cheqd
diff --git a/‎src/app.ts‎
Lines changed: 2 additions & 1 deletion b/‎src/app.ts‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎src/controllers/api/did.ts‎
Lines changed: 195 additions & 98 deletions b/‎src/controllers/api/did.ts‎
Lines changed: 195 additions & 98 deletions
diff --git a/‎src/controllers/validator/service-create-request.ts‎
Lines changed: 2 additions & 2 deletions b/‎src/controllers/validator/service-create-request.ts‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/controllers/validator/service.ts‎
Lines changed: 1 addition & 1 deletion b/‎src/controllers/validator/service.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/middleware/auth/routes/api/did-auth.ts‎
Lines changed: 2 additions & 0 deletions b/‎src/middleware/auth/routes/api/did-auth.ts‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎src/services/api/identifier.ts‎
Lines changed: 2 additions & 2 deletions b/‎src/services/api/identifier.ts‎
Lines changed: 2 additions & 2 deletions
@@ -194,9 +194,10 @@ class App {
 		app.post('/did/create', DIDController.createDIDValidator, new DIDController().createDid);
 		app.post('/did/update', DIDController.updateDIDValidator, new DIDController().updateDid);
 		app.post('/did/import', DIDController.importDIDValidator, new DIDController().importDid);
-		app.post('/did/deactivate/:did', DIDController.deactivateDIDValidator, new DIDController().deactivateDid);
+		app.post('/did/deactivate/:did', DIDController.didPathValidator, new DIDController().deactivateDid);
 		app.get('/did/list', DIDController.listDIDValidator, new DIDController().getDids);
 		app.get('/did/search/:did', new DIDController().resolveDidUrl);
+		app.post('/did/export', DIDController.didPathValidator, new DIDController().exportDid);
 
 		// Trust Registry API
 		app.post(
 
@@ -4,7 +4,6 @@ import {
 	CheqdNetwork,
 	DIDDocument,
 	MethodSpecificIdAlgo,
-	Service,
 	VerificationMethods,
 	createDidVerificationMethod,
 } from '@cheqd/sdk';
@@ -32,6 +31,7 @@ import type {
 	GetDIDRequestParams,
 	ResolveDIDRequestParams,
 	DeactivateDIDRequestBody,
+	ExportDidResponse,
 } from '../../types/did.js';
 import { check, param } from '../validator/index.js';
 import type { IIdentifier, IKey, RequireOnly } from '@veramo/core';
@@ -124,7 +124,7 @@ export class DIDController {
 		check('publicKeyHexs').optional().isArray().withMessage('publicKeyHexs should be an array of strings').bail(),
 	];
 
-	public static deactivateDIDValidator = [param('did').exists().isString().isDID().bail()];
+	public static didPathValidator = [param('did').exists().isString().isDID().bail()];
 
