.dockerignore

-node_modules
+.dockerignore
+.editorconfig
+.eslintignore
+.eslintrc.*
 .git
+.gitattributes
 .gitignore
-*.md
-dist
\ No newline at end of file
+.gitlab-ci.yml
+.lintstagedrc
+.prettierignore
+.prettierrc*
+**/.env*
+**/*.md
+**/*.postman_collection.json
+**/*.tsbuildinfo
+**/coverage
+**/deployment
+**/dist
+**/test
+commitlint.config.cjs
+Dockerfile
+jest.config.*
+node_modules

.eslintignore

@@ -3,6 +3,7 @@
 
 # Except these files
 !*.ts
+!*.mts
 !*.d.ts
 
 # .. also in subdirectories
@@ -16,6 +17,3 @@ node_modules
 apps/**/dist
 compose
 documentation
-
-# Ignore ssi-abstraction for now
-apps/ssi-abstraction

.eslintrc.js

@@ -14,13 +14,13 @@ module.exports = {
     project: ['./tsconfig.eslint.json'],
   },
   settings: {
-    'import/extensions': ['.js', '.ts'],
+    'import/extensions': ['.js', '.mjs', '.ts', '.mts'],
     'import/parsers': {
-      '@typescript-eslint/parser': ['.ts', '.tsx'],
+      '@typescript-eslint/parser': ['.ts', '.tsx', '.mts'],
     },
     'import/resolver': {
       typescript: {
-        project: 'packages/*/tsconfig.json',
+        project: ['apps/*/tsconfig.json'],
         alwaysTryTypes: true,
       },
     },
@@ -28,7 +28,10 @@ module.exports = {
   rules: {
     '@typescript-eslint/explicit-function-return-type': 'off',
     '@typescript-eslint/explicit-module-boundary-types': 'off',
-    '@typescript-eslint/no-use-before-define': ['error', { functions: false, classes: false, variables: true }],
+    '@typescript-eslint/no-use-before-define': [
+      'error',
+      { functions: false, classes: false, variables: true },
+    ],
     '@typescript-eslint/explicit-member-accessibility': 'error',
     'no-console': 'error',
     '@typescript-eslint/ban-ts-comment': 'warn',
@@ -72,14 +75,10 @@ module.exports = {
   },
   overrides: [
     {
-      files: [
-        '*.spec.ts',
-        '*.e2e-spec.ts',
-        '**/tests/**',
-      ],
+      files: ['*.spec.ts', '*.e2e-spec.ts', '**/tests/**', '**/test/**'],
       env: {
         jest: true,
-        node: false,
+        node: true,
       },
       rules: {
         'import/no-extraneous-dependencies': [
@@ -90,5 +89,5 @@ module.exports = {
         ],
       },
     }
-  ]
-}
+  ],
+};

.gitignore

-.yarn/*
-!.yarn/patches
-!.yarn/plugins
-!.yarn/releases
-!.yarn/sdks
-!.yarn/versions
-
-# Swap the comments on the following lines if you don't wish to use zero-installs
-# Documentation here: https://yarnpkg.com/features/zero-installs
-# !.yarn/cache
-.pnp.*
-node_modules
-.idea
+# Created by https://www.toptal.com/developers/gitignore/api/node,visualstudiocode,jetbrains+all,macos,windows,linux
+# Edit at https://www.toptal.com/developers/gitignore?templates=node,visualstudiocode,jetbrains+all,macos,windows,linux
 
-**/*.env
+### JetBrains+all ###
+# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider
+# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839
 
