@ipld/dag-ucan
Advanced tools
Readme
An implementation of UCANs in IPLD via Advanced Data Layout (ADL), designed for use with multiformats.
This library provides an ADL for representing UCANs natively in IPLD. It implements UCAN IPLD specification and uses DAG-CBOR as a primary encoding, which is hash consistent and more compact than a secondary RAW JWT encoding. Every UCAN in either encoding can be formatted into a valid JWT string and consumed by other spec compliant UCAN implementations. However UCANs issued by other libraries may end up in represented in secondory RAW JWT encoding, that is because whitespaces and key order in JWT affects signatures and there for can't be represented accurately in CBOR. When parsing UCANs library will use CBOR representation and fallback to RAW JWT, which allows interop with all existing tokens in the wild.
import * as UCAN from "@ipld/dag-ucan"
UCAN.parse(jwt: string): UCAN.ViewParses UCAN formatted as JWT string into a representatino that can be encoded, formatted and queried.
const ucan = UCAN.parse(jwt)
ucan.issuer.did() // did:key:z6Mkk89bC3JrVqKie71YEcc5M1SMVxuCgNx6zLZ8SYJsxALi
UCAN.format(ucan: UCAN.UCAN): stringFormats UCAN into a JWT string.
UCAN.format(UCAN.parse(jwt)) === jwt // true
UCAN.encode(ucan: UCAN.UCAN): Uint8ArrayEncodes UCAN into a binary representation.
UCAN.encode(UCAN.parse(jwt)) // Uint8Array(679)
UCAN.decode(bytes: Uint8Array): UCAN.UCANDecodes UCAN from binary representation into object representation.
UCAN.decode(UCAN.encode(ucan))
UCAN.issue(options: UCAN.UCANOptions): Promise<UCAN.UCAN>Issues a signed UCAN.
Please note that no capability or time bound validation takes place.
const ucan = await UCAN.issue({
issuer: alice,
audience: bob,
capabilities: [
{
can: "fs/read",
with: `storage://${alice.did()}/public/photos/`,
},
{
can: "pin/add",
with: alice.did(),
},
],
})
While not recommended, it is possible to inline proofs inside a single UCAN using CIDs with identity multihash:
import { identity } from "multiformats/hashes/identity"
const proof = await UCAN.issue({
issuer: alice,
audience: bob,
capabilities: [{ can: "store/add", with: alice.did() }],
})
const delegation = await UCAN.issue({
issuer: bob,
audience: mallory,
capabilities: proof.capabilities,
proofs: [await UCAN.link(proof, { hasher: identity })],
})
FAQs
UCAN codec for IPLD
The npm package @ipld/dag-ucan receives a total of 1,924 weekly downloads. As such, @ipld/dag-ucan popularity was classified as popular.
We found that @ipld/dag-ucan demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 9 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Ecma TC39 is meeting this week and has moved key ECMAScript proposals forward, advancing Deferred Import Evaluation, Error.isError(), RegExp Escaping, and Promise.try to the next stages.
Security News
Researchers have demonstrated that teams of LLM agents can exploit zero-day vulnerabilities with a 53% success rate, and the costs of using AI to do so are rapidly becoming more affordable than hiring a human penetration tester.
Security News
In an unprecedented surge, May 2024 saw the publication of over 5,000 CVEs, marking a historic milestone in cybersecurity with an average of 164 CVEs per day, nearly double the 2023 daily average.