clean up

HIEofOne · Jan 31, 2025 · 98ac656 · 98ac656
1 parent ae7e0ad
commit 98ac656
Show file tree

Hide file tree

Showing 6 changed files with 92 additions and 778 deletions.
diff --git a/lib/rp.ts b/lib/rp.ts
@@ -1,20 +1,14 @@
-// import { RP, CreateJwtCallback, VerifyJwtCallback, ResponseType, ResponseMode, Scope, PassBy, SupportedVersion, SubjectType } from '@sphereon/did-auth-siop';
 import { agent } from './veramo';
 import { getUniResolver } from '@sphereon/did-uni-client';
 import { Resolvable, Resolver, ResolverRegistry } from 'did-resolver';
 import { createJWT, decodeJWT, verifyJWT } from 'did-jwt';
 import { JWTHeader } from 'did-jwt/lib/JWT';
-// import { VerifyCallback } from '@sphereon/wellknown-dids-client';
-// import { parseJWT, SigningAlgo } from '@sphereon/oid4vc-common';
-// import { VerifiedJWT } from '@sphereon/did-auth-siop';
 import { bytesToBase64, createJWK } from '@veramo/utils';
-// import objectPath from 'object-path';
 import moment from 'moment';
 
 const domain: string = process.env.DOMAIN !== undefined ? process.env.DOMAIN: '';
 const url = new URL(domain);
 const url_res = url.protocol + "//" + url.hostname + "/api/vp/response";
-// const url_auth = url.protocol + "//" + url.hostname + "/api/vp/authorize";
 
 const createAuthRequest = async(nonce:string, state:string, type:string, pd_id:string) => {
   const identifier = await agent.didManagerGetOrCreate({ alias: 'default' });
@@ -159,18 +153,6 @@ const verifyAuthResponse = async(jwt:string) => {
   }
 }
 
-// const getAudience = (jwt: string) => {
-//   const { payload } = parseJWT(jwt)
-//   if (!payload) {
-//     throw new Error('No audience found in JWT payload or not configured')
-//   } else if (!payload.aud) {
-//     return undefined
-//   } else if (Array.isArray(payload.aud)) {
-//     throw new Error('Audience is invalid. Should be a string value.')
-//   }
-//   return payload.aud
-// }
-
 const getResolver = (methods: string | string[]): Resolvable => {
   const getMethodFromDid = (did: string): string => {
     if (!did) {
@@ -193,148 +175,4 @@ const getResolver = (methods: string | string[]): Resolvable => {
   return new Resolver(...uniResolvers);
 }
 
