feat(pollux): offline issuance (#222)

Signed-off-by: goncalo-frade-iohk <[email protected]>

Author: goncalo-frade-iohk

EdgeAgentSDK/Domain/Sources/BBs/Pollux.swift

@@ -11,6 +11,7 @@ public enum CredentialOperationsOptions {
     case subjectDID(DID)  // The decentralized identifier of the subject.
     case entropy(String)  // Entropy for any randomization operation.
     case signableKey(SignableKey)  // A key that can be used for signing.
+    case privateKey(PrivateKey)  // A private key that can be used for signing.
     case exportableKey(ExportableKey)  // A key that can be exported.
     case exportableKeys([ExportableKey])  // A key that can be exported.
     case zkpPresentationParams(attributes: [String: Bool], predicates: [String]) // Anoncreds zero-knowledge proof presentation parameters
@@ -115,6 +116,42 @@ public protocol Pollux {
         presentationPayload: Data,
         options: [CredentialOperationsOptions]
     ) async throws -> Bool
+
+    /// Issues a new verifiable credential of the specified type using the provided claims and options.
+    /// 
+    /// - Parameters:
+    ///   - type: A string identifying the credential format to issue. Supported values typically include:
+    ///     - "jwt", "vc+jwt" for JSON Web Token-based credentials
+    ///     - "vc+sd-jwt" for selective disclosure JWT credentials
+    ///     Implementations may support additional types; consult the concrete `Pollux` implementation.
+    ///   - claims: A result-builder closure (`@CredentialClaimsBuilder`) that constructs the set of input claims
+    ///     to be embedded or referenced in the credential. The structure and required fields depend on the `type`.
+    ///   - options: A list of `CredentialOperationsOptions` providing contextual data and cryptographic material
+    ///     required for issuance. Common options include:
+    ///     - `.exportableKey(PrivateKey)` for signing
+    ///     - `.linkSecret(id:secret:)` for AnonCreds link secret
+    ///     - `.custom(key:data:)` for implementation-specific inputs
+    ///
+    /// - Returns: A `Credential` representing the issued verifiable credential, including any metadata necessary
+    ///   for storage, presentation, or later verification.
+    ///
+    /// - Throws: An error if issuance fails due to invalid inputs, unsupported `type`, missing or incompatible
+    ///   options (e.g., absent signing key, schema, or link secret), claim-building errors, or cryptographic failures.
+    ///
+    /// - Important:
+    ///   - The exact combination of required `options` depends on the credential `type`.
+    ///   - For formats requiring signing, you must provide a compatible key via one of the key-related options.
+    ///   - When issuing AnonCreds credentials, schema and credential definition information, as well as a link secret,
+    ///     are typically required.
+    ///   - The `claims` closure should produce claims compatible with the selected `type`; mismatches may cause errors.
+    ///
+    /// - See Also:
+    ///   - `parseCredential(type:credentialPayload:options:)`
+    func issueCredential(
+        type: String,
+        @CredentialClaimsBuilder claims: () -> InputClaim,
+        options: [CredentialOperationsOptions]
+    ) async throws -> Credential
 }
 
