2024-08-30 22:06:59 +02:00
|
|
|
package delegation
|
|
|
|
|
|
|
|
|
|
import (
|
2024-09-18 15:48:07 -04:00
|
|
|
"errors"
|
2024-08-30 22:06:59 +02:00
|
|
|
"fmt"
|
|
|
|
|
"time"
|
|
|
|
|
|
|
|
|
|
"github.com/ipld/go-ipld-prime/datamodel"
|
2024-09-18 15:48:07 -04:00
|
|
|
"github.com/libp2p/go-libp2p/core/crypto"
|
2024-08-30 22:06:59 +02:00
|
|
|
|
2024-09-05 18:49:01 +02:00
|
|
|
"github.com/ucan-wg/go-ucan/capability/command"
|
|
|
|
|
"github.com/ucan-wg/go-ucan/capability/policy"
|
|
|
|
|
"github.com/ucan-wg/go-ucan/did"
|
2024-08-30 22:06:59 +02:00
|
|
|
)
|
|
|
|
|
|
2024-09-18 14:21:53 -04:00
|
|
|
type Token struct {
|
2024-08-30 22:06:59 +02:00
|
|
|
// Issuer DID (sender)
|
2024-09-18 14:21:53 -04:00
|
|
|
issuer did.DID
|
2024-08-30 22:06:59 +02:00
|
|
|
// Audience DID (receiver)
|
2024-09-18 14:21:53 -04:00
|
|
|
audience did.DID
|
2024-08-30 22:06:59 +02:00
|
|
|
// Principal that the chain is about (the Subject)
|
2024-09-18 14:21:53 -04:00
|
|
|
subject did.DID
|
2024-08-30 22:06:59 +02:00
|
|
|
// The Command to eventually invoke
|
2024-09-18 14:21:53 -04:00
|
|
|
command *command.Command
|
2024-08-30 22:06:59 +02:00
|
|
|
// The delegation policy
|
2024-09-18 14:21:53 -04:00
|
|
|
policy policy.Policy
|
2024-08-30 22:06:59 +02:00
|
|
|
// A unique, random nonce
|
2024-09-18 14:21:53 -04:00
|
|
|
nonce []byte
|
2024-08-30 22:06:59 +02:00
|
|
|
// Arbitrary Metadata
|
2024-09-18 14:21:53 -04:00
|
|
|
meta map[string]datamodel.Node
|
2024-08-30 22:06:59 +02:00
|
|
|
// "Not before" UTC Unix Timestamp in seconds (valid from), 53-bits integer
|
2024-09-18 14:21:53 -04:00
|
|
|
notBefore *time.Time
|
2024-08-30 22:06:59 +02:00
|
|
|
// The timestamp at which the Invocation becomes invalid
|
2024-09-18 14:21:53 -04:00
|
|
|
expiration *time.Time
|
|
|
|
|
}
|
|
|
|
|
|
2024-09-18 15:48:07 -04:00
|
|
|
// New creates a validated Token from the provided parameters and options.
|
|
|
|
|
func New(privKey crypto.PrivKey, aud did.DID, cmd *command.Command, pol policy.Policy, nonce []byte, opts ...Option) (*Token, error) {
|
|
|
|
|
iss, err := did.FromPrivKey(privKey)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
tkn := &Token{
|
|
|
|
|
issuer: iss,
|
|
|
|
|
audience: aud,
|
|
|
|
|
subject: did.Undef,
|
|
|
|
|
command: cmd,
|
|
|
|
|
policy: pol,
|
|
|
|
|
nonce: nonce,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for _, opt := range opts {
|
|
|
|
|
if err := opt(tkn); err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if err := tkn.validate(); err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return tkn, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func Root(privKey crypto.PrivKey, aud did.DID, cmd *command.Command, pol policy.Policy, nonce []byte, opts ...Option) (*Token, error) {
|
|
|
|
|
sub, err := did.FromPrivKey(privKey)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
opts = append(opts, WithSubject(sub))
|
|
|
|
|
|
|
|
|
|
return New(privKey, aud, cmd, pol, nonce, opts...)
