npm - @sphereon/ssi-sdk.vc-status-list - Versions diffs - 0.32.1-next.18 → 0.32.1-next.287 - Mend

@sphereon/ssi-sdk.vc-status-list 0.32.1-next.18 → 0.32.1-next.287

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (51) hide show

package/dist/functions.d.ts +13 -13
package/dist/functions.d.ts.map +1 -1
package/dist/functions.js +53 -109
package/dist/functions.js.map +1 -1
package/dist/impl/IStatusList.d.ts +26 -0
package/dist/impl/IStatusList.d.ts.map +1 -0
package/dist/impl/IStatusList.js +3 -0
package/dist/impl/IStatusList.js.map +1 -0
package/dist/impl/OAuthStatusList.d.ts +21 -0
package/dist/impl/OAuthStatusList.d.ts.map +1 -0
package/dist/impl/OAuthStatusList.js +155 -0
package/dist/impl/OAuthStatusList.js.map +1 -0
package/dist/impl/StatusList2021.d.ts +16 -0
package/dist/impl/StatusList2021.d.ts.map +1 -0
package/dist/impl/StatusList2021.js +186 -0
package/dist/impl/StatusList2021.js.map +1 -0
package/dist/impl/StatusListFactory.d.ts +11 -0
package/dist/impl/StatusListFactory.d.ts.map +1 -0
package/dist/impl/StatusListFactory.js +32 -0
package/dist/impl/StatusListFactory.js.map +1 -0
package/dist/impl/encoding/cbor.d.ts +6 -0
package/dist/impl/encoding/cbor.d.ts.map +1 -0
package/dist/impl/encoding/cbor.js +140 -0
package/dist/impl/encoding/cbor.js.map +1 -0
package/dist/impl/encoding/common.d.ts +12 -0
package/dist/impl/encoding/common.d.ts.map +1 -0
package/dist/impl/encoding/common.js +17 -0
package/dist/impl/encoding/common.js.map +1 -0
package/dist/impl/encoding/jwt.d.ts +9 -0
package/dist/impl/encoding/jwt.d.ts.map +1 -0
package/dist/impl/encoding/jwt.js +74 -0
package/dist/impl/encoding/jwt.js.map +1 -0
package/dist/types/index.d.ts +131 -33
package/dist/types/index.d.ts.map +1 -1
package/dist/types/index.js +12 -0
package/dist/types/index.js.map +1 -1
package/dist/utils.d.ts +17 -0
package/dist/utils.d.ts.map +1 -0
package/dist/utils.js +88 -0
package/dist/utils.js.map +1 -0
package/package.json +17 -6
package/src/functions.ts +73 -159
package/src/impl/IStatusList.ts +42 -0
package/src/impl/OAuthStatusList.ts +206 -0
package/src/impl/StatusList2021.ts +241 -0
package/src/impl/StatusListFactory.ts +34 -0
package/src/impl/encoding/cbor.ts +171 -0
package/src/impl/encoding/common.ts +20 -0
package/src/impl/encoding/jwt.ts +80 -0
package/src/types/index.ts +151 -37
package/src/utils.ts +95 -0

package/src/functions.ts CHANGED Viewed

@@ -2,40 +2,42 @@ import { IIdentifierResolution } from '@sphereon/ssi-sdk-ext.identifier-resoluti
 import {
   CredentialMapper,
   DocumentFormat,
-  IIssuer,
-  OriginalVerifiableCredential,
+  ProofFormat,
+  StatusListCredential,
   StatusListDriverType,
   StatusListType,
   StatusPurpose2021,
 } from '@sphereon/ssi-types'
+import { CredentialStatus, DIDDocument, IAgentContext, ICredentialPlugin, ProofFormat as VeramoProofFormat } from '@veramo/core'
-import { checkStatus, StatusList } from '@sphereon/vc-status-list'
-import { CredentialStatus, DIDDocument, IAgentContext, ICredentialPlugin, ProofFormat } from '@veramo/core'
+import { checkStatus } from '@sphereon/vc-status-list'
 import { CredentialJwtOrJSON, StatusMethod } from 'credential-status'
 import {
   CreateNewStatusListFuncArgs,
+  Status2021,
   StatusList2021ToVerifiableCredentialArgs,
-  StatusListDetails,
   StatusListResult,
+  StatusOAuth,
   UpdateStatusListFromEncodedListArgs,
-  UpdateStatusListFromStatusListCredentialArgs,
+  UpdateStatusListIndexArgs,
 } from './types'
+import { assertValidProofType, determineStatusListType, getAssertedValue, getAssertedValues } from './utils'
+import { getStatusListImplementation } from './impl/StatusListFactory'
-export async function fetchStatusListCredential(args: { statusListCredential: string }): Promise<OriginalVerifiableCredential> {
