@sphereon/ssi-sdk.uni-resolver-registrar-api 0.13.1-next.23

package/LICENSE

@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [2021] [Sphereon BV]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.

package/README.md

@@ -0,0 +1,65 @@
+<!--suppress HtmlDeprecatedAttribute -->
+<h1 align="center">
+  <br>
+  <a href="https://www.sphereon.com"><img src="https://sphereon.com/content/themes/sphereon/assets/img/logo.svg" alt="Sphereon" width="400"></a>
+  <br>SIOPv2 and OpenID4VP Relying Party REST endpoints  
+  <br>
+</h1>
+
+---
+
+**Warning: This package still is in very early development. Breaking changes without notice will happen at this point!**
+
+---
+
+An authentication plugin using the [Self Issued OpenID Provider v2 (SIOP)](https://github.com/Sphereon-Opensource/did-auth-siop) authentication library for having Relying Parties conforming to
+the [Self Issued OpenID Provider v2 (SIOPv2)](https://openid.net/specs/openid-connect-self-issued-v2-1_0.html)
+and [OpenID Connect for Verifiable Presentations (OIDC4VP)](https://openid.net/specs/openid-connect-4-verifiable-presentations-1_0.html)
+as specified in the OpenID Connect working group.
+
+## Self Issued OpenID Provider v2 (SIOPv2)
+
+For more information about [Self Issued OpenID Provider v2 (SIOP)](https://github.com/Sphereon-Opensource/did-auth-siop#introduction), see the documentation in the readme.
+
+## Requirements
+
+For this plugin a DID resolver is also required. A DID resolver can be added to the agent as plugin as seen in the example below.
+
+## Available functions
+
+## Usage
+
+### Adding the plugin to an agent:
+
+```typescript
+import { IDidAuthSiopOpAuthenticator } from '@sphereon/ssi-sdk-did-auth-siop-authenticator'
+import { Resolver } from 'did-resolver'
+import { getDidKeyResolver } from '@veramo/did-provider-key'
+import { DIDResolverPlugin } from '@veramo/did-resolver'
+import { getUniResolver } from '@sphereon/did-uni-client'
+
+const agent = createAgent<IDidAuthSiopOpAuthenticator & IResolver>({
+  plugins: [
+    new DidAuthSiopOpAuthenticator(),
+    new DIDResolverPlugin({
+      resolver: new Resolver({
+        ...getDidKeyResolver(),
+        ...getUniResolver('web'),
+        ...getUniResolver('jwk'),
+      }),
+    }),
+  ],
+})
+```
+
+## Installation
+
+```shell
+yarn add @sphereon/ssi-sdk-siopv2-openid4vp-rp
+```
+
+## Build
+
+```shell
+yarn build
+```

package/dist/api-functions.d.ts

@@ -0,0 +1,12 @@
+import { ISingleEndpointOpts } from '@sphereon/ssi-sdk.express-support';
+import { Router } from 'express';
+import { IRequiredContext } from './types';
+export declare function createDidEndpoint(router: Router, context: IRequiredContext, opts?: ISingleEndpointOpts & {
+    kms?: string;
+}): void;
+export declare function getDidMethodsEndpoint(router: Router, context: IRequiredContext, opts?: ISingleEndpointOpts): void;
+export declare function resolveDidEndpoint(router: Router, context: IRequiredContext, opts?: ISingleEndpointOpts & {
+    mode?: 'local' | 'resolve';
+}): void;
+export declare function deactivateDidEndpoint(router: Router, context: IRequiredContext, opts?: ISingleEndpointOpts): void;
+//# sourceMappingURL=api-functions.d.ts.map

package/dist/api-functions.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-functions.d.ts","sourceRoot":"","sources":["../src/api-functions.ts"],"names":[],"mappings":"AAGA,OAAO,EAAa,mBAAmB,EAAqB,MAAM,mCAAmC,CAAA;AAGrG,OAAO,EAAqB,MAAM,EAAE,MAAM,SAAS,CAAA;AAEnD,OAAO,EAA6C,gBAAgB,EAAE,MAAM,SAAS,CAAA;AAErF,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,gBAAgB,EAAE,IAAI,CAAC,EAAE,mBAAmB,GAAG;IAAE,GAAG,CAAC,EAAE,MAAM,CAAA;CAAE,QA+DzH;AAED,wBAAgB,qBAAqB,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,gBAAgB,EAAE,IAAI,CAAC,EAAE,mBAAmB,QAe1G;AAED,wBAAgB,kBAAkB,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,gBAAgB,EAAE,IAAI,CAAC,EAAE,mBAAmB,GAAG;IAAE,IAAI,CAAC,EAAE,OAAO,GAAG,SAAS,CAAA;CAAE,QA0CxI;AAED,wBAAgB,qBAAqB,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,gBAAgB,EAAE,IAAI,CAAC,EAAE,mBAAmB,QAsB1G"}

