tap-wasm 0.6.0

WebAssembly bindings for the Transaction Authorization Protocol
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479

use crate::util::js_to_tap_message;
use js_sys::{Array, Object, Promise, Reflect};
use std::sync::Arc;
use tap_agent::agent::TapAgent;
use tap_agent::{
    did::DIDGenerationOptions,
    message::SecurityMode,
    message_packing::{PackOptions, UnpackOptions},
    AgentConfig, AgentKeyManager, AgentKeyManagerBuilder, KeyType, Packable, Unpackable,
};

// Extension trait for TapAgent in WASM context
trait WasmTapAgentExt {
    // Get the key manager for this agent
    fn agent_key_manager(&self) -> &Arc<AgentKeyManager>;
}

impl WasmTapAgentExt for TapAgent {
    fn agent_key_manager(&self) -> &Arc<AgentKeyManager> {
        // Use the public key_manager() method
        self.key_manager()
    }
}
use tap_msg::didcomm::PlainMessage;
use wasm_bindgen::prelude::*;
use wasm_bindgen_futures::future_to_promise;
use web_sys::console;

/// TAP Agent implementation for WASM bindings
#[wasm_bindgen]
#[derive(Clone)]
pub struct WasmTapAgent {
    /// The underlying TapAgent
    agent: TapAgent,
    /// Nickname for the agent
    nickname: Option<String>,
    /// Debug mode flag
    debug: bool,
    /// Store the private key directly for export (temporary fix)
    private_key_hex: Option<String>,
}

#[wasm_bindgen]
impl WasmTapAgent {
    /// Creates a new agent from an existing private key
    #[wasm_bindgen(js_name = fromPrivateKey)]
    pub async fn from_private_key(
        private_key_hex: String,
        key_type_str: String,
    ) -> Result<WasmTapAgent, JsValue> {
        // Panic hook is set up in lib.rs start() function

        #[cfg(any(
            feature = "crypto-ed25519",
            feature = "crypto-p256",
            feature = "crypto-secp256k1"
        ))]
        {
            // Convert hex string to bytes
            let private_key_bytes = hex::decode(&private_key_hex)
                .map_err(|e| JsValue::from_str(&format!("Invalid hex private key: {}", e)))?;

            // Convert key type string to KeyType enum
            let key_type = match key_type_str.as_str() {
                #[cfg(feature = "crypto-ed25519")]
                "Ed25519" => KeyType::Ed25519,
                #[cfg(feature = "crypto-p256")]
                "P256" => KeyType::P256,
                #[cfg(feature = "crypto-secp256k1")]
                "Secp256k1" => KeyType::Secp256k1,
                _ => {
                    return Err(JsValue::from_str(&format!(
                        "Invalid or disabled key type: {}",
                        key_type_str
                    )))
                }
            };

            // Create TapAgent from private key
            let (agent, did) = TapAgent::from_private_key(&private_key_bytes, key_type, false)
                .await
                .map_err(|e| {
                    JsValue::from_str(&format!("Failed to create agent from private key: {}", e))
                })?;

            if agent.config.debug {
                console::log_1(&JsValue::from_str(&format!(
                    "Created WASM TAP Agent from private key with DID: {}",
                    did
                )));
            }

            Ok(WasmTapAgent {
                agent,
                nickname: None,
                debug: false,
                private_key_hex: Some(private_key_hex.clone()),
            })
        }

        #[cfg(not(any(
            feature = "crypto-ed25519",
            feature = "crypto-p256",
            feature = "crypto-secp256k1"
        )))]
        {
            Err(JsValue::from_str("No cryptographic features enabled"))
        }
    }

    /// Creates a new agent with the specified configuration
    #[wasm_bindgen(constructor)]
    pub fn new(config: JsValue) -> std::result::Result<WasmTapAgent, JsValue> {
        // Panic hook is set up in lib.rs start() function

        let nickname =
            if let Ok(nickname_prop) = Reflect::get(&config, &JsValue::from_str("nickname")) {
                nickname_prop.as_string()
            } else {
                None
            };

        let debug = if let Ok(debug_prop) = Reflect::get(&config, &JsValue::from_str("debug")) {
            debug_prop.is_truthy()
        } else {
            false
        };

        // Get the DID from config
        let did_string = if let Ok(did_prop) = Reflect::get(&config, &JsValue::from_str("did")) {
            did_prop.as_string()
        } else {
            None
        };

        // Create a key manager
        let key_manager_builder = AgentKeyManagerBuilder::new();
        let key_manager = match key_manager_builder.build() {
            Ok(km) => km,
            Err(e) => {
                return Err(JsValue::from_str(&format!(
                    "Failed to build key manager: {}",
                    e
                )))
            }
        };

        let agent = if let Some(did) = did_string {
            // Create a config with the provided DID
            let agent_config = AgentConfig::new(did).with_debug(debug);

