ssikit_trustchain/idhub_ssikit/__init__.py

import asyncio
import datetime
from typing import Any

import didkit
import json
import jinja2
from jinja2 import Environment, FileSystemLoader, select_autoescape
from ast import literal_eval


def generate_did_controller_key():
    return didkit.generate_ed25519_key()


def keydid_from_controller_key(key):
    return didkit.key_to_did("key", key)


def generate_generic_vc_id():
    # TODO agree on a system for Verifiable Credential IDs
    return "https://pangea.org/credentials/42"


async def resolve_keydid(keydid):
    return await didkit.resolve_did(keydid, "{}")


def webdid_from_controller_key(key):
    """
    Se siguen los pasos para generar un webdid a partir de un keydid.
    Documentado en la docu de spruceid.
    """
    keydid = keydid_from_controller_key(key)  # "did:key:<...>"
    pubkeyid = keydid.rsplit(":")[-1]  # <...>
    document = json.loads(asyncio.run(resolve_keydid(keydid)))  # Documento DID en terminos "key"
    webdid_url = f"did:web:idhub.pangea.org:{pubkeyid}"  # nueva URL: "did:web:idhub.pangea.org:<...>"
    webdid_url_owner = webdid_url + "#owner"
    # Reemplazamos los campos del documento DID necesarios:
    document["id"] = webdid_url
    document["verificationMethod"][0]["id"] = webdid_url_owner
    document["verificationMethod"][0]["controller"] = webdid_url
    document["authentication"][0] = webdid_url_owner
    document["assertionMethod"][0] = webdid_url_owner
    document_fixed_serialized = json.dumps(document)
    return webdid_url, document_fixed_serialized


def render_and_sign_credential(unsigned_vc: dict, jwk_issuer):
    """
    Populates a VC template with data for issuance, and signs the result with the provided key.

    The `vc_data` parameter must at a minimum include:
        * issuer_did
        * subject_did
        * vc_id
    and must include whatever other fields are relevant for the vc_template to be instantiated.

    The following field(s) will be auto-generated if not passed in `vc_data`:
        * issuance_date (to `datetime.datetime.now()`)
    """
    async def inner():
        signed_vc = await didkit.issue_credential(
            json.dumps(unsigned_vc),
            '{"proofFormat": "ldp"}',
            jwk_issuer
        )
        return signed_vc

    # if vc_data.get("issuance_date") is None:
    #     vc_data["issuance_date"] = datetime.datetime.now().replace(microsecond=0).isoformat()

    return asyncio.run(inner())


def sign_credential(unsigned_vc: str, jwk_issuer):
    """
    Signs the unsigned credential with the provided key.
    """
    async def inner():
        signed_vc = await didkit.issue_credential(
            unsigned_vc,
            '{"proofFormat": "ldp"}',
            jwk_issuer
        )
        return signed_vc

    return asyncio.run(inner())


def verify_credential(vc):
    """
    Returns a (bool, str) tuple indicating whether the credential is valid.
    Checks performed:
        * The credential is valid in signature and form, and
        * The credential validates itself against its declared schema.
    If the boolean is true, the credential is valid and the second argument can be ignored.
    If it is false, the VC is invalid and the second argument contains a string (which is a valid JSON object) with further information.
    """
    async def inner():
        str_res = await didkit.verify_credential(vc, '{"proofFormat": "ldp"}')
        res = literal_eval(str_res)
        ok = res["warnings"] == [] and res["errors"] == []
        return ok, str_res

    (ok, res) = asyncio.run(inner())
    if not ok:
        # The credential doesn't pass signature checks, so early return
        return ok, res
    return ok, res


def issue_verifiable_presentation(vc_list: list[str], jwk_holder: str, holder_did: str) -> str:
    async def inner():
        unsigned_vp = unsigned_vp_template.render(data)
        signed_vp = await didkit.issue_presentation(
            unsigned_vp,
            '{"proofFormat": "ldp"}',
            jwk_holder
        )
        return signed_vp

    env = Environment(
        loader=FileSystemLoader("vc_templates"),
        autoescape=select_autoescape()
    )
    unsigned_vp_template = env.get_template("verifiable_presentation.json")
    data = {
        "holder_did": holder_did,
        "verifiable_credential_list": "[" + ",".join(vc_list) + "]"
    }