 	public static importDIDValidator = [
 		check('did').isDID().bail(),
@@ -211,112 +211,109 @@ export class DIDController {
 		// Get strategy e.g. postgres or local
 		const identityServiceStrategySetup = new IdentityServiceStrategySetup(response.locals.customer.customerId);
 		try {
-			if (request.body.didDocument) {
-				didDocument = request.body.didDocument;
-				if (verificationMethodType) {
-					const publicKeyHex =
-						key ||
-						(
-							await identityServiceStrategySetup.agent.createKey(
-								SupportedKeyTypes.Ed25519,
-								response.locals.customer
-							)
-						).publicKeyHex;
-
-					const pkBase64 = toString(fromString(publicKeyHex, 'hex'), 'base64');
-					didDocument.verificationMethod = createDidVerificationMethod(
-						[verificationMethodType],
-						[
-							{
-								methodSpecificId: bases['base58btc'].encode(base64ToBytes(pkBase64)),
-								didUrl: didDocument.id,
-								keyId: `${didDocument.id}#key-1`,
-								publicKey: pkBase64,
-							},
-						]
-					);
-				} else {
-					return response.status(StatusCodes.BAD_REQUEST).json({
-						error: 'Provide options section to create a DID',
-					} satisfies UnsuccessfulCreateDidResponseBody);
-				}
-			} else if (verificationMethodType) {
-				const publicKeyHex =
-					key ||
-					(
-						await identityServiceStrategySetup.agent.createKey(
-							SupportedKeyTypes.Ed25519,
-							response.locals.customer
-						)
-					).publicKeyHex;
-				didDocument = generateDidDoc({
-					verificationMethod: verificationMethodType,
-					verificationMethodId: 'key-1',
-					methodSpecificIdAlgo: identifierFormatType || MethodSpecificIdAlgo.Uuid,
-					network,
-					publicKey: publicKeyHex,
-				});
-
-				if (Array.isArray(request.body['@context'])) {
-					didDocument['@context'] = request.body['@context'];
-				}
-				if (typeof request.body['@context'] === 'string') {
-					didDocument['@context'] = [request.body['@context']];
-				}
-
-				if (service) {
-					if (Array.isArray(service)) {
-						try {
-							const services = service as Service[];
-							didDocument.service = [];
-							for (const service of services) {
-								didDocument.service.push({
-									id: `${didDocument.id}#${service.idFragment}`,
-									type: service.type,
-									serviceEndpoint: service.serviceEndpoint,
-									recipientKeys: service.recipientKeys,
-									routingKeys: service.routingKeys,
-									priority: service.priority,
-									accept: service.accept,
-								});
-							}
-						} catch (e) {
-							return response.status(StatusCodes.BAD_REQUEST).json({
-								error: 'Provide the correct service section to create a DID',
-							} satisfies UnsuccessfulCreateDidResponseBody);
-						}
-					} else {
-						didDocument.service = [
-							{
-								id: `${didDocument.id}#${service.idFragment}`,
+			let did: IIdentifier;
+			switch (providerId) {
+				case 'dock':
+					did = await new DockIdentityService().createDid(network, { id: '' }, response.locals.customer);
+					const { didDocument: didDoc } = await identityServiceStrategySetup.agent.resolveDid(did.did);
+					console.log(didDoc);
+					if (didDoc && service) {
+						const services = Array.isArray(service) ? service : [service];
+						didDoc.service = didDoc.service || [];
+						// handle overriding
+						const filteredServices = services.filter((s) =>
+							didDoc.service?.every((ds) => s.idFragment != ds.id)
+						);
+						for (const service of filteredServices) {
+							didDoc.service.push({
+								id: `${didDoc.id}#${service.idFragment}`,
 								type: service.type,
 								serviceEndpoint: service.serviceEndpoint,
 								recipientKeys: service.recipientKeys,
 								routingKeys: service.routingKeys,
 								priority: service.priority,
 								accept: service.accept,
-							},
-						];
+							});
+						}
+						did = await identityServiceStrategySetup.agent.updateDid(didDoc, response.locals.customer);
 					}
-				}
-			} else {
-				return response.status(StatusCodes.BAD_REQUEST).json({
-					error: 'Provide a DID Document or the VerificationMethodType to create a DID',
-				} satisfies UnsuccessfulCreateDidResponseBody);
-			}
-
-			let did: IIdentifier;
-			switch (providerId) {
-				case 'dock':
-					did = await new DockIdentityService().createDid(
-						network || didDocument.id.split(':')[2],
-						didDocument,
-						response.locals.customer
-					);
 					break;
 				case 'studio':
 				case undefined:
-					did = await new IdentityServiceStrategySetup(response.locals.customer.customerId).agent.createDid(
+					if (request.body.didDocument) {
+						didDocument = request.body.didDocument;
+						if (verificationMethodType) {
+							const publicKeyHex =
+								key ||
+								(
+									await identityServiceStrategySetup.agent.createKey(
+										SupportedKeyTypes.Ed25519,
+										response.locals.customer
+									)
+								).publicKeyHex;
+
+							const pkBase64 = toString(fromString(publicKeyHex, 'hex'), 'base64');
+							didDocument.verificationMethod = createDidVerificationMethod(
+								[verificationMethodType],
+								[
+									{
+										methodSpecificId: bases['base58btc'].encode(base64ToBytes(pkBase64)),
+										didUrl: didDocument.id,
+										keyId: `${didDocument.id}#key-1`,
+										publicKey: pkBase64,
+									},
+								]
+							);
+						} else {
+							return response.status(StatusCodes.BAD_REQUEST).json({
+								error: 'Provide options section to create a DID',
+							} satisfies UnsuccessfulCreateDidResponseBody);
+						}
+					} else if (verificationMethodType) {
+						const publicKeyHex =
+							key ||
+							(
