Source code for pyeudiw.satosa.backends.openid4vp.schemas.wallet_instance_attestation

from typing import Dict, List, Literal, Optional

from pydantic import BaseModel, HttpUrl, field_validator
from pydantic_core.core_schema import ValidationInfo

from pyeudiw.satosa.backends.openid4vp.schemas.cnf_schema import CNFSchema
from pyeudiw.tools.schema_utils import check_algorithm

_default_supported_algorithms = [
    "RS256",
    "RS384",
    "RS512",
    "ES256",
    "ES384",
    "ES512",
    "PS256",
    "PS384",
    "PS512",
]



[docs]
class VPFormatSchema(BaseModel):
    jwt_vp_json: Dict[Literal["alg_values_supported"], List[str]]
    jwt_vc_json: Dict[Literal["alg_values_supported"], List[str]]




[docs]
class WalletInstanceAttestationHeader(BaseModel):
    alg: str
    typ: Literal["wallet-attestation+jwt"]
    kid: str
    trust_chain: Optional[List[str]] = None

    @field_validator("alg")
    @classmethod
    def _check_alg(cls, alg, info: ValidationInfo):
        return check_algorithm(alg, info)




[docs]
class WalletInstanceAttestationPayload(BaseModel):
    iss: HttpUrl
    sub: str
    iat: int
    exp: int
    aal: HttpUrl
    cnf: CNFSchema
    # Wallet Capabilities
    type: Optional[Literal["WalletInstanceAttestation"]] = None
    policy_uri: Optional[HttpUrl] = None
    tos_uri: Optional[HttpUrl] = None
    logo_uri: Optional[HttpUrl] = None
    authorization_endpoint: Optional[str] = None
    response_types_supported: Optional[List[str]] = None
    vp_formats_supported: Optional[VPFormatSchema] = None
    request_object_signing_alg_values_supported: Optional[List[str]] = None
    presentation_definition_uri_supported: Optional[bool] = None