Update the registry call to use the latest Android Jetpack API

Author: QZHelen

app/build.gradle.kts

@@ -48,8 +48,11 @@ dependencies {
     implementation(libs.ktor.serialization.kotlinx.json)
     implementation(libs.androidx.lifecycle.viewmodel.compose)
     implementation(libs.androidx.registry.digitalcredentials.mdoc)
+    implementation(libs.androidx.registry.digitalcredentials.sdjwt)
+    implementation(libs.androidx.registry.digitalcredentials.openid)
     implementation(libs.androidx.registry.provider)
     implementation(libs.androidx.credentials)
+    implementation(libs.androidx.credentials.play)
     implementation(libs.play.services.identity.credentials)
     implementation(libs.androidx.registry.provider.play.services)
     implementation(libs.lifecycle.runtime.ktx)

app/src/main/java/com/credman/cmwallet/CmWalletApplication.kt

@@ -7,8 +7,10 @@ import androidx.core.graphics.drawable.toBitmap
 import androidx.credentials.DigitalCredential
 import androidx.credentials.ExperimentalDigitalCredentialApi
 import androidx.credentials.provider.CallingAppInfo
+import androidx.credentials.registry.digitalcredentials.openid4vp.OpenId4VpRegistry
 import androidx.credentials.registry.provider.RegisterCredentialsRequest
 import androidx.credentials.registry.provider.RegistryManager
+import androidx.credentials.registry.provider.digitalcredentials.DigitalCredentialRegistry
 import androidx.room.Room
 import com.credman.cmwallet.data.repository.CredentialRepository
 import com.credman.cmwallet.data.repository.CredentialRepository.Companion.ICON
@@ -39,6 +41,8 @@ class CmWalletApplication : Application() {
         lateinit var database: CredentialDatabase
         lateinit var credentialRepo: CredentialRepository
 
+        lateinit var walletIcon: Bitmap
+
         fun computeClientId(callingAppInfo: CallingAppInfo): String {
             val origin = callingAppInfo.getOrigin(credentialRepo.privAppsJson)
             return if (origin == null) {
@@ -61,6 +65,8 @@ class CmWalletApplication : Application() {
     override fun onCreate() {
         super.onCreate()
 
