co-identity 0.1.0

COKIT DID and DIDComm implementations.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108

// SPDX-License-Identifier: AGPL-3.0-only
// Copyright (C) 2026 1io BRANDGUARDIAN GmbH

use super::didcomm::context::DidCommPublicContext;
use crate::{DidCommPrivateContext, Identity};
use std::{fmt::Debug, sync::Arc};

/// Private identity representation.
pub trait PrivateIdentity: Identity {
	/// Sign data and return the signature as bytes (only signature without input data).
	fn sign(&self, data: &[u8]) -> Result<Vec<u8>, SignError>;

	/// Private DIDComm context.
	fn didcomm_private(&self) -> Option<DidCommPrivateContext>;

	fn try_didcomm_private(&self) -> Result<DidCommPrivateContext, anyhow::Error> {
		self.didcomm_private()
			.ok_or(anyhow::anyhow!("unsupported identity: no private didcomm context: {}", self.identity()))
	}

	fn boxed(self) -> PrivateIdentityBox
	where
		Self: Sized + Clone + Send + Sync + 'static,
	{
		PrivateIdentityBox::new(self)
	}
}

/// Dynamic Private Identity.
#[derive(Clone)]
pub struct PrivateIdentityBox {
	identity: Arc<dyn PrivateIdentity + Send + Sync + 'static>,
}
impl PartialEq for PrivateIdentityBox {
	fn eq(&self, other: &Self) -> bool {
		self.identity.identity() == other.identity.identity()
	}
}
impl PrivateIdentityBox {
	pub fn new<I: PrivateIdentity + Send + Sync + 'static>(identity: I) -> Self {
		Self { identity: Arc::new(identity) }
	}
}
impl Debug for PrivateIdentityBox {
	fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
		f.debug_struct("PrivateIdentity")
			.field("did", &self.identity.identity())
			.finish()
	}
}
impl Identity for PrivateIdentityBox {
	fn identity(&self) -> &str {
		self.identity.identity()
	}

	fn public_key(&self) -> Option<Vec<u8>> {
		self.identity.public_key()
	}

	fn verify(&self, signature: &[u8], data: &[u8], public_key: Option<&[u8]>) -> bool {
		self.identity.verify(signature, data, public_key)
	}

	fn didcomm_public(&self) -> Option<DidCommPublicContext> {
		self.identity.didcomm_public()
	}

	fn networks(&self) -> std::collections::BTreeSet<co_primitives::Network> {
		self.identity.networks()
	}
}
impl PrivateIdentity for PrivateIdentityBox {
	fn sign(&self, data: &[u8]) -> Result<Vec<u8>, SignError> {
		self.identity.sign(data)
	}

	fn didcomm_private(&self) -> Option<DidCommPrivateContext> {
		self.identity.didcomm_private()
	}

	fn boxed(self) -> PrivateIdentityBox
	where
		Self: Sized + Clone + Send + Sync + 'static,
	{
		self.clone()
	}
}
impl From<&PrivateIdentityBox> for String {
	fn from(value: &PrivateIdentityBox) -> Self {
		value.identity().to_string()
	}
}

#[derive(Debug, thiserror::Error)]
pub enum SignError {
	/// Unauthorized error.
	/// Ususally this means that this identity has no private key.
	#[error("Unauthorized")]
	Unauthorized,

	/// Invalid argument has been supplied.
	#[error("Invalid argument")]
	InvalidArgument(#[source] anyhow::Error),

	/// Other error
	#[error("Signature failed")]
	Other(#[source] anyhow::Error),
}