baseid_sd_jwt/

lib.rs

//! # baseid-sd-jwt
//!
//! SD-JWT (Selective Disclosure JWT) and SD-JWT-VC implementation.
//!
//! Supports:
//! - SD-JWT creation with selective disclosure of claims
//! - SD-JWT presentation with disclosure selection
//! - SD-JWT verification
//! - SD-JWT-VC profile for verifiable credentials
//!
//! Reference: IETF SD-JWT draft

pub mod disclosure;
pub mod issuer;
pub mod lifecycle;
pub mod verifier;

use baseid_core::error::CryptoError;
use serde::{Deserialize, Serialize};

/// An SD-JWT consisting of the issuer JWT and disclosures.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct SdJwt {
    /// The issuer-signed JWT.
    pub jwt: String,
    /// Disclosures (base64url-encoded).
    pub disclosures: Vec<String>,
    /// Optional key binding JWT.
    pub key_binding_jwt: Option<String>,
}

impl SdJwt {
    /// Serialize to compact format: `jwt~disc1~disc2~[kb_jwt]`
    ///
    /// The trailing `~` is always present. If a key binding JWT exists it
    /// follows the last disclosure separator.
    pub fn serialize(&self) -> String {
        let mut parts = vec![self.jwt.clone()];
        for d in &self.disclosures {
            parts.push(d.clone());
        }
        // Trailing ~ separator (or kb_jwt follows)
        match &self.key_binding_jwt {
            Some(kb) => {
                let mut s = parts.join("~");
                s.push('~');
                s.push_str(kb);
                s
            }
            None => {
                let mut s = parts.join("~");
                s.push('~');
                s
            }
        }
    }

    /// Parse an SD-JWT from compact format.
    pub fn parse(compact: &str) -> baseid_core::Result<Self> {
        // Split on ~, the first element is the JWT, remaining are disclosures,
        // and the last empty string or a KB-JWT
        let parts: Vec<&str> = compact.split('~').collect();
        if parts.len() < 2 {
            return Err(CryptoError::VerificationFailed.into());
        }

        let jwt = parts[0].to_string();
        if jwt.is_empty() {
            return Err(CryptoError::VerificationFailed.into());
        }

        // Last part may be empty (no KB-JWT) or a KB-JWT
        let last = parts[parts.len() - 1];
        let (disclosures_slice, key_binding_jwt) = if last.is_empty() {
            (&parts[1..parts.len() - 1], None)
        } else {
            (&parts[1..parts.len() - 1], Some(last.to_string()))
        };

        let disclosures: Vec<String> = disclosures_slice
            .iter()
            .filter(|s| !s.is_empty())
            .map(|s| s.to_string())
            .collect();

        Ok(Self {
            jwt,
            disclosures,
            key_binding_jwt,
        })
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn serialize_parse_roundtrip() {
        let sd = SdJwt {
            jwt: "eyJ0eXAiOiJKV1QifQ.eyJpc3MiOiJ0ZXN0In0.sig".to_string(),
            disclosures: vec!["disc1".to_string(), "disc2".to_string()],
            key_binding_jwt: None,
        };
        let compact = sd.serialize();
        assert!(compact.ends_with('~'));

        let parsed = SdJwt::parse(&compact).unwrap();
        assert_eq!(parsed.jwt, sd.jwt);
        assert_eq!(parsed.disclosures, sd.disclosures);
        assert!(parsed.key_binding_jwt.is_none());
    }

    #[test]
    fn serialize_parse_with_kb_jwt() {
        let sd = SdJwt {
            jwt: "jwt_part".to_string(),
            disclosures: vec!["d1".to_string()],
            key_binding_jwt: Some("kb_jwt".to_string()),
        };
        let compact = sd.serialize();
        assert!(!compact.ends_with('~'));

        let parsed = SdJwt::parse(&compact).unwrap();
        assert_eq!(parsed.jwt, "jwt_part");
        assert_eq!(parsed.disclosures, vec!["d1"]);
        assert_eq!(parsed.key_binding_jwt, Some("kb_jwt".to_string()));
    }

    #[test]
    fn serialize_no_disclosures() {
        let sd = SdJwt {
            jwt: "jwt".to_string(),
            disclosures: vec![],
            key_binding_jwt: None,
        };
        let compact = sd.serialize();
        assert_eq!(compact, "jwt~");

        let parsed = SdJwt::parse(&compact).unwrap();
        assert_eq!(parsed.jwt, "jwt");
        assert!(parsed.disclosures.is_empty());
    }
}