@credo-ts/indy-vdr 0.6.1-pr-2091-20241119140918 → 0.6.2-alpha-20251210145840

package/build/dids/IndyVdrIndyDidRegistrar.mjs

@@ -0,0 +1,290 @@
+import { IndyVdrError } from "../error/IndyVdrError.mjs";
+import "../error/index.mjs";
+import { endpointsAttribFromServices } from "./didSovUtil.mjs";
+import { createKeyAgreementKey, didDocDiff, indyDidDocumentFromDid, verificationPublicJwkForIndyDid } from "./didIndyUtil.mjs";
+import { IndyVdrPoolService } from "../pool/IndyVdrPoolService.mjs";
+import { parseIndyDid } from "@credo-ts/anoncreds";
+import { CredoError, DidCommV1Service, DidCommV2Service, DidDocumentRole, DidRecord, DidRepository, Hasher, IndyAgentService, Kms, NewDidCommV2Service, TypedArrayEncoder } from "@credo-ts/core";
+import { AttribRequest, CustomRequest, NymRequest } from "@hyperledger/indy-vdr-shared";
+
+//#region src/dids/IndyVdrIndyDidRegistrar.ts
+var IndyVdrIndyDidRegistrar = class {
+	constructor() {
+		this.supportedMethods = ["indy"];
+	}
+	didCreateActionResult({ namespace, didAction, did }) {
+		return {
+			jobId: did,
+			didDocumentMetadata: {},
+			didRegistrationMetadata: { didIndyNamespace: namespace },
+			didState: didAction
+		};
+	}
+	didCreateFailedResult({ reason }) {
+		return {
+			didDocumentMetadata: {},
+			didRegistrationMetadata: {},
+			didState: {
+				state: "failed",
+				reason
+			}
+		};
+	}
+	didCreateFinishedResult({ did, didDocument, namespace }) {
+		return {
+			didDocumentMetadata: {},
+			didRegistrationMetadata: { didIndyNamespace: namespace },
+			didState: {
+				state: "finished",
+				did,
+				didDocument
+			}
+		};
+	}
+	async parseInput(agentContext, options) {
+		if (options.options.endorsedTransaction) {
+			if (!options.did || typeof options.did !== "string") return {
+				status: "error",
+				reason: "If endorsedTransaction is provided, a DID must also be provided"
+			};
+			const { namespace, namespaceIdentifier: namespaceIdentifier$1 } = parseIndyDid(options.did);
+			const endorserNamespaceIdentifier$1 = JSON.parse(options.options.endorsedTransaction.nymRequest).identifier;
+			return {
+				status: "ok",
+				type: "endorsedTransaction",
+				endorsedTransaction: options.options.endorsedTransaction,
+				did: options.did,
+				namespace,
+				namespaceIdentifier: namespaceIdentifier$1,
+				endorserNamespaceIdentifier: endorserNamespaceIdentifier$1
+			};
+		}
+		const endorserDid = options.options.endorserDid;
+		const { namespace: endorserNamespace, namespaceIdentifier: endorserNamespaceIdentifier } = parseIndyDid(endorserDid);
+		const kms = agentContext.dependencyManager.resolve(Kms.KeyManagementApi);
+		const _verificationKey = options.options.keyId ? await kms.getPublicKey({ keyId: options.options.keyId }) : (await kms.createKey({ type: {
+			kty: "OKP",
+			crv: "Ed25519"
+		} })).publicJwk;
+		if (_verificationKey.kty !== "OKP" || _verificationKey.crv !== "Ed25519") return {
+			status: "error",
+			reason: `keyId must point to an Ed25519 key, but found ${Kms.getJwkHumanDescription(_verificationKey)}`
+		};
+		const verificationKey = Kms.PublicJwk.fromPublicJwk(_verificationKey);
+		const buffer = Hasher.hash(verificationKey.publicKey.publicKey, "sha-256");
+		const namespaceIdentifier = TypedArrayEncoder.toBase58(buffer.slice(0, 16));
+		return {
+			status: "ok",
+			type: "create",
+			did: `did:indy:${endorserNamespace}:${namespaceIdentifier}`,
+			verificationKey,
+			endorserDid: options.options.endorserDid,
+			alias: options.options.alias,
+			role: options.options.role,
+			services: options.options.services,
+			useEndpointAttrib: options.options.useEndpointAttrib,
+			namespaceIdentifier,
+			namespace: endorserNamespace,
+			endorserNamespaceIdentifier
+		};
+	}
+	async saveDidRecord(agentContext, did, didDocument, keys) {
+		const didRecord = new DidRecord({
+			did,
+			role: DidDocumentRole.Created,
+			didDocument,
+			keys
+		});
+		await agentContext.dependencyManager.resolve(DidRepository).save(agentContext, didRecord);
+	}
+	async getDidDocumentFromRecord(agentContext, did) {
+		const didRecord = await agentContext.dependencyManager.resolve(DidRepository).getSingleByQuery(agentContext, {
+			did,
+			role: DidDocumentRole.Created
+		});
+		if (!didRecord.didDocument) throw new CredoError(`Did record for did '${did}' has no did document.`);
+		return didRecord.didDocument;
+	}
+	createDidDocument(did, verificationKey, services, useEndpointAttrib) {
+		const verificationKeyBase58 = TypedArrayEncoder.toBase58(verificationKey.publicKey.publicKey);
+		const didDocumentBuilder = indyDidDocumentFromDid(did, verificationKeyBase58);
+		let diddocContent;
+		if (services) {
+			for (const item of services) {
+				const prependDidIfNotPresent = (id) => {
+					return id.startsWith("#") ? `${did}${id}` : id;
+				};
+				item.id = prependDidIfNotPresent(item.id);
+				if (item instanceof DidCommV1Service) item.recipientKeys = item.recipientKeys.map(prependDidIfNotPresent);
+				didDocumentBuilder.addService(item);
+			}
+			const commTypes = [
+				IndyAgentService.type,
+				DidCommV1Service.type,
+				NewDidCommV2Service.type,
+				DidCommV2Service.type
+			];
+			const serviceTypes = new Set(services.map((item) => item.type));
+			const keyAgreementId = `${did}#key-agreement-1`;
+			if (commTypes.some((type) => serviceTypes.has(type))) didDocumentBuilder.addContext("https://w3id.org/security/suites/x25519-2019/v1").addVerificationMethod({
+				controller: did,
+				id: keyAgreementId,
+				publicKeyBase58: createKeyAgreementKey(verificationKeyBase58),
+				type: "X25519KeyAgreementKey2019"
+			}).addKeyAgreement(keyAgreementId);
+			if (serviceTypes.has(NewDidCommV2Service.type) || serviceTypes.has(DidCommV2Service.type)) didDocumentBuilder.addContext("https://didcomm.org/messaging/contexts/v2");
+			if (!useEndpointAttrib) diddocContent = didDocDiff(didDocumentBuilder.build().toJSON(), indyDidDocumentFromDid(did, verificationKeyBase58).build().toJSON());
+		}
+		const didDocument = didDocumentBuilder.build();
+		return {
+			diddocContent,
+			didDocument
+		};
+	}
+	async create(agentContext, options) {
+		try {
+			const res = await this.parseInput(agentContext, options);
+			if (res.status === "error") return this.didCreateFailedResult({ reason: res.reason });
+			const did = res.did;
+			const pool = agentContext.dependencyManager.resolve(IndyVdrPoolService).getPoolForNamespace(res.namespace);
+			let nymRequest;
+			let didDocument;
+			let attribRequest;
+			let verificationKey;
+			if (res.type === "endorsedTransaction") {
+				const { nymRequest: _nymRequest, attribRequest: _attribRequest } = res.endorsedTransaction;
+				nymRequest = new CustomRequest({ customRequest: _nymRequest });
+				attribRequest = _attribRequest ? new CustomRequest({ customRequest: _attribRequest }) : void 0;
+			} else {
+				const { services, useEndpointAttrib, alias, endorserNamespaceIdentifier, namespaceIdentifier, did: did$1, role, endorserDid, namespace } = res;
+				verificationKey = res.verificationKey;
+				const { didDocument: _didDocument, diddocContent } = this.createDidDocument(did$1, verificationKey, services, useEndpointAttrib);
+				didDocument = _didDocument;
+				const didRegisterSigningKey = options.options.endorserMode === "internal" ? await verificationPublicJwkForIndyDid(agentContext, options.options.endorserDid) : void 0;
+				nymRequest = await this.createRegisterDidWriteRequest({
+					agentContext,
+					pool,
+					signingKey: didRegisterSigningKey,
+					submitterNamespaceIdentifier: endorserNamespaceIdentifier,
+					namespaceIdentifier,
+					verificationKey,
+					alias,
+					diddocContent,
+					role
+				});
+				if (services && useEndpointAttrib) {
+					const endpoints = endpointsAttribFromServices(services);
+					attribRequest = await this.createSetDidEndpointsRequest({
+						agentContext,
+						pool,
+						signingKey: verificationKey,
+						endorserDid: options.options.endorserMode === "external" ? endorserDid : void 0,
+						unqualifiedDid: namespaceIdentifier,
+						endpoints
+					});
+				}
+				if (options.options.endorserMode === "external") {
+					await this.saveDidRecord(agentContext, did$1, didDocument, [{
+						didDocumentRelativeKeyId: "#verkey",
+						kmsKeyId: verificationKey.keyId
+					}]);
+					const didAction = {
+						state: "action",
+						action: "endorseIndyTransaction",
+						endorserDid,
+						nymRequest: nymRequest.body,
+						attribRequest: attribRequest?.body,
+						did: did$1
+					};
+					return this.didCreateActionResult({
+						namespace,
+						didAction,
+						did: did$1
+					});
+				}
+			}
+			await this.registerPublicDid(agentContext, pool, nymRequest);
+			if (attribRequest) await this.setEndpointsForDid(agentContext, pool, attribRequest);
+			if (verificationKey && didDocument) await this.saveDidRecord(agentContext, did, didDocument, [{
+				didDocumentRelativeKeyId: "#verkey",
+				kmsKeyId: verificationKey.keyId
+			}]);
+			didDocument = didDocument ?? await this.getDidDocumentFromRecord(agentContext, did);
+			return this.didCreateFinishedResult({
+				did,
+				didDocument,
+				namespace: res.namespace
+			});
+		} catch (error) {
+			agentContext.config.logger.error("Error creating indy did", { error });
+			return this.didCreateFailedResult({ reason: `unknownError: ${error.message}` });
+		}
+	}
+	async update() {
+		return {
+			didDocumentMetadata: {},
+			didRegistrationMetadata: {},
+			didState: {
+				state: "failed",
+				reason: "notImplemented: updating did:indy not implemented yet"
+			}
+		};
+	}
+	async deactivate() {
+		return {
+			didDocumentMetadata: {},
+			didRegistrationMetadata: {},
+			didState: {
+				state: "failed",
+				reason: "notImplemented: deactivating did:indy not implemented yet"
+			}
+		};
+	}
+	async createRegisterDidWriteRequest(options) {
+		const { agentContext, pool, submitterNamespaceIdentifier, namespaceIdentifier, verificationKey, alias, signingKey, role } = options;
+		if (options.diddocContent) throw new IndyVdrError("diddocContent is not yet supported");
+		const request = new NymRequest({
+			submitterDid: submitterNamespaceIdentifier,
+			dest: namespaceIdentifier,
+			verkey: TypedArrayEncoder.toBase58(verificationKey.publicKey.publicKey),
+			alias,
+			role
+		});
+		if (!signingKey) return request;
+		return await pool.prepareWriteRequest(agentContext, request, signingKey, void 0);
+	}
+	async registerPublicDid(agentContext, pool, writeRequest) {
+		const body = writeRequest.body;
+		try {
+			const response = await pool.submitRequest(writeRequest);
+			agentContext.config.logger.debug(`Register public did on ledger '${pool.indyNamespace}'\nRequest: ${body}}`, { response });
+			return;
+		} catch (error) {
+			agentContext.config.logger.error(`Error Registering public did on ledger '${pool.indyNamespace}'\nRequest: ${body}}`);
+			throw error;
+		}
+	}
+	async createSetDidEndpointsRequest(options) {
+		const { agentContext, pool, endpoints, unqualifiedDid, signingKey, endorserDid } = options;
+		const request = new AttribRequest({
+			submitterDid: unqualifiedDid,
+			targetDid: unqualifiedDid,
+			raw: JSON.stringify({ endpoint: endpoints })
+		});
+		return await pool.prepareWriteRequest(agentContext, request, signingKey, endorserDid);
+	}
+	async setEndpointsForDid(agentContext, pool, writeRequest) {
+		const body = writeRequest.body;
+		try {
+			const response = await pool.submitRequest(writeRequest);
+			agentContext.config.logger.debug(`Successfully set endpoints for did on ledger '${pool.indyNamespace}'.\nRequest: ${body}}`, { response });
+		} catch (error) {
+			agentContext.config.logger.error(`Error setting endpoints for did on ledger '${pool.indyNamespace}'.\nRequest: ${body}}`);
+			throw new IndyVdrError(error);
+		}
+	}
+};
+
+//#endregion
+export { IndyVdrIndyDidRegistrar };
+//# sourceMappingURL=IndyVdrIndyDidRegistrar.mjs.map