+								await identityServiceStrategySetup.agent.createKey(
+									SupportedKeyTypes.Ed25519,
+									response.locals.customer
+								)
+							).publicKeyHex;
+
+						didDocument = generateDidDoc({
+							verificationMethod: verificationMethodType,
+							verificationMethodId: 'key-1',
+							methodSpecificIdAlgo: identifierFormatType || MethodSpecificIdAlgo.Uuid,
+							network,
+							publicKey: publicKeyHex,
+						});
+
+						// populate default assertionMethod to support JSON-LD
+						didDocument.assertionMethod = didDocument.authentication;
+
+						if (request.body['@context']) {
+							didDocument['@context'] = Array.isArray(request.body['@context'])
+								? request.body['@context']
+								: [request.body['@context']];
+						}
+
+						if (service) {
+							const services = Array.isArray(service) ? service : [service];
+							didDocument.service = services.map((s) => ({
+								id: `${didDocument.id}#${s.idFragment}`,
+								type: s.type,
+								serviceEndpoint: s.serviceEndpoint,
+								recipientKeys: s.recipientKeys,
+								routingKeys: s.routingKeys,
+								priority: s.priority,
+								accept: s.accept,
+							}));
+						}
+					} else {
+						return response.status(StatusCodes.BAD_REQUEST).json({
+							error: 'Provide a DID Document or the VerificationMethodType to create a DID',
+						} satisfies UnsuccessfulCreateDidResponseBody);
+					}
+					did = await identityServiceStrategySetup.agent.createDid(
 						network || didDocument.id.split(':')[2],
 						didDocument,
 						response.locals.customer
@@ -861,4 +858,104 @@ export class DIDController {
 			} satisfies UnsuccessfulResolveDidResponseBody);
 		}
 	}
+
+	/**
+	 * @openapi
+	 *
+	 * /did/export/{did}:
+	 *   post:
+	 *     tags: [ Decentralized Identifiers (DIDs) ]
+	 *     summary: Export a DID Document.
+	 *     description: This endpoint exports a decentralized identifier associated with the user's account with the custodied keys.
+	 *     parameters:
+	 *       - in: path
+	 *         name: did
+	 *         description: DID identifier to resolve.
+	 *         schema:
+	 *           type: string
+	 *         required: true
+	 *     requestBody:
+	 *       content:
+	 *         application/x-www-form-urlencoded:
+	 *           schema:
+	 *             type: object
+	 *             properties:
+	 *               password:
+	 *                 type: string
+	 *                 required: false
+	 *               providerId:
+	 *                 type: string
+	 *                 required: false
+	 *         application/json:
+	 *           schema:
+	 *             type: object
+	 *             properties:
+	 *               password:
+	 *                 type: string
+	 *                 required: false
+	 *               providerId:
+	 *                 type: string
+	 *                 required: false
+	 *     responses:
+	 *       200:
+	 *         description: The request was successful.
+	 *         content:
+	 *           application/json:
+	 *             schema:
+	 *               $ref: '#/components/schemas/DidResult'
+	 *       400:
+	 *         description: A problem with the input fields has occurred. Additional state information plus metadata may be available in the response body.
+	 *         content:
+	 *           application/json:
+	 *             schema:
+	 *               $ref: '#/components/schemas/InvalidRequest'
+	 *             example:
+	 *               error: InvalidRequest
+	 *       401:
+	 *         $ref: '#/components/schemas/UnauthorizedError'
+	 *       500:
+	 *         description: An internal error has occurred. Additional state information plus metadata may be available in the response body.
+	 *         content:
+	 *           application/json:
+	 *             schema:
+	 *               $ref: '#/components/schemas/InvalidRequest'
+	 *             example:
+	 *               error: Internal Error
+	 */
+	@validate
+	public async exportDid(request: Request, response: Response) {
+		try {
+			// Get the params from body
+			const { did } = request.params as ResolveDIDRequestParams;
+
+			const { providerId, password } = request.body;
+			let result: ExportDidResponse;
+			switch (providerId) {
+				case 'dock':
+					result = await new DockIdentityService().exportDid(did, password || '', response.locals.customer);
+					break;
+				case 'studio':
+				default:
+					result = await new IdentityServiceStrategySetup(
+						response.locals.customer.customerId
+					).agent.exportDid(did, '', response.locals.customer);
+			}
+			// Track the operation
+			eventTracker.emit('track', {
+				category: OperationCategoryNameEnum.DID,
+				name: OperationNameEnum.DID_EXPORT,
+				data: {
+					did: did,
+				} satisfies IDIDTrack,
+				customer: response.locals.customer,
+				user: response.locals.user,
+			} satisfies ITrackOperation);
+
+			return response.status(StatusCodes.OK).json(result);
+		} catch (error) {
+			return response.status(StatusCodes.INTERNAL_SERVER_ERROR).json({
+				error: `Internal error: ${(error as Error)?.message || error}`,
+			});
+		}
+	}
 }
@@ -32,7 +32,7 @@ export class CreateDIDDocumentServiceValidator implements IValidator {
 				error: `service.serviceEndpoint is required in object ${service}`,
 			};
 		}
-		if (!Array.isArray(service.serviceEndpoint) || typeof service.serviceEndpoint === 'string') {
+		if (!Array.isArray(service.serviceEndpoint) && typeof service.serviceEndpoint !== 'string') {
 			return {
 				valid: false,
 				error: `service.serviceEndpoint should be an array or a string in object ${service}`,
@@ -67,7 +67,7 @@ export class CreateDIDDocumentServiceValidator implements IValidator {
 	}
 