package/dist/api-functions.js

@@ -0,0 +1,177 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.deactivateDidEndpoint = exports.resolveDidEndpoint = exports.getDidMethodsEndpoint = exports.createDidEndpoint = void 0;
+const ssi_sdk_ext_did_utils_1 = require("@sphereon/ssi-sdk-ext.did-utils");
+const ssi_sdk_ext_key_utils_1 = require("@sphereon/ssi-sdk-ext.key-utils");
+const ssi_sdk_express_support_1 = require("@sphereon/ssi-sdk.express-support");
+const ssi_types_1 = require("@sphereon/ssi-types");
+const uuid_1 = require("uuid");
+function createDidEndpoint(router, context, opts) {
+    var _a;
+    if ((opts === null || opts === void 0 ? void 0 : opts.enabled) === false) {
+        console.log(`create DID endpoint is disabled`);
+        return;
+    }
+    const path = (_a = opts === null || opts === void 0 ? void 0 : opts.path) !== null && _a !== void 0 ? _a : '/identifiers';
+    router.post(path, (0, ssi_sdk_express_support_1.checkAuth)(opts === null || opts === void 0 ? void 0 : opts.endpoint), (request, response) => __awaiter(this, void 0, void 0, function* () {
+        var _b, _c;
+        try {
+            const createRequest = request.body;
+            if (!createRequest) {
+                return (0, ssi_sdk_express_support_1.sendErrorResponse)(response, 400, 'No DID create request present');
+            }
+            const did = createRequest.did;
+            const didMethod = (_b = request.query.method) !== null && _b !== void 0 ? _b : (did ? (0, ssi_types_1.parseDid)(did).method : undefined);
+            const allDidMethods = yield (0, ssi_sdk_ext_did_utils_1.getAgentDIDMethods)(context);
+            if (!didMethod) {
+                return (0, ssi_sdk_express_support_1.sendErrorResponse)(response, 400, 'No DID method supplied or deductible');
+            }
+            else if (did && (0, ssi_types_1.parseDid)(did).method != didMethod) {
+                return (0, ssi_sdk_express_support_1.sendErrorResponse)(response, 400, 'DID method did not match method param');
+            }
+            else if (!allDidMethods.includes(didMethod)) {
+                return (0, ssi_sdk_express_support_1.sendErrorResponse)(response, 400, 'DID method not supported');
+            }
+            const provider = `did:${didMethod}`;
+            const jobId = (_c = createRequest.jobId) !== null && _c !== void 0 ? _c : `urn:uuid:${(0, uuid_1.v4)()}`;
+            let alias = undefined;
+            if (didMethod === 'web') {
+                if (!did) {
+                    throw Error('Please provide a value for "did" in the request body when creating a DID web');
+                }
+                alias = (0, ssi_types_1.parseDid)(did).id;
+                if (!alias) {
+                    throw Error('Could not determine alias from did:web DID value: ' + did);
+                }
+            }
+            let identifier;
+            if (createRequest.options.storeSecrets === false) {
+                throw Error('Not storing secrets mode is not support yet');
+                /*const memoryKMS = new SphereonKeyManager({
+                            store: new MemoryKeyStore(),
+                            kms: {'mem': new KeyManagementSystem(new MemoryPrivateKeyStore())}
+                        })
+                        identifier = await memoryKMS..didManagerCreate({provider, alias, kms: opts?.kms})*/
+            }
+            else {
+                identifier = yield context.agent.didManagerCreate({ provider, alias, kms: opts === null || opts === void 0 ? void 0 : opts.kms });
+            }
+            const didDocument = (0, ssi_sdk_ext_did_utils_1.toDidDocument)(identifier, { did, use: [ssi_sdk_ext_key_utils_1.JwkKeyUse.Signature, ssi_sdk_ext_key_utils_1.JwkKeyUse.Encryption] });
+            const createState = {
+                jobId,
+                didState: {
+                    did: identifier.did,
+                    state: 'finished',
+                    didDocument,
+                },
+            };
+            response.statusCode = 200;
+            return response.send(createState);
+        }
+        catch (e) {
+            return (0, ssi_sdk_express_support_1.sendErrorResponse)(response, 500, e.message, e);
+        }
+    }));
+}
+exports.createDidEndpoint = createDidEndpoint;
+function getDidMethodsEndpoint(router, context, opts) {
+    var _a;
+    if ((opts === null || opts === void 0 ? void 0 : opts.enabled) === false) {
+        console.log(`Get DID methods endpoint is disabled`);
+        return;
+    }
+    const path = (_a = opts === null || opts === void 0 ? void 0 : opts.path) !== null && _a !== void 0 ? _a : '/methods';
+    router.get(path, (0, ssi_sdk_express_support_1.checkAuth)(opts === null || opts === void 0 ? void 0 : opts.endpoint), (request, response) => __awaiter(this, void 0, void 0, function* () {
+        try {
+            const methods = yield (0, ssi_sdk_ext_did_utils_1.getAgentDIDMethods)(context); // these are already without the 'did:' prefix
+            response.statusCode = 200;
+            return response.send(methods);
+        }
+        catch (e) {
+            return (0, ssi_sdk_express_support_1.sendErrorResponse)(response, 500, e.message, e);
+        }
+    }));
+}
+exports.getDidMethodsEndpoint = getDidMethodsEndpoint;
+function resolveDidEndpoint(router, context, opts) {
+    var _a;
+    if ((opts === null || opts === void 0 ? void 0 : opts.enabled) === false) {
+        console.log(`Resolve DID endpoint is disabled`);
+        return;
+    }
+    const path = (_a = opts === null || opts === void 0 ? void 0 : opts.path) !== null && _a !== void 0 ? _a : '/identifiers/:identifier';
+    router.get(path, (0, ssi_sdk_express_support_1.checkAuth)(opts === null || opts === void 0 ? void 0 : opts.endpoint), (request, response) => __awaiter(this, void 0, void 0, function* () {
+        var _b, _c, _d;
+        try {
+            const did = request.params.identifier;
+            if (!did) {
+                return (0, ssi_sdk_express_support_1.sendErrorResponse)(response, 400, 'no identifier provided');
+            }
+            const mode = (_c = (_b = request.query.mode) === null || _b === void 0 ? void 0 : _b.toString().toLowerCase()) !== null && _c !== void 0 ? _c : (_d = opts === null || opts === void 0 ? void 0 : opts.mode) === null || _d === void 0 ? void 0 : _d.toLowerCase();
+            let resolutionResult;
+            if (mode === 'local' || mode === 'hybrid') {
+                try {
+                    const identifier = yield context.agent.didManagerGet({ did });
+                    console.log(JSON.stringify(identifier, null, 2));
+                    resolutionResult = (0, ssi_sdk_ext_did_utils_1.toDidResolutionResult)(identifier, {
+                        did,
+                        supportedMethod: yield (0, ssi_sdk_ext_did_utils_1.getAgentDIDMethods)(context),
+                    });
+                }
+                catch (error) {
+                    resolutionResult = {
+                        didDocument: null,
+                        didResolutionMetadata: {
+                            error: 'notFound',
+                        },
+                        didDocumentMetadata: {},
+                    };
+                }
+            }
+            if (mode !== 'local' && !(resolutionResult === null || resolutionResult === void 0 ? void 0 : resolutionResult.didDocument)) {
+                resolutionResult = yield context.agent.resolveDid({ didUrl: did });
+            }
+            response.statusCode = 200;
+            return response.send(resolutionResult);
+        }
+        catch (e) {
+            return (0, ssi_sdk_express_support_1.sendErrorResponse)(response, 500, e.message, e);
+        }
+    }));
+}
+exports.resolveDidEndpoint = resolveDidEndpoint;
+function deactivateDidEndpoint(router, context, opts) {
+    var _a;
+    if ((opts === null || opts === void 0 ? void 0 : opts.enabled) === false) {
+        console.log(`Deactivate DID endpoint is disabled`);
+        return;
+    }
+    router.delete((_a = opts === null || opts === void 0 ? void 0 : opts.path) !== null && _a !== void 0 ? _a : '/identifiers/:identifier', (0, ssi_sdk_express_support_1.checkAuth)(opts === null || opts === void 0 ? void 0 : opts.endpoint), (request, response) => __awaiter(this, void 0, void 0, function* () {
+        try {
+            const did = request.params.identifier;
+            if (!did) {
+                return (0, ssi_sdk_express_support_1.sendErrorResponse)(response, 400, 'no DID provided');
+            }
+            const result = yield context.agent.didManagerDelete({ did });
+            if (!result) {
+                return (0, ssi_sdk_express_support_1.sendErrorResponse)(response, 404, `id ${did} not found`);
+            }
+            response.statusCode = 200;
+            return response.send();
+        }
+        catch (e) {
+            return (0, ssi_sdk_express_support_1.sendErrorResponse)(response, 500, e.message, e);
+        }
+    }));
+}
+exports.deactivateDidEndpoint = deactivateDidEndpoint;
+//# sourceMappingURL=api-functions.js.map

