vck-openid/at.asitplus.wallet.lib.oidc/OidcSiopWallet

OidcSiopWallet

class OidcSiopWallet(holder: Holder, agentPublicKey: CryptoPublicKey, jwsService: JwsService, clock: Clock = Clock.System, clientId: String = "https://wallet.a-sit.at/", remoteResourceRetriever: RemoteResourceRetrieverFunction, requestObjectJwsVerifier: RequestObjectJwsVerifier, scopePresentationDefinitionRetriever: ScopePresentationDefinitionRetriever)(source)

Combines Verifiable Presentations with OpenId Connect. Implements OIDC for VP (2023-04-21) as well as SIOP V2 (2023-01-01).

The holder creates the Authentication Response, see OidcSiopVerifier for the verifier.

Constructors

Link copied to clipboard
constructor(keyMaterial: KeyMaterial = EphemeralKeyWithoutCert(), holder: Holder = HolderAgent(keyMaterial), jwsService: JwsService = DefaultJwsService(DefaultCryptoService(keyMaterial)), clock: Clock = Clock.System, clientId: String = "https://wallet.a-sit.at/", remoteResourceRetriever: RemoteResourceRetrieverFunction = { null }, requestObjectJwsVerifier: RequestObjectJwsVerifier = RequestObjectJwsVerifier { _, _ -> true }, scopePresentationDefinitionRetriever: ScopePresentationDefinitionRetriever = { null })
constructor(holder: Holder, agentPublicKey: CryptoPublicKey, jwsService: JwsService, clock: Clock = Clock.System, clientId: String = "https://wallet.a-sit.at/", remoteResourceRetriever: RemoteResourceRetrieverFunction, requestObjectJwsVerifier: RequestObjectJwsVerifier, scopePresentationDefinitionRetriever: ScopePresentationDefinitionRetriever)

Properties

Link copied to clipboard

Functions

Link copied to clipboard
suspend fun createAuthnResponse(request: AuthenticationRequestParametersFrom): KmmResult<AuthenticationResponseResult>

Pass in the deserialized AuthenticationRequestParameters, which were either encoded as query params, or JSON serialized as a JWT Request Object.

suspend fun createAuthnResponse(input: String): KmmResult<AuthenticationResponseResult>

Pass in the URL sent by the Verifier (containing the AuthenticationRequestParameters as query parameters), to create AuthenticationResponseResult that can be sent back to the Verifier, see AuthenticationResponseResult.

Link copied to clipboard
suspend fun createAuthnResponseParams(params: AuthenticationRequestParametersFrom): KmmResult<AuthenticationResponse>

Creates the authentication response from the RP's params

Link copied to clipboard
suspend fun finalizeAuthorizationResponse(request: AuthenticationRequestParametersFrom, preparationState: AuthorizationResponsePreparationState, inputDescriptorSubmissions: Map<String, CredentialSubmission>? = null): KmmResult<AuthenticationResponseResult>

Finalize the authorization response

Link copied to clipboard
suspend fun finalizeAuthorizationResponseParameters(request: AuthenticationRequestParametersFrom, preparationState: AuthorizationResponsePreparationState, inputDescriptorSubmissions: Map<String, CredentialSubmission>? = null): KmmResult<AuthenticationResponse>

Finalize the authorization response parameters

Link copied to clipboard
suspend fun parseAuthenticationRequestParameters(input: String): KmmResult<AuthenticationRequestParametersFrom>

Pass in the URL sent by the Verifier (containing the AuthenticationRequestParameters as query parameters), to create AuthenticationResponseParameters that can be sent back to the Verifier, see AuthenticationResponseResult.

Link copied to clipboard
suspend fun startAuthorizationResponsePreparation(params: AuthenticationRequestParametersFrom): KmmResult<AuthorizationResponsePreparationState>

Starts the authorization response building process from the RP's authentication request in params

suspend fun startAuthorizationResponsePreparation(input: String): KmmResult<AuthorizationResponsePreparationState>

Starts the authorization response building process from the RP's authentication request in input