 	validate(services: Validatable): IValidationResult {
-		services = services as CreateDIDService[];
+		services = (Array.isArray(services) ? services : [services]) as CreateDIDService[];
 		if (!Array.isArray(services)) {
 			return {
 				valid: false,
 
@@ -37,7 +37,7 @@ export class ServiceValidator implements IValidator {
 				error: 'service.serviceEndpoint is required',
 			};
 		}
-		if (!Array.isArray(service.serviceEndpoint) || typeof service.serviceEndpoint === 'string') {
+		if (!Array.isArray(service.serviceEndpoint) && typeof service.serviceEndpoint !== 'string') {
 			return {
 				valid: false,
 				error: 'service.serviceEndpoint should be an array or a string',
 
@@ -13,6 +13,8 @@ export class DidAuthRuleProvider extends AuthRuleProvider {
 		this.registerRule('/did/deactivate', 'POST', 'deactivate:did:mainnet');
 		this.registerRule('/did/import', 'POST', 'import:did:testnet');
 		this.registerRule('/did/import', 'POST', 'import:did:mainnet');
+		this.registerRule('/did/export', 'POST', 'export:did:testnet');
+		this.registerRule('/did/export', 'POST', 'export:did:mainnet');
 		// Unauthorized routes
 		this.registerRule('/did/search/(.*)', 'GET', '', { allowUnauthorized: true, skipNamespace: true });
 	}
 
@@ -25,9 +25,9 @@ export class IdentifierService {
 		return await this.identifierRepository.save(existing);
 	}
 
-	public async get(did?: string, relations?: FindOptionsRelations<IdentifierEntity>) {
+	public async get(did?: string, customer?: CustomerEntity, relations?: FindOptionsRelations<IdentifierEntity>) {
 		return await this.identifierRepository.findOne({
-			where: { did },
+			where: { did, customer },
 			relations,
 		});
 	}
Original file line number	Diff line number	Diff line change
`@@ -37,7 +37,7 @@ export class ServiceValidator implements IValidator {`
`37`	`37`	`error: 'service.serviceEndpoint is required',`
`38`	`38`	`};`
`39`	`39`	`}`
`40`		`- if (!Array.isArray(service.serviceEndpoint) \|\| typeof service.serviceEndpoint === 'string') {`
	`40`	`+ if (!Array.isArray(service.serviceEndpoint) && typeof service.serviceEndpoint !== 'string') {`
`41`	`41`	`return {`
`42`	`42`	`valid: false,`
`43`	`43`	`error: 'service.serviceEndpoint should be an array or a string',`
Original file line number	Diff line number	Diff line change
`@@ -13,6 +13,8 @@ export class DidAuthRuleProvider extends AuthRuleProvider {`
`13`	`13`	`this.registerRule('/did/deactivate', 'POST', 'deactivate:did:mainnet');`
`14`	`14`	`this.registerRule('/did/import', 'POST', 'import:did:testnet');`
`15`	`15`	`this.registerRule('/did/import', 'POST', 'import:did:mainnet');`
	`16`	`+ this.registerRule('/did/export', 'POST', 'export:did:testnet');`
	`17`	`+ this.registerRule('/did/export', 'POST', 'export:did:mainnet');`
`16`	`18`	`// Unauthorized routes`
`17`	`19`	`this.registerRule('/did/search/(.*)', 'GET', '', { allowUnauthorized: true, skipNamespace: true });`
`18`	`20`	`}`
Original file line number	Diff line number	Diff line change
`@@ -25,9 +25,9 @@ export class IdentifierService {`
`25`	`25`	`return await this.identifierRepository.save(existing);`
`26`	`26`	`}`
`27`	`27`
`28`		`- public async get(did?: string, relations?: FindOptionsRelations<IdentifierEntity>) {`
	`28`	`+ public async get(did?: string, customer?: CustomerEntity, relations?: FindOptionsRelations<IdentifierEntity>) {`
`29`	`29`	`return await this.identifierRepository.findOne({`
`30`		`- where: { did },`
	`30`	`+ where: { did, customer },`
`31`	`31`	`relations,`
`32`	`32`	`});`
`33`	`33`	`}`