+        walletIcon = resources.getDrawable(R.mipmap.ic_launcher, theme).toBitmap()
+
         val testIssuerSignedString =
             "ompuYW1lU3BhY2VzoXFvcmcuaXNvLjE4MDEzLjUuMYPYGFhUpGhkaWdlc3RJRABmcmFuZG9tUKRsGD3aPLpwu_wGZyvuvdxxZWxlbWVudElkZW50aWZpZXJrZmFtaWx5X25hbWVsZWxlbWVudFZhbHVlZVNtaXRo2BhYUaRoZGlnZXN0SUQBZnJhbmRvbVAQwZXPLt5ybFSqRvFVCnPocWVsZW1lbnRJZGVudGlmaWVyamdpdmVuX25hbWVsZWxlbWVudFZhbHVlY0pvbtgYWE-kaGRpZ2VzdElEAmZyYW5kb21QPNysOvdkUbmuOPhvyXsrAHFlbGVtZW50SWRlbnRpZmllcmthZ2Vfb3Zlcl8yMWxlbGVtZW50VmFsdWX1amlzc3VlckF1dGiEQ6EBJqEYIVkCSzCCAkcwggHtoAMCAQICFHStD_3VcEOVnxRIW57aoGfaMp7FMAoGCCqGSM49BAMCMHkxCzAJBgNVBAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRYwFAYDVQQHDA1Nb3VudGFpbiBWaWV3MRwwGgYDVQQKDBNEaWdpdGFsIENyZWRlbnRpYWxzMR8wHQYDVQQDDBZkaWdpdGFsY3JlZGVudGlhbHMuZGV2MB4XDTI0MTExMDAxMDgwM1oXDTM0MTAyOTAxMDgwM1oweTELMAkGA1UEBhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExFjAUBgNVBAcMDU1vdW50YWluIFZpZXcxHDAaBgNVBAoME0RpZ2l0YWwgQ3JlZGVudGlhbHMxHzAdBgNVBAMMFmRpZ2l0YWxjcmVkZW50aWFscy5kZXYwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAATrQ6h60nar2xgrGpTMbRRYLBtWyfkHw2k4QzZc40EsBJNeDp-WXKz85dJjNloCsC7Ckb1spirxQdKVPWy2eRBpo1MwUTAdBgNVHQ4EFgQUCyxw_AMcbG8Lp1EwUuOaRBk527AwHwYDVR0jBBgwFoAUCyxw_AMcbG8Lp1EwUuOaRBk527AwDwYDVR0TAQH_BAUwAwEB_zAKBggqhkjOPQQDAgNIADBFAiEA_JW68hhRYz9l2scu8yW55xi7yyq7ycHg6arTH4b75zMCIG5DADVEbdGnoh6rzTKUdXEh2EnsgjERk6vH6u25Y4fLWQG62BhZAbWmZ3ZlcnNpb25jMS4wb2RpZ2VzdEFsZ29yaXRobWdTSEEtMjU2Z2RvY1R5cGV1b3JnLmlzby4xODAxMy41LjEubURMbHZhbHVlRGlnZXN0c6Fxb3JnLmlzby4xODAxMy41LjGjAFgg-TGk78sfX6xxEfdjckEmDSfiVWzOGIIwTqm0oQetoR8BWCAcX3iJNwCyYOy1Bfl9sAjv1lEuD7iXI5dJbkwPUB6-RwJYIGFOQ5HGtkmhrJWuJ6eTdM2PC_lAIDR5_9pWUiRogpWwbWRldmljZUtleUluZm-haWRldmljZUtleaQBAiABIVggdO8Xw9vvSFlJ9WC7Jd69A_jZ8fbaDi54X92jIbkJmxoiWCAMTMw-ipf52P1MpCfqncpCKgmnEXVhBruNhKLUYs3VhWx2YWxpZGl0eUluZm-jZnNpZ25lZMB4GzIwMjQtMTEtMTdUMjA6NTI6MjIuOTE5NzgyWml2YWxpZEZyb23AeBsyMDI0LTExLTE3VDIwOjUyOjIyLjkxOTc4OVpqdmFsaWRVbnRpbMB4GzIwMzQtMTEtMDVUMjA6NTI6MjIuOTE5Nzg5WlhAl1Lt2d0SSsbuMizlTkVeLR7wucamVyUhyHm6PdG1W0YWXIxfLGwP0rG7Zhpuomh5kpItM7lRdR_FdkJHXO81MQ"
         val testIssuerSigned = testIssuerSignedString.decodeBase64UrlNoPadding()
@@ -85,24 +91,14 @@ class CmWalletApplication : Application() {
 
         // Listen for new credentials and update the registry.
         applicationScope.launch {
-            credentialRepo.credentialRegistryDatabase.collect { credentialDatabase ->
-                Log.i(TAG, "Credentials changed $credentialDatabase")
-                registryManager.registerCredentials(
-                    request = object : RegisterCredentialsRequest(
-                        DigitalCredential.TYPE_DIGITAL_CREDENTIAL,
-                        "openid4vp",
-                        credentialDatabase,
-                        openId4VPDraft24Matcher
-                    ) {}
-                )
-                registryManager.registerCredentials(
-                    request = object : RegisterCredentialsRequest(
-                        DigitalCredential.TYPE_DIGITAL_CREDENTIAL,
-                        "openid4vp1.0",
-                        credentialDatabase,
-                        openId4VP1_0Matcher
-                    ) {}
-                )
+            credentialRepo.credentialRegistryDatabase.collect { openid4vpRegistry ->
+                Log.i(TAG, "Credentials changed $openid4vpRegistry")
+//                registryManager.registerCredentials(openid4vpRegistry)
+                registryManager.registerCredentials(object : DigitalCredentialRegistry(
+                    id = openid4vpRegistry.id,
+                    credentials = openid4vpRegistry.credentials,
+                    matcher = openId4VP1_0Matcher
+                ) {})
 