-# compiled output
-node_modules/
-apps/*/node_modules
-dist
-/apps/**/dist/
-*.tsbuildinfo
+# User-specific stuff
+.idea/**/workspace.xml
+.idea/**/tasks.xml
+.idea/**/usage.statistics.xml
+.idea/**/dictionaries
+.idea/**/shelf
+
+# AWS User-specific
+.idea/**/aws.xml
+
+# Generated files
+.idea/**/contentModel.xml
+
+# Sensitive or high-churn files
+.idea/**/dataSources/
+.idea/**/dataSources.ids
+.idea/**/dataSources.local.xml
+.idea/**/sqlDataSources.xml
+.idea/**/dynamic.xml
+.idea/**/uiDesigner.xml
+.idea/**/dbnavigator.xml
+
+# Gradle
+.idea/**/gradle.xml
+.idea/**/libraries
+
+# Gradle and Maven with auto-import
+# When using Gradle or Maven with auto-import, you should exclude module files,
+# since they will be recreated, and may cause churn.  Uncomment if using
+# auto-import.
+# .idea/artifacts
+# .idea/compiler.xml
+# .idea/jarRepositories.xml
+# .idea/modules.xml
+# .idea/*.iml
+# .idea/modules
+# *.iml
+# *.ipr
+
+# CMake
+cmake-build-*/
+
+# Mongo Explorer plugin
+.idea/**/mongoSettings.xml
+
+# File-based project format
+*.iws
+
+# IntelliJ
+out/
+
+# mpeltonen/sbt-idea plugin
+.idea_modules/
+
+# JIRA plugin
+atlassian-ide-plugin.xml
+
+# Cursive Clojure plugin
+.idea/replstate.xml
+
+# SonarLint plugin
+.idea/sonarlint/
+
+# Crashlytics plugin (for Android Studio and IntelliJ)
+com_crashlytics_export_strings.xml
+crashlytics.properties
+crashlytics-build.properties
+fabric.properties
+
+# Editor-based Rest Client
+.idea/httpRequests
+
+# Android studio 3.1+ serialized cache file
+.idea/caches/build_file_checksums.ser
+
+### JetBrains+all Patch ###
+# Ignore everything but code style settings and run configurations
+# that are supposed to be shared within teams.
 
+.idea/*
+
+!.idea/codeStyles
+!.idea/runConfigurations
+
+### Linux ###
+*~
+
+# temporary files which can be created if a process still has a handle open of a deleted file
+.fuse_hidden*
+
+# KDE directory preferences
+.directory
+
+# Linux trash folder which might appear on any partition or disk
+.Trash-*
+
+# .nfs files are created when an open file is removed but is still being accessed
+.nfs*
+
+### macOS ###
+# General
+.DS_Store
+.AppleDouble
+.LSOverride
+
+# Icon must end with two \r
+Icon
+
+
+# Thumbnails
+._*
+
+# Files that might appear in the root of a volume
+.DocumentRevisions-V100
+.fseventsd
+.Spotlight-V100
+.TemporaryItems
+.Trashes
+.VolumeIcon.icns
+.com.apple.timemachine.donotpresent
+
+# Directories potentially created on remote AFP share
+.AppleDB
+.AppleDesktop
+Network Trash Folder
+Temporary Items
+.apdisk
+
+### macOS Patch ###
+# iCloud generated files
+*.icloud
+
+### Node ###
 # Logs
-/logs
+logs
 *.log
 npm-debug.log*
-pnpm-debug.log*
 yarn-debug.log*
 yarn-error.log*
 lerna-debug.log*
-apps/**/logs/log.json
+.pnpm-debug.log*
 
-# OS
-.DS_Store
+# Diagnostic reports (https://nodejs.org/api/report.html)
+report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json
+
+# Runtime data
+pids
+*.pid
+*.seed
+*.pid.lock
+
+# Directory for instrumented libs generated by jscoverage/JSCover
+lib-cov
+
+# Coverage directory used by tools like istanbul
+coverage
+*.lcov
+
+# nyc test coverage
+.nyc_output
+
+# Grunt intermediate storage (https://gruntjs.com/creating-plugins#storing-task-files)
+.grunt
 
-# Tests
-/coverage
-/.nyc_output
+# Bower dependency directory (https://bower.io/)
+bower_components
 
