Merge pull request #436 from esune/fix/use-local-did

Use local did for read-only agent
openwallet-foundation · Mar 20, 2024 · 64ddeb0 · 64ddeb0
2 parents a67e6b7 + a0e4d10
commit 64ddeb0
Show file tree

Hide file tree

Showing 4 changed files with 8 additions and 4 deletions.
diff --git a/charts/vc-authn-oidc/Chart.yaml b/charts/vc-authn-oidc/Chart.yaml
@@ -6,13 +6,13 @@ type: application
 # This is the chart version. This version number should be incremented each time you make changes
 # to the chart and its templates, including the app version.
 # Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 0.1.8
+version: 0.1.9
 
 # This is the version number of the application being deployed. This version number should be
 # incremented each time you make changes to the application. Versions are not expected to
 # follow Semantic Versioning. They should reflect the version the application is using.
 # It is recommended to use it with quotes.
-appVersion: "2.0.1-rc0"
+appVersion: "2.0.1"
 
 # Charts the vc-authn-oidc service depends on
 dependencies:

diff --git a/charts/vc-authn-oidc/README.md b/charts/vc-authn-oidc/README.md
@@ -1,6 +1,6 @@
 # VC-AuthN OIDC
 
-![Version: 0.1.8](https://img.shields.io/badge/Version-0.1.8-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2.0.1-rc0](https://img.shields.io/badge/AppVersion-2.0.1-rc0-informational?style=flat-square)
+![Version: 0.1.9](https://img.shields.io/badge/Version-0.1.9-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 2.0.1](https://img.shields.io/badge/AppVersion-2.0.1-informational?style=flat-square)
 
 A Helm chart to deploy Verifiable Credential Identity Provider for OpenID Connect.
 
@@ -84,7 +84,7 @@ kubectl delete secret,pvc --selector "app.kubernetes.io/instance"=my-release
 | `image.repository`  |                                                                 | `ghcr.io/bcgov/vc-authn-oidc`   |
 | `image.pullPolicy`  |                                                                 | `IfNotPresent`                  |
 | `image.pullSecrets` |                                                                 | `[]`                            |
-| `image.tag`         | Overrides the image tag which defaults to the chart appVersion. | `2.0.1-rc0`                     |
+| `image.tag`         | Overrides the image tag which defaults to the chart appVersion. | `2.0.1`                         |
 | `ingressSuffix`     | Domain suffix to be used for default hostpaths in ingress       | `.apps.silver.devops.gov.bc.ca` |
 
 ### Controller Configuration
@@ -182,6 +182,7 @@ Note: Secure values of the configuration are passed via equivalent environment v
 | `acapy.argfile.yml.multitenant`                   | Enable multitenant mode.                                                                                                                                                                                                                                                                                                                | `false`                                |
 | `acapy.argfile.yml.public-invites`                | Send invitations out using the public DID for the agent, and receive connection requests solicited by invitations which use the public DID. Default: false.                                                                                                                                                                             | `true`                                 |
 | `acapy.argfile.yml.read-only-ledger`              | Sets ledger to read-only to prevent updates. Default: false.                                                                                                                                                                                                                                                                            | `true`                                 |
+| `acapy.argfile.yml.wallet-local-did`              | If this parameter is set, provisions the wallet with a local DID from the '--seed' parameter, instead of a public DID to use with a Hyperledger Indy ledger. Default: false.                                                                                                                                                            | `true`                                 |
 | `acapy.argfile.yml.wallet-name`                   | Specifies the wallet name to be used by the agent. This is useful if your deployment has multiple wallets.                                                                                                                                                                                                                              | `askar-wallet`                         |
 | `acapy.argfile.yml.wallet-storage-type`           | Specifies the type of Indy wallet backend to use. Supported internal storage types are 'basic' (memory), 'default' (sqlite), and 'postgres_storage'. The default, if not specified, is 'default'.                                                                                                                                       | `postgres_storage`                     |
 | `acapy.argfile.yml.wallet-type`                   | Specifies the type of Indy wallet provider to use. Supported internal storage types are 'basic' (memory) and 'indy'. The default (if not specified) is 'basic'.                                                                                                                                                                         | `askar`                                |

diff --git a/charts/vc-authn-oidc/values.yaml b/charts/vc-authn-oidc/values.yaml
@@ -266,6 +266,7 @@ acapy:
   ## @param acapy.argfile.yml.multitenant Enable multitenant mode.
   ## @param acapy.argfile.yml.public-invites Send invitations out using the public DID for the agent, and receive connection requests solicited by invitations which use the public DID. Default: false.
   ## @param acapy.argfile.yml.read-only-ledger Sets ledger to read-only to prevent updates. Default: false.
+  ## @param acapy.argfile.yml.wallet-local-did If this parameter is set, provisions the wallet with a local DID from the '--seed' parameter, instead of a public DID to use with a Hyperledger Indy ledger. Default: false.
   ## @param acapy.argfile.yml.wallet-name Specifies the wallet name to be used by the agent. This is useful if your deployment has multiple wallets.
   ## @param acapy.argfile.yml.wallet-storage-type Specifies the type of Indy wallet backend to use. Supported internal storage types are 'basic' (memory), 'default' (sqlite), and 'postgres_storage'.  The default, if not specified, is 'default'.
   ## @param acapy.argfile.yml.wallet-type Specifies the type of Indy wallet provider to use. Supported internal storage types are 'basic' (memory) and 'indy'. The default (if not specified) is 'basic'.
@@ -288,6 +289,7 @@ acapy:
     multitenant: false
     public-invites: true
     read-only-ledger: true
+    wallet-local-did: true
     wallet-name: askar-wallet
     wallet-storage-type: postgres_storage
     wallet-type: askar

diff --git a/docker/docker-compose.yaml b/docker/docker-compose.yaml
@@ -102,6 +102,7 @@ services:
       - ACAPY_WALLET_TYPE=askar
       - ACAPY_WALLET_KEY=${WALLET_ENCRYPTION_KEY}
       - ACAPY_WALLET_SEED=${AGENT_WALLET_SEED}
+      - ACAPY_WALLET_LOCAL_DID=true
       - ACAPY_AUTO_VERIFY_PRESENTATION=true
       - ACAPY_WALLET_STORAGE_TYPE=${WALLET_TYPE}
       - ACAPY_READ_ONLY_LEDGER=true