package/build/dids/IndyVdrIndyDidRegistrar.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"IndyVdrIndyDidRegistrar.mjs","names":["endorserNamespaceIdentifier","diddocContent: Record<string, unknown> | undefined","nymRequest: NymRequest | CustomRequest","didDocument: DidDocument | undefined","attribRequest: AttribRequest | CustomRequest | undefined","verificationKey: Kms.PublicJwk<Kms.Ed25519PublicJwk> | undefined","did","didAction: EndorseDidTxAction"],"sources":["../../src/dids/IndyVdrIndyDidRegistrar.ts"],"sourcesContent":["import { parseIndyDid } from '@credo-ts/anoncreds'\nimport type {\n  AgentContext,\n  DidCreateOptions,\n  DidCreateResult,\n  DidDeactivateResult,\n  DidDocument,\n  DidDocumentKey,\n  DidDocumentService,\n  DidOperationStateActionBase,\n  DidRegistrar,\n  DidUpdateResult,\n} from '@credo-ts/core'\nimport {\n  CredoError,\n  DidCommV1Service,\n  DidCommV2Service,\n  DidDocumentRole,\n  DidRecord,\n  DidRepository,\n  Hasher,\n  IndyAgentService,\n  Kms,\n  NewDidCommV2Service,\n  TypedArrayEncoder,\n} from '@credo-ts/core'\nimport type { IndyVdrRequest } from '@hyperledger/indy-vdr-shared'\nimport { AttribRequest, CustomRequest, NymRequest } from '@hyperledger/indy-vdr-shared'\nimport { IndyVdrError } from '../error'\nimport type { IndyVdrPool } from '../pool'\nimport { IndyVdrPoolService } from '../pool/IndyVdrPoolService'\nimport {\n  createKeyAgreementKey,\n  didDocDiff,\n  indyDidDocumentFromDid,\n  verificationPublicJwkForIndyDid,\n} from './didIndyUtil'\nimport type { IndyEndpointAttrib } from './didSovUtil'\nimport { endpointsAttribFromServices } from './didSovUtil'\n\nexport class IndyVdrIndyDidRegistrar implements DidRegistrar {\n  public readonly supportedMethods = ['indy']\n\n  private didCreateActionResult({\n    namespace,\n    didAction,\n    did,\n  }: {\n    namespace: string\n    didAction: EndorseDidTxAction\n    did: string\n  }): IndyVdrDidCreateResult {\n    return {\n      jobId: did,\n      didDocumentMetadata: {},\n      didRegistrationMetadata: {\n        didIndyNamespace: namespace,\n      },\n      didState: didAction,\n    }\n  }\n\n  private didCreateFailedResult({ reason }: { reason: string }): IndyVdrDidCreateResult {\n    return {\n      didDocumentMetadata: {},\n      didRegistrationMetadata: {},\n      didState: {\n        state: 'failed',\n        reason: reason,\n      },\n    }\n  }\n\n  private didCreateFinishedResult({\n    did,\n    didDocument,\n    namespace,\n  }: {\n    did: string\n    didDocument: DidDocument\n    namespace: string\n  }): IndyVdrDidCreateResult {\n    return {\n      didDocumentMetadata: {},\n      didRegistrationMetadata: {\n        didIndyNamespace: namespace,\n      },\n      didState: {\n        state: 'finished',\n        did,\n        didDocument,\n      },\n    }\n  }\n\n  public async parseInput(agentContext: AgentContext, options: IndyVdrDidCreateOptions): Promise<ParseInputResult> {\n    if (options.options.endorsedTransaction) {\n      if (!options.did || typeof options.did !== 'string') {\n        return {\n          status: 'error',\n          reason: 'If endorsedTransaction is provided, a DID must also be provided',\n        }\n      }\n      const { namespace, namespaceIdentifier } = parseIndyDid(options.did)\n      // endorser did from the transaction\n      const endorserNamespaceIdentifier = JSON.parse(options.options.endorsedTransaction.nymRequest).identifier\n\n      return {\n        status: 'ok',\n        type: 'endorsedTransaction',\n        endorsedTransaction: options.options.endorsedTransaction,\n        did: options.did,\n        namespace,\n        namespaceIdentifier,\n        endorserNamespaceIdentifier,\n      }\n    }\n\n    const endorserDid = options.options.endorserDid\n    const { namespace: endorserNamespace, namespaceIdentifier: endorserNamespaceIdentifier } = parseIndyDid(endorserDid)\n\n    const kms = agentContext.dependencyManager.resolve(Kms.KeyManagementApi)\n\n    const _verificationKey = options.options.keyId\n      ? await kms.getPublicKey({ keyId: options.options.keyId })\n      : (\n          await kms.createKey({\n            type: {\n              kty: 'OKP',\n              crv: 'Ed25519',\n            },\n          })\n        ).publicJwk\n\n    if (_verificationKey.kty !== 'OKP' || _verificationKey.crv !== 'Ed25519') {\n      return {\n        status: 'error',\n        reason: `keyId must point to an Ed25519 key, but found ${Kms.getJwkHumanDescription(_verificationKey)}`,\n      }\n    }\n\n    const verificationKey = Kms.PublicJwk.fromPublicJwk(_verificationKey) as Kms.PublicJwk<Kms.Ed25519PublicJwk>\n\n    // Create a new key and calculate did according to the rules for indy did method\n    const buffer = Hasher.hash(verificationKey.publicKey.publicKey, 'sha-256')\n\n    const namespaceIdentifier = TypedArrayEncoder.toBase58(buffer.slice(0, 16))\n    const did = `did:indy:${endorserNamespace}:${namespaceIdentifier}`\n\n    return {\n      status: 'ok',\n      type: 'create',\n      did,\n      verificationKey,\n      endorserDid: options.options.endorserDid,\n      alias: options.options.alias,\n      role: options.options.role,\n      services: options.options.services,\n      useEndpointAttrib: options.options.useEndpointAttrib,\n      namespaceIdentifier,\n      namespace: endorserNamespace,\n      endorserNamespaceIdentifier,\n    }\n  }\n\n  public async saveDidRecord(\n    agentContext: AgentContext,\n    did: string,\n    didDocument: DidDocument,\n    keys: DidDocumentKey[]\n  ): Promise<void> {\n    // Save the did so we know we created it and can issue with it\n    const didRecord = new DidRecord({\n      did,\n      role: DidDocumentRole.Created,\n      didDocument,\n      keys,\n    })\n\n    const didRepository = agentContext.dependencyManager.resolve(DidRepository)\n    await didRepository.save(agentContext, didRecord)\n  }\n\n  public async getDidDocumentFromRecord(agentContext: AgentContext, did: string): Promise<DidDocument> {\n    const didRepository = agentContext.dependencyManager.resolve(DidRepository)\n    const didRecord = await didRepository.getSingleByQuery(agentContext, {\n      did,\n      role: DidDocumentRole.Created,\n    })\n\n    if (!didRecord.didDocument) {\n      throw new CredoError(`Did record for did '${did}' has no did document.