Lib.rs

Authentication | CryptographyMagic Beans | Data structures
#verifiable-credentials #credentials #verifiable #internet-computer #dfinity #icp #api-bindings

no-std ic-verifiable-credentials

Verifiable credentials issuing and verification for IC canisters

Owned by lmuntaner.

2 stable releases

new 1.0.1 Oct 30, 2024

#176 in Magic Beans

Download history 118/week @ 2024-10-24

122 downloads per month

Apache-2.0

110KB
2K SLoC

ic-verifiable-credentials

About

Verifiable credentials issuing and verification for IC canisters.

Issuers can use this library to issue credentials and verify the id alias credential received from the identity provider.

Relying parties can use this library to verify the credentials received.

More information about Verifiable Credentials in the Internet Computer documentation.

Getting Started

Installation

Install with cargo:

cargo add ic-verifiable-credentials

Or add it to your Cargo.toml.

ic-verifiable-credentials = "1.0.0"

Usage

Main functions for issuers:

  • build_credential_jwt. Builds a verifiable credential with the given parameters and returns the credential as a JWT-string.
  • did_for_principal. Returns a DID for the given principal.
  • vc_jwt_to_jws. Constructs and returns a JWS (a signed JWT) from the given components.
  • vc_signing_input. Returns the effective bytes that will be signed when computing a canister signature for the given JWT-credential, verifiable via the specified public key.
  • vc_signing_input_hash. Computes and returns SHA-256 hash of the given signing_input.
  • get_verified_id_alias_from_jws. Verifies the given JWS-credential as an id_alias-VC and extracts the alias tuple.

Main function for relying parties:

  • validate_ii_presentation_and_claims. Validates the provided presentation vp_jwt, both cryptographically and semantically.

License

Distributed under the Apache License. See LICENSE for more information.

Dependencies

~19–30MB
~439K SLoC