Sign upLogin

nuts-foundation/nuts-node

View on GitHub
Star
vcr/store.go

Summary

Maintainability
A
0 mins
Test Coverage
A
91%
/*
 * Nuts node
 * Copyright (C) 2021 Nuts community
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program.  If not, see <https://www.gnu.org/licenses/>.
 *
 */

package vcr

import (
    "encoding/json"
    "errors"
    "fmt"
    "github.com/nuts-foundation/go-leia/v4"
    "github.com/nuts-foundation/nuts-node/core"
    "reflect"
    "time"

    "github.com/nuts-foundation/nuts-node/vcr/types"

    "github.com/nuts-foundation/go-did/vc"
    "github.com/nuts-foundation/nuts-node/vcr/log"

    "github.com/nuts-foundation/nuts-node/vcr/credential"
)

// maxFindExecutionTime indicates how long a "find by id" type query may take
const maxFindExecutionTime = 1 * time.Second

func (c *vcr) StoreCredential(credential vc.VerifiableCredential, validAt *time.Time) error {
    // ID must be unique
    if credential.ID != nil {
        existingCredential, err := c.find(*credential.ID)
        if err == nil {
            if credentialsEqual(existingCredential, credential) {
                log.Logger().
                    WithField(core.LogFieldCredentialID, *credential.ID).
                    Info("Credential already exists")
                return nil
            }
            return fmt.Errorf("credential with same ID but different content already exists (id=%s)", credential.ID)
        } else if !errors.Is(err, types.ErrNotFound) {
            return err
        }
    }

    // verify first
    if err := c.verifier.VerifySignature(credential, validAt); err != nil {
        return err
    }

    return c.writeCredential(credential)
}

func credentialsEqual(a vc.VerifiableCredential, b vc.VerifiableCredential) bool {
    // go-leia returns pretty-printed JSON documents, so the verifiable credentials have different `raw` properties.
    // thus we need to unmarshal the verifiable credentials into maps and compare those.
    aJSON, _ := json.Marshal(a)
    bJSON, _ := json.Marshal(b)
    aMap := map[string]interface{}{}
    bMap := map[string]interface{}{}
    _ = json.Unmarshal(aJSON, &aMap)
    _ = json.Unmarshal(bJSON, &bMap)
    return reflect.DeepEqual(aMap, bMap)
}

func (c *vcr) writeCredential(subject vc.VerifiableCredential) error {
    vcType := "VerifiableCredential"
    customTypes := credential.ExtractTypes(subject)
    if len(customTypes) > 0 {
        vcType = customTypes[0]
    }

    log.Logger().
        WithField(core.LogFieldCredentialID, subject.ID).
        WithField(core.LogFieldCredentialType, vcType).
        Debug("Writing credential to store and wallet")
    log.Logger().Tracef("%+v", subject)

    _, err := c.writeCredentialToWallet(subject)
    if err != nil {
        return fmt.Errorf("unable to write credential to wallet (id=%s): %w", subject.ID, err)
    }

    doc, _ := json.Marshal(subject)
    return c.credentialCollection().Add([]leia.Document{doc})
}