credential issuance working in dev

Signed-off-by: wadeking98 <[email protected]>

openshift/TestConnections.txt

@@ -1,11 +1,8 @@
 # Uses the 'testConnection' script from https://github.com/BCDevOps/openshift-developer-tools
 # Example:
-# echo -e "agent-a2a\n api-a2a\n issuer-web-a2a\n vc-authn-agent\n vc-authn-controller\n" | xargs -I {} testConnection -n a99fd4-dev -f TestConnections.txt -p {}
+# echo -e "agent-bcvcpilot\n api-bcvcpilot\n" | xargs -I {} testConnection -n a99fd4-dev -f TestConnections.txt -p {}
 
 google.com:80
-agent-a2a:8024
-api-a2a:8080
-vc-authn-controller:5000
-vc-authn-agent:8024
-vc-authn-database:5432
-vc-authn-wallet:5432
+issuer-db-bcvcpilot:27017
+agent-bcvcpilot:8024
+api-bcvcpilot:8080

openshift/settings.bcvcpilot.sh

@@ -0,0 +1,6 @@
+# Description: Credential issuer profile - Digital Trust Demo Apps Environment
+export PROJECT_NAMESPACE="a99fd4"
+export SKIP_PIPELINE_PROCESSING=1
+# this assumes that the agent, api, admin and web builds are available from Essential Serives Delivery
+export include_templates="issuer-agent-deploy issuer-api-deploy issuer-web-deploy issuer-admin-deploy issuer-db-deploy"
+export ignore_templates=""

openshift/templates/issuer-admin/config/bcvcpilot/claim-config.json

@@ -0,0 +1,28 @@
+{
+  "questions": [
+    {
+      "name": "name",
+      "type": "text",
+      "title": "Name:",
+      "placeHolder": "",
+      "isRequired": true,
+      "requiredErrorText": "Required Field"
+    },
+    {
+      "name": "emailAddress",
+      "type": "text",
+      "title": "Email Address:",
+      "placeHolder": "",
+      "isRequired": true,
+      "requiredErrorText": "Required Field"
+    },
+    {
+      "name": "program",
+      "type": "text",
+      "title": "Program:",
+      "placeHolder": "",
+      "isRequired": true,
+      "requiredErrorText": "Required Field"
+    }
+  ]
+}

openshift/templates/issuer-admin/config/bcvcpilot/custom-scripts.js

@@ -0,0 +1,7 @@
+/* Include all your custom JS code in here, it will be available to the app instance */
+
+
+/* An array containing custom functions that will be automatically registered with
+ * SurveyJS so that they can be used in triggers.
+ */
+surveyFunctions = [];

openshift/templates/issuer-admin/config/bcvcpilot/dev/config.json

@@ -0,0 +1,24 @@
+{
+  "env": "docker-prod-like",
+  "issuer": {
+    "name": "Issuer Admin",
+    "publicUrl": "https://bcvcpilot-issuer-dev.apps.silver.devops.gov.bc.ca"
+  },
+  "authentication": {
+    "enabled": true,
+    "oidcSettings": {
+      "authority": "https://dev.oidc.gov.bc.ca/auth/realms/gzyg46lx",
+      "clientId": "bcvcpilot-admin",
+      "redirectUri": "https://bcvcpilot-issuer-admin-dev.apps.silver.devops.gov.bc.ca/oidc-callback",
+      "redirect_uri": "https://bcvcpilot-issuer-admin-dev.apps.silver.devops.gov.bc.ca/oidc-callback-error",
+      "responseType": "code",
+      "scope": "openid profile email",
+      "automaticSilentRenew": true,
+      "silentRedirectUri": "https://bcvcpilot-issuer-admin-dev.apps.silver.devops.gov.bc.ca/silent-renew-oidc.html",
+      "post_logout_redirect_uri": "https://bcvcpilot-issuer-admin-dev.apps.silver.devops.gov.bc.ca"
+    }
+  },
+  "apiServer": {
+    "url": "/api"
+  }
+}

openshift/templates/issuer-admin/config/bcvcpilot/test/config.json

@@ -0,0 +1,24 @@
+{
+  "env": "docker-prod-like",
+  "issuer": {
+    "name": "Issuer Admin",
+    "publicUrl": "https://bcvcpilot-issuer-test.apps.silver.devops.gov.bc.ca"
+  },
+  "authentication": {
+    "enabled": true,
+    "oidcSettings": {
+      "authority": "https://test.oidc.gov.bc.ca/auth/realms/gzyg46lx",
+      "clientId": "bcvcpilot-admin",
+      "redirectUri": "https://bcvcpilot-issuer-admin-test.apps.silver.devops.gov.bc.ca/oidc-callback",
+      "redirect_uri": "https://bcvcpilot-issuer-admin-test.apps.silver.devops.gov.bc.ca/oidc-callback-error",
+      "responseType": "code",
+      "scope": "openid profile email",
+      "automaticSilentRenew": true,
+      "silentRedirectUri": "https://bcvcpilot-issuer-admin-test.apps.silver.devops.gov.bc.ca/silent-renew-oidc.html",
+      "post_logout_redirect_uri": "https://bcvcpilot-issuer-admin-test.apps.silver.devops.gov.bc.ca"
+    }
+  },
+  "apiServer": {
+    "url": "/api"
+  }
+}

