Hotfix/expiration date in credentials schema (#48)

* Update pipeline

* Update LEARCredentialEmployee Data Model

* Update build.gradle

* Update pipeline

Author: oriolcanades

.github/workflows/build.yml

@@ -3,7 +3,6 @@ on:
   push:
     branches:
       - main
-      - hotfix/*
   pull_request:
     branches:
       - main

.github/workflows/release.yml

@@ -29,21 +29,24 @@ jobs:
       - name: Make Gradlew Executable
         run: chmod +x ./gradlew
 
+      - name: Get Project Version
+        id: get_version
+        run: echo "VERSION=$(./gradlew -q printVersion)" >> $GITHUB_ENV
+
       - name: Build and Push docker image
         run: |
-          ./gradlew printVersion
           ./gradlew printProjectName
-          VERSION=$(./gradlew -q printVersion)
           PROJECT_NAME=$(./gradlew -q printProjectName)
           IMAGE_TAG="$PROJECT_NAME:v$VERSION$SUFFIX"
           docker build --file Dockerfile --build-arg SKIP_TESTS=true --tag $DOCKER_HUB_CLIENT_NAME/$IMAGE_TAG .
           echo $DOCKER_PASSWORD | docker login -u $DOCKER_USERNAME --password-stdin
           docker push $DOCKER_HUB_CLIENT_NAME/$IMAGE_TAG
         env:
+          VERSION: ${{ env.VERSION }}
+          SUFFIX: -snapshot
           DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }}
           DOCKER_PASSWORD: ${{ secrets.DOCKER_TOKEN }}
           DOCKER_HUB_CLIENT_NAME: in2workspace
-          SUFFIX: -snapshot
 
   release:
     if: github.event_name == 'push' && github.ref == 'refs/heads/main'
@@ -90,4 +93,4 @@ jobs:
           release_name: "v${{ env.VERSION }}"
           body: "Release of version v${{ env.VERSION }}"
           draft: false
-          prerelease: true
+          prerelease: false

CHANGELOG.md

@@ -4,6 +4,10 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [v1.1.1](https://github.com/in2workspace/in2-issuer-api/releases/tag/v1.1.1)
+### Fixed
+- Fixed LEARCredentialEmployee data model. Implement W3C DATA model v2.0 (validFrom, validUntil). 
+
 ## v1.1.0
 ### Added
 - LEARCredentialEmployee issuance in a synchronous way.

build.gradle

@@ -11,7 +11,7 @@ plugins {
 }
 
 group = 'es.in2'
-version = '1.1.0'
+version = '1.1.1'
 
 java {
     sourceCompatibility = '17'

src/main/java/es/in2/issuer/application/workflow/impl/VerifiableCredentialIssuanceWorkflowImpl.java

@@ -24,7 +24,6 @@
 @RequiredArgsConstructor
 public class VerifiableCredentialIssuanceWorkflowImpl implements VerifiableCredentialIssuanceWorkflow {
 
-
     private final RemoteSignatureService remoteSignatureService;
     private final VerifiableCredentialService verifiableCredentialService;
     private final AppConfig appConfig;
@@ -35,7 +34,6 @@ public class VerifiableCredentialIssuanceWorkflowImpl implements VerifiableCrede
     private final TrustFrameworkService trustFrameworkService;
     private final LEARCredentialEmployeeFactory credentialEmployeeFactory;
 
-
     @Override
     public Mono<Void> completeIssuanceCredentialProcess(String processId, String type, IssuanceRequest issuanceRequest) {
         return verifiableCredentialService.generateVc(processId, type, issuanceRequest)
@@ -47,11 +45,9 @@ public Mono<Void> completeIssuanceCredentialProcess(String processId, String typ
     }
 