package/dist/api-functions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-functions.js","sourceRoot":"","sources":["../src/api-functions.ts"],"names":[],"mappings":";;;;;;;;;;;;AACA,2EAA0G;AAC1G,2EAA2D;AAC3D,+EAAqG;AACrG,mDAA8C;AAG9C,+BAAyB;AAGzB,SAAgB,iBAAiB,CAAC,MAAc,EAAE,OAAyB,EAAE,IAA6C;;IACxH,IAAI,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,OAAO,MAAK,KAAK,EAAE;QAC3B,OAAO,CAAC,GAAG,CAAC,iCAAiC,CAAC,CAAA;QAC9C,OAAM;KACP;IACD,MAAM,IAAI,GAAG,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,IAAI,mCAAI,cAAc,CAAA;IAEzC,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,IAAA,mCAAS,EAAC,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,QAAQ,CAAC,EAAE,CAAO,OAAgB,EAAE,QAAkB,EAAE,EAAE;;QAC1F,IAAI;YACF,MAAM,aAAa,GAAiC,OAAO,CAAC,IAAI,CAAA;YAChE,IAAI,CAAC,aAAa,EAAE;gBAClB,OAAO,IAAA,2CAAiB,EAAC,QAAQ,EAAE,GAAG,EAAE,+BAA+B,CAAC,CAAA;aACzE;YACD,MAAM,GAAG,GAAG,aAAa,CAAC,GAAG,CAAA;YAC7B,MAAM,SAAS,GAAG,MAAC,OAAO,CAAC,KAAK,CAAC,MAAiB,mCAAI,CAAC,GAAG,CAAC,CAAC,CAAC,IAAA,oBAAQ,EAAC,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAA;YAC9F,MAAM,aAAa,GAAG,MAAM,IAAA,0CAAkB,EAAC,OAAO,CAAC,CAAA;YACvD,IAAI,CAAC,SAAS,EAAE;gBACd,OAAO,IAAA,2CAAiB,EAAC,QAAQ,EAAE,GAAG,EAAE,sCAAsC,CAAC,CAAA;aAChF;iBAAM,IAAI,GAAG,IAAI,IAAA,oBAAQ,EAAC,GAAG,CAAC,CAAC,MAAM,IAAI,SAAS,EAAE;gBACnD,OAAO,IAAA,2CAAiB,EAAC,QAAQ,EAAE,GAAG,EAAE,uCAAuC,CAAC,CAAA;aACjF;iBAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE;gBAC7C,OAAO,IAAA,2CAAiB,EAAC,QAAQ,EAAE,GAAG,EAAE,0BAA0B,CAAC,CAAA;aACpE;YACD,MAAM,QAAQ,GAAG,OAAO,SAAS,EAAE,CAAA;YACnC,MAAM,KAAK,GAAG,MAAA,aAAa,CAAC,KAAK,mCAAI,YAAY,IAAA,SAAE,GAAE,EAAE,CAAA;YACvD,IAAI,KAAK,GAAuB,SAAS,CAAA;YACzC,IAAI,SAAS,KAAK,KAAK,EAAE;gBACvB,IAAI,CAAC,GAAG,EAAE;oBACR,MAAM,KAAK,CAAC,8EAA8E,CAAC,CAAA;iBAC5F;gBACD,KAAK,GAAG,IAAA,oBAAQ,EAAC,GAAG,CAAC,CAAC,EAAE,CAAA;gBACxB,IAAI,CAAC,KAAK,EAAE;oBACV,MAAM,KAAK,CAAC,oDAAoD,GAAG,GAAG,CAAC,CAAA;iBACxE;aACF;YAED,IAAI,UAAuB,CAAA;YAC3B,IAAI,aAAa,CAAC,OAAO,CAAC,YAAY,KAAK,KAAK,EAAE;gBAChD,MAAM,KAAK,CAAC,6CAA6C,CAAC,CAAA;gBAC1D;;;;2GAI2F;aAC5F;iBAAM;gBACL,UAAU,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,gBAAgB,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE,GAAG,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,GAAG,EAAE,CAAC,CAAA;aACvF;YAED,MAAM,WAAW,GAAG,IAAA,qCAAa,EAAC,UAAU,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,iCAAS,CAAC,SAAS,EAAE,iCAAS,CAAC,UAAU,CAAC,EAAE,CAAC,CAAA;YACxG,MAAM,WAAW,GAAgB;gBAC/B,KAAK;gBACL,QAAQ,EAAE;oBACR,GAAG,EAAE,UAAU,CAAC,GAAG;oBACnB,KAAK,EAAE,UAAU;oBACjB,WAAW;iBACZ;aACF,CAAA;YACD,QAAQ,CAAC,UAAU,GAAG,GAAG,CAAA;YACzB,OAAO,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA;SAClC;QAAC,OAAO,CAAC,EAAE;YACV,OAAO,IAAA,2CAAiB,EAAC,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC,OAAiB,EAAE,CAAC,CAAC,CAAA;SAChE;IACH,CAAC,CAAA,CAAC,CAAA;AACJ,CAAC;AA/DD,8CA+DC;AAED,SAAgB,qBAAqB,CAAC,MAAc,EAAE,OAAyB,EAAE,IAA0B;;IACzG,IAAI,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,OAAO,MAAK,KAAK,EAAE;QAC3B,OAAO,CAAC,GAAG,CAAC,sCAAsC,CAAC,CAAA;QACnD,OAAM;KACP;IACD,MAAM,IAAI,GAAG,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,IAAI,mCAAI,UAAU,CAAA;IACrC,MAAM,CAAC,GAAG,CAAC,IAAI,EAAE,IAAA,mCAAS,EAAC,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,QAAQ,CAAC,EAAE,CAAO,OAAgB,EAAE,QAAkB,EAAE,EAAE;QACzF,IAAI;YACF,MAAM,OAAO,GAAG,MAAM,IAAA,0CAAkB,EAAC,OAAO,CAAC,CAAA,CAAC,8CAA8C;YAChG,QAAQ,CAAC,UAAU,GAAG,GAAG,CAAA;YACzB,OAAO,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;SAC9B;QAAC,OAAO,CAAC,EAAE;YACV,OAAO,IAAA,2CAAiB,EAAC,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC,OAAiB,EAAE,CAAC,CAAC,CAAA;SAChE;IACH,CAAC,CAAA,CAAC,CAAA;AACJ,CAAC;AAfD,sDAeC;AAED,SAAgB,kBAAkB,CAAC,MAAc,EAAE,OAAyB,EAAE,IAA2D;;IACvI,IAAI,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,OAAO,MAAK,KAAK,EAAE;QAC3B,OAAO,CAAC,GAAG,CAAC,kCAAkC,CAAC,CAAA;QAC/C,OAAM;KACP;IACD,MAAM,IAAI,GAAG,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,IAAI,mCAAI,0BAA0B,CAAA;IACrD,MAAM,CAAC,GAAG,CAAC,IAAI,EAAE,IAAA,mCAAS,EAAC,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,QAAQ,CAAC,EAAE,CAAO,OAAgB,EAAE,QAAkB,EAAE,EAAE;;QACzF,IAAI;YACF,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,UAAU,CAAA;YACrC,IAAI,CAAC,GAAG,EAAE;gBACR,OAAO,IAAA,2CAAiB,EAAC,QAAQ,EAAE,GAAG,EAAE,wBAAwB,CAAC,CAAA;aAClE;YACD,MAAM,IAAI,GAAG,MAAA,MAAA,OAAO,CAAC,KAAK,CAAC,IAAI,0CAAE,QAAQ,GAAG,WAAW,EAAE,mCAAI,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,IAAI,0CAAE,WAAW,EAAE,CAAA;YACtF,IAAI,gBAAiD,CAAA;YACrD,IAAI,IAAI,KAAK,OAAO,IAAI,IAAI,KAAK,QAAQ,EAAE;gBACzC,IAAI;oBACF,MAAM,UAAU,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,aAAa,CAAC,EAAE,GAAG,EAAE,CAAC,CAAA;oBAC7D,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAA;oBAChD,gBAAgB,GAAG,IAAA,6CAAqB,EAAC,UAAU,EAAE;wBACnD,GAAG;wBACH,eAAe,EAAE,MAAM,IAAA,0CAAkB,EAAC,OAAO,CAAC;qBACnD,CAAC,CAAA;iBACH;gBAAC,OAAO,KAAK,EAAE;oBACd,gBAAgB,GAAG;wBACjB,WAAW,EAAE,IAAI;wBACjB,qBAAqB,EAAE;4BACrB,KAAK,EAAE,UAAU;yBAClB;wBACD,mBAAmB,EAAE,EAAE;qBACxB,CAAA;iBACF;aACF;YACD,IAAI,IAAI,KAAK,OAAO,IAAI,CAAC,CAAA,gBAAgB,aAAhB,gBAAgB,uBAAhB,gBAAgB,CAAE,WAAW,CAAA,EAAE;gBACtD,gBAAgB,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAA;aACnE;YAED,QAAQ,CAAC,UAAU,GAAG,GAAG,CAAA;YACzB,OAAO,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAA;SACvC;QAAC,OAAO,CAAC,EAAE;YACV,OAAO,IAAA,2CAAiB,EAAC,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC,OAAiB,EAAE,CAAC,CAAC,CAAA;SAChE;IACH,CAAC,CAAA,CAAC,CAAA;AACJ,CAAC;AA1CD,gDA0CC;AAED,SAAgB,qBAAqB,CAAC,MAAc,EAAE,OAAyB,EAAE,IAA0B;;IACzG,IAAI,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,OAAO,MAAK,KAAK,EAAE;QAC3B,OAAO,CAAC,GAAG,CAAC,qCAAqC,CAAC,CAAA;QAClD,OAAM;KACP;IACD,MAAM,CAAC,MAAM,CAAC,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,IAAI,mCAAI,0BAA0B,EAAE,IAAA,mCAAS,EAAC,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,QAAQ,CAAC,EAAE,CAAO,OAAgB,EAAE,QAAkB,EAAE,EAAE;QAChI,IAAI;YACF,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,UAAU,CAAA;YACrC,IAAI,CAAC,GAAG,EAAE;gBACR,OAAO,IAAA,2CAAiB,EAAC,QAAQ,EAAE,GAAG,EAAE,iBAAiB,CAAC,CAAA;aAC3D;YAED,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,gBAAgB,CAAC,EAAE,GAAG,EAAE,CAAC,CAAA;YAC5D,IAAI,CAAC,MAAM,EAAE;gBACX,OAAO,IAAA,2CAAiB,EAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,GAAG,YAAY,CAAC,CAAA;aAC/D;YACD,QAAQ,CAAC,UAAU,GAAG,GAAG,CAAA;YACzB,OAAO,QAAQ,CAAC,IAAI,EAAE,CAAA;SACvB;QAAC,OAAO,CAAC,EAAE;YACV,OAAO,IAAA,2CAAiB,EAAC,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC,OAAiB,EAAE,CAAC,CAAC,CAAA;SAChE;IACH,CAAC,CAAA,CAAC,CAAA;AACJ,CAAC;AAtBD,sDAsBC"}