openshift/templates/issuer-admin/config/bcvcpilot/unauthorized.html

@@ -0,0 +1,16 @@
+<style type="text/css">
+  .content {
+    padding: 25px;
+    border: 1px solid #f5f5f5;
+  }
+  .paragraph {
+    text-align: justify;
+  }
+</style>
+
+<div class="content">
+  <p class="paragraph">
+    In order to receive your credential you must request an
+    invite to this program.
+  </p>
+</div>

openshift/templates/issuer-admin/config/bcvcpilot/vuetify.json

@@ -0,0 +1,21 @@
+{
+  "icons": {
+    "iconfont": "fa"
+  },
+  "theme": {
+    "options": {
+      "customProperties": true
+    },
+    "themes": {
+      "light": {
+        "primary": "#234075",
+        "secondary": "#e3a82b",
+        "accent": "#82B1FF",
+        "error": "#FF5252",
+        "info": "#2196F3",
+        "success": "#4CAF50",
+        "warning": "#FFC107"
+      }
+    }
+  }
+}

openshift/templates/issuer-admin/issuer-admin-deploy.bcvcpilot.param

@@ -0,0 +1,36 @@
+#=========================================================
+# OpenShift template parameters for:
+# Component: .
+# Template File: ../openshift/templates/issuer-admin/issuer-admin-deploy.yaml
+#=========================================================
+NAME=issuer-admin
+APP_NAME=issuer
+APP_GROUP=bcvcpilot
+SUFFIX=-bcvcpilot
+ROLE=admin-frontend
+IMAGE_NAMESPACE=a99fd4-tools
+NAMESPACE_NAME=a99fd4
+CADDY_CONFIG_FILE_NAME=Caddyfile
+CADDY_CONFIG_MAP_NAME=issuer-admin-caddy-conf
+CADDY_CONFIG_MOUNT_PATH=/etc/caddy/
+APP_CONFIG_MAP_NAME=issuer-admin-config
+APP_CONFIG_MOUNT_PATH=/srv/config/
+APP_CLAIM_CONFIG_FILE_NAME=claim-config.json
+APP_CONFIG_FILE_NAME=config.json
+APP_CUSTOM_SCRIPTS_FILE_NAME=custom-scripts.js
+APP_VUETIFY_FILE_NAME=vuetify.json
+APP_ARTIFACT_MOUNT_PATH=/srv/
+APP_LOGO_FILE_NAME=logo.svg
+APP_UNAUTHORIZED_FILE_NAME=unauthorized.html
+WEB_HOST_NAME=
+WEB_HOST_PORT=8080
+WEB_HOST_TLS=off
+API_HOST=api
+API_PORT=8080
+APPLICATION_DOMAIN=bcvcpilot-issuer-admin-dev.apps.silver.devops.gov.bc.ca
+SOURCE_IMAGE_NAME=issuer-kit-admin
+TAG_NAME=dev
+CPU_REQUEST=10m
+CPU_LIMIT=250m
+MEMORY_REQUEST=100Mi
+MEMORY_LIMIT=256Mi

openshift/templates/issuer-admin/issuer-admin-deploy.bcvcpilot.test.param

@@ -0,0 +1,36 @@
+#=========================================================
+# OpenShift template parameters for:
+# Component: .
+# Template File: ../openshift/templates/issuer-admin/issuer-admin-deploy.yaml
+#=========================================================
+# NAME=issuer-admin
+# APP_NAME=issuer
+# APP_GROUP=bcvcpilot
+# SUFFIX=-bcvcpilot
+# ROLE=admin-frontend
+# IMAGE_NAMESPACE=a99fd4-tools
+# NAMESPACE_NAME=a99fd4
+# CADDY_CONFIG_FILE_NAME=Caddyfile
+# CADDY_CONFIG_MAP_NAME=issuer-admin-caddy-conf
+# CADDY_CONFIG_MOUNT_PATH=/etc/caddy/
+# APP_CONFIG_MAP_NAME=issuer-admin-config
+# APP_CONFIG_MOUNT_PATH=/srv/config/
+# APP_CLAIM_CONFIG_FILE_NAME=claim-config.json
+# APP_CONFIG_FILE_NAME=config.json
+# APP_CUSTOM_SCRIPTS_FILE_NAME=custom-scripts.js
+# APP_VUETIFY_FILE_NAME=vuetify.json
+# APP_ARTIFACT_MOUNT_PATH=/srv/
+# APP_LOGO_FILE_NAME=logo.svg
+# APP_UNAUTHORIZED_FILE_NAME=unauthorized.html
+# WEB_HOST_NAME=
+# WEB_HOST_PORT=8080
+# WEB_HOST_TLS=off
+# API_HOST=api
+# API_PORT=8080
+APPLICATION_DOMAIN=bcvcpilot-issuer-admin-test.apps.silver.devops.gov.bc.ca
+# SOURCE_IMAGE_NAME=issuer-admin
+TAG_NAME=test
+# CPU_REQUEST=10m
+# CPU_LIMIT=250m
+# MEMORY_REQUEST=100Mi
+# MEMORY_LIMIT=256Mi