                 // Phone number verification demo
                 credentialRepo.registerPhoneNumberVerification(registryManager, loadPhoneNumberMatcher())

app/src/main/java/com/credman/cmwallet/data/repository/CredentialRepository.kt

@@ -1,14 +1,23 @@
 package com.credman.cmwallet.data.repository
 
-import android.graphics.Bitmap
-import android.os.Build
+import android.graphics.BitmapFactory
 import android.util.Log
-import androidx.core.graphics.drawable.toBitmap
 import androidx.credentials.DigitalCredential
 import androidx.credentials.ExperimentalDigitalCredentialApi
+import androidx.credentials.registry.digitalcredentials.mdoc.MdocEntry
+import androidx.credentials.registry.digitalcredentials.mdoc.MdocField
+import androidx.credentials.registry.digitalcredentials.mdoc.MdocInlineIssuanceEntry
+import androidx.credentials.registry.digitalcredentials.openid4vp.OpenId4VpRegistry
+import androidx.credentials.registry.digitalcredentials.sdjwt.SdJwtClaim
+import androidx.credentials.registry.digitalcredentials.sdjwt.SdJwtEntry
+import androidx.credentials.registry.digitalcredentials.sdjwt.SdJwtInlineIssuanceEntry
 import androidx.credentials.registry.provider.RegisterCredentialsRequest
 import androidx.credentials.registry.provider.RegistryManager
-import com.credman.cmwallet.R
+import androidx.credentials.registry.provider.digitalcredentials.DigitalCredentialEntry
+import androidx.credentials.registry.provider.digitalcredentials.InlineIssuanceEntry
+import androidx.credentials.registry.provider.digitalcredentials.VerificationEntryDisplayProperties
+import androidx.credentials.registry.provider.digitalcredentials.VerificationFieldDisplayProperties
+import com.credman.cmwallet.CmWalletApplication
 import com.credman.cmwallet.data.model.CredentialDisplayData
 import com.credman.cmwallet.data.model.CredentialItem
 import com.credman.cmwallet.data.model.CredentialKeySoftware
@@ -58,10 +67,10 @@ class CredentialRepository {
 
     val credentials: Flow<List<CredentialItem>> = combinedCredentials()
 
-    val credentialRegistryDatabase: Flow<ByteArray> = flow {
+    val credentialRegistryDatabase: Flow<OpenId4VpRegistry> = flow {
         emitAll(combinedCredentials().map { credentials ->
             Log.i("CredentialRepository", "Updating flow with ${credentials.size}")
-            createRegistryDatabase(credentials)
+            createRegistry(credentials)
         })
     }
 
@@ -163,151 +172,137 @@ class CredentialRepository {
         put(ICON, iconJson)
     }
 
-    private fun constructJwtForRegistry(
+    private fun constructJwtClaims(
         rawJwt: JSONObject,
         displayConfig: CredentialConfigurationSdJwtVc?,
-        path: JSONArray,
-    ): JSONObject {
-        val result = JSONObject()
+        claims: MutableList<SdJwtClaim>,
+        path: List<String>
+    ) {
         for (key in rawJwt.keys()) {
             val v = rawJwt[key]
-            val currPath = JSONArray(path.toString()) // Make a copy
-            currPath.put(key)
+            val currPath = path.toMutableList() // Make a copy
+            currPath.add(key)
             if (v is JSONObject) {
-                result.put(
-                    key,
-                    constructJwtForRegistry(v, displayConfig, currPath)
+                constructJwtClaims(
+                    v,
+                    displayConfig,
+                    claims,
+                    currPath
                 )
             } else {
-                result.put(
-                    key,
-                    JSONObject().apply {
-                        val displayName = displayConfig?.claims?.firstOrNull{
-                            JSONArray(it.path) == currPath
-                        }?.display?.first()?.name ?: key
-                        putOpt(DISPLAY, displayName)
-                        putOpt(VALUE, v)
-                    }
+                val displayName = displayConfig?.claims?.firstOrNull{
+                    JSONArray(it.path) == currPath
+                }?.display?.first()?.name ?: currPath.joinToString(separator = ".")
+                claims.add(
+                    SdJwtClaim(
+                        path = currPath,
+                        value = v,
+                        fieldDisplayPropertySet = setOf(VerificationFieldDisplayProperties(
+                            displayName = displayName,
+                        )),
+//                        isSelectivelyDisclosable = TODO()
+                    )
                 )
             }
         }
-        return result
     }
 
