npm - @verii/server-credentialagent - Versions diffs - 1.0.0-pre.1752076816 - Mend

@verii/server-credentialagent 1.0.0-pre.1752076816

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (395) hide show

package/src/controllers/holder/issue/get-credential-manifest/controller.js ADDED Viewed

@@ -0,0 +1,193 @@
+/**
+ * Copyright 2023 Velocity Team
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+/* eslint-disable camelcase */
+const { isEmpty, map, compact } = require('lodash/fp');
+const newError = require('http-errors');
+const { getCredentialTypeDescriptor } = require('@verii/common-fetchers');
+const {
+  ensureTenantDefaultIssuingDisclosureIdPlugin,
+  ensureDisclosureConfigurationTypePlugin,
+  ensureDisclosureActivePlugin,
+} = require('../../../../plugins');
+const {
+  ExchangeTypes,
+  ExchangeStates,
+  ExchangeProtocols,
+  ensureExchangeStateValid,
+  buildRequestResponseSchema,
+  ExchangeErrorCodeState,
+  assertDisclosureActive,
+  getPushDelegate,
+  signExchangeResponse,
+  createPresentationRequest,
+} = require('../../../../entities');
+const credentialManifestController = async (fastify) => {
+  fastify
+    .register(ensureTenantDefaultIssuingDisclosureIdPlugin)
+    .register(ensureDisclosureConfigurationTypePlugin)
+    .register(ensureDisclosureActivePlugin)
+    .get(
+      '/get-credential-manifest',
+      {
+        schema: fastify.autoSchema({
+          query: {
+            type: 'object',
+            properties: {
+              credential_types: {
+                type: 'array',
+                items: { type: 'string' },
+                default: [],
+              },
+              exchange_id: { type: 'string' },
+              'push_delegate.push_token': { type: 'string' },
+              'push_delegate.push_url': { type: 'string' },
+              id: { type: 'string' },
+              format: { type: 'string', enum: ['json'] },
+              locale: { type: 'string' },
+            },
+            required: ['credential_types'],
+          },
+          response: {
+            200: buildRequestResponseSchema('issuing', fastify.config),
+          },
+        }),
+      },
+      async (req) => {
+        const {
+          repos,
+          query: { credential_types, exchange_id, push_delegate, id, locale },
+          tenant,
+          config: { isProd },
+        } = req;
+        const pushDelegate = getPushDelegate(push_delegate, req);
+        const credentialTypes = compact(credential_types);
+        const exchange = await findOrCreateExchange(
+          exchange_id,
+          pushDelegate,
+          credentialTypes,
+          id,
+          req
+        );
+        const disclosure = await repos.disclosures.findById(
+          exchange.disclosureId
+        );
+        // eslint-disable-next-line better-mutation/no-mutation
+        req.exchange = exchange; // added onto the request for the exchange error handler
+        await ensureExchangeStateValid(
+          ExchangeErrorCodeState.EXCHANGE_INVALID,
+          req
+        );
+        const presentationRequest = await createPresentationRequest(
+          disclosure,
+          exchange,
+          req
+        );
+        const credentialTypeDescriptors = await Promise.all(
+          map(
+            (type) =>
+              getCredentialTypeDescriptor(
+                { type, locale, includeDisplay: true },
+                req
+              ),
+            credentialTypes
+          )
+        );
+        const credentialManifest = {
+          ...presentationRequest,
+          output_descriptors: credentialTypeDescriptors,
+          issuer: { id: tenant.did },
+        };
+        // eslint-disable-next-line camelcase
+        return {
+          issuing_request:
+            !isProd && req.query.format === 'json'
+              ? credentialManifest
+              : await signExchangeResponse(credentialManifest, {}, req),
+        };
+      }
+    );
+};
+const getDisclosure = async (disclosureId, { repos, tenant }) => {
+  if (disclosureId) {
+    return repos.disclosures.findById(disclosureId);
+  }
+  if (tenant.defaultIssuingDisclosureId) {
+    return repos.disclosures.findById(tenant.defaultIssuingDisclosureId);
+  }
+  return repos.disclosures.findDefaultIssuingDisclosure();
+};
+const findOrCreateExchange = async (
+  exchangeId,
+  pushDelegate,
+  credentialTypes,
+  disclosureId,
+  context
+) => {
+  const { repos } = context;
+  if (exchangeId) {
+    return repos.exchanges.addState(
+      exchangeId,
+      ExchangeStates.CREDENTIAL_MANIFEST_REQUESTED,
+      {
+        pushDelegate,
+        protocolMetadata: {
+          protocol: ExchangeProtocols.VNF_API,
+        },
+      }
+    );
+  }
+  const disclosure = await getDisclosure(disclosureId, context);
+  if (isEmpty(disclosure)) {
+    throw newError(404, 'Disclosure not found', {
+      errorCode: 'disclosure_not_found',
+    });
+  }
+  assertDisclosureActive(disclosure, context);
+  return repos.exchanges.insertWithInitialState(
+    {
+      type: ExchangeTypes.ISSUING,
+      disclosureId: disclosure._id,
+      pushDelegate,
+      credentialTypes,
+      protocolMetadata: {
+        protocol: ExchangeProtocols.VNF_API,
+      },
+    },
+    [ExchangeStates.CREDENTIAL_MANIFEST_REQUESTED]
+  );
+};
+module.exports = credentialManifestController;
+module.exports.autoPrefix = '/issue';