-# IDEs and editors
-/.idea
-.project
-.classpath
-.c9/
-*.launch
-.settings/
-*.sublime-workspace
+# node-waf configuration
+.lock-wscript
 
-# IDE - VSCode
+# Compiled binary addons (https://nodejs.org/api/addons.html)
+build/Release
+
+# Dependency directories
+node_modules/
+jspm_packages/
+
+# Snowpack dependency directory (https://snowpack.dev/)
+web_modules/
+
+# TypeScript cache
+*.tsbuildinfo
+
+# Optional npm cache directory
+.npm
+
+# Optional eslint cache
+.eslintcache
+
+# Optional stylelint cache
+.stylelintcache
+
+# Microbundle cache
+.rpt2_cache/
+.rts2_cache_cjs/
+.rts2_cache_es/
+.rts2_cache_umd/
+
+# Optional REPL history
+.node_repl_history
+
+# Output of 'npm pack'
+*.tgz
+
+# Yarn Integrity file
+.yarn-integrity
+
+# dotenv environment variable files
+.env
+.env.development.local
+.env.test.local
+.env.production.local
+.env.local
+
+# parcel-bundler cache (https://parceljs.org/)
+.cache
+.parcel-cache
+
+# Next.js build output
+.next
+out
+
+# Nuxt.js build / generate output
+.nuxt
+dist
+
+# Gatsby files
+.cache/
+# Comment in the public line in if your project uses Gatsby and not Next.js
+# https://nextjs.org/blog/next-9-1#public-directory-support
+# public
+
+# vuepress build output
+.vuepress/dist
+
+# vuepress v2.x temp and cache directory
+.temp
+
+# Docusaurus cache and generated files
+.docusaurus
+
+# Serverless directories
+.serverless/
+
+# FuseBox cache
+.fusebox/
+
+# DynamoDB Local files
+.dynamodb/
+
+# TernJS port file
+.tern-port
+
+# Stores VSCode versions used for testing VSCode extensions
+.vscode-test
+
+# yarn v2
+.yarn/cache
+.yarn/unplugged
+.yarn/build-state.yml
+.yarn/install-state.gz
+.pnp.*
+
+### Node Patch ###
+# Serverless Webpack directories
+.webpack/
+
+# Optional stylelint cache
+
+# SvelteKit build / generate output
+.svelte-kit
+
+### VisualStudioCode ###
 .vscode/*
 !.vscode/settings.json
 !.vscode/tasks.json
 !.vscode/launch.json
 !.vscode/extensions.json
+!.vscode/*.code-snippets
+
+# Local History for Visual Studio Code
+.history/
+
+# Built Visual Studio Code Extensions
+*.vsix
+
+### VisualStudioCode Patch ###
+# Ignore all local history of files
+.history
+.ionide
+
+### Windows ###
+# Windows thumbnail cache files
+Thumbs.db
+Thumbs.db:encryptable
+ehthumbs.db
+ehthumbs_vista.db
+
+# Dump file
+*.stackdump
+
+# Folder config file
+[Dd]esktop.ini
+
+# Recycle Bin used on file shares
+$RECYCLE.BIN/
+
+# Windows Installer files
+*.cab
+*.msi
+*.msix
+*.msm
+*.msp
+
+# Windows shortcuts
+*.lnk
+
+# End of https://www.toptal.com/developers/gitignore/api/node,visualstudiocode,jetbrains+all,macos,windows,linux
 
-#Env files
-**/*.env
-!config/env/development.env
-.idea
+*.env

.gitlab-ci.yml

 include:
-  - project: '${HELPERS_PATH}'
-    file: '${HELPERS_FILE}'
+- project: 'eclipse/xfsc/dev-ops/ci-templates'  
+  file: 'helm-build-ci.yaml'  
+  ref: main
+- project: 'eclipsefdn/it/releng/gitlab-runner-service/gitlab-ci-templates'
+  file: '/jobs/buildkit.gitlab-ci.yml'
 
 stages:
-  - lint
-  - test
   - build
   - release
-  - docker
-  - registries
-  - helm
-  - deploy-test
 