+export async function fetchStatusListCredential(args: { statusListCredential: string }): Promise<StatusListCredential> {
   const url = getAssertedValue('statusListCredential', args.statusListCredential)
   try {
     const response = await fetch(url)
     if (!response.ok) {
-      const error = `Fetching status list ${url} resulted in an error: ${response.status} : ${response.statusText}`
-      throw Error(error)
+      throw Error(`Fetching status list ${url} resulted in an error: ${response.status} : ${response.statusText}`)
     }
     const responseAsText = await response.text()
     if (responseAsText.trim().startsWith('{')) {
-      return JSON.parse(responseAsText) as OriginalVerifiableCredential
+      return JSON.parse(responseAsText) as StatusListCredential
     }
-    return responseAsText as OriginalVerifiableCredential
+    return responseAsText as StatusListCredential
   } catch (error) {
-    console.log(`Fetching status list ${url} resulted in an unexpected error: ${error instanceof Error ? error.message : JSON.stringify(error)}`)
+    console.error(`Fetching status list ${url} resulted in an unexpected error: ${error instanceof Error ? error.message : JSON.stringify(error)}`)
     throw error
   }
 }
@@ -52,7 +54,7 @@ export function statusPluginStatusFunction(args: {
     const result = await checkStatusForCredential({
       ...args,
       documentLoader: args.documentLoader,
-      credential: credential as OriginalVerifiableCredential,
+      credential: credential as StatusListCredential,
       errorUnknownListType: args.errorUnknownListType,
     })
@@ -75,7 +77,7 @@ export function vcLibCheckStatusFunction(args: {
 }) {
   const { mandatoryCredentialStatus, verifyStatusListCredential, verifyMatchingIssuers, errorUnknownListType } = args
   return (args: {
-    credential: OriginalVerifiableCredential
+    credential: StatusListCredential
     documentLoader: any
     suite: any
   }): Promise<{
@@ -93,7 +95,7 @@ export function vcLibCheckStatusFunction(args: {
 }
 export async function checkStatusForCredential(args: {
-  credential: OriginalVerifiableCredential
+  credential: StatusListCredential
   documentLoader: any
   suite: any
   mandatoryCredentialStatus?: boolean
@@ -132,7 +134,7 @@ export async function simpleCheckStatusFromStatusListUrl(args: {
   type?: StatusListType | 'StatusList2021Entry'
   id?: string
   statusListIndex: string
-}): Promise<boolean> {
+}): Promise<number | Status2021 | StatusOAuth> {
   return checkStatusIndexFromStatusListCredential({
     ...args,
     statusListCredential: await fetchStatusListCredential(args),
@@ -140,163 +142,97 @@ export async function simpleCheckStatusFromStatusListUrl(args: {
 }
 export async function checkStatusIndexFromStatusListCredential(args: {
-  statusListCredential: OriginalVerifiableCredential
+  statusListCredential: StatusListCredential
   statusPurpose?: StatusPurpose2021
   type?: StatusListType | 'StatusList2021Entry'
   id?: string
   statusListIndex: string | number
-}): Promise<boolean> {
-  const requestedType = getAssertedStatusListType(args.type?.replace('Entry', '') as StatusListType)
-  const uniform = CredentialMapper.toUniformCredential(args.statusListCredential)
-  const { issuer, type, credentialSubject, id } = uniform
-  getAssertedValue('issuer', issuer) // We are only checking the value here
-  getAssertedValue('credentialSubject', credentialSubject)
-  if (args.statusPurpose && 'statusPurpose' in credentialSubject) {
-    if (args.statusPurpose !== credentialSubject.statusPurpose) {
-      throw Error(
-        `Status purpose in StatusList credential with id ${id} and value ${credentialSubject.statusPurpose} does not match supplied purpose: ${args.statusPurpose}`,
-      )
-    }
