Expand description
Decentralized identifier messaging helpers for Typesec.
This module treats DIDs as identity, key-discovery, and routing handles.
Runtime authorization still flows through typesec_core::PolicyEngine:
a verified DID message identifies the subject, and a policy engine decides
whether to mint the typed capability required to reveal or use the payload.
Ed25519DidKeyStore is the production key store: Ed25519 signatures,
X25519 key agreement, and ChaCha20-Poly1305 payload encryption. The
deterministic, non-cryptographic DemoDidKeyStore is only compiled in
tests or behind the demo-crypto feature — never enable that feature in
production builds. Deployments with stronger requirements should implement
DidKeyStore with JOSE/DIDComm, HPKE, or an HSM/KMS.
Structs§
- A2aType
DidAdapter - A2A TypeDID content adapter.
- AcpType
DidAdapter - ACP TypeDID content adapter.
- Band
Secure Envelope Adapter - BAND secure-envelope adapter for TypeDID payloads.
- Did
- A decentralized identifier string.
- DidDocument
- Minimal DID document model used by Typesec integrations.
- DidEnvelope
- Encrypted DID message envelope.
- DidMessage
Body - Message metadata that policy engines evaluate before payload use.
- DidMessage
Gateway - Verifies DID envelopes and converts encrypted payloads into
SecureValues. - DidMessage
Reference - Stable reference to a DID message envelope.
- DidOllama
Client - Ollama client that can send verified DID prompts.
- DidReply
Binding - The prompt context a reply envelope is bound to.
- DidService
- Service endpoint metadata from a DID document.
- Ed25519
DidKey - Real key material for a local DID subject.
- Ed25519
DidKey Store - Production
DidKeyStore: Ed25519 signatures, X25519 ECDH, and ChaCha20-Poly1305 authenticated payload encryption. - Http
Type DidAdapter - Direct HTTPS TypeDID content adapter.
- Static
DidResolver - In-memory DID resolver for tests and local demos.
- Static
Type DidProfile Resolver - In-memory TypeDID profile resolver for examples and tests.
- Type
DidConversation - TypeDID conversation metadata bound into the envelope signature.
- Type
DidGateway - Verifies TypeDID envelopes and protects arbitrary agent payload bytes.
- Type
DidProfile - A negotiable TypeDID security profile.
- Type
DidWrap Request - Inputs for wrapping a payload in a TypeDID transport adapter.
- Verification
Method - A verification method from a DID document.
- Verified
DidPrompt - Verified and decrypted DID prompt.
- Verified
Type DidMessage - Verified and decrypted TypeDID agent message.
Enums§
- DidError
- DID integration errors.
- Type
DidMode - TypeDID delivery mode for an agent message.
Traits§
- DidKey
Store - Key-store and envelope crypto boundary.
- DidResolver
- DID resolver boundary.
- Secure
Envelope Adapter - Common interface for TypeDID secure-envelope transport adapters.
- Type
DidProfile Resolver - Resolves TypeDID profiles for a remote agent or boundary.