Skip to content

fix: resolved sd-jwt issuance related issues #341

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
shitrerohit wants to merge 38 commits into
base: feat/oidc-main-sync
Choose a base branch
from
Open

fix: resolved sd-jwt issuance related issues #341

shitrerohit wants to merge 38 commits into from
+6,338 −19,438

Conversation

@shitrerohit
Copy link

@shitrerohit shitrerohit commented Jan 27, 2026
edited by coderabbitai bot
Loading

What?

Return key id when import x5c certificate
Attach keyId when we store the sd-jwt credential with P-256 signer option

Summary by CodeRabbit

  • Bug Fixes

    • Enhanced certificate handling for credential issuance flows to properly track and return key identifiers alongside certificate data.

  • Refactor

    • Streamlined certificate parsing logic to consolidate certificate usage and improve key identification in credential flows.

✏️ Tip: You can customize this high-level summary in your review settings.

@coderabbitai
Copy link

coderabbitai bot commented Jan 27, 2026
edited
Loading

📝 Walkthrough

Walkthrough

The changes refactor X.509 certificate import and processing logic to extract and return key identifiers alongside certificates. Type imports are optimized, and certificate/key handling flows now track and return keyId metadata from imported certificates.

Changes

Cohort / File(s) Summary
Import Statement Optimization
src/controllers/x509/crypto-util.ts		 Converted KeyObject to type-only import and added separate value import for createPrivateKey to clarify runtime vs. type-only dependencies.
Certificate and Key Identifier Handling
src/controllers/x509/x509.service.ts, src/utils/oid4vc-agent.ts		 Modified ImportX509Certificates and related flows to declare key variables outside try blocks, extract keyId during certificate import, and update return signatures to include keyId alongside issuerCertificate. Introduced conditional certificate parsing in SdJwtDc and MsoMdoc flows with single parsed certificate usage instead of mapping multiple entries. Removed legacy holder default logic.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Poem

🐰 Certificates now carry their IDs with pride,
KeyIds extracted and bundled inside,
Type imports refined, the logic runs clean,
X.509 dancing between layers unseen! 🔐

🚥 Pre-merge checks | ✅ 2 | ❌ 1
❌ Failed checks (1 warning)
Check name Status Explanation Resolution
Docstring Coverage ⚠️ Warning Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%. Write docstrings for the functions missing them to satisfy the coverage threshold.
✅ Passed checks (2 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The title directly describes the main fix being implemented: resolving sd-jwt issuance related issues by returning key IDs and attaching keyId to credentials, which aligns with changes across x509, crypto-util, and oid4vc-agent files.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing touches
  • 📝 Generate docstrings
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch fix/oid4vc-issuance-changes

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@shitrerohit shitrerohit requested review from GHkrishna and RinkalBhojani and removed request for GHkrishna January 27, 2026 07:48
@shitrerohit
Copy link
Author

shitrerohit commented Jan 27, 2026

@coderabbitai review

@coderabbitai
Copy link

coderabbitai bot commented Jan 27, 2026

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

coderabbitai[bot]
coderabbitai bot reviewed Jan 27, 2026
View reviewed changes
Copy link

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

🤖 Fix all issues with AI agents 
In `@src/utils/oid4vc-agent.ts`:
- Around line 189-197: The code indexes issuerx509certificate[0] without
checking for an empty array which can pass undefined to
X509Service.parseCertificate; update the branch where
issuerDidVerificationMethod is falsy to first verify issuerx509certificate is an
array with length > 0, otherwise throw a clear Error mentioning
credentialConfigurationId, and only then call X509Service.parseCertificate and
set parsedCertificate.publicJwk.keyId (same change should be applied to the
similar block around the other occurrence referenced at line ~219); reference
symbols: issuerx509certificate, issuerDidVerificationMethod,
X509Service.parseCertificate, parsedCertificate, credential.signerOptions.keyId,
credentialConfigurationId.

