contentauth
diff --git a/‎Cargo.lock‎
Lines changed: 237 additions & 44 deletions b/‎Cargo.lock‎
Lines changed: 237 additions & 44 deletions
diff --git a/‎Cargo.toml‎
Lines changed: 2 additions & 1 deletion b/‎Cargo.toml‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎README.md‎
Lines changed: 206 additions & 1 deletion b/‎README.md‎
Lines changed: 206 additions & 1 deletion
diff --git a/‎docs/README.md‎
Lines changed: 29 additions & 21 deletions b/‎docs/README.md‎
Lines changed: 29 additions & 21 deletions
@@ -11,7 +11,7 @@ crate-type = ["cdylib"]
 [dependencies]
 async-trait = "0.1.77"
 ciborium = "0.2.2"
-c2pa = { version = "0.58", features = ["file_io", "pdf", "fetch_remote_manifests"] }
+c2pa = { version = "0.64", default-features = false, features = ["file_io", "pdf", "fetch_remote_manifests", "add_thumbnails", "rust_native_crypto"] }
 futures = "0.3"
 image = "0.25.6"
 neon = { version = "1.0.0", default-features = false, features = [
@@ -29,6 +29,7 @@ reqwest = { version = "0.12.2", features = [
 serde = { version = "1.0.203", features = ["derive"] }
 serde_bytes = "0.11.15"
 serde_json = "1.0.117"
+toml = "0.8"
 thiserror = "1.0.61"
 tokio = { version = "1.43.0", features = ["rt-multi-thread"] }
 tokio-util = "0.7.13"
 
@@ -45,4 +45,209 @@ This command will download precompiled binaries for the following systems:
 - Windows x86
 - Windows ARM
 