`)\n    }\n\n    return didRecord.didDocument\n  }\n\n  private createDidDocument(\n    did: string,\n    verificationKey: Kms.PublicJwk<Kms.Ed25519PublicJwk>,\n    services: DidDocumentService[] | undefined,\n    useEndpointAttrib: boolean | undefined\n  ) {\n    const verificationKeyBase58 = TypedArrayEncoder.toBase58(verificationKey.publicKey.publicKey)\n    // Create base did document\n    const didDocumentBuilder = indyDidDocumentFromDid(did, verificationKeyBase58)\n    let diddocContent: Record<string, unknown> | undefined\n\n    // Add services if object was passed\n    if (services) {\n      for (const item of services) {\n        const prependDidIfNotPresent = (id: string) => {\n          return id.startsWith('#') ? `${did}${id}` : id\n        }\n\n        // Prepend the did to the service id if it is not already there\n        item.id = prependDidIfNotPresent(item.id)\n\n        // TODO: should we also prepend the did to routingKeys?\n        if (item instanceof DidCommV1Service) {\n          item.recipientKeys = item.recipientKeys.map(prependDidIfNotPresent)\n        }\n\n        didDocumentBuilder.addService(item)\n      }\n\n      const commTypes = [IndyAgentService.type, DidCommV1Service.type, NewDidCommV2Service.type, DidCommV2Service.type]\n      const serviceTypes = new Set(services.map((item) => item.type))\n\n      const keyAgreementId = `${did}#key-agreement-1`\n\n      // If there is at least a communication service, add the key agreement key\n      if (commTypes.some((type) => serviceTypes.has(type))) {\n        didDocumentBuilder\n          .addContext('https://w3id.org/security/suites/x25519-2019/v1')\n          .addVerificationMethod({\n            controller: did,\n            id: keyAgreementId,\n            publicKeyBase58: createKeyAgreementKey(verificationKeyBase58),\n            type: 'X25519KeyAgreementKey2019',\n          })\n          .addKeyAgreement(keyAgreementId)\n      }\n\n      // FIXME: it doesn't seem this context exists?\n      // If there is a DIDComm V2 service, add context\n      if (serviceTypes.has(NewDidCommV2Service.type) || serviceTypes.has(DidCommV2Service.type)) {\n        didDocumentBuilder.addContext('https://didcomm.org/messaging/contexts/v2')\n      }\n\n      if (!useEndpointAttrib) {\n        // create diddocContent parameter based on the diff between the base and the resulting DID Document\n        diddocContent = didDocDiff(\n          didDocumentBuilder.build().toJSON(),\n          indyDidDocumentFromDid(did, verificationKeyBase58).build().toJSON()\n        )\n      }\n    }\n\n    // Build did document\n    const didDocument = didDocumentBuilder.build()\n\n    return {\n      diddocContent,\n      didDocument,\n    }\n  }\n\n  // FIXME: we need to completely revamp this logic, it's overly complex\n  // We might even want to look at ditching the whole generic DIDs api ...\n  public async create(agentContext: AgentContext, options: IndyVdrDidCreateOptions): Promise<IndyVdrDidCreateResult> {\n    try {\n      const res = await this.parseInput(agentContext, options)\n      if (res.status === 'error') return this.didCreateFailedResult({ reason: res.reason })\n\n      const did = res.did\n\n      const pool = agentContext.dependencyManager.resolve(IndyVdrPoolService).getPoolForNamespace(res.namespace)\n\n      let nymRequest: NymRequest | CustomRequest\n      let didDocument: DidDocument | undefined\n      let attribRequest: AttribRequest | CustomRequest | undefined\n      let verificationKey: Kms.PublicJwk<Kms.Ed25519PublicJwk> | undefined\n\n      if (res.type === 'endorsedTransaction') {\n        const { nymRequest: _nymRequest, attribRequest: _attribRequest } = res.endorsedTransaction\n        nymRequest = new CustomRequest({ customRequest: _nymRequest })\n        attribRequest = _attribRequest ? new CustomRequest({ customRequest: _attribRequest }) : undefined\n      } else {\n        const {\n          services,\n          useEndpointAttrib,\n          alias,\n          endorserNamespaceIdentifier,\n          namespaceIdentifier,\n          did,\n          role,\n          endorserDid,\n          namespace,\n        } = res\n        verificationKey = res.verificationKey\n\n        const { didDocument: _didDocument, diddocContent } = this.createDidDocument(\n          did,\n          verificationKey,\n          services,\n          useEndpointAttrib\n        )\n        didDocument = _didDocument\n\n        const didRegisterSigningKey =\n          options.options.endorserMode === 'internal'\n            ? await verificationPublicJwkForIndyDid(agentContext, options.options.endorserDid)\n            : undefined\n\n        nymRequest = await this.createRegisterDidWriteRequest({\n          agentContext,\n          pool,\n          signingKey: didRegisterSigningKey,\n          submitterNamespaceIdentifier: endorserNamespaceIdentifier,\n          namespaceIdentifier,\n          verificationKey,\n          alias,\n          diddocContent,\n          role,\n        })\n\n        if (services && useEndpointAttrib) {\n          const endpoints = endpointsAttribFromServices(services)\n          attribRequest = await this.createSetDidEndpointsRequest({\n            agentContext,\n            pool,\n            signingKey: verificationKey,\n            endorserDid: options.options.endorserMode === 'external' ? endorserDid : undefined,\n            unqualifiedDid: namespaceIdentifier,\n            endpoints,\n          })\n        }\n\n        if (options.options.endorserMode === 'external') {\n          // We already save the did record, including the link between kms key id and did key id\n          await this.saveDidRecord(agentContext, did, didDocument, [\n            {\n              didDocumentRelativeKeyId: '#verkey',\n              kmsKeyId: verificationKey.keyId,\n            },\n          ])\n          const didAction: EndorseDidTxAction = {\n            state: 'action',\n            action: 'endorseIndyTransaction',\n            endorserDid: endorserDid,\n            nymRequest: nymRequest.body,\n            attribRequest: attribRequest?.body,\n            did: did,\n          }\n\n          return this.didCreateActionResult({ namespace, didAction, did })\n        }\n      }\n\n      await this.registerPublicDid(agentContext, pool, nymRequest)\n      if (attribRequest) await this.setEndpointsForDid(agentContext, pool, attribRequest)\n\n      // DID Document is undefined if this method is called based on external endorsement\n      // but in that case the did document is already saved\n      if (verificationKey && didDocument) {\n        