Merge pull request #312 from dsprogramming/feat/structured-wallet-errors

feat: add structured error codes to WalletError for DCQL query failures

Author: phisakel

Sources/EudiWalletKit/Models/WalletError.swift

@@ -17,12 +17,34 @@
 import Foundation
 /// Wallet error
 public struct WalletError: LocalizedError {
+	/// Structured error code for programmatic handling
+	public enum Code: String, Sendable {
+		/// The verifier requested a claim that is not present in the credential
+		case claimNotFound
+		/// The verifier requested a credential/document type that is not in the wallet
+		case credentialNotFound
+		/// The verifier requested a claim whose value does not match
+		case claimValueMismatch
+		/// No claim_set option could be satisfied
+		case claimSetNotSatisfied
+		/// A required credential_set cannot be satisfied
+		case credentialSetNotSatisfied
+		/// The DCQL query could not be satisfied (general)
+		case dcqlQueryNotSatisfied
+	}
+
 	public let description: String
 	public let localizationKey: String?
+	/// Structured error code for programmatic handling. `nil` for legacy errors.
+	public let code: Code?
+	/// Additional context about the error (e.g. claim path, docType).
+	public let context: [String: String]
 
-	public init(description: String, localizationKey: String? = nil) {
+	public init(description: String, localizationKey: String? = nil, code: Code? = nil, context: [String: String] = [:]) {
 		self.description = description
 		self.localizationKey = localizationKey
+		self.code = code
+		self.context = context
 	}
 
 	public var errorDescription: String? {

Sources/EudiWalletKit/Services/Openid4VpUtils.swift

@@ -217,7 +217,7 @@ extension OpenId4VpUtils {
 			let format = credQuery.dataFormat
 			// Find matching credentials
 			let matchingCredIds = queryable.getCredentials(docOrVctType: docType, docDataFormat: format)
-			if matchingCredIds.isEmpty, dcql.credentialSets == nil { throw WalletError(description: "Credential with docType \(docType) cannot be found.") }
+			if matchingCredIds.isEmpty, dcql.credentialSets == nil { throw WalletError(description: "Credential with docType \(docType) cannot be found.", code: .credentialNotFound, context: ["docType": docType]) }
 			// Try to find a credential that satisfies the claim requirements
 			for credId in matchingCredIds {
 				do {
@@ -259,7 +259,7 @@ extension OpenId4VpUtils {
 				}
 				let isSetRequired = credSet.required ?? CredentialSetQuery.defaultRequiredValue
 				if isSetRequired, !isSetSatisfied {
-					throw WalletError(description: "Required credential_set \(credSet.options) cannot be satisfied")
+					throw WalletError(description: "Required credential_set \(credSet.options) cannot be satisfied", code: .credentialSetNotSatisfied)
 				}
 			}
 		} else {
@@ -270,7 +270,7 @@ extension OpenId4VpUtils {
 		if result.isEmpty {
 			let notFoundCred = dcql.credentials.first { c in credentialQueryResults[c.id] == nil }
 			if let notFoundCred {logger.warning("No credential found matching docType: \(notFoundCred.docType ?? "") with format: \(notFoundCred.format)")}
-			throw lastError ?? WalletError(description: "DCQL query could not be satisfied")
+			throw lastError ?? WalletError(description: "DCQL query could not be satisfied", code: .dcqlQueryNotSatisfied)
 		}
 		return result
 	}
@@ -315,7 +315,7 @@ extension OpenId4VpUtils {
 			} // next claimSetOption
 			// No claim set option could be satisfied
 			let claimPathStr = firstMissingClaimInOption?.value.map(\.claimName).joined(separator: "/") ?? "unknown"
-			throw WalletError(description: "No claim_set option satisfied. First missing claim: \(claimPathStr)")
+			throw WalletError(description: "No claim_set option satisfied. First missing claim: \(claimPathStr)", code: .claimSetNotSatisfied, context: ["claimPath": claimPathStr])
 		} else {
 			// No claim_sets: all claims must be available
 			var selectedPaths: [ClaimsQuery] = []
@@ -324,11 +324,11 @@ extension OpenId4VpUtils {
 				if let values = claim.values, !values.isEmpty {
 					if !queryable.hasClaimWithValue(id: credId, claimPath: claim.path, values: values) {
 						let claimPathStr = claim.path.value.map(\.claimName).joined(separator: "/")
-						throw WalletError(description: "Claim value mismatch for: \(claimPathStr)")
+						throw WalletError(description: "Claim value mismatch for: \(claimPathStr)", code: .claimValueMismatch, context: ["claimPath": claimPathStr])
 					}
 				} else if !queryable.hasClaim(id: credId, claimPath: claim.path) {
 					let claimPathStr = claim.path.value.map(\.claimName).joined(separator: "/")
-					throw WalletError(description: "Claim not found: \(claimPathStr)")
+					throw WalletError(description: "Claim not found: \(claimPathStr)", code: .claimNotFound, context: ["claimPath": claimPathStr])
 				}
 				selectedPaths.append(claim)
 			}

Tests/EudiWalletKitTests/DcqlQueryTests.swift

@@ -616,7 +616,125 @@ struct DcqlQueryTests {
 		#expect(result["pid_cred"]?.count == 4, "Should have all four claims")
 	}
 