    return asyncio.run(inner())


def verify_presentation(vp):
    """
    Returns a (bool, str) tuple indicating whether the credential is valid.
    If the boolean is true, the credential is valid and the second argument can be ignored.
    If it is false, the VC is invalid and the second argument contains a JSON object with further information.
    """
    async def inner():
        proof_options = '{"proofFormat": "ldp"}'
        return await didkit.verify_presentation(vp, proof_options)

    return asyncio.run(inner())
First iteration of the ssi routines 2023-11-10 05:45:12 +00:00			`import asyncio`
			`import datetime`
Cambiado el renderizado de plantillas de textual a manipulación de estructura de datos en memoria 2024-01-03 15:53:06 +00:00			`from typing import Any`

First iteration of the ssi routines 2023-11-10 05:45:12 +00:00			`import didkit`
			`import json`
			`import jinja2`
Added support for VP issuance 2023-11-22 13:09:08 +00:00			`from jinja2 import Environment, FileSystemLoader, select_autoescape`
Cambiado el renderizado de plantillas de textual a manipulación de estructura de datos en memoria 2024-01-03 15:53:06 +00:00			`from ast import literal_eval`
Added support for VP issuance 2023-11-22 13:09:08 +00:00
First iteration of the ssi routines 2023-11-10 05:45:12 +00:00
			`def generate_did_controller_key():`
			`return didkit.generate_ed25519_key()`


Full functionality and verified membership-card template renders correctly 2023-11-28 08:45:06 +00:00			`def keydid_from_controller_key(key):`
First iteration of the ssi routines 2023-11-10 05:45:12 +00:00			`return didkit.key_to_did("key", key)`


			`def generate_generic_vc_id():`
			`# TODO agree on a system for Verifiable Credential IDs`
			`return "https://pangea.org/credentials/42"`


Up-to-date con la ultima version de schemas y contexts 2024-01-25 10:02:41 +00:00			`async def resolve_keydid(keydid):`
			`return await didkit.resolve_did(keydid, "{}")`


			`def webdid_from_controller_key(key):`
			`"""`
			`Se siguen los pasos para generar un webdid a partir de un keydid.`
			`Documentado en la docu de spruceid.`
			`"""`
			`keydid = keydid_from_controller_key(key) # "did:key:<...>"`
			`pubkeyid = keydid.rsplit(":")[-1] # <...>`
			`document = json.loads(asyncio.run(resolve_keydid(keydid))) # Documento DID en terminos "key"`
			`webdid_url = f"did:web:idhub.pangea.org:{pubkeyid}" # nueva URL: "did:web:idhub.pangea.org:<...>"`
			`webdid_url_owner = webdid_url + "#owner"`
			`# Reemplazamos los campos del documento DID necesarios:`
			`document["id"] = webdid_url`
			`document["verificationMethod"][0]["id"] = webdid_url_owner`
			`document["verificationMethod"][0]["controller"] = webdid_url`
			`document["authentication"][0] = webdid_url_owner`
			`document["assertionMethod"][0] = webdid_url_owner`
			`document_fixed_serialized = json.dumps(document)`
			`return webdid_url, document_fixed_serialized`


Cambiado el renderizado de plantillas de textual a manipulación de estructura de datos en memoria 2024-01-03 15:53:06 +00:00			`def render_and_sign_credential(unsigned_vc: dict, jwk_issuer):`
First iteration of the ssi routines 2023-11-10 05:45:12 +00:00			`"""`
			`Populates a VC template with data for issuance, and signs the result with the provided key.`

			The `vc_data` parameter must at a minimum include:
			`* issuer_did`
			`* subject_did`
			`* vc_id`
			`and must include whatever other fields are relevant for the vc_template to be instantiated.`

			The following field(s) will be auto-generated if not passed in `vc_data`:
			* issuance_date (to `datetime.datetime.now()`)
			`"""`
			`async def inner():`
			`signed_vc = await didkit.issue_credential(`
Cambiado el renderizado de plantillas de textual a manipulación de estructura de datos en memoria 2024-01-03 15:53:06 +00:00			`json.dumps(unsigned_vc),`
First iteration of the ssi routines 2023-11-10 05:45:12 +00:00			`'{"proofFormat": "ldp"}',`
			`jwk_issuer`
			`)`
			`return signed_vc`

Cambiado el renderizado de plantillas de textual a manipulación de estructura de datos en memoria 2024-01-03 15:53:06 +00:00			`# if vc_data.get("issuance_date") is None:`
			`# vc_data["issuance_date"] = datetime.datetime.now().replace(microsecond=0).isoformat()`
First iteration of the ssi routines 2023-11-10 05:45:12 +00:00
			`return asyncio.run(inner())`


Full functionality and verified membership-card template renders correctly 2023-11-28 08:45:06 +00:00			`def sign_credential(unsigned_vc: str, jwk_issuer):`
			`"""`
			`Signs the unsigned credential with the provided key.`
			`"""`
			`async def inner():`
			`signed_vc = await didkit.issue_credential(`
			`unsigned_vc,`
			`'{"proofFormat": "ldp"}',`
			`jwk_issuer`
			`)`
			`return signed_vc`

			`return asyncio.run(inner())`


			`def verify_credential(vc):`
First iteration of the ssi routines 2023-11-10 05:45:12 +00:00			`"""`
			`Returns a (bool, str) tuple indicating whether the credential is valid.`
Cambiado el renderizado de plantillas de textual a manipulación de estructura de datos en memoria 2024-01-03 15:53:06 +00:00			`Checks performed:`
			`* The credential is valid in signature and form, and`
			`* The credential validates itself against its declared schema.`
First iteration of the ssi routines 2023-11-10 05:45:12 +00:00			`If the boolean is true, the credential is valid and the second argument can be ignored.`
Cambiado el renderizado de plantillas de textual a manipulación de estructura de datos en memoria 2024-01-03 15:53:06 +00:00			`If it is false, the VC is invalid and the second argument contains a string (which is a valid JSON object) with further information.`
First iteration of the ssi routines 2023-11-10 05:45:12 +00:00			`"""`
			`async def inner():`
Cambiado el renderizado de plantillas de textual a manipulación de estructura de datos en memoria 2024-01-03 15:53:06 +00:00			`str_res = await didkit.verify_credential(vc, '{"proofFormat": "ldp"}')`
			`res = literal_eval(str_res)`
			`ok = res["warnings"] == [] and res["errors"] == []`
			`return ok, str_res`

			`(ok, res) = asyncio.run(inner())`
			`if not ok:`
			`# The credential doesn't pass signature checks, so early return`
			`return ok, res`
			`return ok, res`
First iteration of the ssi routines 2023-11-10 05:45:12 +00:00
Added support for VP issuance 2023-11-22 13:09:08 +00:00

			`def issue_verifiable_presentation(vc_list: list[str], jwk_holder: str, holder_did: str) -> str:`
			`async def inner():`
			`unsigned_vp = unsigned_vp_template.render(data)`
			`signed_vp = await didkit.issue_presentation(`
			`unsigned_vp,`
			`'{"proofFormat": "ldp"}',`
			`jwk_holder`
			`)`
			`return signed_vp`

			`env = Environment(`
			`loader=FileSystemLoader("vc_templates"),`
			`autoescape=select_autoescape()`
			`)`
			`unsigned_vp_template = env.get_template("verifiable_presentation.json")`
			`data = {`
			`"holder_did": holder_did,`
			`"verifiable_credential_list": "[" + ",".join(vc_list) + "]"`
			`}`

			`return asyncio.run(inner())`


Added verify_presentation bindings 2023-11-27 06:26:02 +00:00			`def verify_presentation(vp):`
			`"""`
			`Returns a (bool, str) tuple indicating whether the credential is valid.`
			`If the boolean is true, the credential is valid and the second argument can be ignored.`
			`If it is false, the VC is invalid and the second argument contains a JSON object with further information.`
			`"""`
			`async def inner():`
			`proof_options = '{"proofFormat": "ldp"}'`
Full functionality and verified membership-card template renders correctly 2023-11-28 08:45:06 +00:00			`return await didkit.verify_presentation(vp, proof_options)`
Added verify_presentation bindings 2023-11-27 06:26:02 +00:00
			`return asyncio.run(inner())`