GHkrishna and others added 22 commits January 31, 2026 15:30
@GHkrishna @shitrerohit
fix: changes for types
303c9cf 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix: version update and types update
534d7ea 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix: for now we'll delete all the patch and apply as required
d36b26a 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix!: controller types (credo version updates) (#335)
d42dae4 
* fix: controller for oob, connection and QnA

Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>

* fix: update to version 0.6.1

Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>

* fix: remove unwanted var

Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>

* fix: static types

Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>

* fix: remove legacy connection invitation

Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>

---------

Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix: agent initialization
18c8ad1 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix: remove unwanted agent backup config
148aa9c 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix: oob invitation
a6d2181 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix: some package version update
78f6065 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix: some type changes
925a147 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix: comment controller for agent to start
ee543c9 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix: oidc4vc agent changes for building agent
32e1ab0 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix: auto generated file changes
b47de32 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @shitrerohit
fix: cliagent issues
6a53e4b 
Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
@GHkrishna @sujitaw @shitrerohit
fix: x509 controller (#338)
a5e1a31 
* fix: x509 controller

Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>

* fix: x509 import fix

Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>

* fix/added dynamic implementation for keyType of x509

Signed-off-by: sujitaw <sujit.sutar@ayanworks.com>

* fix/sonarqube issue

Signed-off-by: sujitaw <sujit.sutar@ayanworks.com>

* fix/sonarqube issue

Signed-off-by: sujitaw <sujit.sutar@ayanworks.com>

* fix/sonar cube issue

Signed-off-by: sujitaw <sujit.sutar@ayanworks.com>

* fix/code rabbit comments

Signed-off-by: sujitaw <sujit.sutar@ayanworks.com>

* fix/pr comments

Signed-off-by: sujitaw <sujit.sutar@ayanworks.com>

---------

Signed-off-by: Krishna Waske <krishna.waske@ayanworks.com>
Signed-off-by: sujitaw <sujit.sutar@ayanworks.com>
Co-authored-by: sujitaw <sujit.sutar@ayanworks.com>
@shitrerohit
WIP: bug fixing from issuer and verifier session
b6e3043 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix:changes on cli agent file
9573fca 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
WIP:changes in create issuer work flow
232943b 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
WIP:Resolving the issues from issue credential workflow.
0816425 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix:sd-jwt store credential
768ba54 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
WIP: store mDoc credential
bbf02c6 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix:sonar cloud issue
6c572c8 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix:completed flow changes for mdoc
21f66e0 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix:resolved code rabit related issues
57f71c5 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix:removed commented code
586ba2c 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix: resolved PR comments
5851bd6 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
feat/oidv4vc issuance and verification changes
44b1c6a 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix: resolved code rabbit ai issues
368bf50 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix: resolved code rabbit issues
20ca52e 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix: added comment for image check in verification session
fe5cfa2 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix/removed commented code
ea7f3b2 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix:resolved sd-jwt issuance related issues
34cab32 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix:Removed commented code
9e0c531 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
fix:changes in create proof request
1786598 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
feat:API for delete credential
f194bb3 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit shitrerohit force-pushed the fix/oid4vc-issuance-changes branch from 80236e4 to f194bb3 Compare January 31, 2026 12:56
@shitrerohit shitrerohit changed the base branch from fix/agent-setup-and-controllers to feat/oidc-main-sync January 31, 2026 12:59
@shitrerohit
node verison changes
34d8586 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
update node version
00b8680 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@shitrerohit
sample x5c certificate added
ca9a16b 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
GHkrishna
GHkrishna requested changes Feb 2, 2026
View reviewed changes
@shitrerohit
fix: resolved PR comments
3861761 
Signed-off-by: shitrerohit <rohit.shitre@ayanworks.com>
@sonarqubecloud
Copy link

sonarqubecloud bot commented Feb 2, 2026

Quality Gate Passed Quality Gate passed

Issues
90 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

ajile-in
ajile-in reviewed Feb 2, 2026
View reviewed changes
src/controllers/agent/AgentController.ts
throw ErrorHandlingService.handle(error)
}
}
// /**
Copy link
Member

@ajile-in ajile-in Feb 2, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@shitrerohit commented code can be removed?

@ajile-in ajile-in changed the title fix:resolved sd-jwt issuance related issues fix: resolved sd-jwt issuance related issues Feb 2, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ajile-in ajile-in ajile-in left review comments

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@GHkrishna GHkrishna GHkrishna requested changes

@RinkalBhojani RinkalBhojani Awaiting requested review from RinkalBhojani

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@shitrerohit @ajile-in @GHkrishna