feat(pollux): add verifiable credentials

Fixes ATL-2606

Author: goncalo-frade-iohk

Core/Sources/Helpers/JSONDecoder+Helper.swift

@@ -0,0 +1,10 @@
+import Foundation
+
+public extension JSONDecoder {
+    static func didComm() -> JSONDecoder {
+        var decoder = JSONDecoder()
+        decoder.dataDecodingStrategy = .deferredToData
+        decoder.keyDecodingStrategy = .convertFromSnakeCase
+        return decoder
+    }
+}

Core/Sources/Helpers/JSONEncoder+Helper.swift

@@ -0,0 +1,11 @@
+import Foundation
+
+public extension JSONEncoder {
+    static func didComm() -> JSONEncoder {
+        var encoder = JSONEncoder()
+        encoder.dataEncodingStrategy = .deferredToData
+        encoder.keyEncodingStrategy = .convertToSnakeCase
+        encoder.outputFormatting = .prettyPrinted
+        return encoder
+    }
+}

Domain/Sources/BBs/Pollux.swift

@@ -0,0 +1,5 @@
+import Foundation
+
+public protocol Pollux {
+    func parseVerifiableCredential(jsonString: String) throws -> VerifiableCredential
+}

Domain/Sources/Models/DID.swift

@@ -27,4 +27,15 @@ public struct DID: Equatable {
 
     /// String representation of this DID as specified in [w3 standards](https://www.w3.org/TR/did-core/#dfn-did-schemes)
     public var string: String { "\(schema):\(method):\(methodId)" }
+
+    /// Simple initializer that receives a String and returns a DID
+    /// - Warning: This is not the preferable way of initializing a DID from a string. Please use `Castor.parseDID(str:)` for uknown strings.
+    /// - Parameter string: DID String
+    public init(string: String) throws {
+        var aux = string.components(separatedBy: ":")
+        guard aux.count > 3 else { throw CastorError.invalidDIDString }
+        self.schema = aux.removeFirst()
+        self.method = aux.remove(at: 1)
+        self.methodId = aux.joined(separator: ":")
+    }
 }

Domain/Sources/Models/Errors.swift

@@ -32,3 +32,7 @@ public enum PlutoError: Error {
     case didPairIsNotPersistedError
     case holderDIDAlreadyPairingError
 }
+
+public enum PolluxError: Error {
+    case invalidCredentialError
+}

Domain/Sources/Models/VerifiableCredential.swift

@@ -0,0 +1,46 @@
+import Foundation
+
+public struct VerifiableCredentialTypeContainer: Codable {
+    enum CodingKeys: String, CodingKey {
+        case id = "@id"
+        case type = "@type"
+    }
+
+    let id: String
+    let type: String
+
+    public func encode(to encoder: Encoder) throws {
+        var container = encoder.container(keyedBy: CodingKeys.self)
+        try container.encode(self.id, forKey: .id)
+        try container.encode(self.type, forKey: .type)
+    }
+
+    public init(from decoder: Decoder) throws {
+        let container = try decoder.container(keyedBy: CodingKeys.self)
+        self.id = try container.decode(String.self, forKey: .id)
+        self.type = try container.decode(String.self, forKey: .type)
+    }
+}
+
+public protocol VerifiableCredential {
+    var id: String? { get }
+    var context: Set<String> { get }
+    var type: Set<String> { get }
+    var issuer: DID { get }
+    var issuanceDate: Date { get }
+    var expirationDate: Date? { get }
+    var credentialSchema: VerifiableCredentialTypeContainer? { get }
+    var credentialSubject: String { get }
+    var credentialStatus: VerifiableCredentialTypeContainer? { get }
+    var refreshService: VerifiableCredentialTypeContainer? { get }
+    var evidence: VerifiableCredentialTypeContainer? { get }
+    var termsOfUse: VerifiableCredentialTypeContainer? { get }
+    var validFrom: VerifiableCredentialTypeContainer? { get }
+    var validUntil: VerifiableCredentialTypeContainer? { get }
+
+    // JsonString containing proof content as per `https://www.w3.org/2018/credentials/v1`
+    var proof: String? { get }
+
+    // Not part of W3C Credential but included to preserve in case of conversion from JWT.
+    var aud: Set<String> { get }
+}