-  } else if (args.id && args.id !== id) {
-    throw Error(`Status list id ${id} did not match required supplied id: ${args.id}`)
-  }
-  if (!type || !(type.includes(requestedType) || type.includes(requestedType + 'Credential'))) {
-    throw Error(`Credential type ${JSON.stringify(type)} does not contain requested type ${requestedType}`)
-  }
-  // @ts-ignore
-  const encodedList = getAssertedValue('encodedList', credentialSubject['encodedList'])
-  const statusList = await StatusList.decode({ encodedList })
-  const status = statusList.getStatus(typeof args.statusListIndex === 'number' ? args.statusListIndex : Number.parseInt(args.statusListIndex))
-  return status
+}): Promise<number | Status2021 | StatusOAuth> {
+  const statusListType: StatusListType = determineStatusListType(args.statusListCredential)
+  const implementation = getStatusListImplementation(statusListType)
+  return implementation.checkStatusIndex(args)
 }
 export async function createNewStatusList(
   args: CreateNewStatusListFuncArgs,
   context: IAgentContext<ICredentialPlugin & IIdentifierResolution>,
 ): Promise<StatusListResult> {
-  const length = args?.length ?? 250000
-  const proofFormat = args?.proofFormat ?? 'lds'
-  const { issuer, type, id } = getAssertedValues(args)
-  const correlationId = getAssertedValue('correlationId', args.correlationId)
-  const list = new StatusList({ length })
-  const encodedList = await list.encode()
-  const statusPurpose = args.statusPurpose ?? 'revocation'
-  const statusListCredential = await statusList2021ToVerifiableCredential(
-    {
-      ...args,
-      type,
-      proofFormat,
-      encodedList,
-    },
-    context,
-  )
-  return {
-    encodedList,
-    statusListCredential,
-    length,
-    type,
-    proofFormat,
-    id,
-    correlationId,
-    issuer,
-    statusPurpose,
-    indexingDirection: 'rightToLeft',
-  } as StatusListResult
+  const { type } = getAssertedValues(args)
+  const implementation = getStatusListImplementation(type)
+  return implementation.createNewStatusList(args, context)
 }
 export async function updateStatusIndexFromStatusListCredential(
-  args: UpdateStatusListFromStatusListCredentialArgs,
+  args: UpdateStatusListIndexArgs,
   context: IAgentContext<ICredentialPlugin & IIdentifierResolution>,
-): Promise<StatusListDetails> {
-  return updateStatusListIndexFromEncodedList(
-    {
-      ...(await statusListCredentialToDetails(args)),
-      statusListIndex: args.statusListIndex,
-      value: args.value,
-    },
-    context,
-  )
+): Promise<StatusListResult> {
+  const credential = getAssertedValue('statusListCredential', args.statusListCredential)
+  const statusListType: StatusListType = determineStatusListType(credential)
+  const implementation = getStatusListImplementation(statusListType)
+  return implementation.updateStatusListIndex(args, context)
 }
+// Keeping helper function for backward compatibility
 export async function statusListCredentialToDetails(args: {
-  statusListCredential: OriginalVerifiableCredential
+  statusListCredential: StatusListCredential
   correlationId?: string
   driverType?: StatusListDriverType
-}): Promise<StatusListDetails> {
+}): Promise<StatusListResult> {
   const credential = getAssertedValue('statusListCredential', args.statusListCredential)
-  const uniform = CredentialMapper.toUniformCredential(credential)
-  const { issuer, type, credentialSubject } = uniform
-  if (!type.includes('StatusList2021Credential')) {
-    throw Error('StatusList2021Credential type should be present in the Verifiable Credential')
+  let statusListType: StatusListType | undefined
+  const documentFormat = CredentialMapper.detectDocumentType(credential)
+  if (documentFormat === DocumentFormat.JWT) {
+    const [header] = credential.split('.')