package/dist/index.d.ts

@@ -0,0 +1,7 @@
+/**
+ * @public
+ */
+export * from './uni-resolver-api-server';
+export * from './types';
+export * from './api-functions';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,cAAc,2BAA2B,CAAA;AACzC,cAAc,SAAS,CAAA;AACvB,cAAc,iBAAiB,CAAA"}

package/dist/index.js

@@ -0,0 +1,23 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+/**
+ * @public
+ */
+__exportStar(require("./uni-resolver-api-server"), exports);
+__exportStar(require("./types"), exports);
+__exportStar(require("./api-functions"), exports);
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA;;GAEG;AACH,4DAAyC;AACzC,0CAAuB;AACvB,kDAA+B"}

package/dist/types.d.ts

@@ -0,0 +1,106 @@
+import { DIDDocument } from '@sphereon/did-uni-client';
+import { GenericAuthArgs, ISingleEndpointOpts } from '@sphereon/ssi-sdk.express-support';
+import { IAgentContext, IDataStore, IDataStoreORM, IDIDManager, IKeyManager, IResolver } from '@veramo/core';
+import { ProofFormat } from '@veramo/core/src/types/ICredentialIssuer';
+import { VerificationMethod } from 'did-resolver';
+export type IRequiredPlugins = IDataStore & IDataStoreORM & IDIDManager & IKeyManager & IResolver;
+export type IRequiredContext = IAgentContext<IRequiredPlugins>;
+export interface DidRegistrationCreateRequest {
+    did?: string;
+    jobId: string;
+    options: DidRegistrationOptions;
+    secret: DidRegistrationSecret;
+    didDocument?: DIDDocument;
+}
+export interface DidRegistrationUpdateRequest {
+    did: string;
+    jobId: string;
+    options: DidRegistrationOptions;
+    secret: DidRegistrationSecret;
+    didDocumentOperation: DidDocumentOperation[];
+    didDocument?: DIDDocument[];
+}
+export interface DidRegistrationDeactivateRequest {
+    did: string;
+    jobId: string;
+    options: DidRegistrationOptions;
+    secret: DidRegistrationSecret;
+}
+export type DidDocumentOperation = 'setDidDocument' | 'addToDidDocument' | 'removeFromDidDocument' | string;
+export interface DidRegistrationOptions {
+    network?: string;
+    storeSecrets?: boolean;
+    returnSecrets?: boolean;
+    [x: string]: any;
+}
+export interface DidRegistrationSecret {
+    seed?: string;
+    verificationMethod?: CreateVerificationMethod[];
+    [x: string]: any;
+}
+export interface CreateVerificationMethod extends VerificationMethod {
+    privateKeyBase58?: string;
+    privateKeyBase64?: string;
+    privateKeyJwk?: JsonWebKey;
+    privateKeyHex?: string;
+    privateKeyMultibase?: string;
+    purpose?: ('authentication' | 'assertionMethod' | 'capabilityDelegation' | 'capabilityInvocation')[];
+}
+export interface CreateState {
+    jobId: string;
+    didState: DidState;
+    didRegistrationMetadata?: Record<string, any>;
+    didDocumentMetadata?: Record<string, any>;
+}
+export interface DidState {
+    state: 'finished' | 'failed' | 'action' | 'wait';
+    action?: 'redirect' | 'getVerificationMethod' | 'signPayload' | 'decryptPayload';
+    wait?: string;
+    waitTime?: number;
+    did: string;
+    secret?: DidRegistrationSecret;
+    didDocument?: DIDDocument;
+}
+export interface IDidAPIOpts {
+    endpointOpts?: IDidAPIEndpointOpts;
+    didOpts?: IVCAPIIssueOpts;
+}
+export interface IDidAPIEndpointOpts {
+    basePath?: string;
+    globalAuth?: GenericAuthArgs;
+    createDid?: ISingleEndpointOpts;
+    resolveDid?: ISingleEndpointOpts;
+    deactivateDid?: ISingleEndpointOpts;
+    getDidMethods?: ISingleEndpointOpts;
+}
+export declare enum IVCIApiFeatures {
+    DID_RESOLVE = "did-resolve",
+    DID_PERSISTENCE = "did-persist"
+}
+export interface IVCAPIIssueOpts {
+    enableFeatures?: IVCIApiFeatures[];
+    persistIssuedCredentials?: boolean;
+    /**
+     * The desired format for the VerifiablePresentation to be created.
+     */
+    proofFormat: ProofFormat;
+    /**
+     * Remove payload members during JWT-JSON transformation. Defaults to `true`.
+     * See https://www.w3.org/TR/vc-data-model/#jwt-encoding
+     */
+    removeOriginalFields?: boolean;
+    /**
+     * [Optional] The ID of the key that should sign this credential.
+     * If this is not specified, the first matching key will be used.
+     */
+    keyRef?: string;
+    /**
+     * When dealing with JSON-LD you also MUST provide the proper contexts.
+     * Set this to `true` ONLY if you want the `@context` URLs to be fetched in case they are not preloaded.
+     * The context definitions SHOULD rather be provided at startup instead of being fetched.
+     *
+     * Defaults to `false`
+     */
+    fetchRemoteContexts?: boolean;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAA;AACtD,OAAO,EAAE,eAAe,EAAE,mBAAmB,EAAE,MAAM,mCAAmC,CAAA;AACxF,OAAO,EAAE,aAAa,EAAE,UAAU,EAAE,aAAa,EAAE,WAAW,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,cAAc,CAAA;AAC5G,OAAO,EAAE,WAAW,EAAE,MAAM,0CAA0C,CAAA;AACtE,OAAO,EAAE,kBAAkB,EAAE,MAAM,cAAc,CAAA;AAEjD,MAAM,MAAM,gBAAgB,GAAG,UAAU,GAAG,aAAa,GAAG,WAAW,GAAG,WAAW,GAAG,SAAS,CAAA;AACjG,MAAM,MAAM,gBAAgB,GAAG,aAAa,CAAC,gBAAgB,CAAC,CAAA;AAE9D,MAAM,WAAW,4BAA4B;IAC3C,GAAG,CAAC,EAAE,MAAM,CAAA;IACZ,KAAK,EAAE,MAAM,CAAA;IACb,OAAO,EAAE,sBAAsB,CAAA;IAC/B,MAAM,EAAE,qBAAqB,CAAA;IAC7B,WAAW,CAAC,EAAE,WAAW,CAAA;CAC1B;AAED,MAAM,WAAW,4BAA4B;IAC3C,GAAG,EAAE,MAAM,CAAA;IACX,KAAK,EAAE,MAAM,CAAA;IACb,OAAO,EAAE,sBAAsB,CAAA;IAC/B,MAAM,EAAE,qBAAqB,CAAA;IAC7B,oBAAoB,EAAE,oBAAoB,EAAE,CAAA;IAC5C,WAAW,CAAC,EAAE,WAAW,EAAE,CAAA;CAC5B;AAED,MAAM,WAAW,gCAAgC;IAC/C,GAAG,EAAE,MAAM,CAAA;IACX,KAAK,EAAE,MAAM,CAAA;IACb,OAAO,EAAE,sBAAsB,CAAA;IAC/B,MAAM,EAAE,qBAAqB,CAAA;CAC9B;AAED,MAAM,MAAM,oBAAoB,GAAG,gBAAgB,GAAG,kBAAkB,GAAG,uBAAuB,GAAG,MAAM,CAAA;AAE3G,MAAM,WAAW,sBAAsB;IACrC,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,YAAY,CAAC,EAAE,OAAO,CAAA;IACtB,aAAa,CAAC,EAAE,OAAO,CAAA;IAEvB,CAAC,CAAC,EAAE,MAAM,GAAG,GAAG,CAAA;CACjB;AAED,MAAM,WAAW,qBAAqB;IACpC,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,kBAAkB,CAAC,EAAE,wBAAwB,EAAE,CAAA;IAE/C,CAAC,CAAC,EAAE,MAAM,GAAG,GAAG,CAAA;CACjB;AAED,MAAM,WAAW,wBAAyB,SAAQ,kBAAkB;IAClE,gBAAgB,CAAC,EAAE,MAAM,CAAA;IACzB,gBAAgB,CAAC,EAAE,MAAM,CAAA;IACzB,aAAa,CAAC,EAAE,UAAU,CAAA;IAC1B,aAAa,CAAC,EAAE,MAAM,CAAA;IACtB,mBAAmB,CAAC,EAAE,MAAM,CAAA;IAC5B,OAAO,CAAC,EAAE,CAAC,gBAAgB,GAAG,iBAAiB,GAAG,sBAAsB,GAAG,sBAAsB,CAAC,EAAE,CAAA;CACrG;AAED,MAAM,WAAW,WAAW;IAC1B,KAAK,EAAE,MAAM,CAAA;IACb,QAAQ,EAAE,QAAQ,CAAA;IAClB,uBAAuB,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC7C,mBAAmB,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;CAC1C;AAED,MAAM,WAAW,QAAQ;IACvB,KAAK,EAAE,UAAU,GAAG,QAAQ,GAAG,QAAQ,GAAG,MAAM,CAAA;IAChD,MAAM,CAAC,EAAE,UAAU,GAAG,uBAAuB,GAAG,aAAa,GAAG,gBAAgB,CAAA;IAChF,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,GAAG,EAAE,MAAM,CAAA;IACX,MAAM,CAAC,EAAE,qBAAqB,CAAA;IAC9B,WAAW,CAAC,EAAE,WAAW,CAAA;CAC1B;AAED,MAAM,WAAW,WAAW;IAC1B,YAAY,CAAC,EAAE,mBAAmB,CAAA;IAClC,OAAO,CAAC,EAAE,eAAe,CAAA;CAC1B;AAED,MAAM,WAAW,mBAAmB;IAClC,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,UAAU,CAAC,EAAE,eAAe,CAAA;IAC5B,SAAS,CAAC,EAAE,mBAAmB,CAAA;IAC/B,UAAU,CAAC,EAAE,mBAAmB,CAAA;IAChC,aAAa,CAAC,EAAE,mBAAmB,CAAA;IACnC,aAAa,CAAC,EAAE,mBAAmB,CAAA;CACpC;AAED,oBAAY,eAAe;IACzB,WAAW,gBAAgB;IAC3B,eAAe,gBAAgB;CAChC;AAED,MAAM,WAAW,eAAe;IAC9B,cAAc,CAAC,EAAE,eAAe,EAAE,CAAA;IAClC,wBAAwB,CAAC,EAAE,OAAO,CAAA;IAElC;;OAEG;IACH,WAAW,EAAE,WAAW,CAAA;IAExB;;;OAGG;IACH,oBAAoB,CAAC,EAAE,OAAO,CAAA;IAE9B;;;OAGG;IACH,MAAM,CAAC,EAAE,MAAM,CAAA;IAEf;;;;;;OAMG;IACH,mBAAmB,CAAC,EAAE,OAAO,CAAA;CAC9B"}