await this.saveDidRecord(agentContext, did, didDocument, [\n          {\n            didDocumentRelativeKeyId: '#verkey',\n            kmsKeyId: verificationKey.keyId,\n          },\n        ])\n      }\n\n      didDocument = didDocument ?? (await this.getDidDocumentFromRecord(agentContext, did))\n      return this.didCreateFinishedResult({ did, didDocument, namespace: res.namespace })\n    } catch (error) {\n      agentContext.config.logger.error('Error creating indy did', {\n        error,\n      })\n      return this.didCreateFailedResult({\n        reason: `unknownError: ${error.message}`,\n      })\n    }\n  }\n\n  public async update(): Promise<DidUpdateResult> {\n    return {\n      didDocumentMetadata: {},\n      didRegistrationMetadata: {},\n      didState: {\n        state: 'failed',\n        reason: 'notImplemented: updating did:indy not implemented yet',\n      },\n    }\n  }\n\n  public async deactivate(): Promise<DidDeactivateResult> {\n    return {\n      didDocumentMetadata: {},\n      didRegistrationMetadata: {},\n      didState: {\n        state: 'failed',\n        reason: 'notImplemented: deactivating did:indy not implemented yet',\n      },\n    }\n  }\n\n  private async createRegisterDidWriteRequest(options: {\n    agentContext: AgentContext\n    pool: IndyVdrPool\n    submitterNamespaceIdentifier: string\n    namespaceIdentifier: string\n    verificationKey: Kms.PublicJwk<Kms.Ed25519PublicJwk>\n    signingKey?: Kms.PublicJwk<Kms.Ed25519PublicJwk>\n    alias: string | undefined\n    diddocContent?: Record<string, unknown>\n    role?: NymRequestRole\n  }) {\n    const {\n      agentContext,\n      pool,\n      submitterNamespaceIdentifier,\n      namespaceIdentifier,\n      verificationKey,\n      alias,\n      signingKey,\n      role,\n    } = options\n\n    // FIXME: Add diddocContent when supported by indy-vdr\n    if (options.diddocContent) {\n      throw new IndyVdrError('diddocContent is not yet supported')\n    }\n\n    const request = new NymRequest({\n      submitterDid: submitterNamespaceIdentifier,\n      dest: namespaceIdentifier,\n      verkey: TypedArrayEncoder.toBase58(verificationKey.publicKey.publicKey),\n      alias,\n      role,\n    })\n\n    if (!signingKey) return request\n    const writeRequest = await pool.prepareWriteRequest(agentContext, request, signingKey, undefined)\n    return writeRequest\n  }\n\n  private async registerPublicDid<Request extends IndyVdrRequest>(\n    agentContext: AgentContext,\n    pool: IndyVdrPool,\n    writeRequest: Request\n  ) {\n    const body = writeRequest.body\n    try {\n      const response = await pool.submitRequest(writeRequest)\n\n      agentContext.config.logger.debug(`Register public did on ledger '${pool.indyNamespace}'\\nRequest: ${body}}`, {\n        response,\n      })\n\n      return\n    } catch (error) {\n      agentContext.config.logger.error(\n        `Error Registering public did on ledger '${pool.indyNamespace}'\\nRequest: ${body}}`\n      )\n\n      throw error\n    }\n  }\n\n  private async createSetDidEndpointsRequest(options: {\n    agentContext: AgentContext\n    pool: IndyVdrPool\n    signingKey: Kms.PublicJwk<Kms.Ed25519PublicJwk>\n    endorserDid?: string\n    unqualifiedDid: string\n    endpoints: IndyEndpointAttrib\n  }): Promise<AttribRequest> {\n    const { agentContext, pool, endpoints, unqualifiedDid, signingKey, endorserDid } = options\n    const request = new AttribRequest({\n      submitterDid: unqualifiedDid,\n      targetDid: unqualifiedDid,\n      raw: JSON.stringify({ endpoint: endpoints }),\n    })\n\n    const writeRequest = await pool.prepareWriteRequest(agentContext, request, signingKey, endorserDid)\n    return writeRequest\n  }\n\n  private async setEndpointsForDid<Request extends IndyVdrRequest>(\n    agentContext: AgentContext,\n    pool: IndyVdrPool,\n    writeRequest: Request\n  ): Promise<void> {\n    const body = writeRequest.body\n    try {\n      const response = await pool.submitRequest(writeRequest)\n\n      agentContext.config.logger.debug(\n        `Successfully set endpoints for did on ledger '${pool.indyNamespace}'.\\nRequest: ${body}}`,\n        {\n          response,\n        }\n      )\n    } catch (error) {\n      agentContext.config.logger.error(\n        `Error setting endpoints for did on ledger '${pool.indyNamespace}'.\\nRequest: ${body}}`\n      )\n\n      throw new IndyVdrError(error)\n    }\n  }\n}\n\ninterface IndyVdrDidCreateOptionsWithoutDid extends DidCreateOptions {\n  didDocument?: never // Not yet supported\n  did?: never\n  method: 'indy'\n  options: {\n    /**\n     * Optionally an existing keyId can be provided, in this case the did will be created\n     * based on the existing key\n     */\n    keyId?: string\n\n    alias?: string\n    role?: NymRequestRole\n    services?: DidDocumentService[]\n    useEndpointAttrib?: boolean\n\n    // endorserDid is always required. We just have internal or external mode\n    endorserDid: string\n    // if endorserMode is 'internal', the endorserDid MUST be present in the wallet\n    // if endorserMode is 'external', the endorserDid doesn't have to be present in the wallet\n    endorserMode: 'internal' | 'external'\n    endorsedTransaction?: never\n  }\n}\n\n// When transactions have been endorsed. Only supported for external mode\n// this is a separate interface so we can remove all the properties we don't need anymore.\ninterface IndyVdrDidCreateOptionsForSubmission extends DidCreateOptions {\n  didDocument?: never\n  did: string // for submission MUST always have a did, so we know which did we're submitting the transaction for. We MUST check whether the did passed here, matches with the\n  method?: never\n  options: {\n    endorserMode: 'external'\n\n    // provide the endorsed transactions. If these are provided\n    // we will submit the transactions to the ledger\n    endorsedTransaction: {\n      nymRequest: string\n      attribRequest?: string\n    }\n  }\n}\n\nexport type IndyVdrDidCreateOptions = IndyVdrDidCreateOptionsWithoutDid | IndyVdrDidCreateOptionsForSubmission\n\ntype ParseInputOkEndorsedTransaction = {\n  status: 'ok'\n  did: string\n  type: 'endorsedTransaction'\n  endorsedTransaction: IndyVdrDidCreateOptionsForSubmission['options']['endorsedTransaction']\n  namespaceIdentifier: string\n  namespace: string\n  endorserNamespaceIdentifier: string\n}\n\ntype ParseInputOkCreate = {\n  status: 'ok'\n  type: 'create'\n  did: string\n  