            // Create the agent with the provided DID
            TapAgent::new(agent_config, Arc::new(key_manager))
        } else {
            // Generate a new key and DID for WASM
            let options = DIDGenerationOptions {
                key_type: KeyType::Ed25519,
            };
            let generated_key = match key_manager.generate_key_without_save(options) {
                Ok(key) => key,
                Err(e) => return Err(JsValue::from_str(&format!("Failed to generate key: {}", e))),
            };

            // Add the key to the key manager
            if let Err(e) = key_manager.add_key_without_save(&generated_key) {
                return Err(JsValue::from_str(&format!("Failed to add key: {}", e)));
            }

            let agent_config = AgentConfig::new(generated_key.did.clone()).with_debug(debug);
            TapAgent::new(agent_config, Arc::new(key_manager))
        };

        if debug {
            console::log_1(&JsValue::from_str(&format!(
                "Created WASM TAP Agent with DID: {}",
                agent.config.agent_did
            )));
        }

        Ok(WasmTapAgent {
            agent,
            nickname,
            debug,
            private_key_hex: None,
        })
    }

    /// Gets the agent's DID
    pub fn get_did(&self) -> String {
        self.agent.config.agent_did.clone()
    }

    /// Gets the agent's nickname
    pub fn nickname(&self) -> Option<String> {
        self.nickname.clone()
    }

    /// Export the agent's private key as a hex string
    #[wasm_bindgen(js_name = exportPrivateKey)]
    pub fn export_private_key(&self) -> Result<String, JsValue> {
        // If we have a stored private key (from from_private_key method), use it directly
        if let Some(stored_key) = &self.private_key_hex {
            return Ok(stored_key.clone());
        }

        // Use get_private_key() which checks both generated_keys and secrets
        let key_manager = self.agent.agent_key_manager();
        let did = &self.agent.config.agent_did;

        let (private_key_bytes, _key_type) = key_manager
            .get_private_key(did)
            .map_err(|e| JsValue::from_str(&format!("Failed to get key for DID {}: {}", did, e)))?;

        Ok(hex::encode(&private_key_bytes))
    }

    /// Export the agent's public key as a hex string
    #[wasm_bindgen(js_name = exportPublicKey)]
    pub fn export_public_key(&self) -> Result<String, JsValue> {
        // Get the key manager from the agent
        let key_manager = self.agent.agent_key_manager();

        // Get the agent's DID
        let did = &self.agent.config.agent_did;

        // Get the generated key from the key manager
        let generated_key = key_manager
            .get_generated_key(did)
            .map_err(|e| JsValue::from_str(&format!("Failed to get key for DID {}: {}", did, e)))?;

        // Convert public key bytes to hex string
        let hex_public_key = hex::encode(&generated_key.public_key);

        Ok(hex_public_key)
    }

    /// Pack a message using this agent's keys for transmission
    #[wasm_bindgen(js_name = packMessage)]
    pub fn pack_message(&self, message_js: JsValue) -> Promise {
        let agent = self.agent.clone();
        let debug = self.debug;

        future_to_promise(async move {
            // Convert JS message to a TapMessageBody
            let tap_message = match js_to_tap_message(&message_js) {
                Ok(msg) => msg,
                Err(e) => {
                    return Err(JsValue::from_str(&format!(
                        "Failed to convert JS message: {}",
                        e
                    )))
                }
            };

            // Create pack options
            let security_mode = SecurityMode::Signed; // Default to signed

            // Get the actual key ID from the key manager instead of hardcoding #keys-1
            let sender_kid = {
                let key_manager = agent.agent_key_manager();
                if let Ok(key) = key_manager.get_generated_key(&agent.config.agent_did) {
                    // Use the first verification method ID from the DID document
                    if let Some(vm) = key.did_doc.verification_method.first() {
                        Some(vm.id.clone())
                    } else {
                        // Fallback to proper DID:key format
                        if agent.config.agent_did.starts_with("did:key:") {
                            let key_part = &agent.config.agent_did[8..]; // Skip "did:key:"
                            Some(format!("{}#{}", agent.config.agent_did, key_part))
                        } else {
                            Some(format!("{}#keys-1", agent.config.agent_did))
                        }
                    }
                } else {
                    // Fallback to proper DID:key format
                    if agent.config.agent_did.starts_with("did:key:") {
                        let key_part = &agent.config.agent_did[8..]; // Skip "did:key:"
                        Some(format!("{}#{}", agent.config.agent_did, key_part))
                    } else {
                        Some(format!("{}#keys-1", agent.config.agent_did))
                    }
                }
            };
            let recipient_kid = None; // Can be set from message if needed

            let pack_options = PackOptions {
                security_mode,
                sender_kid,
                recipient_kid,
            };

            // Pack the message
            let key_manager = agent.agent_key_manager();

