Skip to content

Commit

Permalink
name change
Browse files Browse the repository at this point in the history 
Signed-off-by: Atharva Amritkar <[email protected]>
  • Loading branch information
@wiredhikari
wiredhikari committed Mar 3, 2024
1 parent c128cfb commit 0e24c58
Show file tree
Hide file tree
Showing 4 changed files with 5 additions and 339 deletions.
3 changes: 2 additions & 1 deletion plenum/server/plugin/did_plugin/__init__.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,8 @@
DemoTransactions.UPDATE_DID.value,
DemoTransactions.UPDATE_NETWORK_DID.value,
DemoTransactions.DEACTIVATE_DID.value,
DemoTransactions.OUDID.value
DemoTransactions.OUDID.value,
DemoTransactions.SDDID.value
}

AcceptableQueryTypes = {DemoTransactions.FETCH_DID.value, }
2 changes: 1 addition & 1 deletion plenum/server/plugin/did_plugin/common.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -191,7 +191,7 @@ def fetch_authentication_method(self) -> dict:
return method


class UPDATE_NETWORK_DID:
class UPDATE_DID:
did = None
id = None
verification_methods = None
Expand Down
44 changes: 0 additions & 44 deletions plenum/server/plugin/did_plugin/request_handlers/create_did_handler.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,50 +19,6 @@
import libnacl
import libnacl.encode

"""
{
"identifier": "EbP4aYNeTHL6q385GuVpRV",
"operation": {
"dest": "Vzfdscz6YG6n1EuNJV4ob1",
"type": "20220",
"data": {
"DIDDocument": {
"@context": [
"https://www.w3.org/ns/did/v1",
"https://w3id.org/security/suites/ed25519-2020/v1"
],
"id": "did:iin:iin123:shippingcompany",
"verificationMethod": [
{
"id": "did:iin:iin123:shippingcompany#key-1",
"type": "Ed25519VerificationKey2020",
"controller": "did:example:123456789abcdefghi",
"publicKeyBase64": "zH3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z3wXmqPV"
}
],
"authentication": [
"did:iin:iin123:shippingcompany#keys-1",
{
"id": "did:iin:iin123:shippingcompany#keys-2",
"type": "Ed25519VerificationKey2020",
"controller": "did:shippingcompany",
"publicKeyBase64": "zH3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z3wXmqPV"
}
]
},
"signature": {
"verificationMethod": "did:iin:iin123:shippingcompany#keys-1",
"sigbase64": "sdfsdfsdf"
}
},
"verkey": "~HFPBKb7S7ocrTzxakNbcao"
},
"protocolVersion": 2,
"reqId": 1704278802665233400
}
"""

class CreateDIDRequest:
did: DID = None
did_str = None
Expand Down
295 changes: 2 additions & 293 deletions plenum/server/plugin/did_plugin/request_handlers/update_network_did.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,302 +11,11 @@
from plenum.server.database_manager import DatabaseManager
from plenum.server.plugin.did_plugin.constants import UPDATE_NETWORK_DID
from plenum.server.plugin.did_plugin.request_handlers.abstract_did_req_handler import AbstractDIDReqHandler
from plenum.server.plugin.did_plugin.common import DID, NetworkDID, did_id_from_url, libnacl_validate, libnacl_validate2
from plenum.server.plugin.did_plugin.common import DID, NetworkDID, UPDATE_DID, did_id_from_url, libnacl_validate, libnacl_validate2


from plenum.common.txn_util import get_payload_data, get_from, \
get_seq_no, get_txn_time, get_request_data

