Comments (7)
You'll want to refer to the documentation provided by the crypto suite that is of interest to you: https://github.com/digitalbazaar/jsonld-signatures#usage
https://github.com/digitalbazaar/ed25519-signature-2020#usage
https://github.com/digitalbazaar/ed25519-signature-2020/tree/main/test
from jsonld-signatures.
Thanks. I tried to piece together the examples you cited:
import jsigs from 'jsonld-signatures';
const { purposes: { AssertionProofPurpose } } = jsigs;
import pkg from '@digitalbazaar/ed25519-verification-key-2020';
const { Ed25519VerificationKey2020 } = pkg;
import pkg2 from '@digitalbazaar/ed25519-signature-2020';
const { Ed25519Signature2020 } = pkg2;
import { JsonLdDocumentLoader } from 'jsonld-document-loader';
const documentLoader = new JsonLdDocumentLoader();
// create the unsigned credential
const unsignedCredential = {
'@context': [
'https://www.w3.org/2018/credentials/v1',
{
AlumniCredential: 'https://schema.org#AlumniCredential',
alumniOf: 'https://schema.org#alumniOf',
},
],
id: 'http://example.edu/credentials/1872',
type: ['VerifiableCredential', 'AlumniCredential'],
issuer: 'https://example.edu/issuers/565049',
issuanceDate: '2010-01-01T19:23:24Z',
credentialSubject: {
id: 'https://example.edu/students/alice',
alumniOf: 'Example University',
},
};
// create the keypair to use when signing
const controller = 'https://example.edu/issuers/565049';
const keyPair = await Ed25519VerificationKey2020.from({
type: 'Ed25519VerificationKey2020',
controller,
id: `${controller}#z6MknCCLeeHBUaHu4aHSVLDCYQW9gjVJ7a63FpMvtuVMy53T`,
publicKeyMultibase: 'z6MknCCLeeHBUaHu4aHSVLDCYQW9gjVJ7a63FpMvtuVMy53T',
privateKeyMultibase: 'zrv2EET2WWZ8T1Jbg4fEH5cQxhbUS22XxdweypUbjWVzv1YD6VqYu' + 'W6LH7heQCNYQCuoKaDwvv2qCWz3uBzG2xesqmf',
});
const suite = new Ed25519Signature2020({ key: keyPair });
suite.date = '2010-01-01T19:23:24Z';
const signedCredential = await jsigs.sign(unsignedCredential, {
suite,
purpose: new AssertionProofPurpose(),
documentLoader,
});
console.log(signedCredential);
But I get the following error:
TypeError: Cannot read properties of undefined (reading 'from')
from jsonld-signatures.
This should get you going: https://gist.github.com/mattcollier/75042d08b5b911df80676ea8b2b0c739
Support for pure ESM in Node.js is problematic and the esm
module and webpack are typically used to fill the gap.
from jsonld-signatures.
Thanks, I'm starting to understand how this works now. I wasn't able to find any examples using AuthenticationProofPurpose
in these repositories, which is the main use case I'm interested in. I think I have it working now that I supplied a UUID as a challenge value. If there were more code examples like this readily available, it would really help newcomers get started.
from jsonld-signatures.
Support for pure ESM in Node.js is problematic and the
esm
module and webpack are typically used to fill the gap.
It's proving difficult for me to integrate this solution into my project using node-fetch
. What is the main hurdle to offering ESM support in Node?
from jsonld-signatures.
@DePasqualeOrg - try out the DCC fork of this library, over at https://github.com/digitalcredentials/jsonld-signatures (which has been refactored to not use the esm
runtime transpiler). Same usage/same api.
from jsonld-signatures.
Thanks! This fork and others from DCC solved this problem for me, but I noticed that there are some NPM warnings about outdated/insecure dependancies when I install them.
from jsonld-signatures.
Related Issues (20)
- Frame call which drops properties causes issues with signature validation when relying on non JSON-LD documents HOT 1
- Check DID doc ID against controller ID when doing DID doc-based optimization in ControllerProofPurpose
- Is it possible to remove the vulnerability introduced by xmldom? HOT 1
- Allow `purpose.match` to supply a reason it did not match HOT 1
- ActivityStreams context URL doesn't resolve to JSON-LD HOT 10
- Security vulnerability in dependent package version - node-forge-0.9.2.tgz HOT 1
- How to generate a proof of posession
- jsonld-signatures python package
- security-context package uses runtime file loading HOT 4
- Uncaught signal: 11 Segmentation fault when using the lib HOT 2
- Verification does not catch tampered VC HOT 13
- Pass existing `proofSet` to `suite.createProof`
- Improve local test suite
- RSA Proof wrong canonicalization
- How to export jsonld signed credentials HOT 2
- Context overriding before canonicalization HOT 3
- Add suggested help to error text when no proofs match in a document during verification
- Deprecate this package once `data-integrity` has new primitives and no longer depends on this
- Add / check for `previousProof` option when adding a proof to a proof set
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from jsonld-signatures.