@jccdex/vc-vocabularies 0.1.1 → 0.1.2

package/README.md

@@ -8,85 +8,439 @@ VC 业务词汇表与签发 Profile，配合 [`@jccdex/did`](../did) 的 `issueV
 yarn add @jccdex/vc-vocabularies @jccdex/did
 ```
 
-## 快速开始
+## 支持的 VC 类型
 
-使用 Profile 组装签发描述符，再交给 DID SDK 签名：
+| 常量 | 类型字符串 | 场景 |
+|------|-----------|------|
+| `VC_TYPES.NFT_OWNERSHIP` | `NFTOwnership` | 证明持有某个 NFT |
+| `VC_TYPES.NFT_USAGE_AUTHORIZATION` | `NFTUsageAuthorization` | 授权他人使用 NFT |
+| `VC_TYPES.PHONE_VERIFICATION` | `PhoneVerificationCredential` | 手机号实名验证 |
+| `VC_TYPES.FILE_ACCESS_AUTHORIZATION` | `FileAccessAuthorization` | 授权访问 IPFS/IPNS 上的文件或目录 |
+
+品牌 ID：`"ccdao"`（`ccda.ooo`）、`"jdid"`（`jdid.cn`）。
+
+---
+
+## VC 签发示例
+
+> 以下示例展示签发描述符（Descriptor）的组装方式。描述符传入 `@jccdex/did` 的 `issueVC()` 后完成签名，最终产出标准 W3C VC JSON。
+
+### 1. NFT 所有权（NFTOwnership）
+
+证明某个地址持有特定 NFT。
 
 ```typescript
 import { issueVC } from "@jccdex/did";
 import { buildNftOwnershipDescriptor } from "@jccdex/vc-vocabularies";
 
 const descriptor = buildNftOwnershipDescriptor(
-  "ccdao", // 品牌：ccdao | jdid
+  "ccdao",
   {
     id: holderDid,
     owner: holderDid,
     chainId: 1,
+    contractAddress: "0xAbCd...",  // EVM 链填 contractAddress
+    // tokenName: "TokenSymbol",   // SWTC 链改用 tokenName + nftIssuer
+    // nftIssuer: "rXxx...",
     tokenId: "123",
-    contractAddress: "0x...",
     standard: "ERC-721",
-    status: "Active",
+    status: "Active"
   },
   {
     id: `${holderDid}#vc-1`,
-    expirationDate: "2099-01-01T00:00:00.000Z",
+    expirationDate: "2099-01-01T00:00:00.000Z"
   }
 );
 
