@eudiplo/backend documentation
  1. Controllers
  2. WellKnownController

File

src/issuer/issuance/oid4vci/well-known/well-known.controller.ts

Description

Controller for the OpenID4VCI well-known endpoints.

Index

Methods

Methods

authzMetadata
authzMetadata(tenantId: string)
Decorators :
@Get('.well-known/oauth-authorization-server/issuers/:tenantId')
Defined in src/issuer/issuance/oid4vci/well-known/well-known.controller.ts:57

Authorization Server Metadata

Parameters :
Name Type Optional
tenantId string No
Returns : any
chainedAsMetadata
chainedAsMetadata(tenantId: string)
Decorators :
@Get('.well-known/oauth-authorization-server/issuers/:tenantId/chained-as')
Defined in src/issuer/issuance/oid4vci/well-known/well-known.controller.ts:68

Chained Authorization Server Metadata (RFC 8414 alternative path format). Supports discovery via /.well-known/oauth-authorization-server/:tenantId/chained-as for wallets that construct the discovery URL per RFC 8414.

Parameters :
Name Type Optional
tenantId string No
Returns : any
getChainedAsJwks
getChainedAsJwks(tenantId: string)
Decorators :
@Header('Content-Type', 'application/jwk-set+json')
@Get('.well-known/jwks.json/issuers/:tenantId/chained-as')
Defined in src/issuer/issuance/oid4vci/well-known/well-known.controller.ts:88

Returns the JSON Web Key Set (JWKS) for the Chained Authorization Server.

Parameters :
Name Type Optional
tenantId string No
Returns : Promise<literal type>
getJwks
getJwks(tenantId: string)
Decorators :
@Header('Content-Type', 'application/jwk-set+json')
@Get('.well-known/jwks.json/issuers/:tenantId')
Defined in src/issuer/issuance/oid4vci/well-known/well-known.controller.ts:78

Returns the JSON Web Key Set (JWKS) for the authorization server.

Parameters :
Name Type Optional
tenantId string No
Returns : Promise<JwksResponseDto>
Async issuerMetadata
issuerMetadata(res: Response, contentType: MediaType, tenantId: string)
Decorators :
@ApiOperation({summary: 'Get OpenID4VCI issuer metadata', description: 'Returns the OpenID4VCI issuer metadata.'})
@ApiProduces(MediaType.APPLICATION_JSON, MediaType.APPLICATION_JWT)
@Get('.well-known/openid-credential-issuer/issuers/:tenantId')
Defined in src/issuer/issuance/oid4vci/well-known/well-known.controller.ts:34

Retrieves the OpenID4VCI issuer metadata for a given tenant.

Parameters :
Name Type Optional
res Response No
contentType MediaType No
tenantId string No
Returns : unknown 
import { Controller, Get, Header, Param, Res } from "@nestjs/common";
import { ApiOperation, ApiProduces, ApiTags } from "@nestjs/swagger";
import { Response } from "express";
import { ContentType } from "../../../../shared/utils/mediaType/media-type.decorator";
import { MediaType } from "../../../../shared/utils/mediaType/media-type.enum";
import { JwksResponseDto } from "./dto/jwks-response.dto";
import { WellKnownService } from "./well-known.service";

/**
 * Controller for the OpenID4VCI well-known endpoints.
 */
@ApiTags("OID4VCI")
@Controller()
export class WellKnownController {
    /**
     * Constructor for WellKnownController.
     * @param wellKnownService
     */
    constructor(private readonly wellKnownService: WellKnownService) {}

    /**
     * Retrieves the OpenID4VCI issuer metadata for a given tenant.
     * @param tenantId
     * @param contentType
     * @returns
     */
    @ApiOperation({
        summary: "Get OpenID4VCI issuer metadata",
        description: "Returns the OpenID4VCI issuer metadata.",
    })
    //we can not set the accept in the apiheader via swagger.
    @ApiProduces(MediaType.APPLICATION_JSON, MediaType.APPLICATION_JWT)
    @Get(".well-known/openid-credential-issuer/issuers/:tenantId")
    async issuerMetadata(
        @Res({ passthrough: true }) res: Response,
        @ContentType() contentType: MediaType,
        @Param("tenantId") tenantId: string,
    ) {
        const result = await this.wellKnownService.getIssuerMetadata(
            tenantId,
            contentType,
        );

        // Set Content-Type header based on requested media type
        if (contentType === MediaType.APPLICATION_JWT) {
            res.setHeader("Content-Type", MediaType.APPLICATION_JWT);
        }

        return result;
    }

    /**
     * Authorization Server Metadata
     * @returns
     */
    @Get(".well-known/oauth-authorization-server/issuers/:tenantId")
    authzMetadata(@Param("tenantId") tenantId: string) {
        return this.wellKnownService.getAuthzMetadata(tenantId);
    }

    /**
     * Chained Authorization Server Metadata (RFC 8414 alternative path format).
     * Supports discovery via `/.well-known/oauth-authorization-server/:tenantId/chained-as`
     * for wallets that construct the discovery URL per RFC 8414.
     * @returns
     */
    @Get(".well-known/oauth-authorization-server/issuers/:tenantId/chained-as")
    chainedAsMetadata(@Param("tenantId") tenantId: string) {
        return this.wellKnownService.getChainedAsMetadata(tenantId);
    }

    /**
     * Returns the JSON Web Key Set (JWKS) for the authorization server.
     * @returns
     */
    @Header("Content-Type", "application/jwk-set+json")
    @Get(".well-known/jwks.json/issuers/:tenantId")
    getJwks(@Param("tenantId") tenantId: string): Promise<JwksResponseDto> {
        return this.wellKnownService.getJwks(tenantId);
    }

    /**
     * Returns the JSON Web Key Set (JWKS) for the Chained Authorization Server.
     * @returns
     */
    @Header("Content-Type", "application/jwk-set+json")
    @Get(".well-known/jwks.json/issuers/:tenantId/chained-as")
    getChainedAsJwks(
        @Param("tenantId") tenantId: string,
    ): Promise<{ keys: Record<string, unknown>[] }> {
        return this.wellKnownService.getChainedAsJwks(tenantId);
    }
}

results matching ""

    No results matching ""