verificationKey: Kms.PublicJwk<Kms.Ed25519PublicJwk>\n  namespaceIdentifier: string\n  namespace: string\n  endorserNamespaceIdentifier: string\n  endorserDid: string\n  alias?: string\n  role?: NymRequestRole\n  services?: DidDocumentService[]\n  useEndpointAttrib?: boolean\n}\n\ntype parseInputError = { status: 'error'; reason: string }\n\ntype ParseInputResult = ParseInputOkEndorsedTransaction | ParseInputOkCreate | parseInputError\n\nexport interface EndorseDidTxAction extends DidOperationStateActionBase {\n  action: 'endorseIndyTransaction'\n  endorserDid: string\n  nymRequest: string\n  attribRequest?: string\n  did: string\n}\n\nexport type IndyVdrDidCreateResult = DidCreateResult<EndorseDidTxAction>\n\nexport type NymRequestRole = 'STEWARD' | 'TRUSTEE' | 'ENDORSER' | 'NETWORK_MONITOR'\n"],"mappings":";;;;;;;;;;AAwCA,IAAa,0BAAb,MAA6D;;OAC3C,mBAAmB,CAAC,OAAO;;CAE3C,AAAQ,sBAAsB,EAC5B,WACA,WACA,OAKyB;AACzB,SAAO;GACL,OAAO;GACP,qBAAqB,EAAE;GACvB,yBAAyB,EACvB,kBAAkB,WACnB;GACD,UAAU;GACX;;CAGH,AAAQ,sBAAsB,EAAE,UAAsD;AACpF,SAAO;GACL,qBAAqB,EAAE;GACvB,yBAAyB,EAAE;GAC3B,UAAU;IACR,OAAO;IACC;IACT;GACF;;CAGH,AAAQ,wBAAwB,EAC9B,KACA,aACA,aAKyB;AACzB,SAAO;GACL,qBAAqB,EAAE;GACvB,yBAAyB,EACvB,kBAAkB,WACnB;GACD,UAAU;IACR,OAAO;IACP;IACA;IACD;GACF;;CAGH,MAAa,WAAW,cAA4B,SAA6D;AAC/G,MAAI,QAAQ,QAAQ,qBAAqB;AACvC,OAAI,CAAC,QAAQ,OAAO,OAAO,QAAQ,QAAQ,SACzC,QAAO;IACL,QAAQ;IACR,QAAQ;IACT;GAEH,MAAM,EAAE,WAAW,+CAAwB,aAAa,QAAQ,IAAI;GAEpE,MAAMA,gCAA8B,KAAK,MAAM,QAAQ,QAAQ,oBAAoB,WAAW,CAAC;AAE/F,UAAO;IACL,QAAQ;IACR,MAAM;IACN,qBAAqB,QAAQ,QAAQ;IACrC,KAAK,QAAQ;IACb;IACA;IACA;IACD;;EAGH,MAAM,cAAc,QAAQ,QAAQ;EACpC,MAAM,EAAE,WAAW,mBAAmB,qBAAqB,gCAAgC,aAAa,YAAY;EAEpH,MAAM,MAAM,aAAa,kBAAkB,QAAQ,IAAI,iBAAiB;EAExE,MAAM,mBAAmB,QAAQ,QAAQ,QACrC,MAAM,IAAI,aAAa,EAAE,OAAO,QAAQ,QAAQ,OAAO,CAAC,IAEtD,MAAM,IAAI,UAAU,EAClB,MAAM;GACJ,KAAK;GACL,KAAK;GACN,EACF,CAAC,EACF;AAEN,MAAI,iBAAiB,QAAQ,SAAS,iBAAiB,QAAQ,UAC7D,QAAO;GACL,QAAQ;GACR,QAAQ,iDAAiD,IAAI,uBAAuB,iBAAiB;GACtG;EAGH,MAAM,kBAAkB,IAAI,UAAU,cAAc,iBAAiB;EAGrE,MAAM,SAAS,OAAO,KAAK,gBAAgB,UAAU,WAAW,UAAU;EAE1E,MAAM,sBAAsB,kBAAkB,SAAS,OAAO,MAAM,GAAG,GAAG,CAAC;AAG3E,SAAO;GACL,QAAQ;GACR,MAAM;GACN,KALU,YAAY,kBAAkB,GAAG;GAM3C;GACA,aAAa,QAAQ,QAAQ;GAC7B,OAAO,QAAQ,QAAQ;GACvB,MAAM,QAAQ,QAAQ;GACtB,UAAU,QAAQ,QAAQ;GAC1B,mBAAmB,QAAQ,QAAQ;GACnC;GACA,WAAW;GACX;GACD;;CAGH,MAAa,cACX,cACA,KACA,aACA,MACe;EAEf,MAAM,YAAY,IAAI,UAAU;GAC9B;GACA,MAAM,gBAAgB;GACtB;GACA;GACD,CAAC;AAGF,QADsB,aAAa,kBAAkB,QAAQ,cAAc,CACvD,KAAK,cAAc,UAAU;;CAGnD,MAAa,yBAAyB,cAA4B,KAAmC;EAEnG,MAAM,YAAY,MADI,aAAa,kBAAkB,QAAQ,cAAc,CACrC,iBAAiB,cAAc;GACnE;GACA,MAAM,gBAAgB;GACvB,CAAC;AAEF,MAAI,CAAC,UAAU,YACb,OAAM,IAAI,WAAW,uBAAuB,IAAI,wBAAwB;AAG1E,SAAO,UAAU;;CAGnB,AAAQ,kBACN,KACA,iBACA,UACA,mBACA;EACA,MAAM,wBAAwB,kBAAkB,SAAS,gBAAgB,UAAU,UAAU;EAE7F,MAAM,qBAAqB,uBAAuB,KAAK,sBAAsB;EAC7E,IAAIC;AAGJ,MAAI,UAAU;AACZ,QAAK,MAAM,QAAQ,UAAU;IAC3B,MAAM,0BAA0B,OAAe;AAC7C,YAAO,GAAG,WAAW,IAAI,GAAG,GAAG,MAAM,OAAO;;AAI9C,SAAK,KAAK,uBAAuB,KAAK,GAAG;AAGzC,QAAI,gBAAgB,iBAClB,MAAK,gBAAgB,KAAK,cAAc,IAAI,uBAAuB;AAGrE,uBAAmB,WAAW,KAAK;;GAGrC,MAAM,YAAY;IAAC,iBAAiB;IAAM,iBAAiB;IAAM,oBAAoB;IAAM,iBAAiB;IAAK;GACjH,MAAM,eAAe,IAAI,IAAI,SAAS,KAAK,SAAS,KAAK,KAAK,CAAC;GAE/D,MAAM,iBAAiB,GAAG,IAAI;AAG9B,OAAI,UAAU,MAAM,SAAS,aAAa,IAAI,KAAK,CAAC,CAClD,oBACG,WAAW,kDAAkD,CAC7D,sBAAsB;IACrB,YAAY;IACZ,IAAI;IACJ,iBAAiB,sBAAsB,sBAAsB;IAC7D,MAAM;IACP,CAAC,CACD,gBAAgB,eAAe;AAKpC,OAAI,aAAa,IAAI,oBAAoB,KAAK,IAAI,aAAa,IAAI,iBAAiB,KAAK,CACvF,oBAAmB,WAAW,4CAA4C;AAG5E,OAAI,CAAC,kBAEH,iBAAgB,WACd,mBAAmB,OAAO,CAAC,QAAQ,EACnC,uBAAuB,KAAK,sBAAsB,CAAC,OAAO,CAAC,QAAQ,CACpE;;EAKL,MAAM,cAAc,mBAAmB,OAAO;AAE9C,SAAO;GACL;GACA;GACD;;CAKH,MAAa,OAAO,cAA4B,SAAmE;AACjH,MAAI;GACF,MAAM,MAAM,MAAM,KAAK,WAAW,cAAc,QAAQ;AACxD,OAAI,IAAI,WAAW,QAAS,QAAO,KAAK,sBAAsB,EAAE,QAAQ,IAAI,QAAQ,CAAC;GAErF,MAAM,MAAM,IAAI;GAEhB,MAAM,OAAO,aAAa,kBAAkB,QAAQ,mBAAmB,CAAC,oBAAoB,IAAI,UAAU;GAE1G,IAAIC;GACJ,IAAIC;GACJ,IAAIC;GACJ,IAAIC;AAEJ,OAAI,IAAI,SAAS,uBAAuB;IACtC,MAAM,EAAE,YAAY,aAAa,eAAe,mBAAmB,IAAI;AACvE,iBAAa,IAAI,cAAc,EAAE,eAAe,aAAa,CAAC;AAC9D,oBAAgB,iBAAiB,IAAI,cAAc,EAAE,eAAe,gBAAgB,CAAC,GAAG;UACnF;IACL,MAAM,EACJ,UACA,mBACA,OACA,6BACA,qBACA,YACA,MACA,aACA,cACE;AACJ,sBAAkB,IAAI;IAEtB,MAAM,EAAE,aAAa,cAAc,kBAAkB,KAAK,kBACxDC,OACA,iBACA,UACA,kBACD;AACD,kBAAc;IAEd,MAAM,wBACJ,QAAQ,QAAQ,iBAAiB,aAC7B,MAAM,gCAAgC,cAAc,QAAQ,QAAQ,YAAY,GAChF;AAEN,iBAAa,MAAM,KAAK,8BAA8B;KACpD;KACA;KACA,YAAY;KACZ,8BAA8B;KAC9B;KACA;KACA;KACA;KACA;KACD,CAAC;AAEF,QAAI,YAAY,mBAAmB;KACjC,MAAM,YAAY,4BAA4B,SAAS;AACvD,qBAAgB,MAAM,KAAK,6BAA6B;MACtD;MACA;MACA,YAAY;MACZ,aAAa,QAAQ,QAAQ,iBAAiB,aAAa,cAAc;MACzE,gBAAgB;MAChB;MACD,CAAC;;AAGJ,QAAI,QAAQ,QAAQ,iBAAiB,YAAY;AAE/C,WAAM,KAAK,cAAc,cAAcA,OAAK,aAAa,CACvD;MACE,0BAA0B;MAC1B,UAAU,gBAAgB;MAC3B,CACF,CAAC;KACF,MAAMC,YAAgC;MACpC,OAAO;MACP,QAAQ;MACK;MACb,YAAY,WAAW;MACvB,eAAe,eAAe;MAC9B,KAAKD;MACN;AAED,YAAO,KAAK,sBAAsB;MAAE;MAAW;MAAW;MAAK,CAAC;;;AAIpE,SAAM,KAAK,kBAAkB,cAAc,MAAM,WAAW;AAC5D,OAAI,cAAe,OAAM,KAAK,mBAAmB,cAAc,MAAM,cAAc;AAInF,OAAI,mBAAmB,YACrB,OAAM,KAAK,cAAc,cAAc,KAAK,aAAa,CACvD;IACE,0BAA0B;IAC1B,UAAU,gBAAgB;IAC3B,CACF,CAAC;AAGJ,iBAAc,eAAgB,MAAM,KAAK,yBAAyB,cAAc,IAAI;AACpF,UAAO,KAAK,wBAAwB;IAAE;IAAK;IAAa,WAAW,IAAI;IAAW,CAAC;WAC5E,OAAO;AACd,gBAAa,OAAO,OAAO,MAAM,2BAA2B,EAC1D,OACD,CAAC;AACF,UAAO,KAAK,sBAAsB,EAChC,QAAQ,iBAAiB,MAAM,WAChC,CAAC;;;CAIN,MAAa,SAAmC;AAC9C,SAAO;GACL,qBAAqB,EAAE;GACvB,yBAAyB,EAAE;GAC3B,UAAU;IACR,OAAO;IACP,QAAQ;IACT;GACF;;CAGH,MAAa,aAA2C;AACtD,SAAO;GACL,qBAAqB,EAAE;GACvB,yBAAyB,EAAE;GAC3B,UAAU;IACR,OAAO;IACP,QAAQ;IACT;GACF;;CAGH,MAAc,8BAA8B,SAUzC;EACD,MAAM,EACJ,cACA,MACA,8BACA,qBACA,iBACA,OACA,YACA,SACE;AAGJ,MAAI,QAAQ,cACV,OAAM,IAAI,aAAa,qCAAqC;EAG9D,MAAM,UAAU,IAAI,WAAW;GAC7B,cAAc;GACd,MAAM;GACN,QAAQ,kBAAkB,SAAS,gBAAgB,UAAU,UAAU;GACvE;GACA;GACD,CAAC;AAEF,MAAI,CAAC,WAAY,QAAO;AAExB,SADqB,MAAM,KAAK,oBAAoB,cAAc,SAAS,YAAY,OAAU;;CAInG,MAAc,kBACZ,cACA,MACA,cACA;EACA,MAAM,OAAO,aAAa;AAC1B,MAAI;GACF,MAAM,WAAW,MAAM,KAAK,cAAc,aAAa;AAEvD,gBAAa,OAAO,OAAO,MAAM,kCAAkC,KAAK,cAAc,cAAc,KAAK,IAAI,EAC3G,UACD,CAAC;AAEF;WACO,OAAO;AACd,gBAAa,OAAO,OAAO,MACzB,2CAA2C,KAAK,cAAc,cAAc,KAAK,GAClF;AAED,SAAM;;;CAIV,MAAc,6BAA6B,SAOhB;EACzB,MAAM,EAAE,cAAc,MAAM,WAAW,gBAAgB,YAAY,gBAAgB;EACnF,MAAM,UAAU,IAAI,cAAc;GAChC,cAAc;GACd,WAAW;GACX,KAAK,KAAK,UAAU,EAAE,UAAU,WAAW,CAAC;GAC7C,CAAC;AAGF,SADqB,MAAM,KAAK,oBAAoB,cAAc,SAAS,YAAY,YAAY;;CAIrG,MAAc,mBACZ,cACA,MACA,cACe;EACf,MAAM,OAAO,aAAa;AAC1B,MAAI;GACF,MAAM,WAAW,MAAM,KAAK,cAAc,aAAa;AAEvD,gBAAa,OAAO,OAAO,MACzB,iDAAiD,KAAK,cAAc,eAAe,KAAK,IACxF,EACE,UACD,CACF;WACM,OAAO;AACd,gBAAa,OAAO,OAAO,MACzB,8CAA8C,KAAK,cAAc,eAAe,KAAK,GACtF;AAED,SAAM,IAAI,aAAa,MAAM"}