 const vcJSON = await issueVC(descriptor, { sign, keyDoc });
 ```
 
-`subject` 由调用方按业务填写；Profile 负责组装 `types` 与 `@context`，签名由 `@jccdex/did` 完成。
+<details>
+<summary>签发后的 VC JSON 结构</summary>
+
+```json
+{
+  "@context": [
+    "https://www.w3.org/2018/credentials/v1",
+    {
+      "NFTOwnership": "https://ccda.ooo/vc/v1#NFTOwnership",
+      "version": "https://ccda.ooo/did/v1",
+      "chainId": "https://ccda.ooo/did/v1#chainId",
+      "contractAddress": "https://ccda.ooo/did/v1#contractAddress",
+      "tokenName": "https://ccda.ooo/did/v1#tokenName",
+      "tokenId": "https://ccda.ooo/did/v1#tokenId",
+      "owner": "https://ccda.ooo/did/v1#owner",
+      "nftIssuer": "https://ccda.ooo/did/v1#nftIssuer",
+      "standard": "https://ccda.ooo/did/v1#standard",
+      "status": "https://ccda.ooo/did/v1#status"
+    }
+  ],
+  "type": ["VerifiableCredential", "NFTOwnership"],
+  "id": "did:ethr:0x1234...#vc-1",
+  "issuer": "did:ethr:0x1234...",
+  "issuanceDate": "2026-06-23T00:00:00Z",
+  "expirationDate": "2099-01-01T00:00:00Z",
+  "credentialSubject": {
+    "id": "did:ethr:0x1234...",
+    "owner": "did:ethr:0x1234...",
+    "chainId": 1,
+    "contractAddress": "0xAbCd...",
+    "tokenId": "123",
+    "standard": "ERC-721",
+    "status": "Active"
+  }
+}
+```
+
+</details>
+
+---
+
+### 2. NFT 使用授权（NFTUsageAuthorization）
+
+所有者授权他人在指定范围内使用 NFT（如商业用途、衍生作品等）。
+
+```typescript
+import { buildNftUsageAuthorizationDescriptor } from "@jccdex/vc-vocabularies";
+
+const descriptor = buildNftUsageAuthorizationDescriptor(
+  "ccdao",
+  {
+    id: granteeDid,
+    grantee: granteeDid,
+    owner: ownerDid,
+    chainId: 1,
+    contractAddress: "0xAbCd...",
+    tokenId: "123",
+    standard: "ERC-721",
+    status: "Active",
+    usageRights: "exclusive",
+    restrictions: {
+      commercial: true,
+      derivative: false,
+      sublicense: false,
+      territories: ["CN", "US"],
+      platforms: ["web", "mobile"]
+    }
+  },
+  {
+    id: `${ownerDid}#vc-auth-1`,
+    expirationDate: "2027-01-01T00:00:00.000Z"
+  }
+);
+```
+
+<details>
+<summary>签发后的 VC JSON 结构</summary>
+
+```json
+{
+  "@context": [
+    "https://www.w3.org/2018/credentials/v1",
+    {
+      "NFTUsageAuthorization": "https://ccda.ooo/vc/v1#NFTUsageAuthorization",
+      "version": "https://ccda.ooo/did/v1",
+      "grantee": "https://ccda.ooo/vc/v1#grantee",
+      "usageRights": "https://ccda.ooo/vc/v1#usageRights",
+      "restrictions": {
+        "@id": "https://ccda.ooo/vc/v1#restrictions",
+        "@context": {
+          "commercial": "https://ccda.ooo/vc/v1#commercial",
+          "derivative": "https://ccda.ooo/vc/v1#derivative",
+          "sublicense": "https://ccda.ooo/vc/v1#sublicense",
+          "territories": "https://ccda.ooo/vc/v1#territories",
+          "platforms": "https://ccda.ooo/vc/v1#platforms"
+        }
+      },
+      "chainId": "https://ccda.ooo/did/v1#chainId",
+      "contractAddress": "https://ccda.ooo/did/v1#contractAddress",
+      "tokenId": "https://ccda.ooo/did/v1#tokenId",
+      "owner": "https://ccda.ooo/did/v1#owner",
+      "standard": "https://ccda.ooo/did/v1#standard",
+      "status": "https://ccda.ooo/did/v1#status"
+    }
+  ],
+  "type": ["VerifiableCredential", "NFTUsageAuthorization"],
+  "id": "did:ethr:0x1234...#vc-auth-1",
+  "issuer": "did:ethr:0x1234...",
+  "issuanceDate": "2026-06-23T00:00:00Z",
+  "expirationDate": "2027-01-01T00:00:00Z",
+  "credentialSubject": {
+    "id": "did:ethr:0xABCD...",
+    "grantee": "did:ethr:0xABCD...",
+    "owner": "did:ethr:0x1234...",
+    "chainId": 1,
+    "contractAddress": "0xAbCd...",
+    "tokenId": "123",
+    "standard": "ERC-721",
+    "status": "Active",
+    "usageRights": "exclusive",
+    "restrictions": {
+      "commercial": true,
+      "derivative": false,
+      "sublicense": false,
+      "territories": ["CN", "US"],
+      "platforms": ["web", "mobile"]
+    }
+  }
+}
+```
+
+</details>
+
+---
+
+### 3. 电话验证（PhoneVerificationCredential）
+
+证明某个 DID 完成了手机号实名验证。
+
+```typescript
+import { buildPhoneVerificationDescriptor } from "@jccdex/vc-vocabularies";
+
+const descriptor = buildPhoneVerificationDescriptor(
+  "jdid",
+  {
+    id: userDid,
+    standard: "1.0",
+    status: "active",
+    verificationMethod: "sms-otp",
+    verificationProcess: {
+      verifiedAt: "2026-06-23T06:00:00Z",
+      updateAt: "2026-06-23T06:00:00Z",
+      verifierId: "did:ethr:0xVERIFIER..."
+    }
+  },
+  {
+    id: `${userDid}#vc-phone-1`,
+    expirationDate: "2027-06-23T00:00:00.000Z"
+  }
+);
+```
+
+<details>
+<summary>签发后的 VC JSON 结构</summary>
+
+```json
+{
+  "@context": [
+    "https://www.w3.org/2018/credentials/v1",
+    {
+      "PhoneVerificationCredential": "https://jdid.cn/vc/v1#PhoneVerificationCredential",
+      "version": "https://jdid.cn/did/v1",
+      "standard": "https://jdid.cn/did/v1#standard",
+      "status": "https://jdid.cn/did/v1#status",
+      "verificationMethod": "https://jdid.cn/did/v1#verificationMethod",
+      "verificationProcess": {
+        "@id": "https://jdid.cn/did/v1#verificationProcess",
+        "@context": {
+          "verifiedAt": "https://jdid.cn/did/v1#verifiedAt",
+          "updateAt": "https://jdid.cn/did/v1#updateAt",
+          "verifierId": "https://jdid.cn/did/v1#verifierId"
+        }
+      }
+    }
+  ],
+  "type": ["VerifiableCredential", "PhoneVerificationCredential"],
+  "id": "did:ethr:0xUSER...#vc-phone-1",
+  "issuer": "did:ethr:0xVERIFIER...",
+  "issuanceDate": "2026-06-23T06:00:00Z",
+  "expirationDate": "2027-06-23T00:00:00Z",
+  "credentialSubject": {
+    "id": "did:ethr:0xUSER...",
+    "standard": "1.0",
+    "status": "active",
+    "verificationMethod": "sms-otp",
+    "verificationProcess": {
+      "verifiedAt": "2026-06-23T06:00:00Z",
+      "updateAt": "2026-06-23T06:00:00Z",
+      "verifierId": "did:ethr:0xVERIFIER..."
+    }
+  }
+}
+```
+
+</details>
+
+---
+
+### 4. 文件访问授权（FileAccessAuthorization）
+
+基于 IPFS/IPNS 存储模型，授权他人访问链上文件或目录。
+
+**设计说明：**
+- `ipnsName`：IPNS 固定入口，所有者更新文件后入口不变，被授权方始终可通过它访问最新内容。
+- 不存 CID：CID 随文件更新而变化；IPFS 内容寻址协议在取回内容时自动验证完整性，无需在 VC 层声明。
+- `resourceType`：区分授权粒度为单文件（`"file"`）或目录（`"directory"`）。
+- `resourcePath`：目录授权时可指定子路径，为空则整个 IPNS 目录均可访问。
+
+```typescript
+import { buildFileAccessAuthorizationDescriptor } from "@jccdex/vc-vocabularies";
+
+const descriptor = buildFileAccessAuthorizationDescriptor(
+  "ccdao",
+  {
+    id: granteeDid,
+    grantee: granteeDid,
+    ipnsName: "k51qzi5uqu5dh9ihj4g2s7qopkrpwhvy49rlcdmqbcg58k8q8z32lkj7k8s",
+    resourceType: "directory",
+    resourcePath: "/reports/2026",   // 省略则整个目录
+    owner: ownerDid,
+    accessRights: ["read", "download"],
+    accessRestrictions: {
+      expiresAt: "2027-06-23T00:00:00.000Z",
+      maxDownloads: 50,              // 0 = 不限次数
+      ipWhitelist: []                // 空 = 不限 IP
+    },
+    standard: "1.0",
+    status: "active"
+  },
+  {
+    id: `${ownerDid}#vc-file-1`,
+    expirationDate: "2027-06-23T00:00:00.000Z"
+  }
+);
+```
+
+<details>
+<summary>签发后的 VC JSON 结构</summary>
+
+```json
+{
+  "@context": [
+    "https://www.w3.org/2018/credentials/v1",
+    {
+      "FileAccessAuthorization": "https://ccda.ooo/vc/v1#FileAccessAuthorization",
+      "version": "https://ccda.ooo/did/v1",
+      "grantee": "https://ccda.ooo/vc/v1#grantee",
+      "accessRights": "https://ccda.ooo/vc/v1#accessRights",
+      "accessRestrictions": {
+        "@id": "https://ccda.ooo/vc/v1#accessRestrictions",
+        "@context": {
+          "expiresAt": "https://ccda.ooo/vc/v1#expiresAt",
+          "maxDownloads": "https://ccda.ooo/vc/v1#maxDownloads",
+          "ipWhitelist": "https://ccda.ooo/vc/v1#ipWhitelist"
+        }
+      },
+      "ipnsName": "https://ccda.ooo/did/v1#ipnsName",
+      "resourceType": "https://ccda.ooo/did/v1#resourceType",
+      "resourcePath": "https://ccda.ooo/did/v1#resourcePath",
+      "owner": "https://ccda.ooo/did/v1#owner",
+      "standard": "https://ccda.ooo/did/v1#standard",
+      "status": "https://ccda.ooo/did/v1#status"
+    }
+  ],
+  "type": ["VerifiableCredential", "FileAccessAuthorization"],
+  "id": "did:ethr:0x1234...#vc-file-1",
+  "issuer": "did:ethr:0x1234...",
+  "issuanceDate": "2026-06-23T06:34:00Z",
+  "expirationDate": "2027-06-23T00:00:00Z",
+  "credentialSubject": {
+    "id": "did:ethr:0xABCD...",
+    "grantee": "did:ethr:0xABCD...",
+    "ipnsName": "k51qzi5uqu5dh9ihj4g2s7qopkrpwhvy49rlcdmqbcg58k8q8z32lkj7k8s",
+    "resourceType": "directory",
+    "resourcePath": "/reports/2026",
+    "owner": "did:ethr:0x1234...",
+    "accessRights": ["read", "download"],
+    "accessRestrictions": {
+      "expiresAt": "2027-06-23T00:00:00Z",
+      "maxDownloads": 50,
+      "ipWhitelist": []
+    },
+    "standard": "1.0",
+    "status": "active"
+  }
+}
+```
+
+</details>
+
+**被授权方访问流程：**
+
+```
+1. 持 VC 向资源服务方出示，服务方验证签名
+2. 从 credentialSubject.ipnsName 解析当前 CID（IPNS 查询）
+3. 按 resourcePath 限定可访问范围
+4. 从 IPFS 取内容，协议层自动以 CID 验证完整性（内容寻址天然自验证）
+5. 检查 accessRestrictions（到期时间、下载次数、IP 白名单）
+```
+
+---
 
 ## 主要 API
 
 | 导出 | 说明 |
 |------|------|
-| `buildNftOwnershipDescriptor` | NFT 所有权 VC |
-| `buildNftUsageAuthorizationDescriptor` | NFT 授权 VC |
-| `buildPhoneVerificationDescriptor` | 电话验证 VC |
+| `buildNftOwnershipDescriptor` | NFT 所有权 VC 签发 Profile |
+| `buildNftUsageAuthorizationDescriptor` | NFT 使用授权 VC 签发 Profile |
+| `buildPhoneVerificationDescriptor` | 电话验证 VC 签发 Profile |
+| `buildFileAccessAuthorizationDescriptor` | 文件访问授权 VC 签发 Profile |
 | `buildInlineContext` | 按字段生成最小内联 `@context` |
 | `VC_TYPES` | VC 业务类型常量 |
-| `getNftOwnershipContext` 等 | 按品牌获取内联 context 对象 |
+| `getNftOwnershipContext` 等 | 按品牌获取完整内联 context 对象 |
+| `CCDAO_*_CONTEXT` / `JDID_*_CONTEXT` | 各类型品牌具名 context 常量 |
 
-品牌 ID：`"ccdao"`（`ccda.ooo`）、`"jdid"`（`jdid.cn`）。
+---
 
 ## 自定义 Descriptor
 
-不经过 Profile 时，可自行组装后调用 `issueVC`：
+不经过 Profile 时，可用 `buildInlineContext` 按需裁剪字段，减小 VC 体积：
 