Pollux/Sources/Model/JWTVerifiableCredential.swift

@@ -0,0 +1,139 @@
+import Domain
+import Foundation
+
+struct JWTCredentialPayload {
+    struct JWTVerfiableCredential {
+        let context: Set<String>
+        let type: Set<String>
+        let credentialSchema: VerifiableCredentialTypeContainer?
+        let credentialSubject: String
+        let credentialStatus: VerifiableCredentialTypeContainer?
+        let refreshService: VerifiableCredentialTypeContainer?
+        let evidence: VerifiableCredentialTypeContainer?
+        let termsOfUse: VerifiableCredentialTypeContainer?
+    }
+    let iss: DID
+    let sub: String?
+    let verifiableCredential: JWTVerfiableCredential
+    let nbf: Date
+    let exp: Date?
+    let jti: String?
+    let aud: Set<String>
+}
+
+extension JWTCredentialPayload: VerifiableCredential {
+    var context: Set<String> { verifiableCredential.context }
+    var type: Set<String> { verifiableCredential.type }
+    var id: String? { jti }
+    var issuer: DID { iss }
+    var issuanceDate: Date { nbf }
+    var expirationDate: Date? { exp }
+    var credentialSchema: VerifiableCredentialTypeContainer? { verifiableCredential.credentialSchema }
+    var credentialSubject: String { verifiableCredential.credentialSubject }
+    var credentialStatus: VerifiableCredentialTypeContainer? { verifiableCredential.credentialStatus }
+    var refreshService: VerifiableCredentialTypeContainer? { verifiableCredential.refreshService }
+    var evidence: Domain.VerifiableCredentialTypeContainer? { verifiableCredential.evidence }
+    var termsOfUse: Domain.VerifiableCredentialTypeContainer? { verifiableCredential.termsOfUse }
+    var validFrom: Domain.VerifiableCredentialTypeContainer? { nil }
+    var validUntil: Domain.VerifiableCredentialTypeContainer? { nil }
+    var proof: String? { nil }
+}
+
+extension JWTCredentialPayload.JWTVerfiableCredential: Codable {
+    enum CodingKeys: String, CodingKey {
+        case context = "@context"
+        case type = "@type"
+        case credentialSubject
+        case credentialStatus
+        case credentialSchema
+        case refreshService
+        case evidence
+        case termsOfUse
+    }
+
+    public func encode(to encoder: Encoder) throws {
+        var container = encoder.container(keyedBy: CodingKeys.self)
+        try container.encode(self.context, forKey: .context)
+        try container.encode(self.type, forKey: .type)
+        try container.encode(self.credentialSubject, forKey: .credentialSubject)
+        try container.encode(self.credentialStatus, forKey: .credentialStatus)
+        try container.encode(self.credentialSchema, forKey: .credentialSchema)
+        try container.encode(self.refreshService, forKey: .refreshService)
+        try container.encode(self.evidence, forKey: .evidence)
+        try container.encode(self.termsOfUse, forKey: .termsOfUse)
+    }
+
+    public init(from decoder: Decoder) throws {
+        let container = try decoder.container(keyedBy: CodingKeys.self)
+        self.context = try container.decode(Set<String>.self, forKey: .context)
+        self.type = try container.decode(Set<String>.self, forKey: .type)
+        self.credentialSubject = try container.decode(String.self, forKey: .credentialSubject)
+        self.credentialStatus = try? container.decode(
+            VerifiableCredentialTypeContainer.self,
+            forKey: .credentialStatus
+        )
+        self.credentialSchema = try? container.decode(
+            VerifiableCredentialTypeContainer.self,
+            forKey: .credentialSchema
+        )
+        self.refreshService = try? container.decode(
+            VerifiableCredentialTypeContainer.self,
+            forKey: .refreshService
+        )
+        self.evidence = try? container.decode(
+            VerifiableCredentialTypeContainer.self,
+            forKey: .evidence
+        )
+        self.termsOfUse = try? container.decode(
+            VerifiableCredentialTypeContainer.self,
+            forKey: .termsOfUse
+        )
+    }
+}
+
+extension JWTCredentialPayload: Codable {
+    enum CodingKeys: String, CodingKey {
+        case iss
+        case sub
+        case verfiableCredential = "vc"
+        case nbf
+        case exp
+        case jti
+        case aud
+    }
+
+    public func encode(to encoder: Encoder) throws {
+        var container = encoder.container(keyedBy: CodingKeys.self)
+        try container.encode(self.iss.string, forKey: .iss)
+        try container.encode(self.sub, forKey: .sub)
+        try container.encode(self.verifiableCredential, forKey: .verfiableCredential)
+        try container.encode(self.nbf, forKey: .nbf)
+        try container.encode(self.exp, forKey: .exp)
+        try container.encode(self.jti, forKey: .jti)
+        try container.encode(self.aud, forKey: .aud)
+    }
+
+    public init(from decoder: Decoder) throws {
+        let container = try decoder.container(keyedBy: CodingKeys.self)
+        let didString = try container.decode(String.self, forKey: .iss)
+        self.iss = try DID(string: didString)
+        self.sub = try? container.decode(String.self, forKey: .sub)
+        self.verifiableCredential = try container.decode(JWTVerfiableCredential.self, forKey: .verfiableCredential)
+        self.nbf = try container.decode(
+            Date.self,
+            forKey: .nbf
+        )
+        self.exp = try? container.decode(
+            Date.self,
+            forKey: .exp
+        )
+        self.jti = try? container.decode(
+            String.self,
+            forKey: .jti
+        )
+        self.aud = (try? container.decode(
+            Set<String>.self,
+            forKey: .aud
+        )) ?? Set<String>()
+    }
+}

