-
Notifications
You must be signed in to change notification settings - Fork 2
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #44 from Indicio-tech/feature/p256
feat: add did jwk resolver and support for p256 keys
- Loading branch information
Showing
3 changed files
with
72 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,69 @@ | ||
| """did:jwk Resolver.""" | ||
|
|
||
| import re | ||
| import json | ||
|
|
||
| from didcomm_messaging import DIDResolver | ||
| from didcomm_messaging.resolver import DIDResolutionError | ||
| from didcomm_messaging.multiformats.multibase import Base64UrlEncoder | ||
|
|
||
| b64 = Base64UrlEncoder() | ||
|
|
||
|
|
||
| class JWKResolver(DIDResolver): | ||
| """Resolve did:jwk.""" | ||
|
|
||
| PATTERN = re.compile(r"^did:jwk:(?P<did>[A-Za-z0-9\-_]+)$") | ||
|
|
||
| async def resolve(self, did: str) -> dict: | ||
| """Resolve a did:jwk.""" | ||
| if match := self.PATTERN.match(did): | ||
| encoded = match.group("did") | ||
| else: | ||
| raise DIDResolutionError(f"Invalid DID: {did}") | ||
|
|
||
| try: | ||
| jwk = json.loads(b64.decode(encoded)) | ||
| except json.JSONDecodeError: | ||
| raise DIDResolutionError("Invalid JWK") | ||
|
|
||
| if not isinstance(jwk, dict): | ||
| raise DIDResolutionError("Invalid JWK") | ||
|
|
||
| if "kty" not in jwk: | ||
| raise DIDResolutionError("Invalid JWK") | ||
|
|
||
| doc = { | ||
| "@context": [ | ||
| "https://www.w3.org/ns/did/v1", | ||
| "https://w3id.org/security/suites/jws-2020/v1", | ||
| ], | ||
| "id": f"did:jwk:{encoded}", | ||
| "verificationMethod": [ | ||
| { | ||
| "id": f"did:jwk:{encoded}#0", | ||
| "type": "JsonWebKey2020", | ||
| "controller": f"did:jwk:{encoded}", | ||
| "publicKeyJwk": jwk, | ||
| } | ||
| ], | ||
| } | ||
|
|
||
| use = jwk.get("use") | ||
| if use == "sig": | ||
| doc.update( | ||
| { | ||
| "assertionMethod": [f"did:jwk:{encoded}#0"], | ||
| "authentication": [f"did:jwk:{encoded}#0"], | ||
| "capabilityInvocation": [f"did:jwk:{encoded}#0"], | ||
| "capabilityDelegation": [f"did:jwk:{encoded}#0"], | ||
| } | ||
| ) | ||
| elif use == "enc": | ||
| doc.update({"keyAgreement": [f"did:jwk:{encoded}#0"]}) | ||
|
|
||
| return doc | ||
|
|
||
| async def is_resolvable(self, did: str) -> bool: | ||
| """Return if did is resolvable by this resolver.""" | ||
| return bool(self.PATTERN.match(did)) |