-# Lint microservices
-
-lint-attestation-manager:
-  extends: .lint-attestation-manager
-  stage: lint
-
-lint-connection-manager:
-  extends: .lint-connection-manager
-  stage: lint
-
-lint-proof-manager:
-  extends: .lint-proof-manager
-  stage: lint
-
-lint-ssi-abstraction:
-  extends: .lint-ssi-abstraction
-  stage: lint
-
-# Test microservices
-
-test-attestation-manager:
-  extends: .test-attestation-manager
-  stage: test
-
-test-connection-manager:
-  extends: .test-connection-manager
-  stage: test
-
-test-proof-manager:
-  extends: .test-proof-manager
-  stage: test
-
-test-ssi-abstraction:
-  extends: .test-ssi-abstraction
-  stage: test
-
-# Bare microservice build
-
-build-attestation-manager:
-  extends: .build-attestation-manager
-  stage: build
-
-build-connection-manager:
-  extends: .build-connection-manager
+docker-build:
+  extends: .buildkit
+  parallel:
+    matrix:
+      - SERVICE: [connection-manager, credential-manager,did-manager,proof-manager,ssi-abstraction,schema-manager,tenant-manager]
   stage: build
-
-build-proof-manager:
-  extends: .build-proof-manager
-  stage: build
-
-build-ssi-abstraction:
-  extends: .build-ssi-abstraction
-  stage: build
-
-# Docker build microservices
-
-docker-attestation-manager:
-  extends: .docker-attestation-manager
-  stage: docker
-
-docker-connection-manager:
-  extends: .docker-connection-manager
-  stage: docker
-
-docker-proof-manager:
-  extends: .docker-proof-manager
-  stage: docker
-
-docker-ssi-abstraction:
-  extends: .docker-ssi-abstraction
-  stage: docker
-
-# Push to registries
-
-registry-attestation-manager:
-  extends: .registry-attestation-manager
-  stage: registries
-
-registry-connection-manager:
-  extends: .registry-connection-manager
-  stage: registries
-
-registry-proof-manager:
-  extends: .registry-proof-manager
-  stage: registries
-
-registry-ssi-abstraction:
-  extends: .registry-ssi-abstraction
-  stage: registries
-
-# Configure helm
-
-helm-attestation-manager:
-  extends: .helm-attestation-manager
-  stage: helm
-
-helm-connection-manager:
-  extends: .helm-connection-manager
-  stage: helm
-
-helm-proof-manager:
-  extends: .helm-proof-manager
-  stage: helm
-
-helm-ssi-abstraction:
-  extends: .helm-ssi-abstraction
-  stage: helm
-
-deploy attestation ocm:
-  extends: .deploy-attestation-manager-ocm-main
-  stage: deploy-test
-
-deploy attestation ocm tagged:
-  extends: .deploy-attestation-manager-ocm-main-tag
-  stage: deploy-test
-
-deploy attestation ocm test:
-  extends: .deploy-attestation-manager-ocm-test
-  stage: deploy-test
-
-deploy attestation ocm test tagged:
-  extends: .deploy-attestation-manager-ocm-test-tag
-  stage: deploy-test
-
-deploy connection ocm:
-  extends: .deploy-connection-manager-ocm-main
-  stage: deploy-test
-
-deploy connection ocm tagged:
-  extends: .deploy-connection-manager-ocm-main-tag
-  stage: deploy-test
-
-deploy connection ocm test:
-  extends: .deploy-connection-manager-ocm-test
-  stage: deploy-test
-
-deploy connection ocm test tagged:
-  extends: .deploy-connection-manager-ocm-test-tag
-  stage: deploy-test
-
-deploy proof ocm:
-  extends: .deploy-proof-manager-ocm-main
-  stage: deploy-test
-
-deploy proof ocm tagged:
-  extends: .deploy-proof-manager-ocm-main-tag
-  stage: deploy-test
-
-deploy proof ocm test:
-  extends: .deploy-proof-manager-ocm-test
-  stage: deploy-test
-
-deploy proof ocm test tagged:
-  extends: .deploy-proof-manager-ocm-test-tag
-  stage: deploy-test
-
-deploy ssi-abstraction ocm:
-  extends: .deploy-ssi-abstraction-ocm-main
-  stage: deploy-test
-
-deploy ssi-abstraction ocm tagged:
-  extends: .deploy-ssi-abstraction-ocm-main-tag
-  stage: deploy-test
-
-deploy ssi-abstraction ocm test:
-  extends: .deploy-ssi-abstraction-ocm-test
-  stage: deploy-test
-
-deploy ssi-abstraction ocm test tagged:
-  extends: .deploy-ssi-abstraction-ocm-test-tag
-  stage: deploy-test
-
-commit lint:
-  extends: .commit-lint
-  stage: lint
-
-changelog:
-  extends: .changelog
-  stage: release
+  variables:
+    CI_REGISTRY: ${HARBOR_HOST}
+    CI_REGISTRY_USER: ${HARBOR_USERNAME}
+    CI_REGISTRY_PASSWORD: ${HARBOR_PASSWORD}
+    CI_REGISTRY_IMAGE: ${HARBOR_HOST}/${HARBOR_PROJECT}/$SERVICE
+    BUILD_ARG: "--opt build-arg:SERVICE=${SERVICE}"

