This plugin can be split in two categories functionalities:
- A couple of endpoints to manage public DIDs out of aca-py currently Sovrin-specific endpoints:
- mark a DID as public
- Setup routing for a DID in multi-tenancy scenarios
- A couple of endpoints to put together DID documents backed by ACA-Py-managed keys
- an endpoint to rotate key while retaining knowledge of the public key
- an endpoint to retrieve the DID document, optionally including rotated out keys
Note that the key rotation retention use case was born out of a very specific business use case and is not really intended or recommended for general use. The endpoint to retrieve a did document is still usable without this feature.
First-time initialization of the python environment:
poetry install
pre-commit installYou're all set !
To run aca-py with the plugin, include it in your config:
plugin:
- didmanagementand run aca-py from the poetry environment:
poetry env
aca-py ....curl -X 'GET' \
'http://localhost:3001/wallet/did%3Aweb%3Aadaptivespace.io/diddoc?number_of_keys=1' \
-H 'accept: application/json' \
-H 'Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ3YWxsZXRfaWQiOiI5ZWI4MzU5Yi05YzAwLTRlNWYtODg5Mi04ZmE1YTYxZWQyZjAiLCJpYXQiOjE2ODMxMTYzMzR9.qVPrNFZrtNiApNu6ByljnuKEJyQ1Yv4K4bAFTeXUYbs'results in
{
"@context": [
"https://www.w3.org/ns/did/v1"
],
"id": "did:web:adaptivespace.io",
"controller": [
"did:web:adaptivespace.io"
],
"verificationMethod": [
{
"id": "did:web:adaptivespace.io#key-1",
"type": "Ed25519VerificationKey2018",
"controller": "did:web:adaptivespace.io",
"publicKeyBase58": "BjHQU69pvfDdzM1Dh1CA19dSmK3P9nYP5SKvyQvrsAYq"
}
],
"authentication": [
"did:web:adaptivespace.io#key-1"
],
"assertionMethod": [
"did:web:adaptivespace.io#key-1"
],
"service": [
{
"id": "did:web:adaptivespace.io#service-0",
"type": "did-communication",
"serviceEndpoint": "http://localhost:3000",
"recipientKeys": [
"did:web:adaptivespace.io#key-1"
],
"routingKeys": [],
"priority": 0
}
]
}curl -X 'PUT' \
'http://localhost:3001/wallet/did%3Aweb%3Aadaptivespace.io/rotate-keys' \
-H 'accept: application/json' \
-H 'Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ3YWxsZXRfaWQiOiI5ZWI4MzU5Yi05YzAwLTRlNWYtODg5Mi04ZmE1YTYxZWQyZjAiLCJpYXQiOjE2ODMxMTYzMzR9.qVPrNFZrtNiApNu6ByljnuKEJyQ1Yv4K4bAFTeXUYbs'results in the updated DIDDoc:
{
"@context": [
"https://www.w3.org/ns/did/v1"
],
"id": "did:web:adaptivespace.io",
"controller": [
"did:web:adaptivespace.io"
],
"verificationMethod": [
{
"id": "did:web:adaptivespace.io#key-1",
"type": "Ed25519VerificationKey2018",
"controller": "did:web:adaptivespace.io",
"publicKeyBase58": "BjHQU69pvfDdzM1Dh1CA19dSmK3P9nYP5SKvyQvrsAYq"
},{
"id": "did:web:adaptivespace.io#key-2",
"type": "Ed25519VerificationKey2018",
"controller": "did:web:adaptivespace.io",
"publicKeyBase58": "D8VqpiMhCr1oXsMiBZPqYx8ND83UruHLcmJysNrSRqxX"
}
],
"authentication": [
"did:web:adaptivespace.io#key-1",
"did:web:adaptivespace.io#key-2"
],
"assertionMethod": [
"did:web:adaptivespace.io#key-1",
"did:web:adaptivespace.io#key-2"
],
"service": [
{
"id": "did:web:adaptivespace.io#service-0",
"type": "did-communication",
"serviceEndpoint": "http://localhost:3000",
"recipientKeys": [
"did:web:adaptivespace.io#key-2"
],
"routingKeys": [],
"priority": 0
}
]
}curl -X 'PUT' \
'http://localhost:3001/wallet/did%3Aweb%3Aadaptivespace.io/routing/register-route' \
-H 'accept: application/json' \
-H 'Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ3YWxsZXRfaWQiOiI5ZWI4MzU5Yi05YzAwLTRlNWYtODg5Mi04ZmE1YTYxZWQyZjAiLCJpYXQiOjE2ODMxMTYzMzR9.qVPrNFZrtNiApNu6ByljnuKEJyQ1Yv4K4bAFTeXUYbs'results in HTTP response 201 and empty body which means success.
curl -X 'PUT' \
'http://localhost:3001/wallet/did%3Aweb%3Aadaptivespace.io/mark-public' \
-H 'accept: application/json' \
-H 'Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ3YWxsZXRfaWQiOiI5ZWI4MzU5Yi05YzAwLTRlNWYtODg5Mi04ZmE1YTYxZWQyZjAiLCJpYXQiOjE2ODMxMTYzMzR9.qVPrNFZrtNiApNu6ByljnuKEJyQ1Yv4K4bAFTeXUYbs'results in:
{
"did": "did:web:adaptivespace.io",
"verkey": "BjHQU69pvfDdzM1Dh1CA19dSmK3P9nYP5SKvyQvrsAYq",
"posture": "posted",
"key_type": "ed25519",
"method": "web"
}