 ```typescript
 import {
   buildInlineContext,
   VC_TYPES,
-  W3C_VC_CONTEXT_URL,
+  W3C_VC_CONTEXT_URL
 } from "@jccdex/vc-vocabularies";
 
+// 仅携带本次 subject 用到的字段，忽略 contractAddress 等未用术语
 const descriptor = {
   types: [VC_TYPES.NFT_OWNERSHIP],
   contexts: [
     W3C_VC_CONTEXT_URL,
     buildInlineContext("jdid", {
       types: ["NFTOwnership"],
-      fields: ["chainId", "tokenId", "tokenName", "nftIssuer", "owner", "standard", "status"],
-    }),
+      fields: ["chainId", "tokenId", "tokenName", "nftIssuer", "owner", "standard", "status"]
+    })
   ],
   subject: { id: holderDid, /* ... */ },
   id: `${holderDid}#vc-1`,
-  expirationDate: "2099-01-01T00:00:00.000Z",
+  expirationDate: "2099-01-01T00:00:00.000Z"
+};
+
+// 文件授权最小 context（仅携带访问必需字段）
+const fileDescriptor = {
+  types: [VC_TYPES.FILE_ACCESS_AUTHORIZATION],
+  contexts: [
+    W3C_VC_CONTEXT_URL,
+    buildInlineContext("ccdao", {
+      types: ["FileAccessAuthorization"],
+      fields: ["ipnsName", "resourceType", "resourcePath", "accessRights", "accessRestrictions"]
+    })
+  ],
+  subject: { id: granteeDid, /* ... */ },
+  id: `${ownerDid}#vc-file-2`,
+  expirationDate: "2027-01-01T00:00:00.000Z"
 };
 ```
 
+---
+
 ## 词汇表 JSON（高级）
 
 验签缓存与品牌服务器部署使用 `contexts/*.json`，可通过子路径引用：
 
 ```javascript
-import jdidDidV1 from "@jccdex/vc-vocabularies/contexts/jdid-did-v1.json";
+import ccdaoDidV1 from "@jccdex/vc-vocabularies/contexts/ccda-did-v1.json";
+import jdidDidV1  from "@jccdex/vc-vocabularies/contexts/jdid-did-v1.json";
+import ccdaoVcV1  from "@jccdex/vc-vocabularies/contexts/ccda-vc-v1.json";
+import jdidVcV1   from "@jccdex/vc-vocabularies/contexts/jdid-vc-v1.json";
 ```
 
 一般由 `@jccdex/did` 内部引用，应用层通常无需直接 import。
 
+---
+
 ## 开发
 
 ```bash

package/lib/index.d.ts

@@ -12,9 +12,11 @@ export * from "./vc-types.js";
 export { buildNftOwnershipDescriptor } from "./profiles/nft-ownership.js";
 export { buildNftUsageAuthorizationDescriptor } from "./profiles/nft-usage-authorization.js";
 export { buildPhoneVerificationDescriptor } from "./profiles/phone-verification.js";
+export { buildFileAccessAuthorizationDescriptor } from "./profiles/file-access-authorization.js";
 import { buildNftOwnershipDescriptor } from "./profiles/nft-ownership.js";
 import { buildNftUsageAuthorizationDescriptor } from "./profiles/nft-usage-authorization.js";
 import { buildPhoneVerificationDescriptor } from "./profiles/phone-verification.js";
+import { buildFileAccessAuthorizationDescriptor } from "./profiles/file-access-authorization.js";
 /** 按业务场景索引的 Profile 注册表，便于 DApp 动态选择签发模板 */
 export declare const profiles: {
     nftOwnership: {
@@ -26,4 +28,7 @@ export declare const profiles: {
     phoneVerification: {
         buildDescriptor: typeof buildPhoneVerificationDescriptor;
     };
+    fileAccessAuthorization: {
+        buildDescriptor: typeof buildFileAccessAuthorizationDescriptor;
+    };
 };

