chore: verify shared presentation (#629)

Co-authored-by: martines3000 <domajnko.martin@gmail.com>
blockchain-lab-um · Apr 22, 2024 · d5601e5 · d5601e5
1 parent 34fef30
commit d5601e5
Show file tree

Hide file tree

Showing 6 changed files with 51 additions and 11 deletions.
diff --git a/.changeset/eleven-eyes-hide.md b/.changeset/eleven-eyes-hide.md
@@ -0,0 +1,5 @@
+---
+"@blockchain-lab-um/dapp": patch
+---
+
+Replaced shared presentation verifying lib.
diff --git a/packages/dapp/package.json b/packages/dapp/package.json
@@ -20,6 +20,7 @@
   },
   "dependencies": {
     "@blockchain-lab-um/did-provider-key": "1.0.8",
+    "@blockchain-lab-um/extended-verification": "0.1.2",
     "@blockchain-lab-um/masca-connector": "1.3.2",
     "@blockchain-lab-um/oidc-types": "0.0.8",
     "@headlessui/react": "^1.7.18",

diff --git a/packages/dapp/src/app/api/share/presentation/route.ts b/packages/dapp/src/app/api/share/presentation/route.ts
@@ -1,8 +1,13 @@
 import jwt from 'jsonwebtoken';
 import { type NextRequest, NextResponse } from 'next/server';
+import {
+  type VerificationResult,
+  VerificationService,
+} from '@blockchain-lab-um/extended-verification';
 
-import { getAgent } from '../../veramoSetup';
 import { supabaseServiceRoleClient } from '@/utils/supabase/supabaseServiceRoleClient';
+import type { W3CVerifiablePresentation } from '@veramo/core';
+import { isError, type Result } from '@blockchain-lab-um/masca-connector';
 
 const CORS_HEADERS = {
   'Access-Control-Allow-Origin': '*',
@@ -54,20 +59,36 @@ export async function POST(request: NextRequest) {
       });
     }
 
-    const agent = await getAgent();
-    const { verified } = await agent.verifyPresentation({
-      presentation,
-    });
+    await VerificationService.init();
+    const verifiedResult: Result<VerificationResult> =
+      await VerificationService.verify(
+        presentation as W3CVerifiablePresentation
+      );
 
-    if (!verified) {
-      return new NextResponse('Presentation not valid', {
-        status: 400,
+    if (isError(verifiedResult)) {
+      return new NextResponse('Failed to verify presentation', {
+        status: 500,
         headers: {
           ...CORS_HEADERS,
         },
       });
     }
 
+    if (!verifiedResult.data.verified) {
+      return NextResponse.json(
+        {
+          message: 'Invalid presentation',
+          details: verifiedResult.data.details,
+        },
+        {
+          status: 400,
+          headers: {
+            ...CORS_HEADERS,
+          },
+        }
+      );
+    }
+
     const supabase = supabaseServiceRoleClient();
 
     const { data, error } = await supabase

diff --git a/packages/dapp/src/components/ShareCredentialModal/index.tsx b/packages/dapp/src/components/ShareCredentialModal/index.tsx
@@ -155,8 +155,13 @@ export const ShareCredentialModal = () => {
     try {
       const result = await shareResponse.json();
 
-      if (!result.presentationId)
-        throw new Error('Failed to share presentation');
+      if (!result.presentationId) {
+        throw new Error(
+          result.message === 'Invalid presentation'
+            ? 'Invalid presentation'
+            : 'Failed to share presentation'
+        );
+      }
 
       setShareLink(
         `${window.location.origin}/app/share-presentation/${result.presentationId}`
@@ -165,7 +170,10 @@ export const ShareCredentialModal = () => {
       setTimeout(() => {
         useToastStore.setState({
           open: true,
-          title: t('share-presentation-error'),
+          title:
+            (e as Error).message === 'Invalid presentation'
+              ? t('share-error-invalid')
+              : t('share-presentation-error'),
           type: 'error',
           loading: false,
           link: null,
@@ -183,6 +191,7 @@ export const ShareCredentialModal = () => {
       backdrop="blur"
       size="4xl"
       isOpen={isOpen}
+      isDismissable={false}
       onClose={() => setIsOpen(false)}
       hideCloseButton={true}
       placement="center"

diff --git a/packages/dapp/src/messages/en.json b/packages/dapp/src/messages/en.json
@@ -604,6 +604,7 @@
     "placeholder": "Enter a title for the presentation. This can't be changed later.",
     "please-sign-in": "Please sign in to share your credentials",
     "selected": "Selected Credentials",
+    "share-error-invalid": "One or more credentials in the presentation are invalid.",
     "share-presentation-error": "Failed to share presentation",
     "share-presentation-success": "Successfully shared presentation",
     "share-link-description": "Share your credential:",

diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml