:\/\//, "")],
+        network: {
+            isOptional: false,
+            name: context.config.env,
+        },
+        scheme: "ebsi",
+        services: {
+            "did-registry": context.config.api.did.version,
+            "trusted-issuers-registry": context.config.api.tir.version,
+            "trusted-policies-registry": context.config.api.tpr.version,
+            "trusted-schemas-registry": context.config.api.tsr.version,
+        },
+    };
+    await verifyPresentationJwt(vpJwt, audience, ebsiEnvConfig, options);
+    return "Verifiable Presentation is valid";
+}
+export function decodeLog(log, context) {
+    const api = getApiByContractId(log.address, context);
+    const logDecoded = api.contract.interface.parseLog(log);
+    const { args: argsWithArray, name, signature, topic } = logDecoded;
+    const args = getProperties(argsWithArray);
+    return { args, name, signature, topic };
+}
+export async function decodeLogs(input, context) {
+    if (!input)
+        throw new Error("Invalid logs: no input provided");
+    let receipt;
+    let logs;
+    if (typeof input === "string") {
+        receipt = await ledgerGetTransactionReceipt([input], false, context);
+    }
+    if (input.receipt) {
+        receipt = input.receipt;
+    }
+    if (input.logs) {
+        receipt = input;
+    }
+    if (receipt) {
+        if (!Array.isArray(receipt.logs)) {
+            throw new TypeError("Invalid logs: The input must be a transaction hash, a transaction receipt, or an array of logs");
+        }
+        logs = receipt.logs;
+    }
+    else {
+        if (!Array.isArray(input)) {
+            throw new TypeError("Invalid logs: The input must be a transaction hash, a transaction receipt, or an array of logs");
+        }
+        logs = input;
+    }
+    return logs.map((log) => decodeLog(log, context));
+}
+export async function decodeTransaction(tx, context) {
+    let txData;
+    if (typeof tx === "string") {
+        txData =
+            tx.length <= 66
+                ? // it is a tx hash
+                    (await ledgerGetTransaction([tx], false, context))
+                : // it is a signed transaction
+                    ethers.utils.parseTransaction(tx);
+    }
+    else {
+        txData = tx;
+    }
+    if (!txData.data && !txData.input) {
+        throw new Error("Invalid transaction: There is no input or data");
+    }
+    const api = getApiByContractId(txData.to, context);
+    const { args, functionFragment } = api.contract.interface.parseTransaction({
+        data: (txData.data || txData.input),
+    });
+    return {
+        dataDecoded: { args: getProperties(args), name: functionFragment.name },
+        tx: txData,
+    };
+}
+export function getApiByContractId(contractId, context) {
+    const apiName = Object.keys(context.config.api).find((a) => {
+        const api = context.config.api[a];
+        return (api.contract &&
+            contractId.toLowerCase() === api.contract.address.toLowerCase());
+    });
+    if (!apiName)
+        throw new Error(`cannot get API with address ${contractId}`);
+    return context.config.api[apiName];
+}
+export function getProperties(input) {
+    return Object.keys(input)
+        .filter((key) => Number.isNaN(Number(key)))
+        .reduce((obj, key) => {
+        obj[key] = input[key];
+        return obj;
+    }, {});
+}
+export function getUserPin(did) {
+    return createHash("sha256")
+        .update(did)
+        .digest()
+        .slice(-4)
+        .map((byte) => byte % 10)
+        .reduce((acc, digit) => `${acc}${digit}`, "");
+}
+export function sha256(data) {
+    let hash = createHash("sha256");
+    hash = data.startsWith("0x")
+        ? hash.update(removePrefix0x(data), "hex")
+        : hash.update(data, "utf8");
+    return hash.digest().toString("hex");
 }
 export default compute;
 //# sourceMappingURL=compute.js.map