+    const decodedHeader = JSON.parse(Buffer.from(header, 'base64').toString())
+    if (decodedHeader.typ === 'statuslist+jwt') {
+      statusListType = StatusListType.OAuthStatusList
+    }
+  } else if (documentFormat === DocumentFormat.MSO_MDOC) {
+    statusListType = StatusListType.OAuthStatusList
+    // TODO check CBOR content?
   }
-  const id = getAssertedValue('id', uniform.id)
-  // @ts-ignore
-  const { encodedList, statusPurpose } = credentialSubject
-  const proofFormat: ProofFormat = CredentialMapper.detectDocumentType(credential) === DocumentFormat.JWT ? 'jwt' : 'lds'
-  return {
-    id,
-    encodedList,
-    issuer,
-    type: StatusListType.StatusList2021,
-    proofFormat,
-    indexingDirection: 'rightToLeft',
-    length: (await StatusList.decode({ encodedList })).length,
-    statusPurpose,
-    statusListCredential: credential,
-    ...(args.correlationId && { correlationId: args.correlationId }),
-    ...(args.driverType && { driverType: args.driverType }),
+  if (!statusListType) {
+    const uniform = CredentialMapper.toUniformCredential(credential)
+    const type = uniform.type.find((t) => t.includes('StatusList2021') || t.includes('OAuth2StatusList'))
+    if (!type) {
+      throw new Error('Invalid status list credential type')
+    }
+    statusListType = type.replace('Credential', '') as StatusListType
   }
+  const implementation = getStatusListImplementation(statusListType)
+  return await implementation.toStatusListDetails({
+    statusListPayload: credential,
+    correlationId: args.correlationId,
+    driverType: args.driverType,
+  })
 }
 export async function updateStatusListIndexFromEncodedList(
   args: UpdateStatusListFromEncodedListArgs,
   context: IAgentContext<ICredentialPlugin & IIdentifierResolution>,
-): Promise<StatusListDetails> {
-  const { issuer, type, id } = getAssertedValues(args)
-  const proofFormat = args?.proofFormat ?? 'lds'
-  const origEncodedList = getAssertedValue('encodedList', args.encodedList)
-  const index = getAssertedValue('index', typeof args.statusListIndex === 'number' ? args.statusListIndex : Number.parseInt(args.statusListIndex))
-  const value = getAssertedValue('value', args.value)
-  const statusPurpose = getAssertedValue('statusPurpose', args.statusPurpose)
-  const statusList = await StatusList.decode({ encodedList: origEncodedList })
-  statusList.setStatus(index, value)
-  const encodedList = await statusList.encode()
-  const statusListCredential = await statusList2021ToVerifiableCredential(
-    {
-      ...args,
-      type,
-      proofFormat,
-      encodedList,
-    },
-    context,
-  )
-  return {
-    encodedList,
-    statusListCredential,
-    length: statusList.length - 1,
-    type,
-    proofFormat,
-    id,
-    issuer,
-    statusPurpose,
-    indexingDirection: 'rightToLeft',
-  }
+): Promise<StatusListResult> {
+  const { type } = getAssertedValue('type', args)
+  const implementation = getStatusListImplementation(type!)
