pyvckit/did.py

import multicodec
import multiformats
import nacl.signing
import nacl.encoding

from jwcrypto import jwk
from nacl.signing import SigningKey
from nacl.encoding import RawEncoder


def key_to_did(public_key_bytes, type_did):
    """did-key-format := 
       did:key:MULTIBASE(base58-btc, MULTICODEC(public-key-type, raw-public-key-bytes))"""

    mc = multicodec.add_prefix('ed25519-pub', public_key_bytes)

    # Multibase encode the hashed bytes
    did = multiformats.multibase.encode(mc, 'base58btc')

    if type_did == "web":
        return f"did:web:{did}"

    return f"did:key:{did}"


def key_save(key):
  # Save the private JWK to a file
  private_jwk = key.export()
  with open('keypairs.jwk', 'w') as f:
      f.write(private_jwk)


def key_read():
  # Save the private JWK to a file
  with open('keypairs.jwk', 'r') as f:
      private_jwk = f.read()

  return jwk.JWK.from_json(private_jwk)


def get_signing_key(jwk_pr):
    private_key_material_str = jwk_pr['d']
    missing_padding = len(private_key_material_str) % 4
    if missing_padding:
      private_key_material_str += '=' * (4 - missing_padding)

    private_key_material = nacl.encoding.URLSafeBase64Encoder.decode(private_key_material_str)
    signing_key = SigningKey(private_key_material, encoder=RawEncoder)
    return signing_key


def generate_did(jwk_pr, type_did=None):
    signing_key = get_signing_key(jwk_pr)
    verify_key = signing_key.verify_key
    public_key_bytes = verify_key.encode()

    # Generate the DID
    did = key_to_did(public_key_bytes, type_did)
    return did

def generate_keys():
    # Generate an Ed25519 key pair
    key = jwk.JWK.generate(kty='OKP', crv='Ed25519')
    key['kid'] = 'Generated'
    jwk_pr = key.export_private(True)
    return jwk_pr


if __name__ == "__main__":

    key = generate_keys()
    print(generate_did(key))
init status 2024-05-24 10:38:48 +00:00			`import multicodec`
			`import multiformats`
			`import nacl.signing`
			`import nacl.encoding`

			`from jwcrypto import jwk`
			`from nacl.signing import SigningKey`
			`from nacl.encoding import RawEncoder`


			`def key_to_did(public_key_bytes, type_did):`
			`"""did-key-format :=`
			`did:key:MULTIBASE(base58-btc, MULTICODEC(public-key-type, raw-public-key-bytes))"""`

			`mc = multicodec.add_prefix('ed25519-pub', public_key_bytes)`

			`# Multibase encode the hashed bytes`
			`did = multiformats.multibase.encode(mc, 'base58btc')`

			`if type_did == "web":`
			`return f"did:web:{did}"`

			`return f"did:key:{did}"`


			`def key_save(key):`
			`# Save the private JWK to a file`
			`private_jwk = key.export()`
			`with open('keypairs.jwk', 'w') as f:`
			`f.write(private_jwk)`


			`def key_read():`
			`# Save the private JWK to a file`
			`with open('keypairs.jwk', 'r') as f:`
			`private_jwk = f.read()`

			`return jwk.JWK.from_json(private_jwk)`


			`def get_signing_key(jwk_pr):`
			`private_key_material_str = jwk_pr['d']`
			`missing_padding = len(private_key_material_str) % 4`
			`if missing_padding:`
			`private_key_material_str += '=' * (4 - missing_padding)`

			`private_key_material = nacl.encoding.URLSafeBase64Encoder.decode(private_key_material_str)`
			`signing_key = SigningKey(private_key_material, encoder=RawEncoder)`
			`return signing_key`


			`def generate_did(jwk_pr, type_did=None):`
			`signing_key = get_signing_key(jwk_pr)`
			`verify_key = signing_key.verify_key`
			`public_key_bytes = verify_key.encode()`

			`# Generate the DID`
			`did = key_to_did(public_key_bytes, type_did)`
			`return did`

			`def generate_keys():`
			`# Generate an Ed25519 key pair`
			`key = jwk.JWK.generate(kty='OKP', crv='Ed25519')`
			`key['kid'] = 'Generated'`
			`jwk_pr = key.export_private(True)`
			`return jwk_pr`


			`if __name__ == "__main__":`

			`key = generate_keys()`
			`print(generate_did(key))`