 public extension Pollux {

EdgeAgentSDK/Domain/Sources/Models/Claims/ArrayClaim.swift

@@ -0,0 +1,113 @@
+import Foundation
+
+/// A claim type that represents a JSON array within a larger claims structure.
+///
+/// `ArrayClaim` is used to model an array value for a given key in a claim-based
+/// payload. It leverages result builders to concisely construct arrays of elements,
+/// where each element can be a primitive (string, number, boolean), another array,
+/// or an object. The resulting array is wrapped as a `ClaimElement` and associated
+/// with the provided key.
+///
+/// This type offers two convenience initializers:
+/// - One that accepts a builder producing `[ArrayElementClaim]`, ideal when you want
+///   to explicitly construct array elements using the typed helpers like
+///   `ArrayElementClaim.string(_:)`, `.number(_:)`, `.bool(_:)`, `.array {}`, and
+///   `.object {}`.
+/// - One that accepts a builder producing `[InputClaim]`, which is useful for arrays
+///   directly composed of other claim types conforming to `InputClaim`.
+///
+/// The `disclosable` flag can be used to indicate whether the array (and its elements,
+/// depending on your surrounding logic) may be disclosed in contexts like logs or
+/// debug output.
+///
+/// Example usage with `ArrayElementClaim`:
+/// ```swift
+/// let claim = ArrayClaim(key: "items") {
+///     ArrayElementClaim.string("apple")
+///     ArrayElementClaim.number(42)
+///     ArrayElementClaim.bool(true)
+///     ArrayElementClaim.array {
+///         ArrayElementClaim.string("nested")
+///     }
+///     ArrayElementClaim.object {
+///         StringClaim(key: "name", value: "widget")
+///         NumberClaim(key: "count", value: 3)
+///     }
+/// }
+/// ```
+///
+/// Example usage with `[InputClaim]`:
+/// ```swift
+/// let claim = ArrayClaim(key: "objects") {
+///     ObjectClaim {
+///         StringClaim(key: "id", value: "123")
+///     }
+///     ObjectClaim {
+///         StringClaim(key: "id", value: "456")
+///     }
+/// }
+/// ```
+///
+/// - SeeAlso: `ArrayElementClaim`, `ObjectClaim`, `StringClaim`, `NumberClaim`, `BoolClaim`, `InputClaim`, `ClaimElement`
+public struct ArrayClaim: InputClaim {
+    public var value: ClaimElement
+
+    /// Initializes an `ArrayClaim` with a key and a builder for the array elements.
+    /// - Parameters:
+    ///   - key: The key for the claim.
+    ///   - claims: A closure that returns an array of `ArrayElementClaim` using the result builder.
+    public init(key: String, disclosable: Bool = false, @ArrayClaimBuilder claims: () -> [InputClaim]) {
+        self.value = .init(key: key, element: .array(claims().map(\.value)), disclosable: disclosable)
+    }
+}
+
+/// Represents an element within an array claim.
+public struct ArrayValueClaim {
+    let value: InputClaim
+
+    public init<T: InputClaim>(_ value: T) {
+        self.value = value
+    }
+
+    /// Creates an `ArrayElementClaim` with a string value.
+    /// - Parameter str: The string value for the claim.
+    /// - Returns: An `ArrayElementClaim` containing the string value.
+    public static func string(_ str: String, disclosable: Bool = false) -> ArrayValueClaim {
+        .init(StringClaim(key: "", value: str, disclosable: disclosable))
+    }
+
+    /// Creates an `ArrayElementClaim` with a numeric value.
+    /// - Parameter number: The numeric value for the claim.
+    /// - Returns: An `ArrayElementClaim` containing the numeric value.
+    public static func number<N: Numeric & Codable>(_ number: N, disclosable: Bool = false) -> ArrayValueClaim {
+        .init(NumberClaim(key: "", value: number, disclosable: disclosable))
+    }
+
+    /// Creates an `ArrayElementClaim` with a boolean value.
+    /// - Parameter boolean: The boolean value for the claim.
+    /// - Returns: An `ArrayElementClaim` containing the boolean value.
+    public static func bool(_ boolean: Bool, disclosable: Bool = false) -> ArrayValueClaim {
+        .init(BoolClaim(key: "", value: boolean, disclosable: disclosable))
+    }
+
+    /// Creates an `ArrayElementClaim` with an array of claims.
+    /// - Parameter claims: A closure that returns an array of `ArrayElementClaim` using the result builder.
+    /// - Returns: An `ArrayElementClaim` containing the array of claims.
+    public static func array(@ArrayClaimBuilder claims: () -> [InputClaim], disclosable: Bool = false) -> ArrayValueClaim {
+        .init(ArrayClaim(key: "", disclosable: disclosable, claims: claims))
+    }
+
+    /// Creates an `ArrayElementClaim` with an object of claims.
+    /// - Parameter claims: A closure that returns an array of `Claim` using the result builder.
+    /// - Returns: An `ArrayElementClaim` containing the object of claims.
+    public static func object(@ObjectClaimBuilder claims: () -> [InputClaim], disclosable: Bool = false) -> ArrayValueClaim {
+        .init(ObjectClaim(key: "", disclosable: disclosable, claims: claims))
+    }
+
+    /// Creates an `ArrayElementClaim` with a string value.
+    /// - Parameter claim: The InputClaim value for the claim.
+    /// - Returns: An `ArrayElementClaim` containing the string value.
+    public static func claim<T: InputClaim>(_ claim: T) -> ArrayValueClaim {
+        .init(claim)
+    }
+}