package/lib/index.js

@@ -14,7 +14,7 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.profiles = exports.buildPhoneVerificationDescriptor = exports.buildNftUsageAuthorizationDescriptor = exports.buildNftOwnershipDescriptor = void 0;
+exports.profiles = exports.buildFileAccessAuthorizationDescriptor = exports.buildPhoneVerificationDescriptor = exports.buildNftUsageAuthorizationDescriptor = exports.buildNftOwnershipDescriptor = void 0;
 /**
  * @jccdex/vc-vocabularies 包入口。
  *
@@ -32,14 +32,20 @@ var nft_usage_authorization_js_1 = require("./profiles/nft-usage-authorization.j
 Object.defineProperty(exports, "buildNftUsageAuthorizationDescriptor", { enumerable: true, get: function () { return nft_usage_authorization_js_1.buildNftUsageAuthorizationDescriptor; } });
 var phone_verification_js_1 = require("./profiles/phone-verification.js");
 Object.defineProperty(exports, "buildPhoneVerificationDescriptor", { enumerable: true, get: function () { return phone_verification_js_1.buildPhoneVerificationDescriptor; } });
+var file_access_authorization_js_1 = require("./profiles/file-access-authorization.js");
+Object.defineProperty(exports, "buildFileAccessAuthorizationDescriptor", { enumerable: true, get: function () { return file_access_authorization_js_1.buildFileAccessAuthorizationDescriptor; } });
 const nft_ownership_js_2 = require("./profiles/nft-ownership.js");
 const nft_usage_authorization_js_2 = require("./profiles/nft-usage-authorization.js");
 const phone_verification_js_2 = require("./profiles/phone-verification.js");
+const file_access_authorization_js_2 = require("./profiles/file-access-authorization.js");
 /** 按业务场景索引的 Profile 注册表，便于 DApp 动态选择签发模板 */
 exports.profiles = {
     nftOwnership: { buildDescriptor: nft_ownership_js_2.buildNftOwnershipDescriptor },
     nftUsageAuthorization: {
         buildDescriptor: nft_usage_authorization_js_2.buildNftUsageAuthorizationDescriptor
     },
-    phoneVerification: { buildDescriptor: phone_verification_js_2.buildPhoneVerificationDescriptor }
+    phoneVerification: { buildDescriptor: phone_verification_js_2.buildPhoneVerificationDescriptor },
+    fileAccessAuthorization: {
+        buildDescriptor: file_access_authorization_js_2.buildFileAccessAuthorizationDescriptor
+    }
 };

