A commandline tool that simulates a wallet which can hold and interact with verifiable credentials
The wallet is meant as a tool for develolopers and implementors of verifiable credential services.
WIP. Currently there's still just a single command, but once that is working through the happy path, we will split it up into smaller commands.
Planned commands are:
-
vc-wallet offer- given a credential offer, resolves it if necessary, and prints a normalized offer to stdout. Amongst the information is:- Whether the offer is by value or by reference
- Whether the credential request goes via the Authorization Code Flow or is pre-authorized
- Any potential pre-shared secrets, or requirement thereof
- The credential type, types or credentials in the offer
- It returns the issuer url
-
vc-wallet issuer- given a normalized offer, or an issuer URL, requests issuer metadata and shows- possible Proof types and algorithms the issuer supports
- issuers' authorization server if set
- issuers' endpoint
- issuers' DID
- issuers' public key(s)
- issuers' supported credential types.
-
vc-wallet authorize- given a the url of the authorization server,- print the authorization URL to stdout
- start a local webserver to receive the callback
- Allow the user to choose the callback url with host, port and path that the listener will bind to
- exchange the authorization code for an access token
- print the resulting access token to stdout on success
- print the error to stderr on failure
-
vc-wallet key- generate, view and convert keys- generate a new keypair of format:
- Ed25519
- Secp256k1
- Others?
- view the public key
- convert the public key to a different format
- convert the private key to a different format
- generate a new keypair of format:
-
vc-wallet proof- generate and view proof of possession- allow the user to provide keypair and DID via commandline or stdin
- generate a JWT proof of possession for a given credential issuer
- provide credential issuer metadata as input to determine "credential-issuer", "cryptographic_binding_methods_supported" and "credential_signing_alg_values_supported".
- generate a di_vp proof of possession
- generate an attestation proof of possession
- optionally include a nonce in the proof
- display the proof contents
- print the proof JWT to stdout
- [~]
vc-wallet request- given a normalized offer and a proof of possession, requests the credential from the issuer- require a proof of possession JWT as input
- accept EITHER an access token OR a pre-shared secret (optional parameter)
- request the credential from the issuer
- print the credential to stdout
-
vc-wallet verify- given a credential, verifies the proof and the credential- show the user the proof that was sent by the issuer
- verify the proof
- verify the credential
- print the verification results to stdout
-
vc-wallet present- given a presentation request, shows the user credentials that can be offered- show the user the presentation request
- show the user the credentials that can be offered from a glob, directory or list of credentials in JSON on disk
- allow the user to pick a credential to offer
- check if the credential can be offered according to the request
- show the user the data that will be sent to the verifier
- send the proof and credential to the verifier
-
vc-wallet interactive- given only a credential offer, walk the user through the entire flow.- On each step, show the user what has been resolved, which calls were made,
- what the next step will be with a prompt to continue or abort.
- For each step, ask the user what values and choices they must provide.
- Show the user the contents of the final credential and the proof.
Other TODOs and fixes, aside from the abovementioned commands and features:
- Move
issuer_statefrom Credential Request to Authorization Request. - Make
issuer_staterequired when it is in the offer. - Have
issuer-metadatatry several URLS and pick the first one that resolves rather than only .well-known/openid-credential-issuer
- A user should be able to follow the flow and steps very clearly.
- Any options or choices should be left to the user to choose.
- Any error or possible mistake should lead to immediate termination with clear errors.
- Any error that indicates a misconfigured issuer, or other service, but that can be recovered from, should be logged and the user prompted with options to fix it.
- Third party libraries should be wrapped in a way that they adhere to these above design goals.
- Results should be printed to stdout as plain text or json.
- Commands that take an input, should take it from stdin.
- The wallet is entirely stateless. Any state needed for signing, listing, requesting must be passed into the commands as input.
- We support only the latest versions of specs.
- It is not a benchmark or test suite to check compliance with specifications.
- It does not implement all options and all features, but it may.
- Features are only implemented if someone needs them, not just because a spec says that something (optional) could be considered.
- There is no secure storage, nor any data encryption.
- We don't generate keys, certificates, JWTs, JWKs or DIDs. We assume the user has them.
- Do we want to interactivly prompt a user, or rather take commandline arguments?
- Do we want multiple small that can be piped and if so, how do we deal with the more complex flows that would chain together these flows conditionally? Maybe offer both?
- Do we want to support all possible signing algorithms, and proof types or only the most common ones?