+  return implementation.updateStatusListFromEncodedList(args, context)
 }
 export async function statusList2021ToVerifiableCredential(
   args: StatusList2021ToVerifiableCredentialArgs,
   context: IAgentContext<ICredentialPlugin & IIdentifierResolution>,
-): Promise<OriginalVerifiableCredential> {
+): Promise<StatusListCredential> {
   const { issuer, id, type } = getAssertedValues(args)
   const identifier = await context.agent.identifierManagedGet({
     identifier: typeof issuer === 'string' ? issuer : issuer.id,
     vmRelationship: 'assertionMethod',
     offlineWhenNoDIDRegistered: true, // FIXME Fix identifier resolution for EBSI
   })
+  const proofFormat: ProofFormat = args?.proofFormat ?? 'lds'
+  assertValidProofType(StatusListType.StatusList2021, proofFormat)
+  const veramoProofFormat: VeramoProofFormat = proofFormat as VeramoProofFormat
   const encodedList = getAssertedValue('encodedList', args.encodedList)
   const statusPurpose = getAssertedValue('statusPurpose', args.statusPurpose)
   const credential = {
@@ -316,31 +252,9 @@ export async function statusList2021ToVerifiableCredential(
   const verifiableCredential = await context.agent.createVerifiableCredential({
     credential,
     keyRef: identifier.kmsKeyRef,
-    proofFormat: args.proofFormat ?? 'lds',
+    proofFormat: veramoProofFormat,
     fetchRemoteContexts: true,
   })
-  return CredentialMapper.toWrappedVerifiableCredential(verifiableCredential as OriginalVerifiableCredential).original
-}
-function getAssertedStatusListType(type?: StatusListType) {
-  const assertedType = type ?? StatusListType.StatusList2021
-  if (assertedType !== StatusListType.StatusList2021) {
-    throw Error(`StatusList type ${assertedType} is not supported (yet)`)
-  }
-  return assertedType
-}
-function getAssertedValue<T>(name: string, value: T): NonNullable<T> {
-  if (value === undefined || value === null) {
-    throw Error(`Missing required ${name} value`)
-  }
-  return value
-}
-function getAssertedValues(args: { issuer: string | IIssuer; id: string; type?: StatusListType }) {
-  const type = getAssertedStatusListType(args?.type)
-  const id = getAssertedValue('id', args.id)
-  const issuer = getAssertedValue('issuer', args.issuer)
-  return { id, issuer, type }
+  return CredentialMapper.toWrappedVerifiableCredential(verifiableCredential as StatusListCredential).original as StatusListCredential
 }

package/src/impl/IStatusList.ts ADDED Viewed

@@ -0,0 +1,42 @@
+import { IAgentContext, ICredentialPlugin } from '@veramo/core'
+import { IIdentifierResolution } from '@sphereon/ssi-sdk-ext.identifier-resolution'
+import {
+  CheckStatusIndexArgs,
+  CreateStatusListArgs,
+  Status2021,
+  StatusListResult,
+  StatusOAuth,
+  ToStatusListDetailsArgs,
+  UpdateStatusListFromEncodedListArgs,
+  UpdateStatusListIndexArgs,
+} from '../types'
+export interface IStatusList {
+  /**
+   * Creates a new status list of the specific type
+   */
+  createNewStatusList(args: CreateStatusListArgs, context: IAgentContext<ICredentialPlugin & IIdentifierResolution>): Promise<StatusListResult>
+  /**
+   * Updates a status at the given index in the status list
+   */
+  updateStatusListIndex(args: UpdateStatusListIndexArgs, context: IAgentContext<ICredentialPlugin & IIdentifierResolution>): Promise<StatusListResult>
+  /**
+   * Updates a status list using a base64 encoded list of statuses
+   */
+  updateStatusListFromEncodedList(
+    args: UpdateStatusListFromEncodedListArgs,
+    context: IAgentContext<ICredentialPlugin & IIdentifierResolution>,
+  ): Promise<StatusListResult>
+  /**
+   * Checks the status at a given index in the status list
+   */
+  checkStatusIndex(args: CheckStatusIndexArgs): Promise<number | Status2021 | StatusOAuth>
+  /**
+   * Collects the status list details
+   */
+  toStatusListDetails(args: ToStatusListDetailsArgs): Promise<StatusListResult>
+}

package/src/impl/OAuthStatusList.ts ADDED Viewed

@@ -0,0 +1,206 @@
+import { IAgentContext, ICredentialPlugin, IKeyManager } from '@veramo/core'
+import { CompactJWT, CWT, ProofFormat, StatusListType } from '@sphereon/ssi-types'
+import {
+  CheckStatusIndexArgs,
+  CreateStatusListArgs,
+  SignedStatusListData,
+  StatusListResult,
+  StatusOAuth,
+  ToStatusListDetailsArgs,
+  UpdateStatusListFromEncodedListArgs,
+  UpdateStatusListIndexArgs,
+} from '../types'
+import { determineProofFormat, getAssertedValue, getAssertedValues } from '../utils'