package/lib/inline-contexts.d.ts

@@ -1,15 +1,30 @@
 /**
  * 品牌内联 context 定义。
  *
- * 品牌（ccdao / jdid）仅区分国内外词汇表 URL 命名空间，术语字段集相同。
- * 链差异（EVM 用 contractAddress、SWTC 用 tokenName/nftIssuer）由应用层 subject 决定，
- * 不在词汇层按品牌或链裁剪。
+ * ## 设计原则
+ * - 品牌（ccdao / jdid）仅区分国内外词汇表 URL 命名空间，术语字段集相同。
+ * - 链差异（EVM 用 contractAddress、SWTC 用 tokenName/nftIssuer）由应用层 subject 决定，
+ *   不在词汇层按品牌或链裁剪。
+ * - 维护原则：只增不删、不改 URI（append-only）。
  *
- * 维护原则：只增不删、不改 URI（append-only）。
+ * ## 命名空间规则
+ * - `did#` 前缀：跨 VC 类型通用的实体属性（owner、status、chainId 等）
+ * - `vc#` 前缀：业务专属术语（grantee、usageRights、accessRights 等）
  */
 import type { BrandId } from "./types.js";
+/** W3C Verifiable Credentials 标准 context URL，固定作为 @context 数组第一项 */
 export declare const W3C_VC_CONTEXT_URL = "https://www.w3.org/2018/credentials/v1";
-/** 统一 NFTOwnership 术语集，品牌只替换 URL 前缀 */
+/**
+ * 构建 NFT 所有权 VC 的内联 @context 术语集。
+ *
+ * 链差异（EVM / SWTC）体现在 subject 字段选择上：
+ * - EVM：填 `contractAddress`
+ * - SWTC：填 `tokenName` + `nftIssuer`
+ * 词汇层两者均声明，由 DApp 按链选填。
+ *
+ * @param brand - 品牌 ID，决定 URL 命名空间
+ * @returns 内联 @context 对象，可直接放入 VC 的 `@context` 数组
+ */
 export declare function buildNftOwnershipContext(brand: BrandId): {
     NFTOwnership: string;
     version: "https://ccda.ooo/did/v1" | "https://jdid.cn/did/v1";
@@ -22,7 +37,15 @@ export declare function buildNftOwnershipContext(brand: BrandId): {
     standard: string;
     status: string;
 };
-/** 统一 NFTUsageAuthorization 术语集 */
+/**
+ * 构建 NFT 使用授权 VC 的内联 @context 术语集。
+ *
+ * `restrictions` 是嵌套 context 对象，其子字段（commercial、derivative 等）
+ * 仅在该嵌套对象内有效，不与外层字段命名冲突。
+ *
+ * @param brand - 品牌 ID，决定 URL 命名空间
+ * @returns 内联 @context 对象，含嵌套 restrictions 术语集
+ */
 export declare function buildNftUsageAuthorizationContext(brand: BrandId): {
     NFTUsageAuthorization: string;
     version: "https://ccda.ooo/did/v1" | "https://jdid.cn/did/v1";
@@ -47,12 +70,27 @@ export declare function buildNftUsageAuthorizationContext(brand: BrandId): {
     standard: string;
     status: string;
 };
-/** DID 文档 version 内联 context */
+/**
+ * 构建 DID 文档 version 字段的内联 @context。
+ *
+ * 仅包含 `version`（命名空间根 URL）与 `credentials` 两个术语，
+ * 用于 DID 文档自身，不是 VC subject 字段。
+ *
+ * @param brand - 品牌 ID，决定 URL 命名空间
+ * @returns 含 version / credentials 的最小 context 对象
+ */
 export declare function buildVersionContext(brand: BrandId): {
     version: "https://ccda.ooo/did/v1" | "https://jdid.cn/did/v1";
     credentials: string;
 };
-/** 电话验证 VC 术语集（两品牌结构相同，仅 URL 不同） */
+/**
+ * 构建电话验证 VC 的内联 @context 术语集。
+ *
+ * `verificationProcess` 是嵌套 context，记录验证操作的时间、操作方等审计信息。
+ *
+ * @param brand - 品牌 ID，决定 URL 命名空间
+ * @returns 内联 @context 对象，含嵌套 verificationProcess 术语集
+ */
 export declare function buildPhoneVerificationContext(brand: BrandId): {
     PhoneVerificationCredential: string;
     version: "https://ccda.ooo/did/v1" | "https://jdid.cn/did/v1";
@@ -68,11 +106,54 @@ export declare function buildPhoneVerificationContext(brand: BrandId): {
         };
     };
 };
-/** 便捷 getter，供 DApp / Profile 使用 */
+/**
+ * 构建文件访问授权 VC 的内联 @context 术语集（基于 IPFS/IPNS 存储模型）。
+ *
+ * ## 字段设计说明
+ *
+ * | 字段           | 命名空间 | 说明                                                       |
+ * |----------------|----------|------------------------------------------------------------|
+ * | ipnsName       | did#     | IPNS 固定入口，所有者更新文件后仍指向同一名称                |
+ * | resourceType   | did#     | 授权粒度："file" \| "directory"                            |
+ * | resourcePath   | did#     | 目录授权时的子路径限制，为空则整个 IPNS 目录均可访问         |
+ * | grantee        | vc#      | 被授权方 DID                                               |
+ * | accessRights   | vc#      | 权限列表，如 ["read", "download"]                          |
+ * | accessRestrictions | vc# | 访问限制（嵌套对象）：到期时间、最大下载次数、IP 白名单      |
+ *
+ * ## 为何不存 CID
+ * CID 随文件更新而变化，存入 VC 后会立即过时；
+ * 内容完整性由 IPFS 内容寻址协议层自动保证（取回内容时重算 CID 对比），
+ * 无需在凭证层额外声明。
+ *
+ * @param brand - 品牌 ID，决定 URL 命名空间
+ * @returns 内联 @context 对象，含嵌套 accessRestrictions 术语集
+ */
+export declare function buildFileAccessAuthorizationContext(brand: BrandId): {
+    FileAccessAuthorization: string;
+    version: "https://ccda.ooo/did/v1" | "https://jdid.cn/did/v1";
+    grantee: string;
+    accessRights: string;
+    accessRestrictions: {
+        "@id": string;
+        "@context": {
+            expiresAt: string;
+            maxDownloads: string;
+            ipWhitelist: string;
+        };
+    };
+    ipnsName: string;
+    resourceType: string;
+    resourcePath: string;
+    owner: string;
+    standard: string;
+    status: string;
+};
+/** 便捷 getter 别名，供 DApp / Profile 使用（与 build* 函数等价） */
 export declare const getNftOwnershipContext: typeof buildNftOwnershipContext;
 export declare const getNftUsageAuthorizationContext: typeof buildNftUsageAuthorizationContext;
 export declare const getVersionContext: typeof buildVersionContext;
 export declare const getPhoneVerificationContext: typeof buildPhoneVerificationContext;
+export declare const getFileAccessAuthorizationContext: typeof buildFileAccessAuthorizationContext;
 /** 向后兼容的具名导出（结构已统一，仅 URL 命名空间不同） */
 export declare const CCDAO_NFT_OWNERSHIP_CONTEXT: {
     NFTOwnership: string;
@@ -184,14 +265,70 @@ export declare const JDID_PHONE_VERIFICATION_CONTEXT: {
         };
     };
 };
+export declare const CCDAO_FILE_ACCESS_AUTHORIZATION_CONTEXT: {
+    FileAccessAuthorization: string;
+    version: "https://ccda.ooo/did/v1" | "https://jdid.cn/did/v1";
+    grantee: string;
+    accessRights: string;
+    accessRestrictions: {
+        "@id": string;
+        "@context": {
+            expiresAt: string;
+            maxDownloads: string;
+            ipWhitelist: string;
+        };
+    };
+    ipnsName: string;
+    resourceType: string;
+    resourcePath: string;
+    owner: string;
+    standard: string;
+    status: string;
+};
+export declare const JDID_FILE_ACCESS_AUTHORIZATION_CONTEXT: {
+    FileAccessAuthorization: string;
+    version: "https://ccda.ooo/did/v1" | "https://jdid.cn/did/v1";
+    grantee: string;
+    accessRights: string;
+    accessRestrictions: {
+        "@id": string;
+        "@context": {
+            expiresAt: string;
+            maxDownloads: string;
+            ipWhitelist: string;
+        };
+    };
+    ipnsName: string;
+    resourceType: string;
+    resourcePath: string;
+    owner: string;
+    standard: string;
+    status: string;
+};
 /**
  * 按本次签发需要的字段，生成最小内联 @context 对象。
  *
+ * 相较于直接使用 `buildXxxContext`（返回全量术语），此函数只保留
+ * 本次 subject 实际用到的字段，减小 VC 体积。
+ *
+ * 自动保留：
+ * - 类型标识符（opts.types 中的每一项，如 "NFTOwnership"）
+ * - `version`（命名空间声明，始终需要）
+ *
+ * @param brand  - 品牌 ID，决定 URL 命名空间
+ * @param opts.types  - VC 类型名数组，如 ["NFTOwnership"]
+ * @param opts.fields - 需要解释的字段名；不传则返回该类型完整预设
+ *
  * @example
  * // 仅解释 tokenId、owner，不会带上 contractAddress
  * buildInlineContext("ccdao", { types: ["NFTOwnership"], fields: ["tokenId", "owner"] })
  *
- * 未传 fields 时返回该类型的完整预设（与 Profile 行为一致）。
+ * @example
+ * // 目录授权，只携带访问地址与权限字段
+ * buildInlineContext("jdid", {
+ *   types: ["FileAccessAuthorization"],
+ *   fields: ["ipnsName", "resourceType", "resourcePath", "accessRights"]
+ * })
  */
 export declare function buildInlineContext(brand: BrandId, opts: {
     types: string[];