Pollux/Sources/Model/W3CVerifiableCredential.swift

@@ -0,0 +1,98 @@
+import Domain
+import Foundation
+
+struct W3CVerifiableCredential: VerifiableCredential {
+    let context: Set<String>
+    let type: Set<String>
+    let id: String?
+    let issuer: DID
+    let issuanceDate: Date
+    let expirationDate: Date?
+    let credentialSchema: VerifiableCredentialTypeContainer?
+    let credentialSubject: String
+    let credentialStatus: VerifiableCredentialTypeContainer?
+    let refreshService: VerifiableCredentialTypeContainer?
+    let evidence: VerifiableCredentialTypeContainer?
+    let termsOfUse: VerifiableCredentialTypeContainer?
+    let validFrom: VerifiableCredentialTypeContainer?
+    let validUntil: VerifiableCredentialTypeContainer?
+    let proof: String?
+    let aud: Set<String>
+}
+
+extension W3CVerifiableCredential: Codable {
+    enum CodingKeys: String, CodingKey {
+        case context = "@context"
+        case type = "@type"
+        case id
+        case issuer
+        case issuanceDate
+        case expirationDate
+        case validFrom
+        case validUntil
+        case proof
+        case credentialSubject
+        case credentialStatus
+        case credentialSchema
+        case refreshService
+        case evidence
+        case termsOfUse
+        case aud
+    }
+
+    public func encode(to encoder: Encoder) throws {
+        var container = encoder.container(keyedBy: CodingKeys.self)
+        try container.encode(self.context, forKey: .context)
+        try container.encode(self.type, forKey: .type)
+        try container.encode(self.id, forKey: .id)
+        try container.encode(self.issuer.string, forKey: .issuer)
+        try container.encode(self.issuanceDate, forKey: .issuanceDate)
+        try container.encode(self.expirationDate, forKey: .expirationDate)
+        try container.encode(self.validFrom, forKey: .validFrom)
+        try container.encode(self.validUntil, forKey: .validUntil)
+        try container.encode(self.proof, forKey: .proof)
+        try container.encode(self.aud, forKey: .aud)
+        try container.encode(self.credentialSubject, forKey: .credentialSubject)
+        try container.encode(self.credentialStatus, forKey: .credentialStatus)
+        try container.encode(self.credentialSchema, forKey: .credentialSchema)
+        try container.encode(self.refreshService, forKey: .refreshService)
+        try container.encode(self.evidence, forKey: .evidence)
+        try container.encode(self.termsOfUse, forKey: .termsOfUse)
+    }
+
+    public init(from decoder: Decoder) throws {
+        let container = try decoder.container(keyedBy: CodingKeys.self)
+        self.context = (try? container.decode(Set<String>.self, forKey: .context)) ?? Set()
+        self.type = (try? container.decode(Set<String>.self, forKey: .type)) ?? Set()
+        self.id = try container.decode(String.self, forKey: .id)