package/dist/types.js

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.IVCIApiFeatures = void 0;
+var IVCIApiFeatures;
+(function (IVCIApiFeatures) {
+    IVCIApiFeatures["DID_RESOLVE"] = "did-resolve";
+    IVCIApiFeatures["DID_PERSISTENCE"] = "did-persist";
+})(IVCIApiFeatures = exports.IVCIApiFeatures || (exports.IVCIApiFeatures = {}));
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":";;;AA0FA,IAAY,eAGX;AAHD,WAAY,eAAe;IACzB,8CAA2B,CAAA;IAC3B,kDAA+B,CAAA;AACjC,CAAC,EAHW,eAAe,GAAf,uBAAe,KAAf,uBAAe,QAG1B"}

package/dist/uni-resolver-api-server.d.ts

@@ -0,0 +1,20 @@
+import { ExpressBuildResult } from '@sphereon/ssi-sdk.express-support';
+import { TAgent } from '@veramo/core';
+import express, { Express } from 'express';
+import { IDidAPIOpts, IRequiredPlugins } from './types';
+export declare class UniResolverApiServer {
+    get router(): express.Router;
+    private readonly _express;
+    private readonly _agent;
+    private readonly _opts?;
+    private readonly _router;
+    constructor(args: {
+        agent: TAgent<IRequiredPlugins>;
+        expressArgs: ExpressBuildResult;
+        opts?: IDidAPIOpts;
+    });
+    get agent(): TAgent<IRequiredPlugins>;
+    get opts(): IDidAPIOpts | undefined;
+    get express(): Express;
+}
+//# sourceMappingURL=uni-resolver-api-server.d.ts.map

package/dist/uni-resolver-api-server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"uni-resolver-api-server.d.ts","sourceRoot":"","sources":["../src/uni-resolver-api-server.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,mCAAmC,CAAA;AACtE,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAA;AAErC,OAAO,OAAO,EAAE,EAAE,OAAO,EAAU,MAAM,SAAS,CAAA;AAElD,OAAO,EAAE,WAAW,EAAE,gBAAgB,EAAmB,MAAM,SAAS,CAAA;AAExE,qBAAa,oBAAoB;IAC/B,IAAI,MAAM,IAAI,OAAO,CAAC,MAAM,CAE3B;IAED,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;IAClC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAA0B;IACjD,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAa;IACpC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAQ;gBAEpB,IAAI,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC,gBAAgB,CAAC,CAAC;QAAC,WAAW,EAAE,kBAAkB,CAAC;QAAC,IAAI,CAAC,EAAE,WAAW,CAAA;KAAE;IA+B1G,IAAI,KAAK,IAAI,MAAM,CAAC,gBAAgB,CAAC,CAEpC;IAED,IAAI,IAAI,IAAI,WAAW,GAAG,SAAS,CAElC;IAED,IAAI,OAAO,IAAI,OAAO,CAErB;CACF"}

package/dist/uni-resolver-api-server.js

@@ -0,0 +1,62 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UniResolverApiServer = void 0;
+const ssi_sdk_core_1 = require("@sphereon/ssi-sdk.core");
+const express_1 = __importDefault(require("express"));
+const api_functions_1 = require("./api-functions");
+const types_1 = require("./types");
+class UniResolverApiServer {
+    get router() {
+        return this._router;
+    }
+    constructor(args) {
+        var _a, _b, _c, _d, _e, _f, _g, _h, _j;
+        const { agent, opts } = args;
+        this._agent = agent;
+        if ((_a = opts === null || opts === void 0 ? void 0 : opts.endpointOpts) === null || _a === void 0 ? void 0 : _a.globalAuth) {
+            copyGlobalAuthToEndpoint(opts, 'getDidMethods');
+            copyGlobalAuthToEndpoint(opts, 'createDid');
+            copyGlobalAuthToEndpoint(opts, 'resolveDid');
+            copyGlobalAuthToEndpoint(opts, 'deactivateDid');
+        }
+        this._opts = opts;
+        this._express = args.expressArgs.express;
+        this._router = express_1.default.Router();
+        const context = (0, ssi_sdk_core_1.agentContext)(agent);
+        const features = (_c = (_b = opts === null || opts === void 0 ? void 0 : opts.didOpts) === null || _b === void 0 ? void 0 : _b.enableFeatures) !== null && _c !== void 0 ? _c : [types_1.IVCIApiFeatures.DID_RESOLVE, types_1.IVCIApiFeatures.DID_PERSISTENCE];
+        console.log(`DID UniResolver API enabled, with features: ${JSON.stringify(features)}`);
+        // DID endpoints
+        if (features.includes(types_1.IVCIApiFeatures.DID_RESOLVE)) {
+            (0, api_functions_1.resolveDidEndpoint)(this.router, context, (_d = opts === null || opts === void 0 ? void 0 : opts.endpointOpts) === null || _d === void 0 ? void 0 : _d.resolveDid);
+            (0, api_functions_1.getDidMethodsEndpoint)(this.router, context, (_e = opts === null || opts === void 0 ? void 0 : opts.endpointOpts) === null || _e === void 0 ? void 0 : _e.getDidMethods);
+        }
+        if (features.includes(types_1.IVCIApiFeatures.DID_RESOLVE)) {
+            (0, api_functions_1.createDidEndpoint)(this.router, context, (_f = opts === null || opts === void 0 ? void 0 : opts.endpointOpts) === null || _f === void 0 ? void 0 : _f.createDid);
+            (0, api_functions_1.deactivateDidEndpoint)(this.router, context, (_g = opts === null || opts === void 0 ? void 0 : opts.endpointOpts) === null || _g === void 0 ? void 0 : _g.deactivateDid); // not in spec.
+        }
+        this._express.use((_j = (_h = opts === null || opts === void 0 ? void 0 : opts.endpointOpts) === null || _h === void 0 ? void 0 : _h.basePath) !== null && _j !== void 0 ? _j : '', this.router);
+    }
+    get agent() {
+        return this._agent;
+    }
+    get opts() {
+        return this._opts;
+    }
+    get express() {
+        return this._express;
+    }
+}
+exports.UniResolverApiServer = UniResolverApiServer;
+function copyGlobalAuthToEndpoint(opts, key) {
+    var _a, _b;
+    if ((_a = opts === null || opts === void 0 ? void 0 : opts.endpointOpts) === null || _a === void 0 ? void 0 : _a.globalAuth) {
+        // @ts-ignore
+        opts.endpointOpts[key] = Object.assign(Object.assign({}, opts.endpointOpts[key]), { 
+            // @ts-ignore
+            endpoint: Object.assign(Object.assign({}, opts.endpointOpts.globalAuth), (_b = opts.endpointOpts[key]) === null || _b === void 0 ? void 0 : _b.endpoint) });
+    }
+}
+//# sourceMappingURL=uni-resolver-api-server.js.map