package/lib/inline-contexts.js

@@ -1,22 +1,35 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.JDID_PHONE_VERIFICATION_CONTEXT = exports.CCDAO_PHONE_VERIFICATION_CONTEXT = exports.JDID_VERSION_CONTEXT = exports.CCDAO_VERSION_CONTEXT = exports.JDID_NFT_USAGE_AUTHORIZATION_CONTEXT = exports.CCDAO_NFT_USAGE_AUTHORIZATION_CONTEXT = exports.JDID_NFT_OWNERSHIP_CONTEXT = exports.CCDAO_NFT_OWNERSHIP_CONTEXT = exports.getPhoneVerificationContext = exports.getVersionContext = exports.getNftUsageAuthorizationContext = exports.getNftOwnershipContext = exports.W3C_VC_CONTEXT_URL = void 0;
+exports.JDID_FILE_ACCESS_AUTHORIZATION_CONTEXT = exports.CCDAO_FILE_ACCESS_AUTHORIZATION_CONTEXT = exports.JDID_PHONE_VERIFICATION_CONTEXT = exports.CCDAO_PHONE_VERIFICATION_CONTEXT = exports.JDID_VERSION_CONTEXT = exports.CCDAO_VERSION_CONTEXT = exports.JDID_NFT_USAGE_AUTHORIZATION_CONTEXT = exports.CCDAO_NFT_USAGE_AUTHORIZATION_CONTEXT = exports.JDID_NFT_OWNERSHIP_CONTEXT = exports.CCDAO_NFT_OWNERSHIP_CONTEXT = exports.getFileAccessAuthorizationContext = exports.getPhoneVerificationContext = exports.getVersionContext = exports.getNftUsageAuthorizationContext = exports.getNftOwnershipContext = exports.W3C_VC_CONTEXT_URL = void 0;
 exports.buildNftOwnershipContext = buildNftOwnershipContext;
 exports.buildNftUsageAuthorizationContext = buildNftUsageAuthorizationContext;
 exports.buildVersionContext = buildVersionContext;
 exports.buildPhoneVerificationContext = buildPhoneVerificationContext;
+exports.buildFileAccessAuthorizationContext = buildFileAccessAuthorizationContext;
 exports.buildInlineContext = buildInlineContext;
 const ccdao_js_1 = require("./brands/ccdao.js");
 const jdid_js_1 = require("./brands/jdid.js");
+/** W3C Verifiable Credentials 标准 context URL，固定作为 @context 数组第一项 */
 exports.W3C_VC_CONTEXT_URL = "https://www.w3.org/2018/credentials/v1";
 const BRAND_URLS = {
     ccdao: { did: ccdao_js_1.CCDAO_DID_VOCAB_URL, vc: ccdao_js_1.CCDAO_VC_VOCAB_URL },
     jdid: { did: jdid_js_1.JDID_DID_VOCAB_URL, vc: jdid_js_1.JDID_VC_VOCAB_URL }
 };
+/** 根据品牌取词汇表 URL 前缀 */
 function vocab(brand) {
     return BRAND_URLS[brand];
 }
-/** 统一 NFTOwnership 术语集，品牌只替换 URL 前缀 */
+/**
+ * 构建 NFT 所有权 VC 的内联 @context 术语集。
+ *
+ * 链差异（EVM / SWTC）体现在 subject 字段选择上：
+ * - EVM：填 `contractAddress`
+ * - SWTC：填 `tokenName` + `nftIssuer`
+ * 词汇层两者均声明，由 DApp 按链选填。
+ *
+ * @param brand - 品牌 ID，决定 URL 命名空间
+ * @returns 内联 @context 对象，可直接放入 VC 的 `@context` 数组
+ */
 function buildNftOwnershipContext(brand) {
     const { did, vc } = vocab(brand);
     return {
@@ -32,7 +45,15 @@ function buildNftOwnershipContext(brand) {
         status: `${did}#status`
     };
 }
-/** 统一 NFTUsageAuthorization 术语集 */
+/**
+ * 构建 NFT 使用授权 VC 的内联 @context 术语集。
+ *
+ * `restrictions` 是嵌套 context 对象，其子字段（commercial、derivative 等）
+ * 仅在该嵌套对象内有效，不与外层字段命名冲突。
+ *
+ * @param brand - 品牌 ID，决定 URL 命名空间
+ * @returns 内联 @context 对象，含嵌套 restrictions 术语集
+ */
 function buildNftUsageAuthorizationContext(brand) {
     const { did, vc } = vocab(brand);
     return {
@@ -60,7 +81,15 @@ function buildNftUsageAuthorizationContext(brand) {
         status: `${did}#status`
     };
 }
-/** DID 文档 version 内联 context */
+/**
+ * 构建 DID 文档 version 字段的内联 @context。
+ *
+ * 仅包含 `version`（命名空间根 URL）与 `credentials` 两个术语，
+ * 用于 DID 文档自身，不是 VC subject 字段。
+ *
+ * @param brand - 品牌 ID，决定 URL 命名空间
+ * @returns 含 version / credentials 的最小 context 对象
+ */
 function buildVersionContext(brand) {
     const { did } = vocab(brand);
     return {
@@ -68,7 +97,14 @@ function buildVersionContext(brand) {
         credentials: `${did}#credentials`
     };
 }
-/** 电话验证 VC 术语集（两品牌结构相同，仅 URL 不同） */
+/**
+ * 构建电话验证 VC 的内联 @context 术语集。
+ *
+ * `verificationProcess` 是嵌套 context，记录验证操作的时间、操作方等审计信息。
+ *
+ * @param brand - 品牌 ID，决定 URL 命名空间
+ * @returns 内联 @context 对象，含嵌套 verificationProcess 术语集
+ */
 function buildPhoneVerificationContext(brand) {
     const { did, vc } = vocab(brand);
     return {
@@ -87,11 +123,57 @@ function buildPhoneVerificationContext(brand) {
         }
     };
 }
-/** 便捷 getter，供 DApp / Profile 使用 */
+/**
+ * 构建文件访问授权 VC 的内联 @context 术语集（基于 IPFS/IPNS 存储模型）。
+ *
+ * ## 字段设计说明
+ *
+ * | 字段           | 命名空间 | 说明                                                       |
+ * |----------------|----------|------------------------------------------------------------|
+ * | ipnsName       | did#     | IPNS 固定入口，所有者更新文件后仍指向同一名称                |
+ * | resourceType   | did#     | 授权粒度："file" \| "directory"                            |
+ * | resourcePath   | did#     | 目录授权时的子路径限制，为空则整个 IPNS 目录均可访问         |
+ * | grantee        | vc#      | 被授权方 DID                                               |
+ * | accessRights   | vc#      | 权限列表，如 ["read", "download"]                          |
+ * | accessRestrictions | vc# | 访问限制（嵌套对象）：到期时间、最大下载次数、IP 白名单      |
+ *
+ * ## 为何不存 CID
+ * CID 随文件更新而变化，存入 VC 后会立即过时；
+ * 内容完整性由 IPFS 内容寻址协议层自动保证（取回内容时重算 CID 对比），
+ * 无需在凭证层额外声明。
+ *
+ * @param brand - 品牌 ID，决定 URL 命名空间
+ * @returns 内联 @context 对象，含嵌套 accessRestrictions 术语集
+ */
+function buildFileAccessAuthorizationContext(brand) {
+    const { did, vc } = vocab(brand);
+    return {
+        FileAccessAuthorization: `${vc}#FileAccessAuthorization`,
+        version: did,
+        grantee: `${vc}#grantee`,
+        accessRights: `${vc}#accessRights`,
+        accessRestrictions: {
+            "@id": `${vc}#accessRestrictions`,
+            "@context": {
+                expiresAt: `${vc}#expiresAt`,
+                maxDownloads: `${vc}#maxDownloads`,
+                ipWhitelist: `${vc}#ipWhitelist`
+            }
+        },
+        ipnsName: `${did}#ipnsName`,
+        resourceType: `${did}#resourceType`,
+        resourcePath: `${did}#resourcePath`,
+        owner: `${did}#owner`,
+        standard: `${did}#standard`,
+        status: `${did}#status`
+    };
+}
+/** 便捷 getter 别名，供 DApp / Profile 使用（与 build* 函数等价） */
 exports.getNftOwnershipContext = buildNftOwnershipContext;
 exports.getNftUsageAuthorizationContext = buildNftUsageAuthorizationContext;
 exports.getVersionContext = buildVersionContext;
 exports.getPhoneVerificationContext = buildPhoneVerificationContext;
+exports.getFileAccessAuthorizationContext = buildFileAccessAuthorizationContext;
 /** 向后兼容的具名导出（结构已统一，仅 URL 命名空间不同） */
 exports.CCDAO_NFT_OWNERSHIP_CONTEXT = buildNftOwnershipContext("ccdao");
 exports.JDID_NFT_OWNERSHIP_CONTEXT = buildNftOwnershipContext("jdid");
@@ -101,12 +183,22 @@ exports.CCDAO_VERSION_CONTEXT = buildVersionContext("ccdao");
 exports.JDID_VERSION_CONTEXT = buildVersionContext("jdid");
 exports.CCDAO_PHONE_VERIFICATION_CONTEXT = buildPhoneVerificationContext("ccdao");
 exports.JDID_PHONE_VERIFICATION_CONTEXT = buildPhoneVerificationContext("jdid");
+exports.CCDAO_FILE_ACCESS_AUTHORIZATION_CONTEXT = buildFileAccessAuthorizationContext("ccdao");
+exports.JDID_FILE_ACCESS_AUTHORIZATION_CONTEXT = buildFileAccessAuthorizationContext("jdid");
+/**
+ * 按 VC 类型名索引 context builder，供 `buildInlineContext` 内部使用。
+ * 新增 VC 类型时在此注册即可，无需修改 buildInlineContext 逻辑。
+ */
 const VC_TYPE_BUILDERS = {
     NFTOwnership: buildNftOwnershipContext,
     NFTUsageAuthorization: buildNftUsageAuthorizationContext,
-    PhoneVerificationCredential: buildPhoneVerificationContext
+    PhoneVerificationCredential: buildPhoneVerificationContext,
+    FileAccessAuthorization: buildFileAccessAuthorizationContext
 };
-/** 从完整词汇表中仅取出 fields 列出的键，用于「最小内联 context」 */
+/**
+ * 从完整词汇表中仅取出 fields 列出的键，用于构建「最小内联 context」。
+ * 自动保留类型标识符（type term）和 version，其余字段按需裁剪。
+ */
 function pickFields(source, fields) {
     const result = {};
     for (const field of fields) {
@@ -119,11 +211,27 @@ function pickFields(source, fields) {
 /**
  * 按本次签发需要的字段，生成最小内联 @context 对象。
  *
+ * 相较于直接使用 `buildXxxContext`（返回全量术语），此函数只保留
+ * 本次 subject 实际用到的字段，减小 VC 体积。
+ *
+ * 自动保留：
+ * - 类型标识符（opts.types 中的每一项，如 "NFTOwnership"）
+ * - `version`（命名空间声明，始终需要）
+ *
+ * @param brand  - 品牌 ID，决定 URL 命名空间
+ * @param opts.types  - VC 类型名数组，如 ["NFTOwnership"]
+ * @param opts.fields - 需要解释的字段名；不传则返回该类型完整预设
+ *
  * @example
  * // 仅解释 tokenId、owner，不会带上 contractAddress
  * buildInlineContext("ccdao", { types: ["NFTOwnership"], fields: ["tokenId", "owner"] })
  *
- * 未传 fields 时返回该类型的完整预设（与 Profile 行为一致）。
+ * @example
+ * // 目录授权，只携带访问地址与权限字段
+ * buildInlineContext("jdid", {
+ *   types: ["FileAccessAuthorization"],
+ *   fields: ["ipnsName", "resourceType", "resourcePath", "accessRights"]
+ * })
  */
 function buildInlineContext(brand, opts) {
     const merged = {};

