2. createSelectiveCredential
基本信息
- 接口名称:com.webank.weid.rpc.CredentialPojoService.createSelectiveCredential
- 接口定义: ResponseData<CredentialPojo> createSelectiveCredential(CredentialPojo credentialPojo, ClaimPolicy claimPolicy)
- 接口描述: 通过原始凭证和披漏策略,创建选择性披露的Credential。
接口入参:
com.webank.weid.protocol.base.CredentialPojo
名称 | 类型 | 非空 | 说明 | 备注 |
---|---|---|---|---|
context | String | Y | ||
type | List<String> | Y | ||
id | String | Y | 证书ID | |
cptId | Integer | Y | cptId | |
issuer | String | Y | issuer 的 WeIdentity DID | |
issuanceDate | Long | Y | 创建日期 | |
expirationDate | Long | Y | 到期日期 | |
claim | Map<String, Object> | Y | Claim数据 | |
proof | Map<String, Object> | Y | 签名数据结构体 |
com.webank.weid.protocol.base.ClaimPolicy
名称 | 类型 | 非空 | 说明 | 备注 |
---|---|---|---|---|
fieldsToBeDisclosed | String | Y | 披露配置 | 根据claim匹配的结构,详见调用示例 |
接口返回: com.webank.weid.protocol.response.ResponseData<CredentialPojo>;
名称 | 类型 | 说明 | 备注 |
---|---|---|---|
errorCode | Integer | 返回结果码 | |
errorMessage | String | 返回结果描述 | |
result | CredentialPojo | 凭证对象 | 业务数据 |
transactionInfo | TransactionInfo | 交易信息 |
com.webank.weid.protocol.response.TransactionInfo
名称 | 类型 | 说明 | 备注 |
---|---|---|---|
blockNumber | BigInteger | 交易块高 | |
transactionHash | String | 交易hash | |
transactionIndex | BigInteger | 交易索引 |
此方法返回code
enum | code | desc |
---|---|---|
SUCCESS | 0 | 成功 |
CPT_ID_ILLEGAL | 100303 | cptId无效 |
CREDENTIAL_ERROR | 100400 | Credential标准错误 |
CREDENTIAL_SIGNATURE_BROKEN | 100405 | 签名破坏 |
CREDENTIAL_CREATE_DATE_ILLEGAL | 100408 | 创建日期格式非法 |
CREDENTIAL_CLAIM_NOT_EXISTS | 100410 | Claim数据不能为空 |
CREDENTIAL_CLAIM_DATA_ILLEGAL | 100411 | Claim数据无效 |
CREDENTIAL_ID_NOT_EXISTS | 100412 | ID为空 |
CREDENTIAL_CONTEXT_NOT_EXISTS | 100413 | context为空 |
CREDENTIAL_ISSUER_INVALID | 100418 | WeIdentity DID无效 |
CREDENTIAL_CLAIM_POLICY_NOT_EXIST | 100420 | 披露策略为null |
CREDENTIAL_POLICY_DISCLOSUREVALUE_ILLEGAL | 100423 | policy披露信息非法 |
CREDENTIAL_POLICY_FORMAT_DOSE_NOT_MATCH_CLAIM | 100427 | 披露策略与Claim不匹配 |
CREDENTIAL_DISCLOSURE_DATA_TYPE_ILLEGAL | 100428 | 披露数据格式错误 |
CREDENTIAL_SIGNATURE_TYPE_ILLEGAL | 100429 | 验证签名类型异常 |
ILLEGAL_INPUT | 160004 | 参数非法 |
调用示例
- CredentialPojoService credentialPojoService = new CredentialPojoServiceImpl();
- CreateCredentialPojoArgs<Map<String, Object>> createCredentialPojoArgs =
- new CreateCredentialPojoArgs<Map<String, Object>>();
- createCredentialPojoArgs.setCptId(1017);
- createCredentialPojoArgs
- .setIssuer("did:weid:101:0x39e5e6f663ef77409144014ceb063713b65600e7");
- createCredentialPojoArgs
- .setExpirationDate(System.currentTimeMillis() + 1000 * 60 * 60 * 24 * 100);
- WeIdAuthentication weIdAuthentication = new WeIdAuthentication();
- weIdAuthentication.setWeId("did:weid:101:0x39e5e6f663ef77409144014ceb063713b65600e7");
- WeIdPrivateKey weIdPrivateKey = new WeIdPrivateKey();
- weIdPrivateKey.setPrivateKey(
- "60866441986950167911324536025850958917764441489874006048340539971987791929772");
- weIdAuthentication.setWeIdPrivateKey(weIdPrivateKey);
- weIdAuthentication
- .setWeIdPublicKeyId("did:weid:101:0x39e5e6f663ef77409144014ceb063713b65600e7#key0");
- createCredentialPojoArgs.setWeIdAuthentication(weIdAuthentication);
- Map<String, Object> claim = new HashMap<String, Object>();
- claim.put("name", "zhangsan");
- claim.put("gender", "F");
- claim.put("age", 22);
- createCredentialPojoArgs.setClaim(claim);
- ResponseData<CredentialPojo> response =
- credentialPojoService.createCredential(createCredentialPojoArgs);
- // 选择性披露
- ClaimPolicy claimPolicy = new ClaimPolicy();
- claimPolicy.setFieldsToBeDisclosed("{\"name\":1,\"gender\":0,\"age\":1}");
- ResponseData<CredentialPojo> selectiveResponse =
- credentialPojoService.createSelectiveCredential(response.getResult(), claimPolicy);
- 返回结果如:
- result:(com.webank.weid.protocol.base.CredentialPojo)
- context: https://github.com/WeBankFinTech/WeIdentity/blob/master/context/v1
- id: c4f8ca00-7c1b-4ba0-993f-008106075d9c
- cptId: 1017
- issuer: did:weid:101:0x39e5e6f663ef77409144014ceb063713b65600e7
- issuanceDate: 1560420975268
- expirationDate: 1560471040676
- claim:(java.util.HashMap)
- gender: 0x0756ccf78a0ebd5bd186b054376f1e9d86139bf04f660e9171a74673e5a21c75
- name: zhangsan
- age: 22
- proof:(java.util.HashMap)
- creator: did:weid:101:0x39e5e6f663ef77409144014ceb063713b65600e7#key0
- salt:(java.util.HashMap)
- gender: 0
- name: rr3g0
- age: 9ysgr
- created: 1560420975268
- type: Secp256k1
- signatureValue: GxVcZJFEnC7w+ZKOZAjmKy5JfFxoEFqffmCMvbUnVYmzEVKIUtDCiDmokZ2X3jIV/uFvUHQ4DWXksrD6Opr1vLo=
- type:(java.util.ArrayList)
- [0]:VerifiableCredential
- errorCode: 0
- errorMessage: success
- transactionInfo:null
时序图
sequenceDiagramparticipant 调用者participant CredentialPojoService调用者->>CredentialPojoService: 调用createSelectiveCredential(),传入原始凭证CredentialPojoService->>CredentialPojoService: 入参非空、格式及合法性检查opt 入参校验失败CredentialPojoService—>>调用者: 报错,提示参数不合法并退出endCredentialPojoService->>CredentialPojoService: 根据claimPolicy来隐藏不披露的字段CredentialPojoService->>CredentialPojoService: 生成签发日期、生成数字签名CredentialPojoService—>>调用者: 返回凭证