+import { IStatusList } from './IStatusList'
+import { StatusList } from '@sd-jwt/jwt-status-list'
+import { IJwtService } from '@sphereon/ssi-sdk-ext.jwt-service'
+import { IIdentifierResolution } from '@sphereon/ssi-sdk-ext.identifier-resolution'
+import { createSignedJwt, decodeStatusListJWT } from './encoding/jwt'
+import { createSignedCbor, decodeStatusListCWT } from './encoding/cbor'
+type IRequiredContext = IAgentContext<ICredentialPlugin & IJwtService & IIdentifierResolution & IKeyManager>
+export const DEFAULT_BITS_PER_STATUS = 1 // 1 bit is sufficient for 0x00 - "VALID"  0x01 - "INVALID" saving space in the process
+export const DEFAULT_LIST_LENGTH = 250000
+export const DEFAULT_PROOF_FORMAT = 'jwt' as ProofFormat
+export class OAuthStatusListImplementation implements IStatusList {
+  async createNewStatusList(args: CreateStatusListArgs, context: IRequiredContext): Promise<StatusListResult> {
+    if (!args.oauthStatusList) {
+      throw new Error('OAuthStatusList options are required for type OAuthStatusList')
+    }
+    const proofFormat = args?.proofFormat ?? DEFAULT_PROOF_FORMAT
+    const { issuer, id, oauthStatusList, keyRef } = args
+    const { bitsPerStatus, expiresAt } = oauthStatusList
+    const length = args.length ?? DEFAULT_LIST_LENGTH
+    const issuerString = typeof issuer === 'string' ? issuer : issuer.id
+    const correlationId = getAssertedValue('correlationId', args.correlationId)
+    const statusList = new StatusList(new Array(length).fill(0), bitsPerStatus ?? DEFAULT_BITS_PER_STATUS)
+    const encodedList = statusList.compressStatusList()
+    const { statusListCredential } = await this.createSignedStatusList(proofFormat, context, statusList, issuerString, id, expiresAt, keyRef)
+    return {
+      encodedList,
+      statusListCredential,
+      oauthStatusList: { bitsPerStatus },
+      length,
+      type: StatusListType.OAuthStatusList,
+      proofFormat,
+      id,
+      correlationId,
+      issuer,
+      statuslistContentType: this.buildContentType(proofFormat),
+    }
+  }
+  async updateStatusListIndex(args: UpdateStatusListIndexArgs, context: IRequiredContext): Promise<StatusListResult> {
+    const { statusListCredential, value, expiresAt, keyRef } = args
+    if (typeof statusListCredential !== 'string') {
+      return Promise.reject('statusListCredential in neither JWT nor CWT')
+    }
+    const proofFormat = determineProofFormat(statusListCredential)
+    const decoded = proofFormat === 'jwt' ? decodeStatusListJWT(statusListCredential) : decodeStatusListCWT(statusListCredential)
+    const { statusList, issuer, id } = decoded
+    const index = typeof args.statusListIndex === 'number' ? args.statusListIndex : parseInt(args.statusListIndex)
+    if (index < 0 || index >= statusList.statusList.length) {
+      throw new Error('Status list index out of bounds')
+    }
+    statusList.setStatus(index, value)
+    const { statusListCredential: signedCredential, encodedList } = await this.createSignedStatusList(
+      proofFormat,
+      context,
+      statusList,
+      issuer,
+      id,
+      expiresAt,
+      keyRef,
+    )
+    return {
+      statusListCredential: signedCredential,
+      encodedList,
+      oauthStatusList: {
+        bitsPerStatus: statusList.getBitsPerStatus(),
+      },
+      length: statusList.statusList.length,
+      type: StatusListType.OAuthStatusList,
+      proofFormat,
+      id,
+      issuer,
+      statuslistContentType: this.buildContentType(proofFormat),
+    }
+  }
+  // FIXME: This still assumes only two values (boolean), whilst this list supports 8 bits max
+  async updateStatusListFromEncodedList(args: UpdateStatusListFromEncodedListArgs, context: IRequiredContext): Promise<StatusListResult> {
+    if (!args.oauthStatusList) {
+      throw new Error('OAuthStatusList options are required for type OAuthStatusList')
+    }
+    const { proofFormat, oauthStatusList, keyRef } = args
+    const { bitsPerStatus, expiresAt } = oauthStatusList
+    const { issuer, id } = getAssertedValues(args)
+    const issuerString = typeof issuer === 'string' ? issuer : issuer.id
+    const listToUpdate = StatusList.decompressStatusList(args.encodedList, bitsPerStatus ?? DEFAULT_BITS_PER_STATUS)
+    const index = typeof args.statusListIndex === 'number' ? args.statusListIndex : parseInt(args.statusListIndex)
+    // FIXME: See above.