EdgeAgentSDK/Domain/Sources/Models/Claims/ArrayClaimBuilder.swift

@@ -0,0 +1,161 @@
+/// A Swift result builder that simplifies the construction of heterogeneous collections of claims.
+///
+/// ArrayClaimBuilder supports building arrays of different claim types used in the claims system:
+/// - `any InputClaim` (erased protocol type for general claims)
+/// - `ArrayElementClaim` (claims that represent elements within an array)
+/// - `StringClaim` (claims that operate on string values)
+///
+/// This builder enables a declarative DSL-like syntax to compose claims with:
+/// - Multiple `buildBlock` overloads to handle different claim array types
+/// - Support for optional sections via `buildOptional`
+/// - Conditional branching via `buildEither(first:)` and `buildEither(second:)`
+/// - Flattening of nested arrays via `buildArray`
+/// - Expression lifting via `buildExpression` for each supported claim type
+///
+/// Typical usage:
+/// - Use in an API that takes a closure annotated with `@ArrayClaimBuilder`
+/// - Compose claims inline using standard control flow constructs (`if`, `if/else`, optionals)
+///
+/// Notes:
+/// - Overloaded `buildBlock` methods allow the same builder to be used in contexts that expect
+///   different element types, while keeping type safety.
+/// - Each `buildArray` variant flattens nested arrays to a single-level array.
+/// - Optional and conditional helpers return empty arrays when absent, which naturally composes
+///   into the final result without additional branching.
+///
+/// Dependencies:
+/// - `InputClaim` protocol/type-erased existential used via `any InputClaim`
+/// - `ArrayElementClaim` value type used for array element-level claims
+/// - `StringClaim` value type used for string-specific claims
+///
+/// Example (conceptual):
+/// @ArrayClaimBuilder
+/// func makeClaims() -> [any InputClaim] {
+///     StringClaim.equals("hello")
+///     if condition {
+///         ArrayElementClaim.index(0)
+///     }
+///     optionalClaim
+/// }
+///
+/// The builder will collect, flatten, and return the correct array type based on the function's return type.
+@resultBuilder
+public struct ArrayClaimBuilder {
+//    public typealias ClaimPartialResult = [any InputClaim]
+    public typealias ArrayClaimPartialResult = [ArrayValueClaim]
+//    public typealias StringClaimPartialResult = [StringClaim]
+    /// Builds an array of `ArrayElementClaim` from the provided components.
+    /// - Parameter components: The array element claims to include in the array.
+    /// - Returns: An array of `ArrayElementClaim`.
+    public static func buildBlock(_ components: ArrayClaimPartialResult...) -> ArrayClaimPartialResult {
+        components.flatMap { $0 }
+    }
+
+    /// Builds an array of `ArrayElementClaim` from the provided components.
+    /// - Parameter components: The array element claims to include in the array.
+    /// - Returns: An array of `ArrayElementClaim`.
+//    public static func buildBlock(_ components: ClaimPartialResult...) -> ClaimPartialResult {
+//        components.flatMap { $0 }
+//    }
+
+    /// Builds an array of `StringClaim` from the provided components.
+    /// - Parameter components: The string claims to include in the array.
+    /// - Returns: An array of `StringClaim`.
+//    public static func buildBlock(_ components: StringClaimPartialResult...) -> StringClaimPartialResult {
+//        components.flatMap { $0 }
+//    }
+
+//    public static func buildPartialBlock(first: ClaimPartialResult) -> ClaimPartialResult {
+//        first
+//    }
+//
+//    public static func buildPartialBlock(accumulated: ClaimPartialResult, next: ClaimPartialResult) -> ClaimPartialResult {
+//        accumulated + next
+//    }
+//
+//    public static func buildExpression(_ expression: any InputClaim) -> ClaimPartialResult {
+//        [expression]
+//    }
+
+    public static func buildExpression(_ expression: ArrayValueClaim) -> ArrayClaimPartialResult {
+        [expression]
+    }
+
+//    public static func buildExpression(_ expression: StringClaim) -> StringClaimPartialResult {
+//        [expression]
+//    }
+
+//    public static func buildArray(_ components: [ClaimPartialResult]) -> ClaimPartialResult {
+//        components.flatMap { $0 }
+//    }
+
+    public static func buildArray(_ components: [ArrayClaimPartialResult]) -> ArrayClaimPartialResult {
+        components.flatMap { $0 }
+    }
+
+//    public static func buildArray(_ components: [StringClaimPartialResult]) -> StringClaimPartialResult {
+//        components.flatMap { $0 }
+//    }
+
+    /// Adds support for optionals
+//    public static func buildOptional(_ component:  ClaimPartialResult?) -> ClaimPartialResult {
+//        guard let component else {
+//            return []
+//        }
+//        return component
+//    }
+
+    public static func buildOptional(_ component: ArrayClaimPartialResult?) -> ArrayClaimPartialResult {
+        guard let component else {
+            return []
+        }
+        return component
+    }
+
+    /// Adds support for if statements in build block
+//    public static func buildEither(first component: ClaimPartialResult) -> ClaimPartialResult {
+//        component
+//    }
+//
+//    public static func buildEither(second component: ClaimPartialResult) -> ClaimPartialResult {
+//        component
+//    }
+
+    public static func buildEither(first component: ArrayClaimPartialResult) -> ArrayClaimPartialResult {
+        component
+    }
+
+    public static func buildEither(second component: ArrayClaimPartialResult) -> ArrayClaimPartialResult {
+        component
+    }
+
+    /// Adds support for optionals
+//    public static func buildOptional(_ component:  StringClaimPartialResult?) -> StringClaimPartialResult {
+//        guard let component else {
+//            return []
+//        }
+//        return component
+//    }
+
+
+    /// Adds support for if statements in build block
+//    public static func buildEither(first component: StringClaimPartialResult) -> StringClaimPartialResult {
+//        component
+//    }
+//
+//    public static func buildEither(second component: StringClaimPartialResult) -> StringClaimPartialResult {
+//        component
+//    }
+
+//    public static func buildFinalResult(_ component: ArrayClaimPartialResult) -> ClaimPartialResult {
+//        component.map(\.value)
+//    }
+//
+//    public static func buildFinalResult(_ component: StringClaimPartialResult) -> ClaimPartialResult {
+//        component
+//    }
+
+    public static func buildFinalResult(_ component: ArrayClaimPartialResult) -> [InputClaim] {
+        component.map(\.value)
+    }
+}

