Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merging Process #1 from sd-jwt-ts #60

Merged
merged 25 commits into from
Feb 14, 2024
Merged

Merging Process #1 from sd-jwt-ts #60

merged 25 commits into from
Feb 14, 2024

Conversation

lukasjhan
Copy link
Member

I'm working on merging with https://github.com/berendsliedrecht/sd-jwt-ts which is berend's work.
Due to the huge PR, I'm going to add sd-jwt-vc & splitting into multiple package in next PR.

What's included

  • Remove jose
  • Remove node, broswer crypto dependencies
  • Include pure js base64 package
  • refactor interface for crypto function injection. (mostly followed from sd-jwt-ts package)
  • Include pure js sha256 function from '@noble/hash'
  • Fix tests & examples
  • Remove default instance in index.ts

@lukasjhan
Revert "fix: the bytes of the output of the hash function must be bas…
d55879c 
…e64url-encoded. (openwallet-foundation-labs#57)"

This reverts commit 025786b.

Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: migrate base64url
d611fa7 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
fix: restore tests
061c3d2 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: fix decoy and disclosure
c0abd2e 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: fix digest of encoded disclosure
cf7784a 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
chore: Apply prettier
c17a886 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: Add test for utin8array encoding
716b8c7 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: Remove jose in jwt sign and verify
4c15ffc 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: Remove jose in types
b29e314 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: Fix sdjwt tests
915278b 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: implement new interface
837b193 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: Fix e2e tests and type
9a375a8 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: Fix index tests
4f7337d 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
refactor: using constant
2b2874d 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: add tests for crypto functions
da5b16e 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: Add default sha256 function
d6b1285 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: fix sign_alg, hash_alg config
4511026 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
feat: fix examples
162585c 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan
doc: Add dependencies
0168470 
Signed-off-by: Lukas.J.Han <[email protected]>
@lukasjhan lukasjhan self-assigned this Feb 12, 2024
lukasjhan
lukasjhan commented Feb 12, 2024
View reviewed changes
package.json
@@ -33,11 +33,13 @@
"@types/jest": "^29.5.11",
"@types/node": "^20.10.2",
"jest": "^29.7.0",
"jose": "^5.1.3",
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

jose is here for testing purpose

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's devdependencies

lukasjhan
lukasjhan commented Feb 12, 2024
View reviewed changes
src/type.ts
Comment on lines 42 to +49
export type Signer = (data: string) => OrPromise<string>;
export type Verifier = (data: string, sig: string) => OrPromise<boolean>;
export type Hasher = (data: string) => Promise<string>;
export type SaltGenerator = (length: number) => string;
export type Hasher = (data: string, alg: string) => OrPromise<Uint8Array>;
export type SaltGenerator = (length: number) => OrPromise<string>;
export type HasherAndAlg = {
hasher: Hasher;
alg: string;
};
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Mostly I followed the type from sd-jwt-ts

@lukasjhan
doc: add decoding example
ce0aacc 
Signed-off-by: Lukas.J.Han <[email protected]>
berendsliedrecht
berendsliedrecht previously approved these changes Feb 12, 2024
View reviewed changes
Copy link
Contributor

@berendsliedrecht berendsliedrecht left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Have to get a bit more familiar with the code base but these seem like good changes! Some minor code style comments only.

package.json
"ts-jest": "^29.1.1",
"ts-node": "^10.9.1",
"typescript": "^5.3.2"
},
"dependencies": {
"jose": "^5.1.3"
"@noble/hashes": "1.0.0",
"js-base64": "^3.7.6"
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nice! Better solution IMO compared to using buffer.

src/base64url.ts Outdated
Comment on lines 5 to 7
const decode = (input: string): string => {
return Base64.decode(input);
};
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
const decode = (input: string): string => {
return Base64.decode(input);
};
const decode = (input: string): string => Base64.decode(input);

Can also do const decode = Base64.decode; but there might be some overloading that we do not want to re-expose.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That's right. But this was created for consistency in case anyone gets confused with base64.

I think it can be reduced a bit by not wrapping it in a Base64Url object. Please check the change and tell me what you think :) @berendsliedrecht

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fix looks good!

src/index.ts Outdated
if (!this.userConfig.kbSigner) {
throw new SDJWTException('Key Binding Signer not found');
}
if (!this.userConfig.kb_sign_alg) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why is the casing of this.userConfig.kb_sign_alg different?

src/index.ts Outdated
throw new SDJWTException('SaltGenerator not found');
}

if (!this.userConfig.sign_alg) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same here re the casing.

src/sdjwt.ts
disclosureFrame?: DisclosureFrame<T>,
hasher: Hasher = hash,
saltGenerator: SaltGenerator = generateSalt,
disclosureFrame: DisclosureFrame<T> | undefined,
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
disclosureFrame: DisclosureFrame<T> | undefined,
disclosureFrame?: DisclosureFrame<T>,

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It can't be optional because its not the last parameter.

@lukasjhan
Copy link
Member Author

in sha256 function the text to uint8array method only works in ASCII char. we should find another way to convert.

@lukasjhan
Copy link
Member Author

in sha256 function the text to uint8array method only works in ASCII char. we should find another way to convert.

I fixed the issue

zustkeeper
zustkeeper previously approved these changes Feb 14, 2024
View reviewed changes
berendsliedrecht
berendsliedrecht reviewed Feb 14, 2024
View reviewed changes
src/test/sha256.spec.ts
expect(s1).toStrictEqual(s2);
});

test('test#13', async () => {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Isn't this a duplicate test with test#14?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes It's dup. my mistake

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@berendsliedrecht removed.

@lukasjhan lukasjhan merged commit dcb76ce into openwallet-foundation-labs:main Feb 14, 2024
2 checks passed
@lukasjhan lukasjhan mentioned this pull request Feb 15, 2024
Closed
cre8 pushed a commit to cre8/sd-jwt-js that referenced this pull request Mar 8, 2024
@lukasjhan @cre8
Merging Process #1 from sd-jwt-ts (openwallet-foundation-labs#60)
8870638 
Signed-off-by: Lukas.J.Han <[email protected]>
Signed-off-by: Lukas <[email protected]>
Signed-off-by: Mirko Mollik <[email protected]>
cre8 pushed a commit that referenced this pull request Mar 8, 2024
@lukasjhan @cre8
Merging Process #1 from sd-jwt-ts (#60)
3692498 
Signed-off-by: Lukas.J.Han <[email protected]>
Signed-off-by: Lukas <[email protected]>
Signed-off-by: Mirko Mollik <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@berendsliedrecht berendsliedrecht berendsliedrecht approved these changes

@zustkeeper zustkeeper zustkeeper left review comments

Assignees

@lukasjhan lukasjhan

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@lukasjhan @zustkeeper @berendsliedrecht