     @Override
-    public Mono<VerifiableCredentialResponse> generateVerifiableCredentialResponse(
-            String processId,
-            CredentialRequest credentialRequest,
-            String token
-    ) {
+    public Mono<VerifiableCredentialResponse> generateVerifiableCredentialResponse(String processId,
+                                                                                   CredentialRequest credentialRequest,
+                                                                                   String token) {
         try {
             JWSObject jwsObject = JWSObject.parse(token);
             String authServerNonce = jwsObject.getPayload().toJSONObject().get("jti").toString();
@@ -65,32 +61,32 @@ public Mono<VerifiableCredentialResponse> generateVerifiableCredentialResponse(
                         }
                     })
                     .flatMap(subjectDid ->
-                                deferredCredentialMetadataService.getOperationModeByAuthServerNonce(authServerNonce)
-                                        .flatMap(operationMode ->
-                                                verifiableCredentialService.buildCredentialResponse(processId, subjectDid, authServerNonce, credentialRequest.format(), token, operationMode)
-                                                        .flatMap(credentialResponse -> {
-                                                                    if (operationMode.equals(ASYNC)) {
-                                                                        return deferredCredentialMetadataService.getProcedureIdByAuthServerNonce(authServerNonce)
-                                                                                .flatMap(credentialProcedureService::getSignerEmailFromDecodedCredentialByProcedureId)
-                                                                                .flatMap(email ->
-                                                                                        emailService.sendPendingCredentialNotification(email, "Pending Credential")
-                                                                                                .then(Mono.just(credentialResponse))
-                                                                                );
-                                                                    } else if (operationMode.equals(SYNC)) {
-                                                                        return deferredCredentialMetadataService.getProcedureIdByAuthServerNonce(authServerNonce)
-                                                                                .flatMap(id -> credentialProcedureService.updateCredentialProcedureCredentialStatusToValidByProcedureId(id)
-                                                                                        .then(credentialProcedureService.getDecodedCredentialByProcedureId(id)
-                                                                                                .flatMap(decodedCredential -> processDecodedCredential(processId,decodedCredential))
-                                                                                        )
-                                                                                )
-                                                                                .then(deferredCredentialMetadataService.deleteDeferredCredentialMetadataByAuthServerNonce(authServerNonce))
-                                                                                .then(Mono.just(credentialResponse));
-                                                                    } else {
-                                                                        return Mono.error(new IllegalArgumentException("Unknown operation mode: " + operationMode));
-                                                                    }
+                            deferredCredentialMetadataService.getOperationModeByAuthServerNonce(authServerNonce)
+                                    .flatMap(operationMode ->
+                                            verifiableCredentialService.buildCredentialResponse(processId, subjectDid, authServerNonce, credentialRequest.format(), token, operationMode)
+                                                    .flatMap(credentialResponse -> {
+                                                                if (operationMode.equals(ASYNC)) {
+                                                                    return deferredCredentialMetadataService.getProcedureIdByAuthServerNonce(authServerNonce)
+                                                                            .flatMap(credentialProcedureService::getSignerEmailFromDecodedCredentialByProcedureId)
+                                                                            .flatMap(email ->
+                                                                                    emailService.sendPendingCredentialNotification(email, "Pending Credential")
+                                                                                            .then(Mono.just(credentialResponse))
+                                                                            );
+                                                                } else if (operationMode.equals(SYNC)) {
+                                                                    return deferredCredentialMetadataService.getProcedureIdByAuthServerNonce(authServerNonce)
+                                                                            .flatMap(id -> credentialProcedureService.updateCredentialProcedureCredentialStatusToValidByProcedureId(id)
+                                                                                    .then(credentialProcedureService.getDecodedCredentialByProcedureId(id)
+                                                                                            .flatMap(decodedCredential -> processDecodedCredential(processId, decodedCredential))
+                                                                                    )
+                                                                            )
+                                                                            .then(deferredCredentialMetadataService.deleteDeferredCredentialMetadataByAuthServerNonce(authServerNonce))
+                                                                            .then(Mono.just(credentialResponse));
+                                                                } else {
+                                                                    return Mono.error(new IllegalArgumentException("Unknown operation mode: " + operationMode));
                                                                 }
-                                                        )
-                                        )
+                                                            }
+                                                    )
+                                    )
                     );
         } catch (ParseException e) {
             log.error("Error parsing the accessToken", e);
@@ -126,18 +122,6 @@ public Mono<VerifiableCredentialResponse> generateVerifiableCredentialDeferredRe
     @Override
     public Mono<Void> signDeferredCredential(String unsignedCredential, String userId, UUID credentialId, String token) {
         return null;
-//            return verifiableCredentialService.generateDeferredCredentialResponse(unsignedCredential)
-//                    .flatMap(vcPayload -> {
-//                        SignatureRequest signatureRequest = SignatureRequest.builder()
-//                                .configuration(SignatureConfiguration.builder().type(SignatureType.JADES).parameters(Collections.emptyMap()).build())
-//                                .data(vcPayload)
-//                                .build();
-//                        return remoteSignatureService.sign(signatureRequest, token)
-//                                .publishOn(Schedulers.boundedElastic())
-//                                .map(SignedData::data);
-//                    })
-//                    .flatMap(signedCredential -> credentialManagementService.updateCredential(signedCredential, credentialId, userId))
-//                    .onErrorResume(e -> Mono.error(new RuntimeException("Failed to sign and update the credential.", e)));
     }
 
     private Mono<String> extractDidFromJwtProof(String jwtProof) {
@@ -157,18 +141,18 @@ private Mono<Void> processDecodedCredential(String processId, String decodedCred
         LEARCredentialEmployeeJwtPayload learCredentialEmployeeJwtPayload = credentialEmployeeFactory.mapStringToLEARCredentialEmployee(decodedCredential);
 