EdgeAgentSDK/Domain/Sources/Models/Claims/BoolClaim.swift

@@ -0,0 +1,32 @@
+import Foundation
+
+/// A simple input claim wrapper for Boolean values.
+///
+/// `BoolClaim` conforms to `InputClaim` and encapsulates a single `Bool` value
+/// associated with a key, packaged as a `ClaimElement`. It is intended for use
+/// in systems that collect, disclose, or transmit typed claims as key/value
+/// pairs.
+///
+/// Usage:
+/// - Initialize with a key and a `Bool` to create a claim that can be fed into
+///   a broader claims pipeline.
+/// - Optionally mark the claim as `disclosable` to indicate whether the value
+///   can be shared externally.
+///
+/// Example:
+/// ```swift
+/// let acceptsTerms = BoolClaim(key: "accepts_terms", value: true, disclosable: true)
+/// ```
+///
+/// - SeeAlso: `InputClaim`, `ClaimElement`
+public struct BoolClaim: InputClaim {
+    public var value: ClaimElement
+    
+    /// Initializes a `BoolClaim` with a key and a boolean value.
+    /// - Parameters:
+    ///   - key: The key for the claim.
+    ///   - value: The boolean value for the claim.
+    public init(key: String, value: Bool, disclosable: Bool = false) {
+        self.value = ClaimElement(key: key, element: .codable(value), disclosable: disclosable)
+    }
+}