feat: verify VCs in store backend using API call to gov issuer

SolidLabResearch · Apr 25, 2024 · 83137ce · 83137ce
1 parent 4f4d130
commit 83137ce
Show file tree

Hide file tree

Showing 6 changed files with 55 additions and 11 deletions.
diff --git a/demo/backend/gov-vc-issuer/src/index.ts b/demo/backend/gov-vc-issuer/src/index.ts
@@ -147,8 +147,6 @@ app.post('/verify', async (req,res)=>{
         documentLoader
     })
 
-    console.log(verificationResult)
-
     res.send({validationResult, verificationResult})
 })
 

diff --git a/demo/backend/store/src/index.ts b/demo/backend/store/src/index.ts
@@ -1,6 +1,6 @@
 import express, { Request, Response, response } from 'express';
-import { processAgeResult, retrieveData, terms, verifyJwtToken } from './util'
-import BackendStore, { Contract, Embedded, Retrieval } from './storage';
+import { processAgeResult, retrieveData, terms, verifyVCsignature, verifyJwtToken } from './util'
+import BackendStore, { Contract, Embedded } from './storage';
 import cors from "cors"
 
 const app = express()
@@ -56,9 +56,26 @@ app.get('/verify', async (req: Request, res: Response) => {
     }
     storage.storeEmbedded(embedded)
 
+    // todo:: check purpose checking etc double check
+
     // 4 verify age credential signature
-    // todo: signature verification!!!!!!!!!!!!!!!!!!!!!!
-
+    // todo: signature verification currently done on VC service through API.
+    // this should be moved to the backend itself in due time?
+    let result = await verifyVCsignature('http://localhost:4444/verify', data)
+    if (!result.validationResult.valid) {
+        res.statusCode = 200;
+        res.send({
+            "verified": false, // todo: more info & credential verification result
+            "message": "Age Credential data validation failed"
+        })
+    }
+    if (!result.verificationResult.verified) {
+        res.statusCode = 200;
+        res.send({
+            "verified": false, // todo: more info & credential verification result
+            "message": "Age Credential signature verification failed"
+        })
+    }    
 
     // 5 check age
     const decision = await processAgeResult(data, webId)

diff --git a/demo/backend/store/src/util.ts b/demo/backend/store/src/util.ts
@@ -290,9 +290,28 @@ export async function extractContractFromToken(token: string, webId: string) {
 }
 
 
-export async function verifiyVCsignature(data: string) {
+type VCVerificationResult = {
+  validationResult: {
+    valid: boolean
+  }
+  verificationResult: {
+    verified: boolean
+  }
+}
+
+export async function verifyVCsignature(verificationUrl: string, data: string): Promise<VCVerificationResult> {
+
+  const res = await fetch(verificationUrl, {
+    method: "POST",
+    body: data,
+    headers: { "Content-Type": "application/json" }
+  })
+
+  const {validationResult, verificationResult} = (await res.json()) as VCVerificationResult
+
+  console.log('[store-backend] validationResult', validationResult)
+  console.log('[store-backend] verificationResult', verificationResult)
 
-  // 1 -> get data as JSON-LD
-  // 2 -> validate using Gertjan's stuff (did I make something like this already?)
+  return {validationResult, verificationResult}
 
 }
diff --git a/demo/sites/updatedstore/package.json b/demo/sites/updatedstore/package.json
@@ -7,7 +7,7 @@
   },
   "scripts": {
     "dev": "yarn run -T react-scripts start",
-    "start": "yarn run -T serve -s build -l 5003",
+    "start": "yarn run -T serve -s build -l 5002",
     "build": "yarn run -T react-scripts build"
   },
   "browserslist": {

diff --git a/demo/sites/updatedstore/src/App.tsx b/demo/sites/updatedstore/src/App.tsx
@@ -7,7 +7,6 @@ import { useEffect, useState } from 'react';
 import './App.css';
 import SearchComponent from './components/SearchComponent';
 import ShowCourseComponent from './components/ShowCourseComponent';
-import { performAgeVerification } from './util';
 import PaymentComponent from './components/PaymentComponent';
 
 export const storeBackendUrl = 'http://localhost:5123/'

diff --git a/demo/yarn.lock b/demo/yarn.lock
@@ -5610,6 +5610,17 @@ __metadata:
   languageName: node
   linkType: hard
 
+"@solidlab/uma-demo-auditing@workspace:sites/auditingsite":
+  version: 0.0.0-use.local
+  resolution: "@solidlab/uma-demo-auditing@workspace:sites/auditingsite"
+  dependencies:
+    "@comunica/query-sparql": "npm:^2.6.9"
+    "@inrupt/solid-client-authn-browser": "npm:^1.14.0"
+    n3: "npm:^1.17.3"
+    uuid: "npm:^9.0.1"
+  languageName: unknown
+  linkType: soft
+
 "@solidlab/uma-demo-authz@workspace:sites/authorizationsite":
   version: 0.0.0-use.local
   resolution: "@solidlab/uma-demo-authz@workspace:sites/authorizationsite"