|
|
|
|
|
}
|
|
|
|
|
|
2024-09-18 14:21:53 -04:00
|
|
|
// Issuer returns the did.DID representing the Token's issuer.
|
|
|
|
|
func (t *Token) Issuer() did.DID {
|
|
|
|
|
return t.issuer
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Audience returns the did.DID representing the Token's audience.
|
|
|
|
|
func (t *Token) Audience() did.DID {
|
|
|
|
|
return t.audience
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Subject returns the did.DID representing the Token's subject.
|
|
|
|
|
//
|
|
|
|
|
// This field may be did.Undef for delegations that are [Powerlined] but
|
|
|
|
|
// must be equal to the value returned by the Issuer method for root
|
|
|
|
|
// tokens.
|
|
|
|
|
func (t *Token) Subject() did.DID {
|
|
|
|
|
return t.subject
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Command returns the capability's command.Command.
|
|
|
|
|
func (t *Token) Command() *command.Command {
|
|
|
|
|
return t.command
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Policy returns the capability's policy.Policy.
|
|
|
|
|
func (t *Token) Policy() policy.Policy {
|
|
|
|
|
return t.policy
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Nonce returns the random Nonce encapsulated in this Token.
|
|
|
|
|
func (t *Token) Nonce() []byte {
|
|
|
|
|
return t.nonce
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Meta returns the Token's metadata.
|
|
|
|
|
func (t *Token) Meta() map[string]datamodel.Node {
|
|
|
|
|
return t.meta
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// NotBefore returns the time at which the Token becomes "active".
|
|
|
|
|
func (t *Token) NotBefore() *time.Time {
|
|
|
|
|
return t.notBefore
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Expiration returns the time at which the Token expires.
|
|
|
|
|
func (t *Token) Expiration() *time.Time {
|
|
|
|
|
return t.expiration
|
2024-08-30 22:06:59 +02:00
|
|
|
}
|
|
|
|
|
|
2024-09-18 15:48:07 -04:00
|
|
|
func (t *Token) validate() error {
|
|
|
|
|
var errs error
|
|
|
|
|
|
|
|
|
|
requiredDID := func(id did.DID, fieldname string) {
|
|
|
|
|
if !id.Key() {
|
|
|
|
|
errs = errors.Join(errs, fmt.Errorf("a \"did:key\" is required for %s: %s", fieldname, id.String()))
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
requiredDID(t.issuer, "Issuer")
|
|
|
|
|
requiredDID(t.audience, "Audience")
|
|
|
|
|
if t.subject != did.Undef {
|
|
|
|
|
requiredDID(t.subject, "Subject")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if _, err := command.Parse(t.command.String()); err != nil {
|
|
|
|
|
errs = errors.Join(errs, err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if _, err := t.policy.ToIPLD(); err != nil {
|
|
|
|
|
errs = errors.Join(errs, err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return errs
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type Option func(*Token) error
|
|
|
|
|
|
|
|
|
|
// WithExpiration set's the Token's optional "expiration" field to the
|
|
|
|
|
// value of the provided time.Time.
|
|
|
|
|
func WithExpiration(exp time.Time) Option {
|
|
|
|
|
return func(t *Token) error {
|
|
|
|
|
if exp.Before(time.Now()) {
|
|
|
|
|
return fmt.Errorf("a Token's expiration should be set to a time in the future: %s", exp.String())
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
t.expiration = &exp
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// WithMetadata sets the Token's optional "meta" field to the provided
|
|
|
|
|
// value.
|
|
|
|
|
func WithMetadata(meta map[string]datamodel.Node) Option {
|
|
|
|
|
return func(t *Token) error {
|
|
|
|
|
t.meta = meta
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// WithNotBefore set's the Token's optional "notBefore" field to the value
|
|
|
|
|
// of the provided time.Time.
|
|
|
|
|
func WithNotBefore(nbf time.Time) Option {
|
|
|
|
|
return func(t *Token) error {
|
|
|
|
|
if nbf.Before(time.Now()) {
|
|
|
|
|
return fmt.Errorf("a Token's \"not before\" field should be set to a time in the future: %s", nbf.String())
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
t.notBefore = &nbf
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// WithSubject sets the Tokens's optional "subject" field to the value of
|
|
|
|
|
// provided did.DID.
