DGCServerVerifier/src/Services/dgcVerifier/Verifier.ts

import { CertificateDownloader } from '../SettingsDownloader/CertificateDownloader';
import { RuleDownloader } from '../SettingsDownloader/RuleDownloader';
import { CheckResult, VaccineVerifier } from './VaccineVerifier';
import {DCC} from 'dcc-utils';
import jsrsasign from 'jsrsasign';
interface certificateResponse {
  signature:{
    valid: boolean
  },
  valid:CheckResult,
  info:{
    identity:{
      fnt:string,
      fn:string,
      gnt:string,
      gn:string
    },
    dob:string
  }
}
export default class Verifier {
  static instance: Verifier|undefined  =  undefined;
  private certDownloader: CertificateDownloader;
  private ruleDownloader: RuleDownloader;
  private constructor(){
    this.certDownloader = new CertificateDownloader();
    this.ruleDownloader = new RuleDownloader();
  }

  public static async instanceVerifier(): Promise<Verifier>{
    if (Verifier.instance == undefined){
      Verifier.instance = new Verifier();
      await Verifier.instance.certDownloader.getCertificates();
      await Verifier.instance.ruleDownloader.getRules();

    }
    return Verifier.instance;
  }
  
  async checkCertificate(certificate:string): Promise<certificateResponse>{
    let result:certificateResponse = {signature:{valid: false}, valid:{valid:false, message:'nd'}, info:{identity:{fnt:'nd',fn:'nd',gnt:'nd',gn:'nd'},dob:'nd'}};
    try {
      const dcc = await DCC.fromRaw(certificate);
      const signatureValidity = (await this.checkKey(dcc)).valid;
      const vaccineVerifier = new VaccineVerifier(await this.ruleDownloader.getRules());
      result = {signature:{valid: signatureValidity}, valid:  vaccineVerifier.checkCertifcate(dcc.payload), info:{identity:dcc.payload.nam,dob:dcc.payload.dob}};
    } catch (error) {
      console.log(error);
      result = {signature:{valid: false}, valid:{valid:false, message:'nd'}, info:{identity:{fnt:'nd',fn:'nd',gnt:'nd',gn:'nd'},dob:'nd'}};
    }  
    return result;
  }

  async checkKey(dcc:DCC):Promise<{valid:boolean, key?:string}>{
    const publicCertificateCollection = await this.certDownloader.getCertificates();
    const result = {valid:false, key: ''};
    for(const tupla of publicCertificateCollection){
      try {
        const cECDSA = (jsrsasign.KEYUTIL
          .getKey('-----BEGIN CERTIFICATE-----\n' + tupla.certificate+ '-----END CERTIFICATE-----') as jsrsasign.KJUR.crypto.ECDSA).getPublicKeyXYHex();
        const signCheckResult = await dcc.checkSignature(cECDSA);
        if(signCheckResult){
          result.valid = true;
          result.key = tupla.kid;
          break;
        }
      } catch (error) {
        if(error.message != 'Signature missmatch')
          console.log(error); //to silence the errors
      }
    }
    return result;
  }
}
basic test implemented 2021-09-26 15:42:30 +02:00			`import { CertificateDownloader } from '../SettingsDownloader/CertificateDownloader';`
			`import { RuleDownloader } from '../SettingsDownloader/RuleDownloader';`
standardizide the response 2021-09-26 20:00:33 +02:00			`import { CheckResult, VaccineVerifier } from './VaccineVerifier';`
first commit 2021-09-23 15:38:13 +02:00			`import {DCC} from 'dcc-utils';`
fixed check on type of vaccine 2021-09-25 14:15:49 +02:00			`import jsrsasign from 'jsrsasign';`
standardizide the response 2021-09-26 20:00:33 +02:00			`interface certificateResponse {`
			`signature:{`
			`valid: boolean`
			`},`
			`valid:CheckResult,`
			`info:{`
			`identity:{`
			`fnt:string,`
			`fn:string,`
			`gnt:string,`
			`gn:string`
			`},`
			`dob:string`
			`}`
			`}`
first commit 2021-09-23 15:38:13 +02:00			`export default class Verifier {`
moved the api folder 2021-09-23 17:17:00 +02:00			`static instance: Verifier\|undefined = undefined;`
			`private certDownloader: CertificateDownloader;`
			`private ruleDownloader: RuleDownloader;`
			`private constructor(){`
			`this.certDownloader = new CertificateDownloader();`
			`this.ruleDownloader = new RuleDownloader();`
first commit 2021-09-23 15:38:13 +02:00			`}`

moved the api folder 2021-09-23 17:17:00 +02:00			`public static async instanceVerifier(): Promise<Verifier>{`
			`if (Verifier.instance == undefined){`
			`Verifier.instance = new Verifier();`
first working version 2021-09-24 15:21:24 +02:00			`await Verifier.instance.certDownloader.getCertificates();`
			`await Verifier.instance.ruleDownloader.getRules();`

moved the api folder 2021-09-23 17:17:00 +02:00			`}`
			`return Verifier.instance;`
			`}`

standardizide the response 2021-09-26 20:00:33 +02:00			`async checkCertificate(certificate:string): Promise<certificateResponse>{`
corrected a typing error 2021-09-26 20:31:28 +02:00			`let result:certificateResponse = {signature:{valid: false}, valid:{valid:false, message:'nd'}, info:{identity:{fnt:'nd',fn:'nd',gnt:'nd',gn:'nd'},dob:'nd'}};`
standardizide the response 2021-09-26 20:00:33 +02:00			`try {`
			`const dcc = await DCC.fromRaw(certificate);`
			`const signatureValidity = (await this.checkKey(dcc)).valid;`
			`const vaccineVerifier = new VaccineVerifier(await this.ruleDownloader.getRules());`
			`result = {signature:{valid: signatureValidity}, valid: vaccineVerifier.checkCertifcate(dcc.payload), info:{identity:dcc.payload.nam,dob:dcc.payload.dob}};`
			`} catch (error) {`
			`console.log(error);`
added the italy only certificate 2021-09-27 18:54:27 +02:00			`result = {signature:{valid: false}, valid:{valid:false, message:'nd'}, info:{identity:{fnt:'nd',fn:'nd',gnt:'nd',gn:'nd'},dob:'nd'}};`
standardizide the response 2021-09-26 20:00:33 +02:00			`}`
moved the api folder 2021-09-23 17:17:00 +02:00			`return result;`
first commit 2021-09-23 15:38:13 +02:00			`}`
fixed check on type of vaccine 2021-09-25 14:15:49 +02:00
			`async checkKey(dcc:DCC):Promise<{valid:boolean, key?:string}>{`
			`const publicCertificateCollection = await this.certDownloader.getCertificates();`
			`const result = {valid:false, key: ''};`
			`for(const tupla of publicCertificateCollection){`
			`try {`
			`const cECDSA = (jsrsasign.KEYUTIL`
			`.getKey('-----BEGIN CERTIFICATE-----\n' + tupla.certificate+ '-----END CERTIFICATE-----') as jsrsasign.KJUR.crypto.ECDSA).getPublicKeyXYHex();`
			`const signCheckResult = await dcc.checkSignature(cECDSA);`
			`if(signCheckResult){`
			`result.valid = true;`
			`result.key = tupla.kid;`
			`break;`
			`}`
			`} catch (error) {`
			`if(error.message != 'Signature missmatch')`
			`console.log(error); //to silence the errors`
			`}`
			`}`
			`return result;`
			`}`
first commit 2021-09-23 15:38:13 +02:00			`}`