Skip to content

feat: add ManagedKey aggregate and related components #249

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft
nanderstabel wants to merge 14 commits into
base: beta
Choose a base branch
from
Draft

feat: add ManagedKey aggregate and related components #249

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
e0b4822
feat: add `ManagedKey` aggregate and related components
nanderstabel Dec 12, 2025
58149f7
feat: implement key generation and removal sagas, update managed key …
nanderstabel Dec 17, 2025
3cd6c2c
fix: update did_manager dependencies
nanderstabel Dec 17, 2025
6b9a628
fix: update signing algorithm for ES256 and enhance ManagedKey event …
nanderstabel Dec 29, 2025
3480d3a
feat: initialize API layer for key management system (#252)
coplat Dec 30, 2025
e49a46d
refactor: `agent_issuance` and `agent_secret_manager` modules
nanderstabel Dec 30, 2025
02fcbb7
refactor: code structure for improved readability and maintainability
nanderstabel Dec 30, 2025
7922ce4
refactor: `agent_identity` and `agent_secret_manager` services
nanderstabel Dec 30, 2025
b0e5d48
refactor: test modules and enable test utilities
nanderstabel Dec 30, 2025
ad96c01
feat: implement default key generation and domain linkage service ini…
nanderstabel Dec 31, 2025
7c417f8
refactor: update document initialization logic to handle multiple com…
nanderstabel Dec 31, 2025
8d42e3b
refactor: rename `ThisIsTheMainService` to `IdentityApplicationServic…
nanderstabel Jan 1, 2026
4d3573e
feat: add support for unsetting signing keys and update related event…
nanderstabel Jan 1, 2026
1103e73
refactor: update dependency paths to use git sources for did-manager …
nanderstabel Jan 2, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
40 changes: 32 additions & 8 deletions Cargo.lock
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

3 changes: 3 additions & 0 deletions agent_api_http/Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,7 @@ agent_verification = { path = "../agent_verification" }

anyhow.workspace = true
askama = "0.14"
async-trait.workspace = true
axum.workspace = true
axum-auth = "0.8"
axum-macros = "0.5"
Expand All @@ -28,6 +29,8 @@ hyper = { version = "1.2" }
identity_core.workspace = true
identity_credential.workspace = true
identity_did.workspace = true
identity_iota.workspace = true
identity_storage.workspace = true
metrics = "0.24"
metrics-exporter-prometheus = { version = "0.17", default-features = false }
oauth_tsl.workspace = true
Expand Down
105 changes: 105 additions & 0 deletions agent_api_http/openapi.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1429,6 +1429,111 @@ paths:
"201":
description: Linked VP service created successfully

/v0/keys/generate-new-key:
post:
tags:
- Identity
summary: Generate a new key
description: Generates a new cryptographic key and stores it in the key management system.
requestBody:
required: true
content:
application/json:
schema:
type: object
required:
- alias
properties:
alias:
type: string
description: A human-readable name for this key.
example: "my-signing-key-01"
signatureAlgorithm:
type: string
description: The signature algorithm to use for this key. Defaults to Ed25519 if not specified.
example: "Ed25519"

/v0/keys/remove-key:
post:
tags:
- Identity
summary: Remove an existing key
description: Removes an existing cryptographic key from the key management system.
requestBody:
required: true
content:
application/json:
schema:
type: object
required:
- keyId
properties:
keyId:
type: string
description: The ID of the key to remove.
example: "a81bc81b-d7a7-4e5d-abff-90865d1e13b1"

/v0/keys/rename-key-alias:
post:
tags:
- Identity
summary: Rename the alias of a key
description: Renames the human-readable alias of an existing cryptographic key in the key management system.
requestBody:
required: true
content:
application/json:
schema:
type: object
required:
- keyId
- newAlias
properties:
keyId:
type: string
description: The ID of the key to rename.
example: "a81bc81b-d7a7-4e5d-abff-90865d1e13b1"
newAlias:
type: string
description: The new alias for the key.
example: "my-new-key-alias"

/v0/keys/set-signing-key:
post:
tags:
- Identity
summary: Set a key as the active signing key
description: Designates a specific managed key to be used for signing operations.
requestBody:
required: true
content:
application/json:
schema:
type: object
required:
- keyId
properties:
keyId:
type: string
description: The ID of the key to set as the signing key.
example: "a81bc81b-abcd-4e5d-abff-90865d1e13b1"

/v0/keys/list-all:
get:
tags:
- Identity
summary: List all managed keys
description: Retrieves a list of all cryptographic keys managed by the key management system.
responses:
"200":
description: Keys retrieved successfully
content:
application/json:
schema:
type: array
items:
type: object

/auth/token:
post:
summary: Standard OAuth 2.0 endpoint for fetching a token
Expand Down
Loading
Loading