package/src/controllers/holder/issue/offers/autohooks.js ADDED Viewed

@@ -0,0 +1,35 @@
+/**
+ * Copyright 2023 Velocity Team
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+const {
+  newOfferRelatedResourceSchema,
+  holderOfferSchema,
+} = require('@verii/common-schemas');
+const {
+  exchangeLoaderPlugin,
+  verifyAccessTokenPlugin,
+  disclosureLoaderPlugin,
+} = require('../../../../plugins');
+module.exports = async (fastify) => {
+  fastify
+    .register(exchangeLoaderPlugin)
+    .register(disclosureLoaderPlugin)
+    .register(verifyAccessTokenPlugin, { user: true })
+    .addSchema(newOfferRelatedResourceSchema)
+    .addSchema(holderOfferSchema)
+    .autoSchemaPreset({ security: [{ bearerAuth: [] }] });
+};

package/src/controllers/holder/issue/offers/controller.js ADDED Viewed

@@ -0,0 +1,164 @@
+/**
+ * Copyright 2023 Velocity Team
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+const { newOfferRelatedResourceSchema } = require('@verii/common-schemas');
+const { concat, isEmpty, flow, filter, map } = require('lodash/fp');
+const newError = require('http-errors');
+const {
+  createVerifiableCredentials,
+  ensureExchangeStateValid,
+  finalizeExchange,
+  filterObjectIds,
+  resolveSubject,
+  ExchangeStates,
+  ExchangeErrorCodeState,
+} = require('../../../../entities');
+const {
+  newVendorOfferSchema,
+} = require('../../../operator/tenants/_tenantId/offers/schemas');
+const controller = async (fastify) => {
+  const { addDocSchema } = fastify;
+  fastify.addHook('preHandler', async (req) =>
+    ensureExchangeStateValid(ExchangeErrorCodeState.EXCHANGE_INVALID, req)
+  );
+  addDocSchema(newOfferRelatedResourceSchema);
+  addDocSchema(newVendorOfferSchema);
+  fastify.post(
+    '/finalize-offers',
+    {
+      schema: fastify.autoSchema({
+        body: {
+          type: 'object',
+          properties: {
+            approvedOfferIds: {
+              type: 'array',
+              items: { type: 'string' },
+            },
+            rejectedOfferIds: {
+              type: 'array',
+              items: { type: 'string' },
+            },
+            exchangeId: { type: 'string' },
+            proof: {
+              type: 'object',
+              properties: {
+                proof_type: { type: 'string', enum: ['jwt'] },
+                jwt: { type: 'string' },
+              },
+            },
+          },
+          required: ['exchangeId'],
+        },
+        response: {
+          200: {
+            type: 'array',
+            items: {
+              type: 'string',
+            },
+          },
+          502: { $ref: 'error#' },
+        },
+      }),
+    },
+    async (req) => {
+      const { repos, body, exchange } = req;
+      const approvedOfferIds = filterObjectIds(body.approvedOfferIds, exchange);
+      const rejectedOfferIds = filterObjectIds(body.rejectedOfferIds, exchange);
+      await repos.exchanges.addState(
+        exchange._id,
+        ExchangeStates.CLAIMING_IN_PROGRESS
+      );
+      await rejectOffers(exchange, rejectedOfferIds, req);
+      const signedCredentials = await approveOffers(
+        approvedOfferIds,
+        body.proof,
+        req
+      );
+      await finalizeExchange(
+        exchange,
+        concat(approvedOfferIds, rejectedOfferIds),
+        req
+      );
+      return signedCredentials;
+    }
+  );
+  const rejectOffers = async (exchange, offerIds, context) => {
+    if (isEmpty(offerIds)) {
+      return [];
+    }
+    const { repos } = context;
+    return repos.offers.rejectOffers(exchange.vendorUserId, offerIds, context);
+  };
+};
+const approveOffers = async (offerIds, proof, context) => {
+  const { repos, log } = context;
+  const offers = await repos.offers.findUnexpiredOffersById(offerIds);
+  if (isEmpty(offers)) {
+    log.info('issuing no offers');
+    return [];
+  }
+  let subject;
+  if (!isEmpty(proof)) {
+    subject = await resolveSubject(proof, context);
+  }
+  log.info(
+    { credentialSubjectId: subject?.id, offers },
+    'issuing these offers'
+  );
+  checkOffersToBeApproved(offers);
+  return createVerifiableCredentials(offers, subject?.id, null, context);
+};
+const initCheckOffers = (prop, errorMessageSuffix) => (offers) => {
+  const errorOfferIds = flow(
+    filter((offer) => !!offer[prop]),
+    map('_id')
+  )(offers);
+  if (!isEmpty(errorOfferIds)) {
+    throw newError(
+      400,
+      buildCheckOffersErrorMessage(errorOfferIds, errorMessageSuffix)
+    );
+  }
+};
+const checkOffersToBeApproved = initCheckOffers('rejectedAt', 'rejected');
+const buildCheckOffersErrorMessage = (offerIds, suffix) =>
+  offerIds.length === 1
+    ? `offer ${offerIds} has already been ${suffix}`
+    : `offers ${offerIds} have already been ${suffix}`;
+module.exports = controller;
+module.exports.autoPrefix = '/issue';