package/lib/profiles/file-access-authorization.d.ts

@@ -0,0 +1,23 @@
+import type { BrandId, DescriptorMeta, VCIssuanceDescriptor } from "../types.js";
+/**
+ * 构建文件访问授权 VC 签发描述符（基于 IPFS/IPNS 存储模型）。
+ *
+ * 两品牌词汇结构相同，仅 URL 命名空间不同。
+ *
+ * @param brand   - 品牌 ID："ccdao" | "jdid"
+ * @param subject - credentialSubject，必须包含 `id`（被授权方 DID）及以下业务字段：
+ *   - `ipnsName`      IPNS 固定入口（被授权方用来访问文件/目录的稳定地址）
+ *   - `resourceType`  授权粒度："file" | "directory"
+ *   - `resourcePath`  （可选）目录内子路径，为空则整个 IPNS 目录均可访问
+ *   - `grantee`       被授权方 DID（通常与 id 相同）
+ *   - `accessRights`  权限数组，如 ["read", "download"]
+ *   - `accessRestrictions` 访问限制：{ expiresAt, maxDownloads, ipWhitelist }
+ *   - `owner`         文件所有者 DID
+ *   - `standard`      协议版本号
+ *   - `status`        凭证状态（"active" | "revoked"）
+ * @param meta    - 签发元数据（id、expirationDate 等）
+ * @returns VCIssuanceDescriptor，可直接传入 @jccdex/did 的 issueVC()
+ */
+export declare function buildFileAccessAuthorizationDescriptor(brand: BrandId, subject: Record<string, unknown> & {
+    id: string;
+}, meta: DescriptorMeta): VCIssuanceDescriptor;