-}
+	// MARK: - Structured WalletError.Code tests
 
+	@Test("WalletError has .claimNotFound code when claim is missing", arguments: ["dcql-vehicle"])
+	func testErrorCodeClaimNotFound(dcqlFile: String) throws {
+		let dcqlData = try loadTestResource(fileName: dcqlFile)
+		let wrapper = try JSONDecoder().decode(DCQL.self, from: dcqlData)
+		let dcql = try DCQL(credentials: wrapper.credentials)
+		let dcqlQueryable = DefaultDcqlQueryable(
+			credentials: ["cred1": ("org.iso.7367.1.mVRC", DocDataFormat.cbor)],
+			claimPaths: [
+				"cred1": [
+					ClaimPath([.claim(name: "org.iso.7367.1"), .claim(name: "vehicle_holder")])
+					// Missing first_name claim
+				]
+			]
+		)
+		do {
+			_ = try OpenId4VpUtils.resolveDcql(dcql, queryable: dcqlQueryable)
+			Issue.record("Expected WalletError to be thrown")
+		} catch let error as WalletError {
+			#expect(error.code == .claimNotFound, "Error code should be .claimNotFound")
+			#expect(error.context["claimPath"] == "org.iso.18013.5.1/first_name", "Context should contain the missing claim path")
+		}
+	}
 
+	@Test("WalletError has .credentialNotFound code when docType is missing", arguments: ["dcql-vehicle"])
+	func testErrorCodeCredentialNotFound(dcqlFile: String) throws {
+		let dcqlData = try loadTestResource(fileName: dcqlFile)
+		let wrapper = try JSONDecoder().decode(DCQL.self, from: dcqlData)
+		let dcql = try DCQL(credentials: wrapper.credentials)
+		// No credentials at all
+		let dcqlQueryable = DefaultDcqlQueryable(
+			credentials: [:],
+			claimPaths: [:]
+		)
+		do {
+			_ = try OpenId4VpUtils.resolveDcql(dcql, queryable: dcqlQueryable)
+			Issue.record("Expected WalletError to be thrown")
+		} catch let error as WalletError {
+			#expect(error.code == .credentialNotFound, "Error code should be .credentialNotFound")
+			#expect(error.context["docType"] == "org.iso.7367.1.mVRC", "Context should contain the missing docType")
+		}
+	}
 
+	@Test("WalletError has .claimValueMismatch code when value doesn't match", arguments: ["dcql-query-values"])
+	func testErrorCodeClaimValueMismatch(dcqlFile: String) throws {
+		let dcqlData = try loadTestResource(fileName: dcqlFile)
+		let dcql = try JSONDecoder().decode(DCQL.self, from: dcqlData)
+		let dcqlQueryable = DefaultDcqlQueryable(
+			credentials: [
+				"pid_cred": ("https://credentials.example.com/identity_credential", DocDataFormat.sdjwt)
+			],
+			claimPaths: [
+				"pid_cred": [
+					ClaimPath([.claim(name: "last_name")]),
+					ClaimPath([.claim(name: "first_name")]),
+					ClaimPath([.claim(name: "address"), .claim(name: "street_address")]),
+					ClaimPath([.claim(name: "postal_code")])
+				]
+			],
+			claimValues: [
+				"pid_cred": [
+					ClaimPath([.claim(name: "last_name")]): ["Smith"],  // Wrong value
+					ClaimPath([.claim(name: "postal_code")]): ["90210"]
+				]
+			]
+		)
+		do {
+			_ = try OpenId4VpUtils.resolveDcql(dcql, queryable: dcqlQueryable)
+			Issue.record("Expected WalletError to be thrown")
+		} catch let error as WalletError {
+			#expect(error.code == .claimValueMismatch, "Error code should be .claimValueMismatch")
+			#expect(error.context["claimPath"] == "last_name", "Context should contain the mismatched claim path")
+		}
+	}
+
+	@Test("WalletError has .claimSetNotSatisfied code when no claim_set option works", arguments: ["dcql-claim-sets"])
+	func testErrorCodeClaimSetNotSatisfied(dcqlFile: String) throws {
+		let dcqlData = try loadTestResource(fileName: dcqlFile)
+		let dcql = try JSONDecoder().decode(DCQL.self, from: dcqlData)
+		let dcqlQueryable = DefaultDcqlQueryable(
+			credentials: [
+				"pid_cred": ("https://credentials.example.com/identity_credential", DocDataFormat.sdjwt)
+			],
+			claimPaths: [
+				"pid_cred": [
+					ClaimPath([.claim(name: "last_name")]),
+					ClaimPath([.claim(name: "date_of_birth")])
+					// Missing locality, region from set 1
+					// Missing postal_code from set 2
+				]
+			]
+		)
+		do {
+			_ = try OpenId4VpUtils.resolveDcql(dcql, queryable: dcqlQueryable)
+			Issue.record("Expected WalletError to be thrown")
+		} catch let error as WalletError {
+			#expect(error.code == .claimSetNotSatisfied, "Error code should be .claimSetNotSatisfied")
+			#expect(error.context["claimPath"] != nil, "Context should contain the first missing claim path")
+		}
+	}
+
+	@Test("WalletError backward compatibility — code and context default to nil and empty")
+	func testWalletErrorBackwardCompatibility() throws {
+		let error = WalletError(description: "Some legacy error")
+		#expect(error.code == nil, "Code should default to nil")
+		#expect(error.context.isEmpty, "Context should default to empty")
+		#expect(error.errorDescription == "Some legacy error", "Description should still work")
+	}
+
+	@Test("WalletError with code and context preserves all fields")
+	func testWalletErrorStructuredFields() throws {
+		let error = WalletError(
+			description: "Claim not found: family_name_birth",
+			code: .claimNotFound,
+			context: ["claimPath": "family_name_birth"]
+		)
+		#expect(error.code == .claimNotFound)
+		#expect(error.context["claimPath"] == "family_name_birth")
+		#expect(error.errorDescription == "Claim not found: family_name_birth")
+	}
+}