package/build/dids/IndyVdrIndyDidResolver.d.mts

@@ -0,0 +1,12 @@
+import { AgentContext, DidResolutionResult, DidResolver } from "@credo-ts/core";
+
+//#region src/dids/IndyVdrIndyDidResolver.d.ts
+declare class IndyVdrIndyDidResolver implements DidResolver {
+  readonly supportedMethods: string[];
+  readonly allowsCaching = true;
+  readonly allowsLocalDidRecord = true;
+  resolve(agentContext: AgentContext, did: string): Promise<DidResolutionResult>;
+}
+//#endregion
+export { IndyVdrIndyDidResolver };
+//# sourceMappingURL=IndyVdrIndyDidResolver.d.mts.map

package/build/dids/IndyVdrIndyDidResolver.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"IndyVdrIndyDidResolver.d.mts","names":[],"sources":["../../src/dids/IndyVdrIndyDidResolver.ts"],"sourcesContent":[],"mappings":";;;cAOa,sBAAA,YAAkC;;EAAlC,SAAA,aAAA,GAAuB,IAAA;EAMC,SAAA,oBAAA,GAAA,IAAA;EAAoC,OAAA,CAAA,YAAA,EAApC,YAAoC,EAAA,GAAA,EAAA,MAAA,CAAA,EAAR,OAAQ,CAAA,mBAAA,CAAA"}

package/build/dids/IndyVdrIndyDidResolver.mjs

@@ -0,0 +1,36 @@
+import { buildDidDocument } from "./didIndyUtil.mjs";
+import { IndyVdrPoolService } from "../pool/IndyVdrPoolService.mjs";
+import "../pool/index.mjs";
+import { parseIndyDid } from "@credo-ts/anoncreds";
+
+//#region src/dids/IndyVdrIndyDidResolver.ts
+var IndyVdrIndyDidResolver = class {
+	constructor() {
+		this.supportedMethods = ["indy"];
+		this.allowsCaching = true;
+		this.allowsLocalDidRecord = true;
+	}
+	async resolve(agentContext, did) {
+		const didDocumentMetadata = {};
+		try {
+			return {
+				didDocument: await buildDidDocument(agentContext, agentContext.dependencyManager.resolve(IndyVdrPoolService).getPoolForNamespace(parseIndyDid(did).namespace), did),
+				didDocumentMetadata,
+				didResolutionMetadata: { contentType: "application/did+ld+json" }
+			};
+		} catch (error) {
+			return {
+				didDocument: null,
+				didDocumentMetadata,
+				didResolutionMetadata: {
+					error: "notFound",
+					message: `resolver_error: Unable to resolve did '${did}': ${error}`
+				}
+			};
+		}
+	}
+};
+
+//#endregion
+export { IndyVdrIndyDidResolver };
+//# sourceMappingURL=IndyVdrIndyDidResolver.mjs.map

package/build/dids/IndyVdrIndyDidResolver.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"IndyVdrIndyDidResolver.mjs","names":[],"sources":["../../src/dids/IndyVdrIndyDidResolver.ts"],"sourcesContent":["import { parseIndyDid } from '@credo-ts/anoncreds'\nimport type { AgentContext, DidResolutionResult, DidResolver } from '@credo-ts/core'\n\nimport { IndyVdrPoolService } from '../pool'\n\nimport { buildDidDocument } from './didIndyUtil'\n\nexport class IndyVdrIndyDidResolver implements DidResolver {\n  public readonly supportedMethods = ['indy']\n\n  public readonly allowsCaching = true\n  public readonly allowsLocalDidRecord = true\n\n  public async resolve(agentContext: AgentContext, did: string): Promise<DidResolutionResult> {\n    const didDocumentMetadata = {}\n    try {\n      const poolService = agentContext.dependencyManager.resolve(IndyVdrPoolService)\n      const pool = poolService.getPoolForNamespace(parseIndyDid(did).namespace)\n\n      // Get DID Document from Get NYM response\n      const didDocument = await buildDidDocument(agentContext, pool, did)\n\n      return {\n        didDocument,\n        didDocumentMetadata,\n        didResolutionMetadata: { contentType: 'application/did+ld+json' },\n      }\n    } catch (error) {\n      return {\n        didDocument: null,\n        didDocumentMetadata,\n        didResolutionMetadata: {\n          error: 'notFound',\n          message: `resolver_error: Unable to resolve did '${did}': ${error}`,\n        },\n      }\n    }\n  }\n}\n"],"mappings":";;;;;;AAOA,IAAa,yBAAb,MAA2D;;OACzC,mBAAmB,CAAC,OAAO;OAE3B,gBAAgB;OAChB,uBAAuB;;CAEvC,MAAa,QAAQ,cAA4B,KAA2C;EAC1F,MAAM,sBAAsB,EAAE;AAC9B,MAAI;AAOF,UAAO;IACL,aAHkB,MAAM,iBAAiB,cAJvB,aAAa,kBAAkB,QAAQ,mBAAmB,CACrD,oBAAoB,aAAa,IAAI,CAAC,UAAU,EAGV,IAAI;IAIjE;IACA,uBAAuB,EAAE,aAAa,2BAA2B;IAClE;WACM,OAAO;AACd,UAAO;IACL,aAAa;IACb;IACA,uBAAuB;KACrB,OAAO;KACP,SAAS,0CAA0C,IAAI,KAAK;KAC7D;IACF"}

package/build/dids/IndyVdrSovDidResolver.d.mts

@@ -0,0 +1,13 @@
+import { AgentContext, DidResolutionResult, DidResolver, ParsedDid } from "@credo-ts/core";
+
+//#region src/dids/IndyVdrSovDidResolver.d.ts
+declare class IndyVdrSovDidResolver implements DidResolver {
+  readonly supportedMethods: string[];
+  readonly allowsCaching = true;
+  resolve(agentContext: AgentContext, did: string, parsed: ParsedDid): Promise<DidResolutionResult>;
+  private getPublicDid;
+  private getEndpointsForDid;
+}
+//#endregion
+export { IndyVdrSovDidResolver };
+//# sourceMappingURL=IndyVdrSovDidResolver.d.mts.map

package/build/dids/IndyVdrSovDidResolver.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"IndyVdrSovDidResolver.d.mts","names":[],"sources":["../../src/dids/IndyVdrSovDidResolver.ts"],"sourcesContent":[],"mappings":";;;cASa,qBAAA,YAAiC;;EAAjC,SAAA,aAAA,GAAsB,IAAA;EAKE,OAAA,CAAA,YAAA,EAAA,YAAA,EAAA,GAAA,EAAA,MAAA,EAAA,MAAA,EAAmC,SAAnC,CAAA,EAA+C,OAA/C,CAAuD,mBAAvD,CAAA;EAAmC,QAAA,YAAA;EAAoB,QAAA,kBAAA"}