         String signerOrgIdentifier = learCredentialEmployeeJwtPayload.learCredentialEmployee().credentialSubject().mandate().signer().organizationIdentifier();
-        if (signerOrgIdentifier == null || signerOrgIdentifier.isBlank() ){
+        if (signerOrgIdentifier == null || signerOrgIdentifier.isBlank()) {
             log.error("ProcessID: {} Signer Organization Identifier connot be null or empty", processId);
             return Mono.error(new IllegalArgumentException("Organization Identifier not valid"));
         }
 
         String mandatorOrgIdentifier = learCredentialEmployeeJwtPayload.learCredentialEmployee().credentialSubject().mandate().mandator().organizationIdentifier();
-        if (mandatorOrgIdentifier == null || mandatorOrgIdentifier.isBlank() ){
+        if (mandatorOrgIdentifier == null || mandatorOrgIdentifier.isBlank()) {
             log.error("ProcessID: {} Mandator Organization Identifier connot be null or empty", processId);
             return Mono.error(new IllegalArgumentException("Organization Identifier not valid"));
         }
 
-        return saveToTrustFramework(processId,signerOrgIdentifier, mandatorOrgIdentifier);
+        return saveToTrustFramework(processId, signerOrgIdentifier, mandatorOrgIdentifier);
     }
 
     private Mono<Void> saveToTrustFramework(String processId, String signerOrgIdentifier, String mandatorOrgIdentifier) {
@@ -179,7 +163,7 @@ private Mono<Void> saveToTrustFramework(String processId, String signerOrgIdenti
         return trustFrameworkService.validateDidFormat(processId, signerDid)
                 .flatMap(isValid -> registerDidIfValid(processId, signerDid, isValid))
                 .then(trustFrameworkService.validateDidFormat(processId, mandatorDid)
-                        .flatMap(isValid -> registerDidIfValid(processId, mandatorDid,isValid)));
+                        .flatMap(isValid -> registerDidIfValid(processId, mandatorDid, isValid)));
     }
 
     private Mono<Void> registerDidIfValid(String processId, String did, boolean isValid) {

src/main/java/es/in2/issuer/domain/model/dto/LEARCredentialEmployee.java

@@ -11,15 +11,14 @@ public record LEARCredentialEmployee(
         @JsonProperty("id") String id,
         @JsonProperty("type") List<String> type,
         @JsonProperty("credentialSubject") CredentialSubject credentialSubject,
-        @JsonProperty("expirationDate") String expirationDate,
-        @JsonProperty("issuanceDate") String issuanceDate,
         @JsonProperty("issuer") String issuer,
-        @JsonProperty("validFrom") String validFrom
+        @JsonProperty("validFrom") String validFrom,
+        @JsonProperty("validUntil") String validUntil
 ) {
+
     @Builder
-    public record CredentialSubject(
-            @JsonProperty("mandate") Mandate mandate
-    ) {
+    public record CredentialSubject(@JsonProperty("mandate") Mandate mandate) {
+
         @Builder
         public record Mandate(
                 @JsonProperty("id") String id,
@@ -29,19 +28,24 @@ public record Mandate(
                 @JsonProperty("power") List<Power> power,
                 @JsonProperty("signer") Signer signer
         ) {
+
             @Builder
             public record LifeSpan(
                     @JsonProperty("end_date_time") String endDateTime,
                     @JsonProperty("start_date_time") String startDateTime
-            ) {}
+            ) {
+            }
+
             @Builder
             public record Mandatee(
                     @JsonProperty("id") String id,
                     @JsonProperty("email") String email,
                     @JsonProperty("first_name") String firstName,
                     @JsonProperty("last_name") String lastName,
                     @JsonProperty("mobile_phone") String mobilePhone
-            ) {}
+            ) {
+            }
+
             @Builder
             public record Mandator(
                     @JsonProperty("commonName") String commonName,
@@ -50,16 +54,18 @@ public record Mandator(
                     @JsonProperty("organization") String organization,
                     @JsonProperty("organizationIdentifier") String organizationIdentifier,
                     @JsonProperty("serialNumber") String serialNumber
-            ) {}
-            @Builder
+            ) {
+            }
 
+            @Builder
             public record Power(
                     @JsonProperty("id") String id,
                     @JsonProperty("tmf_action") Object tmfAction,
                     @JsonProperty("tmf_domain") String tmfDomain,
                     @JsonProperty("tmf_function") String tmfFunction,
                     @JsonProperty("tmf_type") String tmfType
-            ) {}
+            ) {
+            }
 
             @Builder
             public record Signer(
@@ -69,10 +75,9 @@ public record Signer(
                     @JsonProperty("organization") String organization,
                     @JsonProperty("organizationIdentifier") String organizationIdentifier,
                     @JsonProperty("serialNumber") String serialNumber
-            ) {}
+            ) {
+            }
+
         }
     }
 }
-
-
-