package/lib/profiles/file-access-authorization.js

@@ -0,0 +1,35 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.buildFileAccessAuthorizationDescriptor = buildFileAccessAuthorizationDescriptor;
+const inline_contexts_js_1 = require("../inline-contexts.js");
+const vc_types_js_1 = require("../vc-types.js");
+/**
+ * 构建文件访问授权 VC 签发描述符（基于 IPFS/IPNS 存储模型）。
+ *
+ * 两品牌词汇结构相同，仅 URL 命名空间不同。
+ *
+ * @param brand   - 品牌 ID："ccdao" | "jdid"
+ * @param subject - credentialSubject，必须包含 `id`（被授权方 DID）及以下业务字段：
+ *   - `ipnsName`      IPNS 固定入口（被授权方用来访问文件/目录的稳定地址）
+ *   - `resourceType`  授权粒度："file" | "directory"
+ *   - `resourcePath`  （可选）目录内子路径，为空则整个 IPNS 目录均可访问
+ *   - `grantee`       被授权方 DID（通常与 id 相同）
+ *   - `accessRights`  权限数组，如 ["read", "download"]
+ *   - `accessRestrictions` 访问限制：{ expiresAt, maxDownloads, ipWhitelist }
+ *   - `owner`         文件所有者 DID
+ *   - `standard`      协议版本号
+ *   - `status`        凭证状态（"active" | "revoked"）
+ * @param meta    - 签发元数据（id、expirationDate 等）
+ * @returns VCIssuanceDescriptor，可直接传入 @jccdex/did 的 issueVC()
+ */
+function buildFileAccessAuthorizationDescriptor(brand, subject, meta) {
+    return {
+        types: [vc_types_js_1.VC_TYPES.FILE_ACCESS_AUTHORIZATION],
+        contexts: [inline_contexts_js_1.W3C_VC_CONTEXT_URL, (0, inline_contexts_js_1.getFileAccessAuthorizationContext)(brand)],
+        subject,
+        id: meta.id,
+        expirationDate: meta.expirationDate,
+        issuanceDate: meta.issuanceDate,
+        issuer: meta.issuer
+    };
+}

package/lib/vc-types.d.ts

@@ -3,5 +3,6 @@ export declare const VC_TYPES: {
     readonly NFT_OWNERSHIP: "NFTOwnership";
     readonly NFT_USAGE_AUTHORIZATION: "NFTUsageAuthorization";
     readonly PHONE_VERIFICATION: "PhoneVerificationCredential";
+    readonly FILE_ACCESS_AUTHORIZATION: "FileAccessAuthorization";
 };
 export type VCType = (typeof VC_TYPES)[keyof typeof VC_TYPES];

package/lib/vc-types.js

@@ -5,5 +5,6 @@ exports.VC_TYPES = void 0;
 exports.VC_TYPES = {
     NFT_OWNERSHIP: "NFTOwnership",
     NFT_USAGE_AUTHORIZATION: "NFTUsageAuthorization",
-    PHONE_VERIFICATION: "PhoneVerificationCredential"
+    PHONE_VERIFICATION: "PhoneVerificationCredential",
+    FILE_ACCESS_AUTHORIZATION: "FileAccessAuthorization"
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@jccdex/vc-vocabularies",
-  "version": "0.1.1",
+  "version": "0.1.2",
   "description": "VC vocabulary and issuance profiles for JCCDEx DID ecosystem",
   "main": "./lib/index.js",
   "types": "./lib/index.d.ts",

package/src/contexts/ccda-did-v1.json

@@ -7,6 +7,7 @@
     "NFTOwnership": "https://ccda.ooo/vc/v1#NFTOwnership",
     "NFTUsageAuthorization": "https://ccda.ooo/vc/v1#NFTUsageAuthorization",
     "PhoneVerificationCredential": "https://ccda.ooo/vc/v1#PhoneVerificationCredential",
+    "FileAccessAuthorization": "https://ccda.ooo/vc/v1#FileAccessAuthorization",
     "version": "https://ccda.ooo/did/v1#version",
     "chainId": "https://ccda.ooo/did/v1#chainId",
     "contractAddress": "https://ccda.ooo/did/v1#contractAddress",
@@ -25,6 +26,9 @@
         "updateAt": "https://ccda.ooo/did/v1#updateAt",
         "verifierId": "https://ccda.ooo/did/v1#verifierId"
       }
-    }
+    },
+    "ipnsName": "https://ccda.ooo/did/v1#ipnsName",
+    "resourceType": "https://ccda.ooo/did/v1#resourceType",
+    "resourcePath": "https://ccda.ooo/did/v1#resourcePath"
   }
 }

package/src/contexts/ccda-vc-v1.json

@@ -15,6 +15,15 @@
         "territories": "https://ccda.ooo/vc/v1#territories",
         "platforms": "https://ccda.ooo/vc/v1#platforms"
       }
+    },
+    "accessRights": "https://ccda.ooo/vc/v1#accessRights",
+    "accessRestrictions": {
+      "@id": "https://ccda.ooo/vc/v1#accessRestrictions",
+      "@context": {
+        "expiresAt": "https://ccda.ooo/vc/v1#expiresAt",
+        "maxDownloads": "https://ccda.ooo/vc/v1#maxDownloads",
+        "ipWhitelist": "https://ccda.ooo/vc/v1#ipWhitelist"
+      }
     }
   }
 }

package/src/contexts/jdid-did-v1.json

@@ -7,6 +7,7 @@
     "NFTOwnership": "https://jdid.cn/vc/v1#NFTOwnership",
     "NFTUsageAuthorization": "https://jdid.cn/vc/v1#NFTUsageAuthorization",
     "PhoneVerificationCredential": "https://jdid.cn/vc/v1#PhoneVerificationCredential",
+    "FileAccessAuthorization": "https://jdid.cn/vc/v1#FileAccessAuthorization",
     "version": "https://jdid.cn/did/v1#version",
     "chainId": "https://jdid.cn/did/v1#chainId",
     "contractAddress": "https://jdid.cn/did/v1#contractAddress",
@@ -25,6 +26,9 @@
         "updateAt": "https://jdid.cn/did/v1#updateAt",
         "verifierId": "https://jdid.cn/did/v1#verifierId"
       }
-    }
+    },
+    "ipnsName": "https://jdid.cn/did/v1#ipnsName",
+    "resourceType": "https://jdid.cn/did/v1#resourceType",
+    "resourcePath": "https://jdid.cn/did/v1#resourcePath"
   }
 }

package/src/contexts/jdid-vc-v1.json

@@ -15,6 +15,15 @@
         "territories": "https://jdid.cn/vc/v1#territories",
         "platforms": "https://jdid.cn/vc/v1#platforms"
       }
+    },
+    "accessRights": "https://jdid.cn/vc/v1#accessRights",
+    "accessRestrictions": {
+      "@id": "https://jdid.cn/vc/v1#accessRestrictions",
+      "@context": {
+        "expiresAt": "https://jdid.cn/vc/v1#expiresAt",
+        "maxDownloads": "https://jdid.cn/vc/v1#maxDownloads",
+        "ipWhitelist": "https://jdid.cn/vc/v1#ipWhitelist"
+      }
     }
   }
 }