feat: directed identity (#26)

* feat: support JWK client for directed identity

* refactor: mv client formatting to meet api spec closer to api boundary

* fix: non null type assertion

* chore: changeset

* chore: rm ts ignore comments

* undo JWK client implementation for redesign

* feat: client override

* fix: lint

* fix: changeset

* chore: add clientOverride field doc string

* feat: only allow JWK as a clientOverride

---------

Co-authored-by: Max Kurapov <max@interledger.org>

Author: BlairCurrey

.changeset/early-monkeys-shave.md

@@ -0,0 +1,5 @@
+---
+'@interledger/open-payments': minor
+---
+
+Added optional client override (JWK) to grant request.

packages/open-payments/src/client/grant.test.ts

@@ -1,7 +1,12 @@
 /* eslint-disable @typescript-eslint/no-explicit-any */
 import { createGrantRoutes } from './grant'
 import { OpenAPI, HttpMethod } from '@interledger/openapi'
-import { createTestDeps, mockGrantRequest, mockSubject } from '../test/helpers'
+import {
+  createTestDeps,
+  mockGrantRequest,
+  mockJwk,
+  mockSubject
+} from '../test/helpers'
 import * as requestors from './requests'
 import { v4 as uuid } from 'uuid'
 import { getAuthServerOpenAPI } from '../openapi'
@@ -211,6 +216,32 @@ describe('grant', (): void => {
         )
       })
 
+      test('POST grant request with clientOverride uses override instead of default', async (): Promise<void> => {
+        const postSpy = jest.spyOn(requestors, 'post')
+        const grantRequest = mockGrantRequest()
+        // eslint-disable-next-line @typescript-eslint/no-unused-vars
+        const { client: _client, ...grantRequestWithoutClient } = grantRequest
+        const jwk = mockJwk()
+
+        await createGrantRoutes({
+          openApi,
+          client,
+          ...deps
+        }).request({ url }, grantRequestWithoutClient, { jwk })
+
+        expect(postSpy).toHaveBeenCalledWith(
+          deps,
+          {
+            url,
+            body: {
+              ...grantRequestWithoutClient,
+              client: { jwk }
+            }
+          },
+          true
+        )
+      })
+
       test('POST grant request with neither access_token nor subject fails', async (): Promise<void> => {
         const emptyRequest: any = {
           interact: {

packages/open-payments/src/client/grant.ts

@@ -13,7 +13,8 @@ import {
   GrantRequest,
   GrantContinuationRequest,
   AccessOutgoingWithDebitAmount,
-  AccessOutgoingWithReceiveAmount
+  AccessOutgoingWithReceiveAmount,
+  JWK
 } from '../types'
 import { post, deleteRequest } from './requests'
 
@@ -24,7 +25,11 @@ export interface GrantRouteDeps extends RouteDeps {
 export interface GrantRoutes {
   request(
     postArgs: UnauthenticatedResourceRequestArgs,
-    args: Omit<GrantRequest, 'client'>
+    args: Omit<GrantRequest, 'client'>,
+    /**
+     * Optionally override the default client configuration with a JWK for this specific grant request.
+     */
+    clientOverride?: { jwk: JWK }
   ): Promise<PendingGrant | Grant>
   continue(
     postArgs: GrantOrTokenRequestArgs,
@@ -58,7 +63,8 @@ export const createGrantRoutes = (deps: GrantRouteDeps): GrantRoutes => {
   return {
     request: async (
       { url }: UnauthenticatedResourceRequestArgs,
-      args: Omit<GrantRequest, 'client'>
+      args: Omit<GrantRequest, 'client'>,
+      clientOverride?: { jwk: JWK }
     ) => {
       if (!args.access_token && !args.subject) {
         throw new OpenPaymentsClientError('Invalid Grant Request', {
@@ -90,7 +96,7 @@ export const createGrantRoutes = (deps: GrantRouteDeps): GrantRoutes => {
           url,
           body: {
             ...args,
-            client
+            client: clientOverride ?? client
           }
         },
         requestGrantValidator