|
|
|
|
|
//
|
|
|
|
|
// This Option should only be used with the New constructor - since
|
|
|
|
|
// Subject is a required parameter when creating a Token via the Root
|
|
|
|
|
// constructor, any value provided via this Option will be silently
|
|
|
|
|
// overwritten.
|
|
|
|
|
func WithSubject(sub did.DID) Option {
|
|
|
|
|
return func(t *Token) error {
|
|
|
|
|
t.subject = sub
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2024-09-18 15:53:29 -04:00
|
|
|
// tokenFromModel build a decoded view of the raw IPLD data.
|
2024-08-30 22:06:59 +02:00
|
|
|
// This function also serves as validation.
|
2024-09-18 15:53:29 -04:00
|
|
|
func tokenFromModel(m tokenPayloadModel) (*Token, error) {
|
|
|
|
|
var (
|
|
|
|
|
tkn Token
|
|
|
|
|
err error
|
|
|
|
|
)
|
2024-08-30 22:06:59 +02:00
|
|
|
|
2024-09-18 15:53:29 -04:00
|
|
|
tkn.issuer, err = did.Parse(m.Iss)
|
2024-08-30 22:06:59 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("parse iss: %w", err)
|
|
|
|
|
}
|
|
|
|
|
|
2024-09-18 15:53:29 -04:00
|
|
|
tkn.audience, err = did.Parse(m.Aud)
|
2024-08-30 22:06:59 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("parse audience: %w", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if m.Sub != nil {
|
2024-09-18 15:53:29 -04:00
|
|
|
tkn.subject, err = did.Parse(*m.Sub)
|
2024-08-30 22:06:59 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("parse subject: %w", err)
|
|
|
|
|
}
|
|
|
|
|
} else {
|
2024-09-18 15:53:29 -04:00
|
|
|
tkn.subject = did.Undef
|
2024-08-30 22:06:59 +02:00
|
|
|
}
|
|
|
|
|
|
2024-09-18 15:53:29 -04:00
|
|
|
tkn.command, err = command.Parse(m.Cmd)
|
2024-09-02 02:34:00 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("parse command: %w", err)
|
|
|
|
|
}
|
2024-08-30 22:06:59 +02:00
|
|
|
|
2024-09-18 15:53:29 -04:00
|
|
|
tkn.policy, err = policy.FromIPLD(m.Pol)
|
2024-09-02 02:34:00 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("parse policy: %w", err)
|
|
|
|
|
}
|
2024-08-30 22:06:59 +02:00
|
|
|
|
|
|
|
|
if len(m.Nonce) == 0 {
|
|
|
|
|
return nil, fmt.Errorf("nonce is required")
|
|
|
|
|
}
|
2024-09-18 15:53:29 -04:00
|
|
|
tkn.nonce = m.Nonce
|
2024-08-30 22:06:59 +02:00
|
|
|
|
|
|
|
|
// TODO: copy?
|
2024-09-18 15:53:29 -04:00
|
|
|
tkn.meta = m.Meta.Values
|
2024-08-30 22:06:59 +02:00
|
|
|
|
|
|
|
|
if m.Nbf != nil {
|
2024-09-18 12:20:54 -04:00
|
|
|
t := time.Unix(*m.Nbf, 0)
|
2024-09-18 15:53:29 -04:00
|
|
|
tkn.notBefore = &t
|
2024-08-30 22:06:59 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if m.Exp != nil {
|
2024-09-18 12:20:54 -04:00
|
|
|
t := time.Unix(*m.Exp, 0)
|
2024-09-18 15:53:29 -04:00
|
|
|
tkn.expiration = &t
|
2024-08-30 22:06:59 +02:00
|
|
|
}
|
|
|
|
|
|
2024-09-18 15:53:29 -04:00
|
|
|
if err := tkn.validate(); err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return &tkn, nil
|
2024-08-30 22:06:59 +02:00
|
|
|
}
|