-// const verifyJwtCallback = (
-//   // resolver?: Resolvable,
-//   verifyOpts?: JWTVerifyOptions & {
-//     checkLinkedDomain: 'never' | 'if_present' | 'always'
-//     wellknownDIDVerifyCallback?: VerifyCallback
-//   },
-// ): VerifyJwtCallback => {
-//   return async (jwtVerifier, jwt) => {
-//     const resolver = getResolver(objectPath.get(jwtVerifier, 'didUrl'))
-//     console.log(resolver)
-//     console.log(jwtVerifier)
-//     const audience =
-//       jwtVerifier.type === 'request-object'
-//         ? (verifyOpts?.audience ?? getAudience(jwt.raw))
-//         : jwtVerifier.type === 'id-token'
-//           ? (verifyOpts?.audience ?? getAudience(jwt.raw))
-//           : undefined
-//     await verifyDidJWT(jwt.raw, resolver, { audience, ...verifyOpts })
-//     return true
-//   }
-// }
-
-// const createJwtCallback = (): CreateJwtCallback => {
-//   return async (jwtIssuer, jwt) => {
-//     if (jwtIssuer.method === 'did') {
-//       const jwk = createJWK("Ed25519", identifier.keys[0].publicKeyHex);
-//       jwt.header = {alg: 'EdDSA', typ: 'JWT', jwk: jwk };
-//       const signer = (data: string | Uint8Array ) => {
-//         let dataString, encoding: 'base64' | undefined
-//         if (typeof data === 'string') {
-//           dataString = data
-//           encoding = undefined
-//         } else {
-//           ;(dataString = bytesToBase64(data)), (encoding = 'base64')
-//         }
-//         return agent.keyManagerSign({ keyRef: identifier.keys[0].kid, data: dataString, alg: jwt.header.alg })
-//       }
-//       const jwt_created = await createJWT(
-//         jwt.payload,
-//         { issuer: identifier.did, signer, alg: jwt.header.alg },
-//         jwt.header as Partial<JWTHeader>
-//       );
-//       return jwt_created;
-//     }
-//     throw new Error('Not implemented yet')
-//   }
-// }
-
-// const verifyDidJWT = async(jwt: string, resolver: Resolvable, options: JWTVerifyOptions): Promise<VerifiedJWT> => {
-//   try {
-//     return await verifyJWT(jwt, { ...options, resolver })
-//   } catch (e: any) {
-//     return Promise.reject(e)
-//   }
-// }
-
-// const rp = (type:string, id:string) => {
-//   let constraints = {};
-//   if (type === 'NPI') {
-//     constraints = {
-//       "fields": [
-//         {
-//           "path": [
-//             "$.vc.credentialSubject.npi",
-//             "$.vc.credentialSubject.name",
-//             "$.vc.credentialSubject.description",
-//             "$.vc.credentialSubject.gender",
-//             "$.vc.credentialSubject.city",
-//             "$.vc.credentialSubject.state",
-//             "$.vc.credentialSubject.zip",
-//             "$.vc.credentialSubject.credentials",
-//             "$.vc.credentialSubject.specialty",
-//             "$.vc.credentialSubject.medicalSchools",
-//             "$.vc.credentialSubject.residencies",
-//             "$.vc.credentialSubject.profilePhoto",
-//           ]
-//         }
-//       ]
-//     } 
-//   } else {
-//     constraints = {
-//       "fields": [
-//         {
-//           "path": [
-//             "$.vc.credentialSubject.name",
-//             "$.vc.credentialSubject.email",
-//             "$.vc.credentialSubject.dob"
-//           ]
-//         }
-//       ]
-//     }
-//   }
-//   return RP.builder()
-//   // return RP.builder({ requestVersion: SupportedVersion.SIOPv2_ID1 })
-//   .withClientId(identifier.did)
-//   .withScope('openid')
-//   .withResponseType('vp_token id_token')
-//   .withResponseMode(ResponseMode.POST)
-//   .withAuthorizationEndpoint(url_auth)
-//   .withRedirectUri(url_res)
-//   .withVerifyJwtCallback(verifyJwtCallback())
-//   .withRequestBy(PassBy.VALUE)
-//   .withCreateJwtCallback(createJwtCallback())
-//   // .withAudience(aud)
-//   // .withSupportedVersions(SupportedVersion.SIOPv2_ID1)
-//   .withSupportedVersions(SupportedVersion.SIOPv2_D12_OID4VP_D20)
-//   .withPresentationDefinition({
-//     definition: {
-//       id: id,
-//       input_descriptors: [
-//         {
-//           "id": "1",
-//           "name": type + " Verifiable Credential",
-//           "purpose": "We want a VC of this type to proof provider claim",
-//           "constraints": constraints,
-//           "schema": [
-//             {
-//               "uri": "https://www.w3.org/2018/credentials/v1"
-//             }
-//           ]
-//         }
-//       ]
-//     }
-//   })
-//   .withClientMetadata({
-//     client_id: identifier.did,
-//     idTokenSigningAlgValuesSupported: [SigningAlgo.EDDSA, SigningAlgo.ES256],
-//     requestObjectSigningAlgValuesSupported: [SigningAlgo.EDDSA, SigningAlgo.ES256],
-//     responseTypesSupported: [ResponseType.ID_TOKEN, ResponseType.VP_TOKEN],
-//     vpFormatsSupported: { 
-//       jwt_vc: { alg: [SigningAlgo.EDDSA, SigningAlgo.RS256, SigningAlgo.ES256] },
-//       jwt_vp: { alg: [SigningAlgo.EDDSA, SigningAlgo.RS256, SigningAlgo.ES256] } 
-//     },
-//     scopesSupported: [Scope.OPENID_DIDAUTHN, Scope.OPENID],
-//     subjectTypesSupported: [SubjectType.PAIRWISE],
-//     subject_syntax_types_supported: ['did', 'did:ethr', 'did:key', 'did:jwk', 'did:web', 'did:ion'],
-//     passBy: PassBy.VALUE,
-//     // logo_uri: VERIFIER_LOGO_FOR_CLIENT,
-//     clientName: 'Trustee',
-//     clientPurpose: "Grant Negotiation and Authorization Protocol (GNAP) Server"
-//   })
-//   .build();
-// }
-
 export { createAuthRequest, verifyAuthResponse }