            // Debug log the message we're about to pack
            if debug {
                console::log_1(&JsValue::from_str(&format!(
                    "Packing message: id={}, type={}, from={}, to={:?}",
                    tap_message.id, tap_message.type_, tap_message.from, tap_message.to
                )));
            }

            let packed = match tap_message.pack(&**key_manager, pack_options).await {
                Ok(packed_msg) => {
                    if debug {
                        console::log_1(&JsValue::from_str(&format!(
                            "Packed message length: {}, preview: {}...",
                            packed_msg.len(),
                            &packed_msg.chars().take(50).collect::<String>()
                        )));
                    }
                    packed_msg
                }
                Err(e) => {
                    console::error_1(&JsValue::from_str(&format!("Pack error: {:?}", e)));
                    return Err(JsValue::from_str(&format!("Failed to pack message: {}", e)));
                }
            };

            if debug {
                console::log_1(&JsValue::from_str(&format!(
                    "✅ Message packed successfully for sender {}",
                    agent.config.agent_did
                )));
            }

            // Create a JS object to return with the packed message
            let result = Object::new();
            Reflect::set(
                &result,
                &JsValue::from_str("message"),
                &JsValue::from_str(&packed),
            )?;

            // Add metadata
            let metadata = Object::new();
            Reflect::set(
                &metadata,
                &JsValue::from_str("type"),
                &JsValue::from_str("signed"),
            )?;
            Reflect::set(
                &metadata,
                &JsValue::from_str("sender"),
                &JsValue::from_str(&agent.config.agent_did),
            )?;

            Reflect::set(&result, &JsValue::from_str("metadata"), &metadata)?;

            Ok(result.into())
        })
    }

    /// Unpack a message received by this agent
    #[wasm_bindgen(js_name = unpackMessage)]
    pub fn unpack_message(&self, packed_message: &str, expected_type: Option<String>) -> Promise {
        let agent = self.agent.clone();
        let debug = self.debug;
        let packed_message = packed_message.to_string(); // Clone the string to avoid lifetime issues

        future_to_promise(async move {
            // Create unpack options
            // For signed messages, we don't expect a specific recipient
            // For encrypted messages, we expect to be one of the recipients
            let unpack_options = UnpackOptions {
                expected_security_mode: SecurityMode::Any,
                expected_recipient_kid: None, // Don't require specific recipient for signed messages
                require_signature: false,
            };

            // Unpack the message
            let key_manager = agent.agent_key_manager();
            let plain_message: PlainMessage =
                match String::unpack(&packed_message, &**key_manager, unpack_options).await {
                    Ok(msg) => msg,
                    Err(e) => {
                        return Err(JsValue::from_str(&format!(
                            "Failed to unpack message: {}",
                            e
                        )))
                    }
                };

            if debug {
                console::log_1(&JsValue::from_str(&format!(
                    "✅ Message unpacked successfully for recipient {}",
                    agent.config.agent_did
                )));
            }

            // If an expected type was provided, validate it
            if let Some(expected) = expected_type {
                if plain_message.type_ != expected {
                    return Err(JsValue::from_str(&format!(
                        "Expected message type {} but got {}",
                        expected, plain_message.type_
                    )));
                }
            }

            // Convert the unpacked message to a JS object
            let result = Object::new();

            // Add message ID
            Reflect::set(
                &result,
                &JsValue::from_str("id"),
                &JsValue::from_str(&plain_message.id),
            )?;

            // Add message type
            Reflect::set(
                &result,
                &JsValue::from_str("type"),
                &JsValue::from_str(&plain_message.type_),
            )?;

            // Add from and to
            Reflect::set(
                &result,
                &JsValue::from_str("from"),
                &JsValue::from_str(&plain_message.from),
            )?;

            let to_array = Array::new();
            for to_did in &plain_message.to {
                to_array.push(&JsValue::from_str(to_did));
            }
            Reflect::set(&result, &JsValue::from_str("to"), &to_array)?;

            // Add body as a JS object
            let body_str = serde_json::to_string(&plain_message.body)
                .map_err(|e| JsValue::from_str(&format!("Failed to serialize body: {}", e)))?;

            let body_js = js_sys::JSON::parse(&body_str)
                .map_err(|e| JsValue::from_str(&format!("Failed to parse body: {:?}", e)))?;

            Reflect::set(&result, &JsValue::from_str("body"), &body_js)?;

            // Add created time if available
            if let Some(created) = plain_message.created_time {
                Reflect::set(
                    &result,
                    &JsValue::from_str("created"),
                    &JsValue::from_f64(created as f64),
                )?;
            }

            // Add expires time if available
            if let Some(expires) = plain_message.expires_time {
                Reflect::set(
                    &result,
                    &JsValue::from_str("expires"),
                    &JsValue::from_f64(expires as f64),
                )?;
            }

            // Add thread ID if available
            if let Some(thid) = plain_message.thid {
                Reflect::set(
                    &result,
                    &JsValue::from_str("thid"),
                    &JsValue::from_str(&thid),
                )?;
            }

            // Add parent thread ID if available
            if let Some(pthid) = plain_message.pthid {
                Reflect::set(
                    &result,
                    &JsValue::from_str("pthid"),
                    &JsValue::from_str(&pthid),
                )?;
            }

            Ok(result.into())
        })
    }
}