Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
How to verify DID Document returned from Resolver?
See original GitHub issueNot sure if I might be missing something here, but is there a way to verify the signature of a DID Document returned by the resolver?
The type in the library is “DIDDocument”, which only has (excluding deprecated fields):
id
publicKey
authentication
service
keyAgreement
Does the concept of the resolver rely on trusting the result from the resolver?
I’m currently implementing an did-resolver and being able to verify the signature is something I want to support, so I’m considering adding some parameters to the getResolver method allowing retrieval of the original JWT.
Can also be handled in the resolve method and throw error, since my DID Method API returns the JWT.
Looking at some of the examples here, I see that maybe Document Metadata could be used for the signature?
Is it OK to extend the result returned, I see some DID Methods are using the deprecated “proof” section, yet I’d rather conform to the latest specification.
Issue Analytics
- State:
- Created 3 years ago
- Comments:6 (4 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
Have solved this by returning the proof as part of the
didResolutionMetadata. I’ll close this issue now and I’m OK with the proposed answer that this should be up to individual implementations.IMO it’s up to to the method specific resolvers that you plug into this package to verify the integrity of the resolverd DID document. There is never going to be a “one size fits all” for verifying integrity of DID documents.