openshift/templates/issuer-admin/issuer-admin-deploy.overrides.sh

@@ -25,9 +25,9 @@ generateConfigMap "${CADDY_CONFIG_MAP_NAME}${SUFFIX}" "${CADDY_SOURCE_FILE}" "${
 # - DEPLOYMENT_ENV_NAME
 
 # Combine the profile's default config files with its environment specific config files before generating the config map ...
-profileRoot=$( dirname "$0" )/config
+profileRoot=$( dirname "$0" )/config/${PROFILE}
 profileEnv=${profileRoot}/${DEPLOYMENT_ENV_NAME}
-profileTmp=$( dirname "$0" )/config/tmp
+profileTmp=$( dirname "$0" )/config/${PROFILE}/tmp
 mkdir -p ${profileTmp}
 cp -f ${profileRoot}/* ${profileTmp} 2>/dev/null
 cp -f ${profileEnv}/* ${profileTmp} 2>/dev/null

openshift/templates/issuer-agent/issuer-agent-deploy.bcvcpilot.param

@@ -0,0 +1,54 @@
+#=========================================================
+# OpenShift template parameters for:
+# Component: .
+# Template File: ../openshift/templates/issuer-agent/issuer-agent-deploy.yaml
+#=========================================================
+NAME=agent
+APP_NAME=issuer
+APP_GROUP=bcvcpilot
+SUFFIX=-bcvcpilot
+ROLE=agent
+API_ROLE=api
+APPLICATION_DOMAIN=bcvcpilot-agent-dev.apps.silver.devops.gov.bc.ca
+ADMIN_APPLICATION_DOMAIN=bcvcpilot-agent-admin-dev.apps.silver.devops.gov.bc.ca
+ROUTE_TIMEOUT=120s
+IMAGE_NAMESPACE=a99fd4-tools
+NAMESPACE_NAME=a99fd4
+SOURCE_IMAGE_NAME=issuer-kit-agent
+TAG_NAME=dev
+ACAPY_LABEL=BCVCPILOT-demo-issuer-DEV
+ACAPY_READ_ONLY_LEDGER=false
+AGENT_BASE_URL=https://bcvcpilot-agent-dev.apps.silver.devops.gov.bc.ca
+WEBHOOK_URL=http://api-bcvcpilot:8080/webhooks
+AGENT_ADMIN_PORT=8024
+ADMIN_API_KEY=[a-zA-Z0-9]{16}
+API_HOST=api
+AGENT_HTTP_PORT=8021
+ACAPY_GENESIS_URL=https://raw.githubusercontent.com/ICCS-ISAC/dtrust-reconu/main/CANdy/dev/pool_transactions_genesis
+ACAPY_LOG_LEVEL=WARNING
+ACAPY_AUTO_ACCEPT_INVITES=true
+ACAPY_AUTO_ACCEPT_REQUESTS=true
+ACAPY_AUTO_PING_CONNECTION=true
+ACAPY_AUTO_RESPOND_MESSAGES=true
+ACAPY_AUTO_RESPOND_CREDENTIAL_OFFER=true
+ACAPY_AUTO_VERIFY_PRESENTATION=true
+ACAPY_AUTO_PROVISION=true
+ACAPY_WALLET_TYPE=indy
+ACAPY_WALLET_STORAGE_TYPE=postgres_storage
+WALLET_HOST=issuer-kit-wallet
+WALLET_HOST_PORT=5432
+WALLET_STORAGE_CONFIG={\"url\":\"${POSTGRESQL_WALLET_HOST}:${POSTGRESQL_WALLET_PORT}\",\"max_connections\":5}
+WALLET_STORAGE_CREDS={\"account\":\"${POSTGRESQL_WALLET_USER}\",\"password\":\"${POSTGRESQL_WALLET_PASSWORD}\",\"admin_account\":\"postgres\",\"admin_password\":\"${POSTGRESQL_WALLET_ADMIN_PASSWORD}\"}
+WALLET_CREDENTIAL_STORE_NAME=agent-wallet-credentials
+WALLET_KEY=[a-zA-Z0-9]{10}
+WALLET_SEED=[a-zA-Z0-9]{32}
+WALLET_DID=[a-zA-Z0-9]{16}
+WALLET_SUFFIX=
+TAILS_FILES_DIR=/home/indy/.indy_client/tails
+TAILS_FILES_VOLUME_CLASS=netapp-file-standard
+TAILS_FILES_VOLUME_SIZE=1Gi
+ACAPY_TAILS_SERVER_BASE_URL=https://tails-dev.vonx.io
+CPU_REQUEST=10m
+CPU_LIMIT=300m
+MEMORY_REQUEST=10Mi
+MEMORY_LIMIT=512Mi