-All other platforms require building a custom binary as described below, since the `postinstall` step builds the Rust library into a native Node.js module on your machine.
+## Components
+
+### Reader
+
+The `Reader` class is used to read and validate C2PA manifests from media files. It can parse embedded manifests or fetch remote manifests.
+
+```javascript
+import { Reader } from '@contentauth/c2pa-node';
+
+// Read from an asset file
+const reader = await Reader.fromAsset(inputAsset);
+
+// Read from manifest data and asset
+const reader = await Reader.fromManifestDataAndAsset(manifestData, asset);
+
+// Get the manifest store as JSON
+const manifestStore = reader.json();
+
+// Get the active manifest
+const activeManifest = reader.getActive();
+
+// Check if manifest is embedded
+const isEmbedded = reader.isEmbedded();
+
+// Get remote URL if applicable
+const remoteUrl = reader.remoteUrl();
+```
+
+### Builder
+
+The `Builder` class is the main component for creating and signing C2PA manifests. It provides methods to add assertions, resources, and ingredients to manifests, and handles the signing process. Use the `Signer` class to sign the manifests.
+
+```javascript
+import { Builder } from '@contentauth/c2pa-node';
+
+// Create a new builder
+const builder = Builder.new();
+
+// Or create from an existing manifest definition
+const builder = Builder.withJson(manifestDefinition);
+
+// Add assertions to the manifest
+builder.addAssertion('c2pa.actions', actionsAssertion);
+
+// Add resources
+await builder.addResource('resource://example', resourceAsset);
+
+// Sign the manifest
+const manifest = builder.sign(signer, inputAsset, outputAsset);
+```
+
+### Signers
+
+The library provides several types of signers for different use cases:
+
+#### LocalSigner
+
+For local signing with certificates and private keys:
+
+```javascript
+import { LocalSigner } from '@contentauth/c2pa-node';
+
+// Create a local signer with certificate and private key
+const signer = LocalSigner.newSigner(
+  certificateBuffer,
+  privateKeyBuffer,
+  'es256', // signing algorithm
+  'https://timestamp.example.com' // optional TSA URL
+);
+
+// Sign data
+const signature = signer.sign(dataBuffer);
+```
+
+#### CallbackSigner
+
+For custom signing implementations using callbacks:
+
+```javascript
+import { CallbackSigner } from '@contentauth/c2pa-node';
+
+// Create a callback signer
+const signer = CallbackSigner.newSigner(
+  {
+    alg: 'es256',
+    certs: [certificateBuffer],
+    reserveSize: 1024, // Reserved size in bytes for the C2PA Claim Signature box.
+    tsaUrl: 'https://timestamp.example.com'
+  },
+  async (data) => {
+    // Custom signing logic
+    return await customSigningFunction(data);
+  }
+);
+```
+
+### Identity Assertion Components
+
+For working with identity assertions and CAWG (Content Authenticity Working Group) identities:
+
+#### IdentityAssertionBuilder
+
+Builds identity assertions with roles and referenced assertions:
+
+```javascript
+import { IdentityAssertionBuilder, CallbackCredentialHolder } from '@contentauth/c2pa-node';
+
+// Create a credential holder
+const credentialHolder = CallbackCredentialHolder.newCallbackCredentialHolder(
+  1024,     // reserveSize
+  'es256',  // sigType
+  async (payload) => {
+    // Custom signing logic for identity assertions
+    return await signIdentityPayload(payload);
+  }
+);
+
+// Create an identity assertion builder
+const identityBuilder = await IdentityAssertionBuilder.identityBuilderForCredentialHolder(
+  credentialHolder
+);
+
+// Add roles and referenced assertions
+identityBuilder.addRoles(['photographer', 'editor']);
+identityBuilder.addReferencedAssertions(['c2pa.actions']);
+```
+
+#### IdentityAssertionSigner
+
+Signs manifests with identity assertions:
+
+```javascript
+import { IdentityAssertionSigner } from '@contentauth/c2pa-node';
+
+// Create an identity assertion signer
+const identitySigner = IdentityAssertionSigner.new(callbackSigner);
+
+// Add identity assertion
+identitySigner.addIdentityAssertion(identityBuilder);
+
+// Use with Builder for signing
+const manifest = await builder.signAsync(identitySigner, inputAsset, outputAsset);
+```
+
+### Trustmark
+
+The `Trustmark` class provides functionality for encoding and decoding trustmarks in images:
+
+```javascript
+import { Trustmark } from '@contentauth/c2pa-node';
+
+// Create a trustmark instance
+const trustmark = await Trustmark.newTrustmark({
+  // trustmark configuration
+});
+
+// Encode a trustmark into an image
+const encodedImage = await trustmark.encode(
+  imageBuffer,
+  0.5, // strength
+  'watermark-text' // optional watermark
+);
+
+// Decode a trustmark from an image
+const decodedData = await trustmark.decode(imageBuffer);
+```
+
+### Settings and Configuration
+
+The library provides comprehensive settings management for trust configuration, verification settings, and global C2PA settings:
+
+```javascript
+import {
+  loadC2paSettings,
+  loadTrustConfig,
+  loadVerifyConfig,
+  loadSettingsFromFile,
+  loadSettingsFromUrl
+} from '@contentauth/c2pa-node';
+
+// Load settings from JSON string
+loadC2paSettings('{"trust": {"verify_trust_list": true}}');
+
+// Load settings from file
+await loadSettingsFromFile('./c2pa-settings.json');
+
+// Load settings from URL
+await loadSettingsFromUrl('https://example.com/c2pa-settings.json');
+
+// Configure trust settings
+loadTrustConfig({
+  verifyTrustList: true,
+  userAnchors: ['anchor1', 'anchor2'],
+  trustAnchors: ['trust-anchor1'],
+  allowedList: ['allowed-cert1']
+});
+
+// Configure verification settings
+loadVerifyConfig({
+  verifyAfterReading: true,
+  verifyAfterSign: true,
+  verifyTrust: true,
+  ocspFetch: true,
+  remoteManifestFetch: true
+});
+```
@@ -7,6 +7,7 @@
 ## Classes
 
 - [Builder](classes/Builder.md)
+- [CallbackCredentialHolder](classes/CallbackCredentialHolder.md)
 - [CallbackSigner](classes/CallbackSigner.md)
 - [IdentityAssertionBuilder](classes/IdentityAssertionBuilder.md)
 - [IdentityAssertionSigner](classes/IdentityAssertionSigner.md)
@@ -16,48 +17,55 @@
 