-    /**
-     * Credential Registry has the following format:
-     *
-     * |---------------------------------------|
-     * |--- (Int) offset of credential json ---|
-     * |--------- (Byte Array) Icon 1 ---------|
-     * |--------- (Byte Array) Icon 2 ---------|
-     * |------------- More Icons... -----------|
-     * |----------- Credential Json -----------|  // See assets/paymentcreds.json as an example
-     * |---------------------------------------|
-     */
     @OptIn(ExperimentalEncodingApi::class)
-    private fun createRegistryDatabase(items: List<CredentialItem>): ByteArray {
-        val out = ByteArrayOutputStream()
-
-        val iconMap: Map<String, RegistryIcon> = items.associate {
-            Pair(
-                it.id,
-                RegistryIcon(it.displayData.icon?.decodeBase64() ?: ByteArray(0))
-            )
-        }
-        // Write the offset to the json
-        val jsonOffset = 4 + iconMap.values.sumOf { it.iconValue.size }
-        val buffer = ByteBuffer.allocate(4)
-        buffer.order(ByteOrder.LITTLE_ENDIAN)
-        buffer.putInt(jsonOffset)
-        out.write(buffer.array())
+    private fun createRegistry(items: List<CredentialItem>): OpenId4VpRegistry {
+        val credentialEntries: MutableList<DigitalCredentialEntry> = mutableListOf()
 
-        // Write the icons
-        var currIconOffset = 4
-        iconMap.values.forEach {
-            it.iconOffset = currIconOffset
-            out.write(it.iconValue)
-            currIconOffset += it.iconValue.size
-        }
-
-        val mdocCredentials = JSONObject()
-        val sdJwtCredentials = JSONObject()
         items.forEach { item ->
             when (item.config) {
                 is CredentialConfigurationSdJwtVc -> {
-                    val credJson = JSONObject()
-                    credJson.putCommon(item.id, item.displayData, iconMap)
                     val sdJwtVc = SdJwt(item.credentials.first().credential, (item.credentials.first().key as CredentialKeySoftware).privateKey)
                     val rawJwt = sdJwtVc.verifiedResult.processedJwt
-                    val jwtWithDisplay = constructJwtForRegistry(rawJwt, item.config, JSONArray())
-                    // TODO: what do we do with non-user-friendly claims such as iss, aud?
-                    credJson.put(PATHS, jwtWithDisplay)
-                    val vctType = rawJwt["vct"] as String
-                    when (val current = sdJwtCredentials.opt(vctType) ?: JSONArray()) {
-                        is JSONArray -> sdJwtCredentials.put(vctType, current.put(credJson))
-                        else -> throw IllegalStateException("Unexpected type ${current::class.java}")
-                    }
-
+                    val claims = mutableListOf<SdJwtClaim>()
+                    constructJwtClaims(rawJwt, item.config, claims, emptyList())
+                    credentialEntries.add(SdJwtEntry(
+                        verifiableCredentialType = rawJwt["vct"] as String,
+                        claims = claims,
+                        entryDisplayPropertySet = setOf(VerificationEntryDisplayProperties(
+                            title = item.displayData.title,
+                            subtitle = item.displayData.subtitle,
+                            icon = item.displayData.icon?.decodeBase64()?.let {
+                                BitmapFactory.decodeByteArray(it, 0, it.size)
+                            } ?: CmWalletApplication.walletIcon
+                        )),
+                        id = item.id,
+                    ))
                 }
                 is CredentialConfigurationMDoc -> {
-                    val credJson = JSONObject()
-                    credJson.putCommon(item.id, item.displayData, iconMap)
                     val mdoc = MDoc(item.credentials.first().credential.decodeBase64UrlNoPadding())
+                    val mdocFields = mutableListOf<MdocField>()
                     if (mdoc.issuerSignedNamespaces.isNotEmpty()) {
-                        val pathJson = JSONObject()
                         mdoc.issuerSignedNamespaces.forEach { (namespace, elements) ->
-                            val namespaceJson = JSONObject()
                             elements.forEach { (element, value) ->
-                                val namespaceDataJson = JSONObject()
-                                namespaceDataJson.putOpt(VALUE, value)
                                 val displayName = item.config.claims?.firstOrNull{
                                     it.path[0] == namespace && it.path[1] == element
                                 }?.display?.first()?.name!!
-                                namespaceDataJson.put(DISPLAY, displayName)
-//                                namespaceDataJson.putOpt(
-//                                    DISPLAY_VALUE,
-//                                    namespaceData.value.displayValue
-//                                )
-                                namespaceJson.put(element, namespaceDataJson)
-                            }
-                            pathJson.put(namespace, namespaceJson)
-                        }
-                        credJson.put(PATHS, pathJson)
-                    }
-                    if (Build.VERSION.SDK_INT >= 33) {
-                        mdocCredentials.append(item.config.doctype, credJson)
-                    } else {
-                        when (val current = mdocCredentials.opt(item.config.doctype)) {
-                            is JSONArray -> {
-                                mdocCredentials.put(item.config.doctype, current.put(credJson))
-                            }
-
-                            null -> {
-                                mdocCredentials.put(
-                                    item.config.doctype,
-                                    JSONArray().put(credJson)
+                                mdocFields.add(
+                                    MdocField(
+                                        namespace = namespace,
+                                        identifier = element,
+                                        fieldValue = value,
+                                        fieldDisplayPropertySet = setOf(
+                                            VerificationFieldDisplayProperties(
+                                                displayName = displayName,
+//                                                displayValue = namespaceData.value.displayValue
+                                            )
+                                        )
+                                    )
                                 )
                             }
-
-                            else -> throw IllegalStateException(
-                                "Unexpected namespaced data that's" +
-                                        " not a JSONArray. Instead it is ${current::class.java}"
-                            )
                         }
                     }
+                    credentialEntries.add(MdocEntry(
+                        docType = item.config.doctype,
+                        fields = mdocFields,
+                        entryDisplayPropertySet = setOf(VerificationEntryDisplayProperties(
+                            title = item.displayData.title,
+                            subtitle = item.displayData.subtitle,
+                            icon = item.displayData.icon?.decodeBase64()?.let {
+                                BitmapFactory.decodeByteArray(it, 0, it.size)
+                            } ?: CmWalletApplication.walletIcon
+                        )),
+                        id = item.id,
+                    ))
                 }
 
