Skip to content
This repository has been archived by the owner on Jan 13, 2025. It is now read-only.

Commit

Permalink
add endpoint to delete a rp manually
Browse files Browse the repository at this point in the history
Signed-off-by: Mirko Mollik <mollik@trustcerts.de>
  • Loading branch information
Mirko Mollik committed May 1, 2024
1 parent 7ee6e5f commit 91e4070
Show file tree
Hide file tree
Showing 2 changed files with 27 additions and 7 deletions.
22 changes: 15 additions & 7 deletions apps/verifier/src/RPManager.ts
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@ import {
} from '@sphereon/did-auth-siop';
import { JWkResolver, encodeDidJWK } from './did.js';
import { readFileSync } from 'node:fs';
import { join } from 'node:path';
import { join, normalize, sep } from 'node:path';
import { VerifierRP } from './types.js';
import { SDJwtVcInstance } from '@sd-jwt/sd-jwt-vc';
import { KbVerifier, Verifier } from '@sd-jwt/types';
Expand Down Expand Up @@ -60,10 +60,12 @@ export class RPManager {
let rp = this.rp.get(id);
if (!rp) {
rp = this.buildRP(id);
// checks every minute if the rp has active sessions. If there is none, the rp is removed. We want to do this so we can update the rp with new input without losing state. This approach could be improved since we are waiting around 4 minutes for the last finished request until the entries are removed.
setInterval(async () => {
this.remove(id);
}, 1000 * 60);
if (process.env.CONFIG_RELOAD) {
// checks every minute if the rp has active sessions. If there is none, the rp is removed. We want to do this so we can update the rp with new input without losing state. This approach could be improved since we are waiting around 4 minutes for the last finished request until the entries are removed.
setInterval(async () => {
this.remove(id);
}, 1000 * 60);
}
this.rp.set(id, rp);
}
return rp;
Expand All @@ -90,9 +92,15 @@ export class RPManager {
console.log('Removed the rp');
}

// create the relying party
private buildRP(id: string) {
// create the relying party
const verifierFile = readFileSync(join('templates', `${id}.json`), 'utf-8');
// escape potential path traversal attacks
const safeId = normalize(id).split(sep).pop();
// instead of reading a file, we could pass a storage reference. Then the storage can be implemented in different ways, like using a database or a file system.
const verifierFile = readFileSync(
join('templates', `${safeId}.json`),
'utf-8'
);
if (!verifierFile) {
throw new Error(`The verifier with the id ${id} is not supported.`);
}
Expand Down
12 changes: 12 additions & 0 deletions apps/verifier/src/main.ts
Original file line number Diff line number Diff line change
Expand Up @@ -87,6 +87,18 @@ expressSupport.express.post(
}
);

// only set this when reload is activated
if (process.env.CONFIG_RELOAD) {
/**
* This will remove a rp so it can be reloaded with new values
*/
expressSupport.express.delete('/siop/:rp', async (req, res) => {
const rpId = req.params.rp;
await rpManager.remove(rpId, true);
res.send();
});
}

expressSupport.express.get('/health', async (req, res) => {
res.send('ok');
});
Expand Down

0 comments on commit 91e4070

Please sign in to comment.