From 0c3ad3b3180834e97d382ca145775fd91e3f6368 Mon Sep 17 00:00:00 2001 From: Ryan Tate Date: Wed, 13 Nov 2024 15:04:23 -0800 Subject: [PATCH] add data integrity conversion for vp token Additionally adds a check for authorization request vp formats supported to check cryptosuite against expected response formats. Signed-off-by: Ryan Tate --- src/core/authorization_request/mod.rs | 17 +++++++++++++ src/core/credential_format/mod.rs | 1 + src/core/input_descriptor.rs | 5 ++++ src/core/metadata/parameters/verifier.rs | 32 +++++++++++++++++++++++- src/core/response/parameters.rs | 22 +++++++++++++++- 5 files changed, 75 insertions(+), 2 deletions(-) diff --git a/src/core/authorization_request/mod.rs b/src/core/authorization_request/mod.rs index fa77ae9..68f4cf8 100644 --- a/src/core/authorization_request/mod.rs +++ b/src/core/authorization_request/mod.rs @@ -1,6 +1,7 @@ use std::ops::{Deref, DerefMut}; use anyhow::{anyhow, bail, Context, Error, Result}; +use parameters::ClientMetadata; use serde::{Deserialize, Serialize}; use serde_json::Value as Json; use url::Url; @@ -16,6 +17,7 @@ use self::{ }; use super::{ + metadata::parameters::verifier::VpFormats, object::{ParsingErrorContext, UntypedObject}, util::{base_request, AsyncHttpClient}, }; @@ -263,6 +265,21 @@ impl AuthorizationRequestObject { pub fn nonce(&self) -> &Nonce { &self.7 } + + /// Return the `client_metadata` field from the authorization request. + pub fn client_metadata(&self) -> Result { + self.0 + .get() + .ok_or(anyhow!("missing `client_metadata` object"))? + } + + /// Return the `VpFormats` from the `client_metadata` field. + pub fn vp_formats(&self) -> Result { + self.client_metadata()? + .0 + .get() + .ok_or(anyhow!("missing vp_formats"))? + } } impl From for UntypedObject { diff --git a/src/core/credential_format/mod.rs b/src/core/credential_format/mod.rs index f206ae5..c9d25f1 100644 --- a/src/core/credential_format/mod.rs +++ b/src/core/credential_format/mod.rs @@ -137,6 +137,7 @@ pub enum ClaimFormatPayload { /// claim presentation algorithm types supported by a wallet. #[serde(rename = "alg_values_supported")] AlgValuesSupported(Vec), + /// This variant is primarily used for `ldp`, `ldp_vc`, `ldp_vp`, `ac_vc`, and `ac_vp` #[serde(rename = "proof_type")] ProofType(Vec), #[serde(untagged)] diff --git a/src/core/input_descriptor.rs b/src/core/input_descriptor.rs index b9c26d8..0d7c91a 100644 --- a/src/core/input_descriptor.rs +++ b/src/core/input_descriptor.rs @@ -209,6 +209,11 @@ impl Constraints { self.fields.as_ref() } + /// Returns the fields of the constraints object as a mutable reference. + pub fn fields_mut(&mut self) -> &mut Vec { + self.fields.as_mut() + } + /// Set the limit disclosure value. /// /// For all [Claims](https://identity.foundation/presentation-exchange/spec/v2.0.0/#term:claims) submitted in relation to [InputDescriptor] Objects that include a `constraints` diff --git a/src/core/metadata/parameters/verifier.rs b/src/core/metadata/parameters/verifier.rs index e66b9e0..12c7c83 100644 --- a/src/core/metadata/parameters/verifier.rs +++ b/src/core/metadata/parameters/verifier.rs @@ -1,5 +1,6 @@ -use crate::core::credential_format::ClaimFormatMap; +use crate::core::metadata::ClaimFormatPayload; use crate::core::object::TypedParameter; +use crate::core::{credential_format::ClaimFormatMap, metadata::ClaimFormatDesignation}; use anyhow::{Context, Error}; use serde::{Deserialize, Serialize}; @@ -8,6 +9,35 @@ use serde_json::{Map, Value as Json}; #[derive(Debug, Clone, Serialize, Deserialize)] pub struct VpFormats(pub ClaimFormatMap); +impl VpFormats { + /// Returns a boolean to denote whether the format and cryptosuite provided + /// are supported in the VP formats. + /// + /// NOTE: This method is interested in the cryptosuite of the claim format + /// payload and not the claim format designation. + /// + /// For example, the cryptosuite would need to match one of the `alg` + /// values in the claim format payload. + pub fn supports_cryptosuite( + &self, + format: &ClaimFormatDesignation, + cryptosuite: &String, + ) -> bool { + match self.0.get(format) { + Some(ClaimFormatPayload::Alg(alg_values)) + | Some(ClaimFormatPayload::AlgValuesSupported(alg_values)) => { + return alg_values.contains(&cryptosuite) + } + Some(ClaimFormatPayload::ProofType(proof_types)) => { + return proof_types.contains(&cryptosuite) + } + _ => { + return false; + } + }; + } +} + impl TypedParameter for VpFormats { const KEY: &'static str = "vp_formats"; } diff --git a/src/core/response/parameters.rs b/src/core/response/parameters.rs index a5ab4e7..39c43ae 100644 --- a/src/core/response/parameters.rs +++ b/src/core/response/parameters.rs @@ -8,7 +8,7 @@ use ssi::{ claims::vc::{self, v2::SpecializedJsonCredential}, json_ld::syntax::Object, one_or_many::OneOrManyRef, - prelude::AnyJsonPresentation, + prelude::{AnyDataIntegrity, AnyJsonPresentation}, OneOrMany, }; @@ -112,6 +112,12 @@ impl From for VpToken { } } +impl From>> for VpToken { + fn from(value: vc::v2::syntax::JsonPresentation>) -> Self { + Self(vec![value.into()]) + } +} + impl From for VpToken { fn from(value: AnyJsonPresentation) -> Self { Self(vec![value.into()]) @@ -165,6 +171,20 @@ impl From for VpTokenItem { } } +impl From for VpTokenItem { + fn from(value: AnyDataIntegrity) -> Self { + let serde_json::Value::Object(obj) = serde_json::to_value(&value) + // SAFETY: by definition a Data Integrity Object is a Json LD Node and is a JSON object. + .unwrap() + else { + // SAFETY: by definition a Data Integrity Object is a Json LD Node and is a JSON object. + unreachable!() + }; + + Self::JsonObject(obj) + } +} + impl From for VpTokenItem { fn from(value: vc::v1::syntax::JsonPresentation) -> Self { let serde_json::Value::Object(obj) = serde_json::to_value(value)