                 is CredentialConfigurationUnknownFormat -> TODO()
             }
         }
-        val registryCredentials = JSONObject()
-        registryCredentials.put("mso_mdoc", mdocCredentials)
-        registryCredentials.put("dc+sd-jwt", sdJwtCredentials)
-        val registryJson = JSONObject()
-        registryJson.put(CREDENTIALS, registryCredentials)
-        Log.d(TAG, "Credential to be registered: ${registryJson.toString(2)}")
-        out.write(registryJson.toString().toByteArray())
-        return out.toByteArray()
+        return OpenId4VpRegistry(
+            credentialEntries = credentialEntries,
+            inlineIssuanceEntries = emptyList(),
+//                listOf(
+//                MdocInlineIssuanceEntry(
+//                    id = "Issuance",
+//                    display = InlineIssuanceEntry.InlineIssuanceDisplayProperties(
+//                        subtitle = "Mobile Drivers License, State Id, and Others",
+//                    ),
+//                    supportedMdocs = setOf(
+//                        MdocInlineIssuanceEntry.SupportedMdoc(
+//                        "eu.europa.ec.eudi.pid.1"
+//                        ),
+//                        MdocInlineIssuanceEntry.SupportedMdoc(
+//                        "org.iso.18013.5.1.mDL1"
+//                        ),
+//                    )
+//                ),
+//                SdJwtInlineIssuanceEntry(
+//                    id = "sd-jwt-issuance",
+//                    display = InlineIssuanceEntry.InlineIssuanceDisplayProperties(
+//                        subtitle = "Mobile Drivers License, State Id, and Others",
+//                    ),
+//                    supportedSdJwts = setOf(
+//                        SdJwtInlineIssuanceEntry.SupportedSdJwt("urn:openid:interop:id:1")
+//                    )
+//                )
+//            ),
+            id = "openid4vp1.0",
+        )
     }
 
     companion object {