akramer/digital-credentials-public-validator
akramer/digital-credentials-public-validator
0
0
Fork 0
Code Issues Pull Requests Activity

Add cause's message to the resulting report

Browse Source
This commit is contained in:
Xavi Aracil 2022-10-25 14:34:52 +02:00
parent 4bed4a74ca
commit 38a6b2e6e7
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
inspector-vc/src/main/java/org/oneedtech/inspect/vc/probe/ExternalProofProbe.java
View File

@ -50,7 +50,7 @@ public class ExternalProofProbe extends Probe<VerifiableCredential> {
try { try {
verifySignature(crd, ctx); verifySignature(crd, ctx);
} catch (Exception e) { } catch (Exception e) {
return fatal("Error verifying jwt signature: " + e.getMessage(), ctx); return fatal("Error verifying jwt signature: " + e.getMessage() + (e.getCause() != null ? ". Reason: " + e.getCause().getMessage() : ""), ctx);
} }
return success(ctx); return success(ctx);
} }
@ -75,7 +75,9 @@ public class ExternalProofProbe extends Probe<VerifiableCredential> {
JsonNode alg = headerObj.get("alg"); JsonNode alg = headerObj.get("alg");
if(alg == null || !alg.textValue().equals("RS256")) { throw new Exception("alg must be present and must be 'RS256'"); } if(alg == null || !alg.textValue().equals("RS256")) { throw new Exception("alg must be present and must be 'RS256'"); }
//TODO: decoded jwt will check timestamps, but shall we explicitly break these out? // decoded jwt will check timestamps, but shall we explicitly break these out?
// JWT verifier throws and exception with the cause when claims are invalid. Adding that cause
// to the probe result can avoid having to explicitly check the claims.
//Option 1, fetch directly from header //Option 1, fetch directly from header
JsonNode jwk = headerObj.get("jwk"); JsonNode jwk = headerObj.get("jwk");