npm - @smartledger/bsv - Versions diffs - 3.3.5 → 3.4.0 - Mend

@smartledger/bsv 3.3.5 → 3.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

package/README.md +147 -20
package/anchor-entry.js +1 -0
package/bin/cli.js +349 -0
package/bsv-smartcontract.min.js +9 -9
package/bsv.min.js +8 -8
package/build/webpack.anchor.config.js +21 -0
package/build/webpack.didweb.config.js +21 -0
package/build/webpack.statuslist.config.js +22 -0
package/build/webpack.vcjwt.config.js +21 -0
package/demos/browser-test.html +1 -1
package/didweb-entry.js +1 -0
package/docs/technical/roadmap.md +3 -3
package/index.js +28 -0
package/lib/anchor/index.js +102 -0
package/lib/didweb/index.js +177 -0
package/lib/statuslist/index.js +164 -0
package/lib/vcjwt/index.js +189 -0
package/package.json +11 -3
package/statuslist-entry.js +1 -0
package/vcjwt-entry.js +1 -0

package/lib/vcjwt/index.js ADDED Viewed

@@ -0,0 +1,189 @@
+'use strict'
+/**
+ * VC-JWT Module
+ * W3C Verifiable Credentials using JWT/JWS
+ * Supports ES256 (P-256) and ES256K (secp256k1)
+ */
+var crypto = require('crypto')
+// Base64URL encoding
+function base64UrlEncode(buffer) {
+  return buffer.toString('base64')
+    .replace(/\+/g, '-')
+    .replace(/\//g, '_')
+    .replace(/=/g, '')
+}
+// Base64URL decoding
+function base64UrlDecode(str) {
+  str = str.replace(/-/g, '+').replace(/_/g, '/')
+  while (str.length % 4) {
+    str += '='
+  }
+  return Buffer.from(str, 'base64')
+}
+// Issue a Verifiable Credential as JWT
+async function issueVcJwt(params) {
+  if (!params.issuerDid || !params.subjectId || !params.credentialSubject || !params.privateJwk) {
+    throw new Error('issuerDid, subjectId, credentialSubject, and privateJwk are required')
+  }
+  var alg = params.alg || 'ES256'
+  var kid = params.kid || params.privateJwk.kid
+  var types = params.types || ['VerifiableCredential']
+  var expSeconds = params.expSeconds || (365 * 24 * 60 * 60) // 1 year default
+  var now = Math.floor(Date.now() / 1000)
+  var issuedAt = new Date().toISOString()
+  // Build VC payload
+  var vcPayload = {
+    '@context': [
+      'https://www.w3.org/2018/credentials/v1'
+    ],
+    type: types,
+    issuer: params.issuerDid,
+    issuanceDate: issuedAt,
+    credentialSubject: Object.assign({
+      id: params.subjectId
+    }, params.credentialSubject)
+  }
+  // Build JWT claims
+  var jwtPayload = {
+    iss: params.issuerDid,
+    sub: params.subjectId,
+    iat: now,
+    exp: now + expSeconds,
+    vc: vcPayload
+  }
+  // Build JWT header
+  var header = {
+    alg: alg,
+    typ: 'JWT',
+    kid: kid
+  }
+  // Encode header and payload
+  var headerB64 = base64UrlEncode(Buffer.from(JSON.stringify(header)))
+  var payloadB64 = base64UrlEncode(Buffer.from(JSON.stringify(jwtPayload)))
+  var signingInput = headerB64 + '.' + payloadB64
+  // Sign with private key
+  var privateKey = crypto.createPrivateKey({
+    key: params.privateJwk,
+    format: 'jwk'
+  })
+  var signature
+  if (alg === 'ES256') {
+    signature = crypto.sign('sha256', Buffer.from(signingInput), privateKey)
+  } else if (alg === 'ES256K') {
+    signature = crypto.sign('sha256', Buffer.from(signingInput), privateKey)
+  } else {
+    throw new Error('Unsupported algorithm: ' + alg)
+  }
+  var signatureB64 = base64UrlEncode(signature)
+  var jwt = signingInput + '.' + signatureB64
+  return { jwt: jwt }
+}
+// Verify a VC-JWT
+async function verifyVcJwt(jwt, opts) {
+  opts = opts || {}
+  try {
+    // Parse JWT
+    var parts = jwt.split('.')
+    if (parts.length !== 3) {
+      return { valid: false, error: 'Invalid JWT format' }
+    }
+    var headerB64 = parts[0]
+    var payloadB64 = parts[1]
+    var signatureB64 = parts[2]
+    var header = JSON.parse(base64UrlDecode(headerB64).toString())
+    var payload = JSON.parse(base64UrlDecode(payloadB64).toString())
+    var signature = base64UrlDecode(signatureB64)
+    // Check expiration
+    var now = Math.floor(Date.now() / 1000)
+    var clockTolerance = opts.clockToleranceSec || 60
+    if (payload.exp && payload.exp < (now - clockTolerance)) {
+      return { valid: false, error: 'JWT expired', header: header, payload: payload }
+    }
+    // Check issuer if expected
+    if (opts.expectedIssuerDid && payload.iss !== opts.expectedIssuerDid) {
+      return { valid: false, error: 'Unexpected issuer', header: header, payload: payload }
+    }
+    // Get public key from DID resolver or use default resolver
+    var publicKey
+    if (opts.didResolver) {
+      var resolved = await opts.didResolver(payload.iss)
+      if (!resolved || !resolved.jwks || !resolved.jwks.keys) {
+        return { valid: false, error: 'Failed to resolve issuer DID', header: header, payload: payload }
+      }
+      // Find matching key by kid
+      var matchingKey = resolved.jwks.keys.find(function(k) {
+        return k.kid === header.kid
+      })
+      if (!matchingKey) {
+        return { valid: false, error: 'Key not found in JWKS', header: header, payload: payload }
+      }
+      publicKey = matchingKey
+    } else {
+      // Without resolver, verification cannot proceed
+      return { valid: false, error: 'DID resolver required for verification', header: header, payload: payload }
+    }
+    // Verify signature
+    var signingInput = headerB64 + '.' + payloadB64
+    var pubKey = crypto.createPublicKey({
+      key: publicKey,
+      format: 'jwk'
+    })
+    var isValid = crypto.verify(
+      'sha256',
+      Buffer.from(signingInput),
+      pubKey,
+      signature
+    )
+    if (!isValid) {
+      return { valid: false, error: 'Invalid signature', header: header, payload: payload }
+    }
+    return {
+      valid: true,
+      header: header,
+      payload: payload
+    }
+  } catch (error) {
+    return {
+      valid: false,
+      error: error.message || 'Verification failed'
+    }
+  }
+}
+module.exports = {
+  issueVcJwt: issueVcJwt,
+  verifyVcJwt: verifyVcJwt,
+  base64UrlEncode: base64UrlEncode,
+  base64UrlDecode: base64UrlDecode
+}