openshift/templates/issuer-agent/issuer-agent-deploy.bcvcpilot.test.param

@@ -0,0 +1,55 @@
+#=========================================================
+# OpenShift template parameters for:
+# Component: .
+# Template File: ../openshift/templates/issuer-agent/issuer-agent-deploy.yaml
+#=========================================================
+# NAME=agent
+# APP_NAME=issuer
+# APP_GROUP=bcvcpilot
+# SUFFIX=-bcvcpilot
+# ROLE=agent
+# API_ROLE=api
+APPLICATION_DOMAIN=bcvcpilot-agent-test.apps.silver.devops.gov.bc.ca
+ADMIN_APPLICATION_DOMAIN=bcvcpilot-agent-admin-test.apps.silver.devops.gov.bc.ca
+# ROUTE_TIMEOUT=120s
+# IMAGE_NAMESPACE=a99fd4-tools
+# NAMESPACE_NAME=a99fd4
+# SOURCE_IMAGE_NAME=issuer-kit-agent
+TAG_NAME=test
+ACAPY_LABEL=BCVCPILOT-demo-issuer
+ACAPY_READ_ONLY_LEDGER=true
+AGENT_BASE_URL=https://bcvcpilot-agent-test.apps.silver.devops.gov.bc.ca
+# WEBHOOK_URL=http://api-bcvcpilot:8080/webhooks
+# AGENT_ADMIN_PORT=8024
+# ADMIN_API_KEY=[a-zA-Z0-9]{16}
+# API_HOST=api
+# AGENT_HTTP_PORT=8021
+# ACAPY_GENESIS_URL=https://raw.githubusercontent.com/ICCS-ISAC/dtrust-reconu/main/CANdy/dev/pool_transactions_genesis
+# ACAPY_LOG_LEVEL=WARNING
+# ACAPY_AUTO_ACCEPT_INVITES=true
+# ACAPY_AUTO_ACCEPT_REQUESTS=true
+# ACAPY_AUTO_PING_CONNECTION=true
+# ACAPY_AUTO_RESPOND_MESSAGES=true
+# ACAPY_AUTO_RESPOND_CREDENTIAL_OFFER=true
+# ACAPY_AUTO_VERIFY_PRESENTATION=true
+# ACAPY_AUTO_PROVISION=true
+# ACAPY_WALLET_TYPE=indy
+# ACAPY_WALLET_STORAGE_TYPE=postgres_storage
+# WALLET_HOST=issuer-kit-wallet
+# WALLET_HOST_PORT=5432
+# WALLET_STORAGE_CONFIG={\"url\":\"${POSTGRESQL_WALLET_HOST}:${POSTGRESQL_WALLET_PORT}\",\"max_connections\":5}
+# WALLET_STORAGE_CREDS={\"account\":\"${POSTGRESQL_WALLET_USER}\",\"password\":\"${POSTGRESQL_WALLET_PASSWORD}\",\"admin_account\":\"postgres\",\"admin_password\":\"${POSTGRESQL_WALLET_ADMIN_PASSWORD}\"}
+# WALLET_CREDENTIAL_STORE_NAME=agent-wallet-credentials
+# WALLET_KEY=[a-zA-Z0-9]{10}
+# WALLET_SEED=[a-zA-Z0-9]{32}
+# WALLET_DID=[a-zA-Z0-9]{16}
+# WALLET_SUFFIX=
+# TAILS_FILES_DIR=/home/indy/.indy_client/tails
+# TAILS_FILES_VOLUME_CLASS=netapp-file-standard
+# TAILS_FILES_VOLUME_SIZE=1Gi
+ACAPY_TAILS_SERVER_BASE_URL=https://tails-test.vonx.io
+# CPU_REQUEST=10m
+# CPU_LIMIT=300m
+# MEMORY_REQUEST=10Mi
+# MEMORY_LIMIT=512Mi
+#