package/dist/uni-resolver-api-server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"uni-resolver-api-server.js","sourceRoot":"","sources":["../src/uni-resolver-api-server.ts"],"names":[],"mappings":";;;;;;AAAA,yDAAqD;AAIrD,sDAAkD;AAClD,mDAAqH;AACrH,mCAAwE;AAExE,MAAa,oBAAoB;IAC/B,IAAI,MAAM;QACR,OAAO,IAAI,CAAC,OAAO,CAAA;IACrB,CAAC;IAOD,YAAY,IAA8F;;QACxG,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,IAAI,CAAA;QAC5B,IAAI,CAAC,MAAM,GAAG,KAAK,CAAA;QACnB,IAAI,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,YAAY,0CAAE,UAAU,EAAE;YAClC,wBAAwB,CAAC,IAAI,EAAE,eAAe,CAAC,CAAA;YAC/C,wBAAwB,CAAC,IAAI,EAAE,WAAW,CAAC,CAAA;YAC3C,wBAAwB,CAAC,IAAI,EAAE,YAAY,CAAC,CAAA;YAC5C,wBAAwB,CAAC,IAAI,EAAE,eAAe,CAAC,CAAA;SAChD;QAED,IAAI,CAAC,KAAK,GAAG,IAAI,CAAA;QACjB,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC,OAAO,CAAA;QACxC,IAAI,CAAC,OAAO,GAAG,iBAAO,CAAC,MAAM,EAAE,CAAA;QAE/B,MAAM,OAAO,GAAG,IAAA,2BAAY,EAAC,KAAK,CAAC,CAAA;QAEnC,MAAM,QAAQ,GAAG,MAAA,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,OAAO,0CAAE,cAAc,mCAAI,CAAC,uBAAe,CAAC,WAAW,EAAE,uBAAe,CAAC,eAAe,CAAC,CAAA;QAChH,OAAO,CAAC,GAAG,CAAC,+CAA+C,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAA;QAEtF,gBAAgB;QAChB,IAAI,QAAQ,CAAC,QAAQ,CAAC,uBAAe,CAAC,WAAW,CAAC,EAAE;YAClD,IAAA,kCAAkB,EAAC,IAAI,CAAC,MAAM,EAAE,OAAO,EAAE,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,YAAY,0CAAE,UAAU,CAAC,CAAA;YACxE,IAAA,qCAAqB,EAAC,IAAI,CAAC,MAAM,EAAE,OAAO,EAAE,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,YAAY,0CAAE,aAAa,CAAC,CAAA;SAC/E;QACD,IAAI,QAAQ,CAAC,QAAQ,CAAC,uBAAe,CAAC,WAAW,CAAC,EAAE;YAClD,IAAA,iCAAiB,EAAC,IAAI,CAAC,MAAM,EAAE,OAAO,EAAE,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,YAAY,0CAAE,SAAS,CAAC,CAAA;YACtE,IAAA,qCAAqB,EAAC,IAAI,CAAC,MAAM,EAAE,OAAO,EAAE,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,YAAY,0CAAE,aAAa,CAAC,CAAA,CAAC,eAAe;SAC/F;QACD,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAA,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,YAAY,0CAAE,QAAQ,mCAAI,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC,CAAA;IACpE,CAAC;IAED,IAAI,KAAK;QACP,OAAO,IAAI,CAAC,MAAM,CAAA;IACpB,CAAC;IAED,IAAI,IAAI;QACN,OAAO,IAAI,CAAC,KAAK,CAAA;IACnB,CAAC;IAED,IAAI,OAAO;QACT,OAAO,IAAI,CAAC,QAAQ,CAAA;IACtB,CAAC;CACF;AApDD,oDAoDC;AAED,SAAS,wBAAwB,CAAC,IAAiB,EAAE,GAAW;;IAC9D,IAAI,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,YAAY,0CAAE,UAAU,EAAE;QAClC,aAAa;QACb,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,mCAEjB,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC;YACzB,aAAa;YACb,QAAQ,kCAAO,IAAI,CAAC,YAAY,CAAC,UAAU,GAAK,MAAA,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,0CAAE,QAAQ,IACjF,CAAA;KACF;AACH,CAAC"}

package/package.json

@@ -0,0 +1,93 @@
+{
+  "name": "@sphereon/ssi-sdk.uni-resolver-registrar-api",
+  "version": "0.13.1-next.23+6c616f9",
+  "source": "src/index.ts",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "scripts": {
+    "build": "tsc --build",
+    "build:clean": "tsc --build --clean && tsc --build",
+    "start:prod": "node build/index.js",
+    "start:dev": "ts-node __tests__/agent.ts"
+  },
+  "dependencies": {
+    "@sphereon/ssi-sdk-ext.did-utils": "0.12.2-next.5",
+    "@sphereon/ssi-sdk-ext.key-manager": "0.12.2-next.5",
+    "@sphereon/ssi-sdk-ext.key-utils": "0.12.2-next.5",
+    "@sphereon/ssi-sdk.core": "0.13.1-next.23+6c616f9",
+    "@sphereon/ssi-sdk.express-support": "0.13.1-next.23+6c616f9",
+    "@sphereon/ssi-types": "0.13.1-next.23+6c616f9",
+    "@veramo/core": "4.2.0",
+    "body-parser": "^1.19.0",
+    "casbin": "^5.26.1",
+    "cookie-parser": "^1.4.5",
+    "cors": "^2.8.5",
+    "cross-fetch": "^3.1.5",
+    "dotenv-flow": "^3.2.0",
+    "express": "^4.18.2",
+    "short-uuid": "^4.2.2",
+    "uuid": "^8.3.2"
+  },
+  "devDependencies": {
+    "@sphereon/did-uni-client": "^0.6.0",
+    "@sphereon/ssi-sdk-ext.did-provider-jwk": "0.12.2-next.5",
+    "@sphereon/ssi-sdk-ext.did-resolver-jwk": "0.12.2-next.5",
+    "@sphereon/ssi-sdk.data-store": "0.13.1-next.23+6c616f9",
+    "@sphereon/ssi-sdk.vc-handler-ld-local": "0.13.1-next.23+6c616f9",
+    "@types/body-parser": "^1.19.2",
+    "@types/cookie-parser": "^1.4.3",
+    "@types/cors": "^2.8.13",
+    "@types/debug": "^4.1.7",
+    "@types/dotenv-flow": "^3.2.0",
+    "@types/express": "^4.17.13",
+    "@types/express-http-proxy": "^1.6.3",
+    "@types/morgan": "^1.9.4",
+    "@types/node": "^18.15.0",
+    "@types/passport": "^1.0.12",
+    "@types/passport-azure-ad": "^4.3.1",
+    "@types/uuid": "^9.0.1",
+    "@veramo/data-store": "4.2.0",
+    "@veramo/did-manager": "4.2.0",
+    "@veramo/did-provider-ethr": "4.2.0",
+    "@veramo/did-provider-ion": "4.2.0",
+    "@veramo/did-provider-key": "4.2.0",
+    "@veramo/did-provider-web": "4.2.0",
+    "@veramo/did-resolver": "4.2.0",
+    "@veramo/key-manager": "4.2.0",
+    "@veramo/kms-local": "4.2.0",
+    "@veramo/utils": "4.2.0",
+    "did-resolver": "^4.1.0",
+    "morgan": "^1.10.0",
+    "nock": "^13.2.1",
+    "passport": "^0.6.0",
+    "passport-azure-ad": "^4.3.5",
+    "ts-node": "^10.9.1",
+    "typeorm": "^0.3.12",
+    "web-did-resolver": "^2.0.27"
+  },
+  "files": [
+    ".yalc/**/*",
+    "dist/**/*",
+    "src/**/*",
+    "README.md",
+    "plugin.schema.json",
+    "LICENSE"
+  ],
+  "private": false,
+  "publishConfig": {
+    "access": "public"
+  },
+  "repository": "git@github.com:Sphereon-Opensource/SSI-SDK.git",
+  "author": "Sphereon <dev@sphereon.com>",
+  "license": "Apache-2.0",
+  "keywords": [
+    "Sphereon",
+    "SSI",
+    "Veramo",
+    "DID",
+    "Universal Resolver",
+    "Inversal Registrar",
+    "DIF"
+  ],
+  "gitHead": "6c616f988be6a5d891c771bb59faa50d3160aa75"
+}

