Press n or j to go to the next uncovered block, b, p or k for the previous block.
| 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 | 12x 1x 1x 10x 1x 10x 10x 10x 1x 8x 12x 12x 1x 10x 9x 9x 5x 5x | import { request } from '@blockcerts/explorer-lookup';
import { decodeList } from '@digitalbazaar/vc-revocation-list';
import { VerifierError } from '../models';
import { SUB_STEPS } from '../domain/verifier/entities/verificationSteps';
import Certificate from '../certificate';
import { VERIFICATION_STATUSES } from '../constants/verificationStatuses';
import domain from '../domain';
import { CREDENTIAL_STATUS_OPTIONS } from '../domain/certificates/useCases/generateRevocationReason';
import type { BlockcertsV3, VCCredentialStatus, VerifiableCredential } from '../models/BlockcertsV3';
import type { RevocationList } from '@digitalbazaar/vc-revocation-list';
async function getRevocationCredential (statusListUrl: string): Promise<VerifiableCredential> {
const statusList = await request({
url: statusListUrl
}).catch(e => {
console.error(e);
throw new VerifierError(SUB_STEPS.checkRevokedStatus, `${domain.i18n.getText('revocation', 'noRevocationStatusList2021Found')} ${statusListUrl}.`);
});
if (statusList) {
try {
return JSON.parse(statusList);
} catch (e) {
console.error(e);
throw new VerifierError(SUB_STEPS.checkRevokedStatus, `${domain.i18n.getText('revocation', 'noRevocationStatusList2021Found')} ${statusListUrl}.`);
}
}
return statusList;
}
async function verifyRevocationCredential (revocationCredential: VerifiableCredential): Promise<void> {
const certificate = new Certificate(revocationCredential as BlockcertsV3);
await certificate.init();
const result = await certificate.verify();
if (result.status === VERIFICATION_STATUSES.FAILURE) {
throw new VerifierError(SUB_STEPS.checkRevokedStatus, domain.i18n.getText('revocation', 'revocationListAuthenticityFailure'));
}
}
export default async function checkRevocationStatusList2021 (credentialStatus: VCCredentialStatus | VCCredentialStatus[]): Promise<void> {
if (!Array.isArray(credentialStatus)) {
credentialStatus = [credentialStatus];
}
for (const status of credentialStatus) {
const credentialIndex = parseInt(status.statusListIndex, 10);
const revocationCredential: VerifiableCredential = await getRevocationCredential(status.statusListCredential);
if (!revocationCredential) {
throw new VerifierError(SUB_STEPS.checkRevokedStatus, `${domain.i18n.getText('revocation', 'noRevocationStatusList2021Found')} ${status.statusListCredential}.`);
}
await verifyRevocationCredential(revocationCredential);
const { encodedList } = revocationCredential.credentialSubject;
const decodedList: RevocationList = await decodeList({ encodedList });
if (decodedList.isRevoked(credentialIndex)) {
const statusText = status.statusPurpose === 'revocation' ? CREDENTIAL_STATUS_OPTIONS.REVOKED : CREDENTIAL_STATUS_OPTIONS.SUSPENDED;
throw new VerifierError(SUB_STEPS.checkRevokedStatus, domain.certificates.generateRevocationReason('', statusText));
}
}
}
|