The library can be used for easy integration with the Smart-ID API. It provides a simple interface for mobile authentication and mobile digital signing using Smart-ID. Additional utilities has been provided for easy integration with the Smart-ID API:
- generate digest and calculate verification code
- helper structs
- interactions with the mobile end-user
Beta version - under development!
cargo build
cargo run --example smart_id_client
cargo test
cargo doc --no-deps --open
See the examples folder for a simple example client. To create an SmartID account, download the app: SmartID App
The example application goes through the following use cases:
- Verify Certificate Existence
- SmartID Authentication
- SmartID Digital Signature
The example is using a MOCK ID to simulate the SmartID user.
cargo run --example smart_id_client
SmartID configuration can be loaded form environment variables:
/// Get default Config (from environment variables)
let cfg = get_config_from_env();
Or using the builder pattern:
/// Config Builder
let cfg = SmartIDConfigBuilder::new().url("https://sid.demo.sk.ee/smart-id-rp/v2").build().expect("Error building config");
To check whether a user has been onboarded, use the get_certificate_by_semantic_identifier
:
async fn uc_get_certificate_choice(cfg: &SmartIDConfig) -> Result<()> {
/// Create the semantic identifier
let sem_id = SemanticsIdentifier::new_from_enum_mock(IdentityType::PNO, CountryCode::BE);
/// Verify if a certificate exists for given id
let res = get_certificate_by_semantic_identifier(&cfg, sem_id).await;
match res {
Ok(r) => {
let cert = validate_response_success(r).map(|res| res.cert.unwrap().value.unwrap())?;
info!("Smart ID Certificate {:#?}", cert);
Ok(())
}
Err(_) => Err(anyhow::anyhow!("Error getting certificate"))
}
}
To authenticate a user, use the authenticate_by_semantic_identifier
:
async fn uc_authenticate_by_semantic_identifier(cfg: &SmartIDConfig) -> Result<()> {
/// Create the semantic identifier
let sem_id = SemanticsIdentifier::new_from_enum_mock(IdentityType::PNO, CountryCode::BE);
/// Define interactions
let interactions: Vec<Interaction> = vec![Interaction::diplay_text_and_pin("Authenticate to Application: ReadMyCards")];
/// Create hash
let hash_type = HashType::SHA256;
let hash = sha_digest("This is a test string".to_string().into_bytes(), &hash_type)?;
let b64_hash = base64::engine::general_purpose::STANDARD.encode(hash.as_ref());
let verification_code_for_user = generate_verification_number(hash.as_ref().to_vec())?;
info!("Verification code for user: {}", verification_code_for_user);
/// Ask user for authentication
let res = authenticate_by_semantic_identifier(&cfg, sem_id, interactions, b64_hash, hash_type).await;
match res {
Ok(r) => {
let session_result = validate_response_success(r).map(|res| res.result)?;
info!("Smart ID Authentication result {:#?}", session_result);
Ok(())
}
Err(_) => Err(anyhow::anyhow!("Error during authentication"))
}
}
To sign a document as a user, use the sign_by_semantic_identifier
:
async fn uc_sign_by_semantic_identifier(cfg: &SmartIDConfig) -> Result<()> {
/// Create the semantic identifier
let sem_id = SemanticsIdentifier::new_from_enum_mock(IdentityType::PNO, CountryCode::BE);
/// Define interactions
let interactions: Vec<Interaction> = vec![Interaction::confirmation_message("Are you sure to sign document: something.pdf?"), Interaction::diplay_text_and_pin("Sign using ReadMyCards")];
/// Create hash
let hash_type = HashType::SHA256;
let hash = sha_digest("This is a test string".to_string().into_bytes(), &hash_type)?;
let b64_hash = base64::engine::general_purpose::STANDARD.encode(hash.as_ref());
/// Create verification cod
let verification_code_for_user = generate_verification_number(hash.as_ref().to_vec())?;
info!("Verification code for user: {}", verification_code_for_user);
/// Ask user to sign
let res = sign_by_semantic_identifier(&cfg, sem_id, interactions, b64_hash, hash_type).await;
match res {
Ok(r) => {
match validate_response_success(r).map(|res| res.signature)? {
None => {
warn!("No signature");
Ok(())
}
Some(signature) => {
info!("Smart ID signature result {:#?}", signature);
Ok(())
}
}
}
Err(_) => Err(anyhow::anyhow!("Error signing digest"))
}
}