package/src/api-functions.ts

@@ -0,0 +1,159 @@
+import { DIDResolutionResult } from '@sphereon/did-uni-client'
+import { getAgentDIDMethods, toDidDocument, toDidResolutionResult } from '@sphereon/ssi-sdk-ext.did-utils'
+import { JwkKeyUse } from '@sphereon/ssi-sdk-ext.key-utils'
+import { checkAuth, ISingleEndpointOpts, sendErrorResponse } from '@sphereon/ssi-sdk.express-support'
+import { parseDid } from '@sphereon/ssi-types'
+import { IIdentifier } from '@veramo/core'
+import { Request, Response, Router } from 'express'
+import { v4 } from 'uuid'
+import { CreateState, DidRegistrationCreateRequest, IRequiredContext } from './types'
+
+export function createDidEndpoint(router: Router, context: IRequiredContext, opts?: ISingleEndpointOpts & { kms?: string }) {
+  if (opts?.enabled === false) {
+    console.log(`create DID endpoint is disabled`)
+    return
+  }
+  const path = opts?.path ?? '/identifiers'
+
+  router.post(path, checkAuth(opts?.endpoint), async (request: Request, response: Response) => {
+    try {
+      const createRequest: DidRegistrationCreateRequest = request.body
+      if (!createRequest) {
+        return sendErrorResponse(response, 400, 'No DID create request present')
+      }
+      const did = createRequest.did
+      const didMethod = (request.query.method as string) ?? (did ? parseDid(did).method : undefined)
+      const allDidMethods = await getAgentDIDMethods(context)
+      if (!didMethod) {
+        return sendErrorResponse(response, 400, 'No DID method supplied or deductible')
+      } else if (did && parseDid(did).method != didMethod) {
+        return sendErrorResponse(response, 400, 'DID method did not match method param')
+      } else if (!allDidMethods.includes(didMethod)) {
+        return sendErrorResponse(response, 400, 'DID method not supported')
+      }
+      const provider = `did:${didMethod}`
+      const jobId = createRequest.jobId ?? `urn:uuid:${v4()}`
+      let alias: string | undefined = undefined
+      if (didMethod === 'web') {
+        if (!did) {
+          throw Error('Please provide a value for "did" in the request body when creating a DID web')
+        }
+        alias = parseDid(did).id
+        if (!alias) {
+          throw Error('Could not determine alias from did:web DID value: ' + did)
+        }
+      }
+
+      let identifier: IIdentifier
+      if (createRequest.options.storeSecrets === false) {
+        throw Error('Not storing secrets mode is not support yet')
+        /*const memoryKMS = new SphereonKeyManager({
+                    store: new MemoryKeyStore(),
+                    kms: {'mem': new KeyManagementSystem(new MemoryPrivateKeyStore())}
+                })
+                identifier = await memoryKMS..didManagerCreate({provider, alias, kms: opts?.kms})*/
+      } else {
+        identifier = await context.agent.didManagerCreate({ provider, alias, kms: opts?.kms })
+      }
+
+      const didDocument = toDidDocument(identifier, { did, use: [JwkKeyUse.Signature, JwkKeyUse.Encryption] })
+      const createState: CreateState = {
+        jobId,
+        didState: {
+          did: identifier.did,
+          state: 'finished',
+          didDocument,
+        },
+      }
+      response.statusCode = 200
+      return response.send(createState)
+    } catch (e) {
+      return sendErrorResponse(response, 500, e.message as string, e)
+    }
+  })
+}
+
+export function getDidMethodsEndpoint(router: Router, context: IRequiredContext, opts?: ISingleEndpointOpts) {
+  if (opts?.enabled === false) {
+    console.log(`Get DID methods endpoint is disabled`)
+    return
+  }
+  const path = opts?.path ?? '/methods'
+  router.get(path, checkAuth(opts?.endpoint), async (request: Request, response: Response) => {
+    try {
+      const methods = await getAgentDIDMethods(context) // these are already without the 'did:' prefix
+      response.statusCode = 200
+      return response.send(methods)
+    } catch (e) {
+      return sendErrorResponse(response, 500, e.message as string, e)
+    }
+  })
+}
+
+export function resolveDidEndpoint(router: Router, context: IRequiredContext, opts?: ISingleEndpointOpts & { mode?: 'local' | 'resolve' }) {
+  if (opts?.enabled === false) {
+    console.log(`Resolve DID endpoint is disabled`)
+    return
+  }
+  const path = opts?.path ?? '/identifiers/:identifier'
+  router.get(path, checkAuth(opts?.endpoint), async (request: Request, response: Response) => {
+    try {
+      const did = request.params.identifier
+      if (!did) {
+        return sendErrorResponse(response, 400, 'no identifier provided')
+      }
+      const mode = request.query.mode?.toString().toLowerCase() ?? opts?.mode?.toLowerCase()
+      let resolutionResult: DIDResolutionResult | undefined
+      if (mode === 'local' || mode === 'hybrid') {
+        try {
+          const identifier = await context.agent.didManagerGet({ did })
+          console.log(JSON.stringify(identifier, null, 2))
+          resolutionResult = toDidResolutionResult(identifier, {
+            did,
+            supportedMethod: await getAgentDIDMethods(context),
+          })
+        } catch (error) {
+          resolutionResult = {
+            didDocument: null,
+            didResolutionMetadata: {
+              error: 'notFound',
+            },
+            didDocumentMetadata: {},
+          }
+        }
+      }
+      if (mode !== 'local' && !resolutionResult?.didDocument) {
+        resolutionResult = await context.agent.resolveDid({ didUrl: did })
+      }
+
+      response.statusCode = 200
+      return response.send(resolutionResult)
+    } catch (e) {
+      return sendErrorResponse(response, 500, e.message as string, e)
+    }
+  })
+}
+
+export function deactivateDidEndpoint(router: Router, context: IRequiredContext, opts?: ISingleEndpointOpts) {
+  if (opts?.enabled === false) {
+    console.log(`Deactivate DID endpoint is disabled`)
+    return
+  }
+  router.delete(opts?.path ?? '/identifiers/:identifier', checkAuth(opts?.endpoint), async (request: Request, response: Response) => {
+    try {
+      const did = request.params.identifier
+      if (!did) {
+        return sendErrorResponse(response, 400, 'no DID provided')
+      }
+
+      const result = await context.agent.didManagerDelete({ did })
+      if (!result) {
+        return sendErrorResponse(response, 404, `id ${did} not found`)
+      }
+      response.statusCode = 200
+      return response.send()
+    } catch (e) {
+      return sendErrorResponse(response, 500, e.message as string, e)
+    }
+  })
+}