import libnacl
import libnacl.encode

"""
{
"SecurityDomainDIDDocument": {
"id": "did:<iin_name>:<network_name>",
"networkMembers": [
"did:<iin_name>:<network_member_1>",
"did:<iin_name>:<network_member_2>",
"did:<iin_name>:<network_member_3>"
],
"verificationMethod": [{
"id": "did:<iin_name>:<network_name>#multisig",
"type": "BlockchainNetworkMultiSig",
"controller": "did:<iin_name>:<network_name>",
"multisigKeys": [
"did:<iin_name>:<network_member_1>#key1",
"did:<iin_name>:<network_member_2>#key3",
"did:<iin_name>:<network_member_3>#key1"
],
"updatePolicy": {
"id": "did:<iin_name>:<network_name>#updatepolicy",
"controller": "did:<iin_name>:<network_name>",
"type": "VerifiableCondition2021",
"conditionAnd": [{
"id": "did:<iin_name>:<network_name>#updatepolicy-1",
"controller": "did:<iin_name>:<network_name>",
"type": "VerifiableCondition2021",
"conditionOr": ["did:<iin_name>:<network_member_3>#key1",
"did:<iin_name>:<network_member_2>#key3"
]
},
"did:<iin_name>:<network_member_1>#key1"
]
}
},
{
"id": "did:<iin_name>:<network_name>#fabriccerts",
"type": "DataplaneCredentials",
"controller": "did:<iin_name>:<network_name>",
"FabricCredentials": {
"did:<iin_name>:<network_member_1>": "Certificate3_Hash",
"did:<iin_name>:<network_member_2>": "Certificate2_Hash",
"did:<iin_name>:<network_member_3>": "Certificate3_Hash"
}
}
],
"authentication": [
"did:<iin_name>:<network_name>#multisig"
],
"relayEndpoints": [{
"hostname": "10.0.0.8",
"port": "8888"
},
{
"hostname": "10.0.0.9",
"port": "8888"
}
]
},
"signatures": {
"did:<iin_name>:<network_member_1>": "...",
"did:<iin_name>:<network_member_2>": "...",
"did:<iin_name>:<network_member_3>": "..."
}
}
"""



"""
<<<<NORMAL DID>>>>
"DIDDocument": {
"@context": [
"https://www.w3.org/ns/did/v1",
"https://w3id.org/security/suites/ed25519-2020/v1"
],
"id": "did:iin:iin123:shippingcompany",
"verificationMethod": [
{
"id": "did:iin:iin123:shippingcompany#key-1",
"type": "Ed25519VerificationKey2020",
"controller": "did:example:123456789abcdefghi",
"publicKeyBase64": "zH3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z3wXmqPV"
}
],
"authentication": [
"did:iin:iin123:shippingcompany#keys-1",
{
"id": "did:iin:iin123:shippingcompany#keys-2",
"type": "Ed25519VerificationKey2020",
"controller": "did:shippingcompany",
"publicKeyBase64": "zH3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z3wXmqPV"
}
]
},
"""



class UpdateNetworkDIDRequest:
did: NetworkDID = None
did_str = None
signatures = None
this_indy_state = None
def __init__(self, request_dict: str, indy_state) -> None:
self.did_str = json.dumps(request_dict["DIDDocument"])
self.did = NetworkDID(self.did_str)
self.signatures = request_dict["signatures"]
self.this_indy_state = indy_state

def fetch_party_key_from_auth_method(self, party_did_id, auth_method):
for candidate_key_url in auth_method["multisigKeys"]:
base_url = did_id_from_url(candidate_key_url)
if base_url == party_did_id:
return candidate_key_url

def fetch_party_verification_method(self, party_key_url):
print("hello3")
party_did_id = did_id_from_url(party_key_url)
# Fetch party did
# TODO: if did is in some other iin network
# Will handle later...

# If did is in the same indy iin network
### TODO: did:iin:iin123:shippingcompany -----> DIDDocument: {....}

json_data = {
"@context": [
"https://www.w3.org/ns/did/v1",
"https://w3id.org/security/suites/ed25519-2020/v1"
],
"id": party_did_id,
"verificationMethod": [
{
"id": f"{party_did_id}#key1",
"type": "libnacl",
"controller": "did:example:123456789abcdefghi",
"publicKeyBase64": "zH3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z"
}
],
"authentication": [
f"{party_did_id}#key1",
{
"id": f"{party_did_id}#key1",
"type": "libnacl",
"controller": "did:shippingcompany",
"publicKeyBase64": "zH3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z"
}
]
}
json_string = json.dumps(json_data, indent=4)
party_did = DID(json_string)
party_authentication_method = party_did.fetch_authentication(party_key_url)

serialized_party_did = self.this_indy_state.get(party_did_id)
# if not serialized_party_did:
# raise "Could not resolve did " + party_did_id
print(serialized_party_did)
party_did = domain_state_serializer.deserialize(serialized_party_did)
party_did = DID(party_did)
party_authentication_method = party_did.fetch_authentication_method(party_key_url)
return party_authentication_method


def authenticate(self):
# Get any one authentication method of type GroupMultiSig
auth_method = self.did.fetch_authentication_method()