+    listToUpdate.setStatus(index, args.value ? 1 : 0)
+    const { statusListCredential, encodedList } = await this.createSignedStatusList(
+      proofFormat ?? DEFAULT_PROOF_FORMAT,
+      context,
+      listToUpdate,
+      issuerString,
+      id,
+      expiresAt,
+      keyRef,
+    )
+    return {
+      encodedList,
+      statusListCredential,
+      oauthStatusList: {
+        bitsPerStatus,
+        expiresAt,
+      },
+      length: listToUpdate.statusList.length,
+      type: StatusListType.OAuthStatusList,
+      proofFormat: proofFormat ?? DEFAULT_PROOF_FORMAT,
+      id,
+      issuer,
+      statuslistContentType: this.buildContentType(proofFormat),
+    }
+  }
+  private buildContentType(proofFormat: 'jwt' | 'lds' | 'EthereumEip712Signature2021' | 'cbor' | undefined) {
+    return `application/statuslist+${proofFormat === 'cbor' ? 'cwt' : 'jwt'}`
+  }
+  async checkStatusIndex(args: CheckStatusIndexArgs): Promise<number | StatusOAuth> {
+    const { statusListCredential, statusListIndex } = args
+    if (typeof statusListCredential !== 'string') {
+      return Promise.reject('statusListCredential in neither JWT nor CWT')
+    }
+    const proofFormat = determineProofFormat(statusListCredential)
+    const { statusList } = proofFormat === 'jwt' ? decodeStatusListJWT(statusListCredential) : decodeStatusListCWT(statusListCredential)
+    const index = typeof statusListIndex === 'number' ? statusListIndex : parseInt(statusListIndex)
+    if (index < 0 || index >= statusList.statusList.length) {
+      throw new Error('Status list index out of bounds')
+    }
+    return statusList.getStatus(index)
+  }
+  async toStatusListDetails(args: ToStatusListDetailsArgs): Promise<StatusListResult> {
+    const { statusListPayload } = args as { statusListPayload: CompactJWT | CWT }
+    const proofFormat = determineProofFormat(statusListPayload)
+    const decoded = proofFormat === 'jwt' ? decodeStatusListJWT(statusListPayload) : decodeStatusListCWT(statusListPayload)
+    const { statusList, issuer, id, exp } = decoded
+    return {
+      id,
+      encodedList: statusList.compressStatusList(),
+      issuer,
+      type: StatusListType.OAuthStatusList,
+      proofFormat,
+      length: statusList.statusList.length,
+      statusListCredential: statusListPayload,
+      statuslistContentType: this.buildContentType(proofFormat),
+      oauthStatusList: {
+        bitsPerStatus: statusList.getBitsPerStatus(),
+        ...(exp && { expiresAt: new Date(exp * 1000) }),
+      },
+      ...(args.correlationId && { correlationId: args.correlationId }),
+      ...(args.driverType && { driverType: args.driverType }),
+    }
+  }
+  private async createSignedStatusList(
+    proofFormat: 'jwt' | 'lds' | 'EthereumEip712Signature2021' | 'cbor',
+    context: IAgentContext<ICredentialPlugin & IJwtService & IIdentifierResolution & IKeyManager>,
+    statusList: StatusList,
+    issuerString: string,
+    id: string,
+    expiresAt?: Date,
+    keyRef?: string,
+  ): Promise<SignedStatusListData> {
+    switch (proofFormat) {
+      case 'jwt': {
+        return await createSignedJwt(context, statusList, issuerString, id, expiresAt, keyRef)
+      }
+      case 'cbor': {
+        return await createSignedCbor(context, statusList, issuerString, id, expiresAt, keyRef)
+      }
+      default:
+        throw new Error(`Invalid proof format '${proofFormat}' for OAuthStatusList`)
+    }
+  }
+}