package/src/index.ts

@@ -0,0 +1,6 @@
+/**
+ * @public
+ */
+export * from './uni-resolver-api-server'
+export * from './types'
+export * from './api-functions'

package/src/types.ts

@@ -0,0 +1,125 @@
+import { DIDDocument } from '@sphereon/did-uni-client'
+import { GenericAuthArgs, ISingleEndpointOpts } from '@sphereon/ssi-sdk.express-support'
+import { IAgentContext, IDataStore, IDataStoreORM, IDIDManager, IKeyManager, IResolver } from '@veramo/core'
+import { ProofFormat } from '@veramo/core/src/types/ICredentialIssuer'
+import { VerificationMethod } from 'did-resolver'
+
+export type IRequiredPlugins = IDataStore & IDataStoreORM & IDIDManager & IKeyManager & IResolver
+export type IRequiredContext = IAgentContext<IRequiredPlugins>
+
+export interface DidRegistrationCreateRequest {
+  did?: string
+  jobId: string
+  options: DidRegistrationOptions
+  secret: DidRegistrationSecret
+  didDocument?: DIDDocument
+}
+
+export interface DidRegistrationUpdateRequest {
+  did: string
+  jobId: string
+  options: DidRegistrationOptions
+  secret: DidRegistrationSecret
+  didDocumentOperation: DidDocumentOperation[]
+  didDocument?: DIDDocument[]
+}
+
+export interface DidRegistrationDeactivateRequest {
+  did: string
+  jobId: string
+  options: DidRegistrationOptions
+  secret: DidRegistrationSecret
+}
+
+export type DidDocumentOperation = 'setDidDocument' | 'addToDidDocument' | 'removeFromDidDocument' | string
+
+export interface DidRegistrationOptions {
+  network?: string
+  storeSecrets?: boolean
+  returnSecrets?: boolean
+
+  [x: string]: any
+}
+
+export interface DidRegistrationSecret {
+  seed?: string
+  verificationMethod?: CreateVerificationMethod[]
+
+  [x: string]: any
+}
+
+export interface CreateVerificationMethod extends VerificationMethod {
+  privateKeyBase58?: string
+  privateKeyBase64?: string
+  privateKeyJwk?: JsonWebKey
+  privateKeyHex?: string
+  privateKeyMultibase?: string
+  purpose?: ('authentication' | 'assertionMethod' | 'capabilityDelegation' | 'capabilityInvocation')[]
+}
+
+export interface CreateState {
+  jobId: string
+  didState: DidState
+  didRegistrationMetadata?: Record<string, any>
+  didDocumentMetadata?: Record<string, any>
+}
+
+export interface DidState {
+  state: 'finished' | 'failed' | 'action' | 'wait'
+  action?: 'redirect' | 'getVerificationMethod' | 'signPayload' | 'decryptPayload'
+  wait?: string
+  waitTime?: number
+  did: string
+  secret?: DidRegistrationSecret
+  didDocument?: DIDDocument
+}
+
+export interface IDidAPIOpts {
+  endpointOpts?: IDidAPIEndpointOpts
+  didOpts?: IVCAPIIssueOpts
+}
+
+export interface IDidAPIEndpointOpts {
+  basePath?: string
+  globalAuth?: GenericAuthArgs
+  createDid?: ISingleEndpointOpts
+  resolveDid?: ISingleEndpointOpts
+  deactivateDid?: ISingleEndpointOpts
+  getDidMethods?: ISingleEndpointOpts
+}
+
+export enum IVCIApiFeatures {
+  DID_RESOLVE = 'did-resolve',
+  DID_PERSISTENCE = 'did-persist',
+}
+
+export interface IVCAPIIssueOpts {
+  enableFeatures?: IVCIApiFeatures[] // Feature to enable. If not defined or empty, all features will be enabled
+  persistIssuedCredentials?: boolean // Whether the issuer persists issued credentials or not. Defaults to VC_PERSISTENCE feature flag being present or not
+
+  /**
+   * The desired format for the VerifiablePresentation to be created.
+   */
+  proofFormat: ProofFormat
+
+  /**
+   * Remove payload members during JWT-JSON transformation. Defaults to `true`.
+   * See https://www.w3.org/TR/vc-data-model/#jwt-encoding
+   */
+  removeOriginalFields?: boolean
+
+  /**
+   * [Optional] The ID of the key that should sign this credential.
+   * If this is not specified, the first matching key will be used.
+   */
+  keyRef?: string
+
+  /**
+   * When dealing with JSON-LD you also MUST provide the proper contexts.
+   * Set this to `true` ONLY if you want the `@context` URLs to be fetched in case they are not preloaded.
+   * The context definitions SHOULD rather be provided at startup instead of being fetched.
+   *
+   * Defaults to `false`
+   */
+  fetchRemoteContexts?: boolean
+}

package/src/uni-resolver-api-server.ts

@@ -0,0 +1,73 @@
+import { agentContext } from '@sphereon/ssi-sdk.core'
+import { ExpressBuildResult } from '@sphereon/ssi-sdk.express-support'
+import { TAgent } from '@veramo/core'
+
+import express, { Express, Router } from 'express'
+import { createDidEndpoint, deactivateDidEndpoint, getDidMethodsEndpoint, resolveDidEndpoint } from './api-functions'
+import { IDidAPIOpts, IRequiredPlugins, IVCIApiFeatures } from './types'
+
+export class UniResolverApiServer {
+  get router(): express.Router {
+    return this._router
+  }
+
+  private readonly _express: Express
+  private readonly _agent: TAgent<IRequiredPlugins>
+  private readonly _opts?: IDidAPIOpts
+  private readonly _router: Router
+
+  constructor(args: { agent: TAgent<IRequiredPlugins>; expressArgs: ExpressBuildResult; opts?: IDidAPIOpts }) {
+    const { agent, opts } = args
+    this._agent = agent
+    if (opts?.endpointOpts?.globalAuth) {
+      copyGlobalAuthToEndpoint(opts, 'getDidMethods')
+      copyGlobalAuthToEndpoint(opts, 'createDid')
+      copyGlobalAuthToEndpoint(opts, 'resolveDid')
+      copyGlobalAuthToEndpoint(opts, 'deactivateDid')
+    }
+
+    this._opts = opts
+    this._express = args.expressArgs.express
+    this._router = express.Router()
+
+    const context = agentContext(agent)
+
+    const features = opts?.didOpts?.enableFeatures ?? [IVCIApiFeatures.DID_RESOLVE, IVCIApiFeatures.DID_PERSISTENCE]
+    console.log(`DID UniResolver API enabled, with features: ${JSON.stringify(features)}`)
+
+    // DID endpoints
+    if (features.includes(IVCIApiFeatures.DID_RESOLVE)) {
+      resolveDidEndpoint(this.router, context, opts?.endpointOpts?.resolveDid)
+      getDidMethodsEndpoint(this.router, context, opts?.endpointOpts?.getDidMethods)
+    }
+    if (features.includes(IVCIApiFeatures.DID_RESOLVE)) {
+      createDidEndpoint(this.router, context, opts?.endpointOpts?.createDid)
+      deactivateDidEndpoint(this.router, context, opts?.endpointOpts?.deactivateDid) // not in spec.
+    }
+    this._express.use(opts?.endpointOpts?.basePath ?? '', this.router)
+  }
+
+  get agent(): TAgent<IRequiredPlugins> {
+    return this._agent
+  }
+
+  get opts(): IDidAPIOpts | undefined {
+    return this._opts
+  }
+
+  get express(): Express {
+    return this._express
+  }
+}
+
+function copyGlobalAuthToEndpoint(opts: IDidAPIOpts, key: string) {
+  if (opts?.endpointOpts?.globalAuth) {
+    // @ts-ignore
+    opts.endpointOpts[key] = {
+      // @ts-ignore
+      ...opts.endpointOpts[key],
+      // @ts-ignore
+      endpoint: { ...opts.endpointOpts.globalAuth, ...opts.endpointOpts[key]?.endpoint },
+    }
+  }
+}