- Do we want to support all possible flows, or only the most common ones?
- Do we want to support all possible credential types, or only the most common ones?
- Do we want to add checks or limations to High Assurance Interoperability Profile (HAIP)?
- Do we want to add checks or limitations to Decentralized Identity Interoperability Profile (DID)
- Resolve and "normalize" the offer-by-reference to a full offer.
- Determine wether we have an authorized code flow or a pre-authorized flow.
- Visualize the progress of the flow in a sequence diagram or similar in the terminal.
- Determine the issuers capabilities wrt to proof types and algorithms, fail if we can't provide the right proof, and offer cli-options to provide one proof when we support more.
- Basic key management. Create, read, convert keys.
- Deferred Credential Requests
- Encrypted Credential Responses
- Implement VCs using JSON-LD
- Implement VCs using ISO mDL
- Implement VCs using IETF SD-JWT VC
The wallet is stateless, but you might want to store some data, like keys, certificates, JWTs, JWKs or DIDs.
We currently use environment variables to store this data. In future this will be moved to commmandline arguments.
You can use the provided .env.template: Copy it to .env and fill in the values. The .env file is ignored by git, so you can safely store your secrets there.
NOTE: We do not load the .env file automatically, you have to do that yourself. Use e.g. zenv or any runner that can load .env files.
When retrieving a Verifiable Credential, the wallet will provide a Proof of Possession and key material to the issuer.
The spec allows several types and structures.
The issuer-metadata will provide cryptographic_binding_methods_supported, and credential_signing_alg_values_supported per credential configuration.
These limit the possible algorithms and key types that can be used for signing and binding.
We now limit ourselves to the following and ignore what an issuer-metadata allows:
- Only one proof, we don't support multiple proofs.
- Only the JWT proof type.
- Key generated with ed25519 algorithm.
- A did:key DID.
Ideally, we'd provide the "proof" command with the issuer metadata, instead of the "issuer" string. This Metadata would then be used to determine the supported algorithms and key types. And with that, verify that the key in the "key" argument, and proof type argument, are valid. See TODOs
Other proof types, such as di_vp and attestation proofs are to be considered. See TODOS. Other algorithms, see below, must be cross-referenced with the spec if applicable and then implemented. /// HMAC using SHA-256 /// HMAC using SHA-384 /// HMAC using SHA-512 /// ECDSA using SHA-256 /// ECDSA using SHA-384 /// RSASSA-PKCS1-v1_5 using SHA-256 /// RSASSA-PKCS1-v1_5 using SHA-384 /// RSASSA-PKCS1-v1_5 using SHA-512 /// RSASSA-PSS using SHA-256 /// RSASSA-PSS using SHA-384 /// RSASSA-PSS using SHA-512
- Install didkit
- Generate a key with didkit
didkit key generate ed25519 > keys/key.json - Convert the key to a did:key DID
didkit key to did --key-path keys/key.json > keys/did.txt - Store the keypair json and the did:key for use with the commands.
The proof command generates a JWT proof of possession that demonstrates control of a cryptographic key:
# Generate a proof using command-line arguments
cli-vc-wallet proof \
--credential-issuer "https://issuer.example.com" \
--keypair "$(cat keys/key.json)" \
--did "$(cat keys/did.txt)"
# Generate a proof with a nonce
cli-vc-wallet proof \
--credential-issuer "https://issuer.example.com" \
--keypair "$(cat keys/key.json)" \
--did "$(cat keys/did.txt)" \
--nonce "challenge-from-issuer"
# Read keypair from stdin
cat keys/key.json | cli-vc-wallet proof \
--credential-issuer "https://issuer.example.com" \
--keypair - \
--did "$(cat keys/did.txt)"The proof output can be piped to the request command:
# Generate proof and use it in credential request
PROOF=$(cli-vc-wallet proof \
--credential-issuer "https://issuer.example.com" \
--keypair "$(cat keys/key.json)" \
--did "$(cat keys/did.txt)" | jq -r '.jwt')
cli-vc-wallet request \
--configuration-id "UniversityDegreeCredential" \
--credential-issuer "https://issuer.example.com" \
--credential-endpoint "https://issuer.example.com/credential" \
--proof "$PROOF" \
--access-token "your-access-token"NOTE: The request command now requires a proof parameter. You must generate the proof separately using the proof command before making a credential request.
The wallet is stateless, so the keypair and DID must be provided as input to the proof command via command-line arguments or stdin.