package/build/dids/IndyVdrSovDidResolver.mjs

@@ -0,0 +1,70 @@
+import { IndyVdrError } from "../error/IndyVdrError.mjs";
+import { IndyVdrNotFoundError } from "../error/IndyVdrNotFound.mjs";
+import "../error/index.mjs";
+import { addServicesFromEndpointsAttrib, sovDidDocumentFromDid } from "./didSovUtil.mjs";
+import { IndyVdrPoolService } from "../pool/IndyVdrPoolService.mjs";
+import { GetAttribRequest, GetNymRequest } from "@hyperledger/indy-vdr-shared";
+
+//#region src/dids/IndyVdrSovDidResolver.ts
+var IndyVdrSovDidResolver = class {
+	constructor() {
+		this.supportedMethods = ["sov"];
+		this.allowsCaching = true;
+	}
+	async resolve(agentContext, did, parsed) {
+		const didDocumentMetadata = {};
+		try {
+			const { pool } = await agentContext.dependencyManager.resolve(IndyVdrPoolService).getPoolForDid(agentContext, parsed.id);
+			const nym = await this.getPublicDid(pool, parsed.id);
+			const endpoints = await this.getEndpointsForDid(agentContext, pool, parsed.id);
+			const keyAgreementId = `${parsed.did}#key-agreement-1`;
+			const builder = sovDidDocumentFromDid(parsed.did, nym.verkey);
+			if (endpoints) addServicesFromEndpointsAttrib(builder, parsed.did, endpoints, keyAgreementId);
+			return {
+				didDocument: builder.build(),
+				didDocumentMetadata,
+				didResolutionMetadata: { contentType: "application/did+ld+json" }
+			};
+		} catch (error) {
+			return {
+				didDocument: null,
+				didDocumentMetadata,
+				didResolutionMetadata: {
+					error: "notFound",
+					message: `resolver_error: Unable to resolve did '${did}': ${error}`
+				}
+			};
+		}
+	}
+	async getPublicDid(pool, unqualifiedDid) {
+		const request = new GetNymRequest({ dest: unqualifiedDid });
+		const didResponse = await pool.submitRequest(request);
+		if (!didResponse.result.data) throw new IndyVdrNotFoundError(`DID ${unqualifiedDid} not found`);
+		return JSON.parse(didResponse.result.data);
+	}
+	async getEndpointsForDid(agentContext, pool, did) {
+		try {
+			agentContext.config.logger.debug(`Get endpoints for did '${did}' from ledger '${pool.indyNamespace}'`);
+			const request = new GetAttribRequest({
+				targetDid: did,
+				raw: "endpoint"
+			});
+			agentContext.config.logger.debug(`Submitting get endpoint ATTRIB request for did '${did}' to ledger '${pool.indyNamespace}'`);
+			const response = await pool.submitRequest(request);
+			if (!response.result.data) return null;
+			const endpoints = JSON.parse(response.result.data)?.endpoint;
+			agentContext.config.logger.debug(`Got endpoints '${JSON.stringify(endpoints)}' for did '${did}' from ledger '${pool.indyNamespace}'`, {
+				response,
+				endpoints
+			});
+			return endpoints ?? null;
+		} catch (error) {
+			agentContext.config.logger.error(`Error retrieving endpoints for did '${did}' from ledger '${pool.indyNamespace}'`, { error });
+			throw new IndyVdrError(error);
+		}
+	}
+};
+
+//#endregion
+export { IndyVdrSovDidResolver };
+//# sourceMappingURL=IndyVdrSovDidResolver.mjs.map

package/build/dids/IndyVdrSovDidResolver.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"IndyVdrSovDidResolver.mjs","names":[],"sources":["../../src/dids/IndyVdrSovDidResolver.ts"],"sourcesContent":["import type { AgentContext, DidResolutionResult, DidResolver, ParsedDid } from '@credo-ts/core'\nimport { GetAttribRequest, GetNymRequest } from '@hyperledger/indy-vdr-shared'\nimport { IndyVdrError, IndyVdrNotFoundError } from '../error'\nimport type { IndyVdrPool } from '../pool'\nimport { IndyVdrPoolService } from '../pool/IndyVdrPoolService'\nimport type { GetNymResponseData, IndyEndpointAttrib } from './didSovUtil'\n\nimport { addServicesFromEndpointsAttrib, sovDidDocumentFromDid } from './didSovUtil'\n\nexport class IndyVdrSovDidResolver implements DidResolver {\n  public readonly supportedMethods = ['sov']\n\n  public readonly allowsCaching = true\n\n  public async resolve(agentContext: AgentContext, did: string, parsed: ParsedDid): Promise<DidResolutionResult> {\n    const didDocumentMetadata = {}\n\n    try {\n      const indyVdrPoolService = agentContext.dependencyManager.resolve(IndyVdrPoolService)\n\n      // FIXME: this actually fetches the did twice (if not cached), once for the pool and once for the nym\n      // we do not store the diddocContent in the pool cache currently so we need to fetch it again\n      // The logic is mostly to determine which pool to use for a did\n      const { pool } = await indyVdrPoolService.getPoolForDid(agentContext, parsed.id)\n      const nym = await this.getPublicDid(pool, parsed.id)\n      const endpoints = await this.getEndpointsForDid(agentContext, pool, parsed.id)\n\n      const keyAgreementId = `${parsed.did}#key-agreement-1`\n      const builder = sovDidDocumentFromDid(parsed.did, nym.verkey)\n\n      if (endpoints) {\n        addServicesFromEndpointsAttrib(builder, parsed.did, endpoints, keyAgreementId)\n      }\n\n      return {\n        didDocument: builder.build(),\n        didDocumentMetadata,\n        didResolutionMetadata: { contentType: 'application/did+ld+json' },\n      }\n    } catch (error) {\n      return {\n        didDocument: null,\n        didDocumentMetadata,\n        didResolutionMetadata: {\n          error: 'notFound',\n          message: `resolver_error: Unable to resolve did '${did}': ${error}`,\n        },\n      }\n    }\n  }\n\n  private async getPublicDid(pool: IndyVdrPool, unqualifiedDid: string) {\n    const request = new GetNymRequest({ dest: unqualifiedDid })\n    const didResponse = await pool.submitRequest(request)\n\n    if (!didResponse.result.data) {\n      throw new IndyVdrNotFoundError(`DID ${unqualifiedDid} not found`)\n    }\n    return JSON.parse(didResponse.result.data) as GetNymResponseData\n  }\n\n  private async getEndpointsForDid(agentContext: AgentContext, pool: IndyVdrPool, did: string) {\n    try {\n      agentContext.config.logger.debug(`Get endpoints for did '${did}' from ledger '${pool.indyNamespace}'`)\n\n      const request = new GetAttribRequest({ targetDid: did, raw: 'endpoint' })\n\n      agentContext.config.logger.debug(\n        `Submitting get endpoint ATTRIB request for did '${did}' to ledger '${pool.indyNamespace}'`\n      )\n      const response = await pool.submitRequest(request)\n\n      if (!response.result.data) {\n        return null\n      }\n\n      const endpoints = JSON.parse(response.result.data as string)?.endpoint as IndyEndpointAttrib\n      agentContext.config.logger.debug(\n        `Got endpoints '${JSON.stringify(endpoints)}' for did '${did}' from ledger '${pool.indyNamespace}'`,\n        {\n          response,\n          endpoints,\n        }\n      )\n\n      return endpoints ?? null\n    } catch (error) {\n      agentContext.config.logger.error(\n        `Error retrieving endpoints for did '${did}' from ledger '${pool.indyNamespace}'`,\n        {\n          error,\n        }\n      )\n\n      throw new IndyVdrError(error)\n    }\n  }\n}\n"],"mappings":";;;;;;;;AASA,IAAa,wBAAb,MAA0D;;OACxC,mBAAmB,CAAC,MAAM;OAE1B,gBAAgB;;CAEhC,MAAa,QAAQ,cAA4B,KAAa,QAAiD;EAC7G,MAAM,sBAAsB,EAAE;AAE9B,MAAI;GAMF,MAAM,EAAE,SAAS,MALU,aAAa,kBAAkB,QAAQ,mBAAmB,CAK3C,cAAc,cAAc,OAAO,GAAG;GAChF,MAAM,MAAM,MAAM,KAAK,aAAa,MAAM,OAAO,GAAG;GACpD,MAAM,YAAY,MAAM,KAAK,mBAAmB,cAAc,MAAM,OAAO,GAAG;GAE9E,MAAM,iBAAiB,GAAG,OAAO,IAAI;GACrC,MAAM,UAAU,sBAAsB,OAAO,KAAK,IAAI,OAAO;AAE7D,OAAI,UACF,gCAA+B,SAAS,OAAO,KAAK,WAAW,eAAe;AAGhF,UAAO;IACL,aAAa,QAAQ,OAAO;IAC5B;IACA,uBAAuB,EAAE,aAAa,2BAA2B;IAClE;WACM,OAAO;AACd,UAAO;IACL,aAAa;IACb;IACA,uBAAuB;KACrB,OAAO;KACP,SAAS,0CAA0C,IAAI,KAAK;KAC7D;IACF;;;CAIL,MAAc,aAAa,MAAmB,gBAAwB;EACpE,MAAM,UAAU,IAAI,cAAc,EAAE,MAAM,gBAAgB,CAAC;EAC3D,MAAM,cAAc,MAAM,KAAK,cAAc,QAAQ;AAErD,MAAI,CAAC,YAAY,OAAO,KACtB,OAAM,IAAI,qBAAqB,OAAO,eAAe,YAAY;AAEnE,SAAO,KAAK,MAAM,YAAY,OAAO,KAAK;;CAG5C,MAAc,mBAAmB,cAA4B,MAAmB,KAAa;AAC3F,MAAI;AACF,gBAAa,OAAO,OAAO,MAAM,0BAA0B,IAAI,iBAAiB,KAAK,cAAc,GAAG;GAEtG,MAAM,UAAU,IAAI,iBAAiB;IAAE,WAAW;IAAK,KAAK;IAAY,CAAC;AAEzE,gBAAa,OAAO,OAAO,MACzB,mDAAmD,IAAI,eAAe,KAAK,cAAc,GAC1F;GACD,MAAM,WAAW,MAAM,KAAK,cAAc,QAAQ;AAElD,OAAI,CAAC,SAAS,OAAO,KACnB,QAAO;GAGT,MAAM,YAAY,KAAK,MAAM,SAAS,OAAO,KAAe,EAAE;AAC9D,gBAAa,OAAO,OAAO,MACzB,kBAAkB,KAAK,UAAU,UAAU,CAAC,aAAa,IAAI,iBAAiB,KAAK,cAAc,IACjG;IACE;IACA;IACD,CACF;AAED,UAAO,aAAa;WACb,OAAO;AACd,gBAAa,OAAO,OAAO,MACzB,uCAAuC,IAAI,iBAAiB,KAAK,cAAc,IAC/E,EACE,OACD,CACF;AAED,SAAM,IAAI,aAAa,MAAM"}

