Did 3 things:

QZHelen · QZHelen · commit 0a02df2a9de0 · 2025-05-06T03:55:26.000Z
1. Fixed #1 2. Updated dependencies 3. Dynamically generate protocol identifier in the Digital Credentails response
diff --git a/app/build.gradle.kts b/app/build.gradle.kts
@@ -48,7 +48,6 @@ dependencies {
     implementation(libs.ktor.serialization.kotlinx.json)
     implementation(libs.androidx.lifecycle.viewmodel.compose)
     implementation(libs.androidx.registry.digitalcredentials.mdoc)
-    implementation(libs.androidx.registry.digitalcredentials.preview)
     implementation(libs.androidx.registry.provider)
     implementation(libs.androidx.credentials)
     implementation(libs.play.services.identity.credentials)
diff --git a/app/src/main/java/com/credman/cmwallet/getcred/GetCredentialActivity.kt b/app/src/main/java/com/credman/cmwallet/getcred/GetCredentialActivity.kt
@@ -69,7 +69,7 @@ fun createOpenID4VPResponse(
                 sdJwtVc.present(
                     claims,
                     nonce = openId4VPRequest.nonce,
-                    clientId = openId4VPRequest.clientId
+                    aud = openId4VPRequest.getSdJwtKbAud(origin)
                 )
             )
         }
@@ -129,7 +129,7 @@ fun createOpenID4VPResponse(
         authenticationTitle = authenticationTitle,
         authenticationSubtitle = authenticationSubtitle,
         responseJsonModern = JSONObject().apply {
-            put("protocol", "openid4vp")
+            put("protocol", openId4VPRequest.protocolIdentifier)
             put("data", JSONObject(response))
         }.toString()
     )
diff --git a/app/src/main/java/com/credman/cmwallet/openid4vp/OpenId4VP.kt b/app/src/main/java/com/credman/cmwallet/openid4vp/OpenId4VP.kt
@@ -23,6 +23,12 @@ class OpenId4VP(
     val protocolIdentifier: String = "openid4vp",
 ) {
 
+    fun getSdJwtKbAud(origin: String) = when (protocolIdentifier) {
+        in IDENTIFIERS_1_0 -> "origin:$origin"
+        IDENTIFIER_DRAFT_24 -> clientId
+        else -> throw UnsupportedOperationException("Unsupported protocol idenfitier $protocolIdentifier")
+    }
+
     val nonce: String
 
     val dcqlQuery: JSONObject
diff --git a/app/src/main/java/com/credman/cmwallet/sdjwt/SdJwt.kt b/app/src/main/java/com/credman/cmwallet/sdjwt/SdJwt.kt
@@ -40,7 +40,7 @@ class SdJwt(
     fun present(
         claimSets: JSONArray?, // If null, match all
         nonce: String,
-        clientId: String
+        aud: String,
     ): String {
         val sdJwtComponents = mutableListOf(issuerJwt)
         if (claimSets == null) {
@@ -90,7 +90,7 @@ class SdJwt(
         }
         val kbPayload = buildJsonObject {
             put("iat", Instant.now().epochSecond)
-            put("aud", clientId)
+            put("aud", aud)
             put("nonce", nonce)
             put("sd_hash", digest)
         }
diff --git a/gradle/libs.versions.toml b/gradle/libs.versions.toml
@@ -22,7 +22,6 @@ androidx-core-ktx = { group = "androidx.core", name = "core-ktx", version.ref =
 androidx-credentials = { module = "androidx.credentials:credentials" }
 androidx-lifecycle-viewmodel-compose = { module = "androidx.lifecycle:lifecycle-viewmodel-compose" }
 androidx-registry-digitalcredentials-mdoc = { module = "androidx.credentials.registry:registry-digitalcredentials-mdoc", version.ref = "registryDigitalcredentialsMdoc" }
-androidx-registry-digitalcredentials-preview = { module = "androidx.credentials.registry:registry-digitalcredentials-preview", version.ref = "registryDigitalcredentialsMdoc" }
 androidx-registry-provider = { module = "androidx.credentials.registry:registry-provider", version.ref = "registryDigitalcredentialsMdoc" }
 androidx-registry-provider-play-services = { module = "androidx.credentials.registry:registry-provider-play-services", version.ref = "registryDigitalcredentialsMdoc" }
 androidx-room-compiler = { module = "androidx.room:room-compiler", version.ref = "roomRuntime" }

Original file line number	Diff line number	Diff line change
`@@ -69,7 +69,7 @@ fun createOpenID4VPResponse(`
`69`	`69`	`sdJwtVc.present(`
`70`	`70`	`claims,`
`71`	`71`	`nonce = openId4VPRequest.nonce,`
`72`		`- clientId = openId4VPRequest.clientId`
	`72`	`+ aud = openId4VPRequest.getSdJwtKbAud(origin)`
`73`	`73`	`)`
`74`	`74`	`)`
`75`	`75`	`}`
`@@ -129,7 +129,7 @@ fun createOpenID4VPResponse(`
`129`	`129`	`authenticationTitle = authenticationTitle,`
`130`	`130`	`authenticationSubtitle = authenticationSubtitle,`
`131`	`131`	`responseJsonModern = JSONObject().apply {`
`132`		`- put("protocol", "openid4vp")`
	`132`	`+ put("protocol", openId4VPRequest.protocolIdentifier)`
`133`	`133`	`put("data", JSONObject(response))`
`134`	`134`	`}.toString()`
`135`	`135`	`)`