if not auth_method:
raise MissingSignature("Authentication verification method not found in SDDIDDocument.")
# Iterate of each participant
for party_did_id in self.did.network_participants:
# Fetch the key url from auth_method
party_key_url = self.fetch_party_key_from_auth_method(party_did_id, auth_method)
# Fetch verification key of the party
party_verification_method = self.fetch_party_verification_method(party_key_url)
# Validate signature of the party
if party_verification_method["type"] == "libnacl":
# validate signature
# TODO: Json serialization is not faithful. Use ordered collections isntead.
originalhash = libnacl.crypto_hash_sha256(self.did_str)
libnacl_validate(party_verification_method["publicKeyBase64"], self.signatures[party_did_id], originalhash)

# TODO: Add more authentication methods / some standard
else:
raise InvalidSignature("Unknown signature type: ", auth_method["type"])

class UpdateNetworkDIDHandler(AbstractDIDReqHandler):

def __init__(self, database_manager: DatabaseManager, did_dict: dict):
super().__init__(database_manager, UPDATE_NETWORK_DID, did_dict)

def additional_dynamic_validation(self, request: Request, req_pp_time: Optional[int]):
operation = request.operation
create_network_did_request_dict = operation.get(DATA)
# parse create did request
# try:
create_network_did_request = UpdateNetworkDIDRequest(create_network_did_request_dict, self.state)
# except:
# raise InvalidClientRequest(request.identifier, request.reqId, "Malformed CREATE_NETWORK_DID request.")

# TODO Check if the did uri corresponds to this iin or not.

# Check if did already in this iin or not.
serialized_did = self.state.get(create_network_did_request.did.id, isCommitted=True)
if serialized_did:
raise InvalidClientRequest(request.identifier, request.reqId, "DID already exists.")

# Authenticate
create_network_did_request.authenticate()


def update_state(self, txn, prev_result, request, is_committed=False):
"""
=> The `BlockchainNetworkMultiSig` verification method, and `networkMembers` list must be updated to reflect the new network membership.
- `networkMembers` is updated with the list of DIDs of the new network members.
- A new `update policy` is associated with the `BlockchainNetworkMultiSig` verification method.
=>
"""
data = get_payload_data(txn).get(DATA)
# What the hell is `data`
# print("data.....::>", data)

netwokMembers = []
multisig_keys = []
condition_or = []
signature = {}
sd_did_json = {
"SecurityDomainDIDDocument": {
"id": "did:<iin_name>:<network_name>",
"networkMembers": netwokMembers,
"verificationMethod": [
{
"id": "did:<iin_name>:<network_name>#multisig",
"type": "BlockchainNetworkMultiSig",
"controller": "did:<iin_name>:<network_name>",
"multisigKeys": multisig_keys,
"updatePolicy": {
"id": "did:<iin_name>:<network_name>#updatepolicy",
"controller": "did:<iin_name>:<network_name>",
"type": "VerifiableCondition2021",
"conditionAnd": [
{
"id": "did:<iin_name>:<network_name>#updatepolicy-1",
"controller": "did:<iin_name>:<network_name>",
"type": "VerifiableCondition2021",
"conditionOr": condition_or
},
"did:<iin_name>:<network_member_1>#key1"
]
}
},
{
"id": "did:<iin_name>:<network_name>#fabriccerts",
"type": "DataplaneCredentials",
"controller": "did:<iin_name>:<network_name>",
"FabricCredentials": {
"did:<iin_name>:<network_member_1>": "Certificate3_Hash",
"did:<iin_name>:<network_member_2>": "Certificate2_Hash",
"did:<iin_name>:<network_member_3>": "Certificate3_Hash"
}
}
],
"authentication": [
"did:<iin_name>:<network_name>#multisig"
],
"relayEndpoints": [
{
"hostname": "10.0.0.8",
"port": "8888"
},
{
"hostname": "10.0.0.9",
"port": "8888"
}
]
},
"signatures": signature
}
sd_did_json_string = json.dumps(sd_did_json, indent=4)
create_network_did_request = UpdateNetworkDIDRequest(sd_did_json_string, self.state)

self.did_dict[create_network_did_request.did.id] = create_network_did_request.did_str
key = create_network_did_request.did.id
val = self.did_dict[create_network_did_request.did.id]
print("Setting state:", key, val)
self.state.set(key.encode(), val)
return val
import libnacl.encode

0 comments on commit 0e24c58

Please sign in to comment.