 ## Interfaces
 
-- [Actor](interfaces/Actor.md)
-- [AssertionDefinition](interfaces/AssertionDefinition.md)
-- [AssetType](interfaces/AssetType.md)
 - [BuilderInterface](interfaces/BuilderInterface.md)
+- [CallbackCredentialHolderInterface](interfaces/CallbackCredentialHolderInterface.md)
 - [CallbackSignerInterface](interfaces/CallbackSignerInterface.md)
-- [ClaimGeneratorInfo](interfaces/ClaimGeneratorInfo.md)
-- [DataSource](interfaces/DataSource.md)
 - [DestinationBufferAsset](interfaces/DestinationBufferAsset.md)
 - [FileAsset](interfaces/FileAsset.md)
 - [HashedUri](interfaces/HashedUri.md)
 - [IdentityAssertionBuilderInterface](interfaces/IdentityAssertionBuilderInterface.md)
 - [IdentityAssertionSignerInterface](interfaces/IdentityAssertionSignerInterface.md)
-- [Ingredient](interfaces/Ingredient.md)
-- [IngredientOptions](interfaces/IngredientOptions.md)
-- [IngredientThumbnail](interfaces/IngredientThumbnail.md)
 - [JsCallbackSignerConfig](interfaces/JsCallbackSignerConfig.md)
 - [LocalSignerInterface](interfaces/LocalSignerInterface.md)
-- [Manifest](interfaces/Manifest.md)
-- [ManifestAssertion](interfaces/ManifestAssertion.md)
-- [ManifestDefinition](interfaces/ManifestDefinition.md)
-- [ManifestStore](interfaces/ManifestStore.md)
-- [Metadata](interfaces/Metadata.md)
 - [ReaderInterface](interfaces/ReaderInterface.md)
-- [ResourceRef](interfaces/ResourceRef.md)
-- [ResourceStore](interfaces/ResourceStore.md)
-- [ReviewRating](interfaces/ReviewRating.md)
-- [SignatureInfo](interfaces/SignatureInfo.md)
+- [SignerPayload](interfaces/SignerPayload.md)
 - [SourceBufferAsset](interfaces/SourceBufferAsset.md)
+- [TrustConfig](interfaces/TrustConfig.md)
 - [TrustmarkConfig](interfaces/TrustmarkConfig.md)
 - [TrustmarkInterface](interfaces/TrustmarkInterface.md)
-- [ValidationStatus](interfaces/ValidationStatus.md)
+- [VerifyConfig](interfaces/VerifyConfig.md)
 
 ## Type Aliases
 
 - [CallbackSignerConfig](type-aliases/CallbackSignerConfig.md)
 - [ClaimVersion](type-aliases/ClaimVersion.md)
-- [DateT](type-aliases/DateT.md)
 - [DestinationAsset](type-aliases/DestinationAsset.md)
 - [ManifestAssertionKind](type-aliases/ManifestAssertionKind.md)
-- [Relationship](type-aliases/Relationship.md)
+- [NeonBuilderHandle](type-aliases/NeonBuilderHandle.md)
+- [NeonCallbackCredentialHolderHandle](type-aliases/NeonCallbackCredentialHolderHandle.md)
+- [NeonCallbackSignerHandle](type-aliases/NeonCallbackSignerHandle.md)
+- [NeonIdentityAssertionBuilderHandle](type-aliases/NeonIdentityAssertionBuilderHandle.md)
+- [NeonIdentityAssertionSignerHandle](type-aliases/NeonIdentityAssertionSignerHandle.md)
+- [NeonLocalSignerHandle](type-aliases/NeonLocalSignerHandle.md)
+- [NeonReaderHandle](type-aliases/NeonReaderHandle.md)
+- [NeonTrustmarkHandle](type-aliases/NeonTrustmarkHandle.md)
 - [SigningAlg](type-aliases/SigningAlg.md)
 - [SourceAsset](type-aliases/SourceAsset.md)
 - [TrustmarkVariant](type-aliases/TrustmarkVariant.md)
 - [TrustmarkVersion](type-aliases/TrustmarkVersion.md)
-- [UriOrResource](type-aliases/UriOrResource.md)
+
+## Functions
+
+- [getCawgTrustConfig](functions/getCawgTrustConfig.md)
+- [getSettingsJson](functions/getSettingsJson.md)
+- [getTrustConfig](functions/getTrustConfig.md)
+- [getVerifyConfig](functions/getVerifyConfig.md)
+- [isActionsAssertion](functions/isActionsAssertion.md)
+- [loadC2paSettings](functions/loadC2paSettings.md)
+- [loadC2paSettingsToml](functions/loadC2paSettingsToml.md)
+- [loadCawgTrustConfig](functions/loadCawgTrustConfig.md)
+- [loadSettingsFromFile](functions/loadSettingsFromFile.md)
+- [loadSettingsFromUrl](functions/loadSettingsFromUrl.md)
+- [loadTrustConfig](functions/loadTrustConfig.md)
+- [loadVerifyConfig](functions/loadVerifyConfig.md)
+- [patchVerifyConfig](functions/patchVerifyConfig.md)