package/build/dids/didIndyUtil.mjs

@@ -0,0 +1,147 @@
+import { IndyVdrError } from "../error/IndyVdrError.mjs";
+import { IndyVdrNotFoundError } from "../error/IndyVdrNotFound.mjs";
+import "../error/index.mjs";
+import { addServicesFromEndpointsAttrib, getFullVerkey } from "./didSovUtil.mjs";
+import { parseIndyDid } from "@credo-ts/anoncreds";
+import { CredoError, DidDocument, DidDocumentBuilder, DidsApi, Hasher, JsonTransformer, Kms, TypedArrayEncoder, convertPublicKeyToX25519, getPublicJwkFromVerificationMethod } from "@credo-ts/core";
+import { GetAttribRequest, GetNymRequest } from "@hyperledger/indy-vdr-shared";
+
+//#region src/dids/didIndyUtil.ts
+function indyDidDocumentFromDid(did, verKeyBase58) {
+	const verificationMethodId = `${did}#verkey`;
+	const publicKeyBase58 = verKeyBase58;
+	return new DidDocumentBuilder(did).addContext("https://w3id.org/security/suites/ed25519-2018/v1").addVerificationMethod({
+		controller: did,
+		id: verificationMethodId,
+		publicKeyBase58,
+		type: "Ed25519VerificationKey2018"
+	}).addAuthentication(verificationMethodId);
+}
+function createKeyAgreementKey(verkey) {
+	return TypedArrayEncoder.toBase58(convertPublicKeyToX25519(TypedArrayEncoder.fromBase58(verkey)));
+}
+const deepMerge = (a, b) => {
+	const output = {};
+	for (const key of [...new Set([...Object.keys(a), ...Object.keys(b)])]) if (a[key] && !b[key]) output[key] = a[key];
+	else if (!a[key] && b[key]) output[key] = b[key];
+	else if (Array.isArray(a[key])) if (Array.isArray(b[key])) {
+		const element = /* @__PURE__ */ new Set();
+		for (const item of a[key]) element.add(item);
+		for (const item of b[key]) element.add(item);
+		output[key] = Array.from(element);
+	} else {
+		const arr = a[key];
+		output[key] = Array.from(new Set(...arr, b[key]));
+	}
+	else if (Array.isArray(b[key])) {
+		const arr = b[key];
+		output[key] = Array.from(new Set(...arr, a[key]));
+	} else if (typeof a[key] === "object" && typeof b[key] === "object") output[key] = deepMerge(a, b);
+	return output;
+};
+/**
+* Combine a JSON content with the contents of a DidDocument
+* @param didDoc object containing original DIDDocument
+* @param json object containing extra DIDDoc contents
+*
+* @returns a DidDocument object resulting from the combination of both
+*/
+function combineDidDocumentWithJson(didDoc, json) {
+	const combinedJson = deepMerge(didDoc.toJSON(), json);
+	return JsonTransformer.fromJSON(combinedJson, DidDocument);
+}
+/**
+* Processes the difference between a base DidDocument and a complete DidDocument
+*
+* Note: it does deep comparison based only on "id" field to determine whether is
+* the same object or is a different one
+*
+* @param extra complete DidDocument
+* @param base base DidDocument
+* @returns diff object
+*/
+function didDocDiff(extra, base) {
+	const output = {};
+	for (const key in extra) if (!(key in base)) output[key] = extra[key];
+	else if (Array.isArray(extra[key]) && Array.isArray(base[key])) {
+		output[key] = [];
+		const baseAsArray = base[key];
+		const extraAsArray = extra[key];
+		for (const element of extraAsArray) if (!baseAsArray.find((item) => item.id === element.id)) output[key].push(element);
+	} else if (typeof extra[key] === "object" && typeof base[key] === "object") output[key] = didDocDiff(extra[key], base[key]);
+	else output[key] = extra[key];
+	return output;
+}
+/**
+* Fetches the verification key for a given did:indy did and returns the key as a {@link Key} object.
+*
+* @throws {@link CredoError} if the did could not be resolved or the key could not be extracted
+*/
+async function verificationPublicJwkForIndyDid(agentContext, did) {
+	const { keys, didDocument } = await agentContext.dependencyManager.resolve(DidsApi).resolveCreatedDidDocumentWithKeys(did);
+	const verificationMethod = didDocument.dereferenceKey("#verkey");
+	const key = keys?.find((key$1) => key$1.didDocumentRelativeKeyId === "#verkey");
+	const publicJwk = getPublicJwkFromVerificationMethod(verificationMethod);
+	if (!publicJwk.is(Kms.Ed25519PublicJwk)) throw new CredoError("Expected #verkey verification mehod to be of type Ed25519");
+	publicJwk.keyId = key?.kmsKeyId ?? publicJwk.legacyKeyId;
+	return publicJwk;
+}
+async function getPublicDid(pool, unqualifiedDid) {
+	const request = new GetNymRequest({ dest: unqualifiedDid });
+	const didResponse = await pool.submitRequest(request);
+	if (!didResponse.result.data) throw new IndyVdrNotFoundError(`DID ${unqualifiedDid} not found in indy namespace ${pool.indyNamespace}`);
+	return JSON.parse(didResponse.result.data);
+}
+async function getEndpointsForDid(agentContext, pool, unqualifiedDid) {
+	try {
+		agentContext.config.logger.debug(`Get endpoints for did '${unqualifiedDid}' from ledger '${pool.indyNamespace}'`);
+		const request = new GetAttribRequest({
+			targetDid: unqualifiedDid,
+			raw: "endpoint"
+		});
+		agentContext.config.logger.debug(`Submitting get endpoint ATTRIB request for did '${unqualifiedDid}' to ledger '${pool.indyNamespace}'`);
+		const response = await pool.submitRequest(request);
+		if (!response.result.data) return null;
+		const endpoints = JSON.parse(response.result.data)?.endpoint;
+		agentContext.config.logger.debug(`Got endpoints '${JSON.stringify(endpoints)}' for did '${unqualifiedDid}' from ledger '${pool.indyNamespace}'`, {
+			response,
+			endpoints
+		});
+		return endpoints;
+	} catch (error) {
+		agentContext.config.logger.error(`Error retrieving endpoints for did '${unqualifiedDid}' from ledger '${pool.indyNamespace}'`, { error });
+		throw new IndyVdrError(error);
+	}
+}
+async function buildDidDocument(agentContext, pool, did) {
+	const { namespaceIdentifier } = parseIndyDid(did);
+	const nym = await getPublicDid(pool, namespaceIdentifier);
+	const verkey = getFullVerkey(namespaceIdentifier, nym.verkey);
+	const builder = indyDidDocumentFromDid(did, verkey);
+	if (!nym.diddocContent) {
+		const keyAgreementId = `${did}#key-agreement-1`;
+		const endpoints = await getEndpointsForDid(agentContext, pool, namespaceIdentifier);
+		if (endpoints) {
+			builder.addContext("https://w3id.org/security/suites/x25519-2019/v1").addVerificationMethod({
+				controller: did,
+				id: keyAgreementId,
+				publicKeyBase58: createKeyAgreementKey(verkey),
+				type: "X25519KeyAgreementKey2019"
+			}).addKeyAgreement(keyAgreementId);
+			addServicesFromEndpointsAttrib(builder, did, endpoints, keyAgreementId);
+		}
+		return builder.build();
+	}
+	let diddocContent;
+	try {
+		diddocContent = JSON.parse(nym.diddocContent);
+	} catch (error) {
+		agentContext.config.logger.error(`Nym diddocContent is not a valid json string: ${nym.diddocContent}`);
+		throw new IndyVdrError(`Nym diddocContent failed to parse as JSON: ${error}`);
+	}
+	return combineDidDocumentWithJson(builder.build(), diddocContent);
+}
+
+//#endregion
+export { buildDidDocument, createKeyAgreementKey, didDocDiff, indyDidDocumentFromDid, verificationPublicJwkForIndyDid };
+//# sourceMappingURL=didIndyUtil.mjs.map