+        let didString = try container.decode(String.self, forKey: .issuer)
+        self.issuer = try DID(string: didString)
+        self.issuanceDate = try container.decode(Date.self, forKey: .issuanceDate)
+        self.expirationDate = try? container.decode(Date.self, forKey: .expirationDate)
+        self.validFrom = try? container.decode(VerifiableCredentialTypeContainer.self, forKey: .validFrom)
+        self.validUntil = try? container.decode(VerifiableCredentialTypeContainer.self, forKey: .validUntil)
+        self.proof = try? container.decode(String.self, forKey: .proof)
+        self.aud = (try? container.decode(Set<String>.self, forKey: .proof)) ?? Set()
+        self.credentialSubject = try container.decode(String.self, forKey: .credentialSubject)
+        self.credentialStatus = try? container.decode(
+            VerifiableCredentialTypeContainer.self,
+            forKey: .credentialStatus
+        )
+        self.credentialSchema = try? container.decode(
+            VerifiableCredentialTypeContainer.self,
+            forKey: .credentialSchema
+        )
+        self.refreshService = try? container.decode(
+            VerifiableCredentialTypeContainer.self,
+            forKey: .refreshService
+        )
+        self.evidence = try? container.decode(
+            VerifiableCredentialTypeContainer.self,
+            forKey: .evidence
+        )
+        self.termsOfUse = try? container.decode(
+            VerifiableCredentialTypeContainer.self,
+            forKey: .termsOfUse
+        )
+    }
+}

Pollux/Sources/Pollux.swift

@@ -0,0 +1,16 @@
+import Domain
+import Foundation
+
+extension PolluxImpl: Pollux {
+    public func parseVerifiableCredential(jsonString: String) throws -> VerifiableCredential {
+        guard let dataValue = jsonString.data(using: .utf8) else { throw PolluxError.invalidCredentialError }
+        if let jwtCredential = try? JSONDecoder().decode(JWTCredentialPayload.self, from: dataValue)
+        {
+            return jwtCredential
+        } else if let w3cCredential = try? JSONDecoder().decode(W3CVerifiableCredential.self, from: dataValue) {
+            return w3cCredential
+        } else {
+            throw PolluxError.invalidCredentialError
+        }
+    }
+}

Pollux/Sources/PolluxImpl+Public.swift

@@ -0,0 +1,10 @@
+import Domain
+
+public struct PolluxImpl {
+
+    let castor: Castor
+
+    init(castor: Castor) {
+        self.castor = castor
+    }
+}

Pollux/Sources/PolluxImpl.swift

@@ -8,7 +8,7 @@ extension AttachmentDescriptor {
         payload: T,
         mediaType: String? = "application/json"
     ) throws -> AttachmentDescriptor {
-        let encoded = try JSONEncoder().encode(payload).base64UrlEncodedString()
+        let encoded = try JSONEncoder.didComm().encode(payload).base64UrlEncodedString()
         return AttachmentDescriptor(
             id: id,
             mediaType: mediaType,