package/package.json CHANGED Viewed

@@ -1,13 +1,16 @@
 {
   "name": "@smartledger/bsv",
-  "version": "3.3.5",
-  "description": "🚀 Complete Bitcoin SV development framework with Legal Token Protocol (LTP), Global Digital Attestation Framework (GDAF), Shamir Secret Sharing, and 12 flexible loading options. Includes primitives-only architecture for maximum integration flexibility, SmartContract framework, covenant builder, and comprehensive Bitcoin SV API. Perfect for legal tokens, DeFi, smart contracts, and secure Bitcoin applications.",
+  "version": "3.4.0",
+  "description": "🚀 Complete Bitcoin SV development framework with legally-recognizable DID:web + W3C VC-JWT toolkit, Legal Token Protocol (LTP), Global Digital Attestation Framework (GDAF), StatusList2021 revocation, and 16 flexible loading options. Standards-based credentials with ES256/ES256K support, on-chain BSV anchoring, and comprehensive Bitcoin SV API. Perfect for legal tokens, verifiable credentials, DeFi, smart contracts, and secure Bitcoin applications.",
   "author": "SmartLedger Technology <hello@smartledger.technology> (https://smartledger.technology)",
   "homepage": "https://github.com/codenlighten/smartledger-bsv#readme",
   "bugs": {
     "url": "https://github.com/codenlighten/smartledger-bsv/issues"
   },
   "main": "index.js",
+  "bin": {
+    "smartledger-bsv": "./bin/cli.js"
+  },
   "scripts": {
     "lint": "standard",
     "test": "mocha",
@@ -46,11 +49,16 @@
     "build-covenant": "NODE_OPTIONS=\"--openssl-legacy-provider\" webpack covenant-entry.js --config build/webpack.covenant.config.js",
     "build-script-helper": "NODE_OPTIONS=\"--openssl-legacy-provider\" webpack script-helper-entry.js --config build/webpack.script-helper.config.js",
     "build-security": "NODE_OPTIONS=\"--openssl-legacy-provider\" webpack security-entry.js --config build/webpack.security.config.js",
+    "build-didweb": "NODE_OPTIONS=\"--openssl-legacy-provider\" webpack didweb-entry.js --config build/webpack.didweb.config.js",
+    "build-vcjwt": "NODE_OPTIONS=\"--openssl-legacy-provider\" webpack vcjwt-entry.js --config build/webpack.vcjwt.config.js",
+    "build-statuslist": "NODE_OPTIONS=\"--openssl-legacy-provider\" webpack statuslist-entry.js --config build/webpack.statuslist.config.js",
+    "build-anchor": "NODE_OPTIONS=\"--openssl-legacy-provider\" webpack anchor-entry.js --config build/webpack.anchor.config.js",
     "build-bundle": "NODE_OPTIONS=\"--openssl-legacy-provider\" webpack bundle-entry.js --config build/webpack.bundle.config.js",
     "build": "npm run build-bsv && npm run build-ecies && npm run build-message && npm run build-mnemonic && npm run build-shamir && npm run build-smartcontract",
     "build-specialized": "npm run build-covenant && npm run build-script-helper && npm run build-security",
+    "build-credentials": "npm run build-didweb && npm run build-vcjwt && npm run build-statuslist && npm run build-anchor",
     "build-advanced": "npm run build-ltp && npm run build-gdaf",
-    "build-all": "npm run build && npm run build-bundle && npm run build-specialized && npm run build-advanced",
+    "build-all": "npm run build && npm run build-bundle && npm run build-specialized && npm run build-advanced && npm run build-credentials",
     "test:browser": "echo 'Open tests/standalone-modules-test.html in browser for comprehensive testing'",
     "test:bundle": "echo 'Open tests/bundle-completeness-test.html in browser to verify bundle completeness'",
     "preimage:extract": "node examples/preimage/extract_preimage_bidirectional.js",

package/statuslist-entry.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ module.exports = require('./lib/statuslist')

package/vcjwt-entry.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ module.exports = require('./lib/vcjwt')