.prettierignore

@@ -4,7 +4,9 @@
 # Except for these files
 !*.ts
 !*.d.ts
+!*.mts
 !jest.config.js
+!*.json
 
 # .. also in subdirectories
 !*/
@@ -17,6 +19,3 @@ node_modules
 apps/**/dist
 compose
 documentation
-
-# Ignore ssi-abstraction for now
-apps/ssi-abstraction

apps/principal-manager/.swcrc → .swcrc

@@ -16,5 +16,5 @@
     "type": "es6"
   },
   "sourceMaps": true,
-  "exclude": [".spec.ts", ".e2e-spec.ts"]
+  "exclude": ["__tests__/.*.ts"]
 }

Dockerfile

+FROM node:20.11 AS dependencies
+ARG APP_HOME=/home/node/app
+ARG SERVICE
+
+WORKDIR /home/node/app
+
+RUN corepack enable
+
+COPY package.json pnpm-lock.yaml pnpm-workspace.yaml tsconfig*.json .swcrc ./
+COPY patches ./patches
+COPY apps/shared/package.json ./apps/shared/
+RUN pnpm install --frozen-lockfile
+
+# Build shared
+FROM node:20.11 as build-shared
+
+ARG APP_HOME=/home/node/app
+ARG SERVICE
+
+WORKDIR ${APP_HOME}
+
+RUN corepack enable
+
+COPY apps/shared ./apps/shared
+COPY --from=dependencies /home/node/app/package.json /home/node/app/pnpm-lock.yaml /home/node/app/pnpm-workspace.yaml /home/node/app/tsconfig*.json /home/node/app/.swcrc ./
+COPY --from=dependencies /home/node/app/node_modules ./node_modules
+COPY --from=dependencies /home/node/app/apps/shared/node_modules ./apps/shared/node_modules
+COPY --from=dependencies /home/node/app/patches ./patches
+RUN pnpm --filter shared build
+
+# Build service
+FROM node:20.11  AS build-service
+
+ARG APP_HOME=/home/node/app
+ARG SERVICE
+
+WORKDIR ${APP_HOME}
+
+RUN corepack enable
+
+COPY --from=dependencies /home/node/app/package.json /home/node/app/pnpm-lock.yaml /home/node/app/pnpm-workspace.yaml /home/node/app/tsconfig*.json /home/node/app/.swcrc ./
+COPY --from=dependencies /home/node/app/node_modules ./node_modules
+COPY --from=dependencies /home/node/app/patches ./patches
+COPY --from=build-shared /home/node/app/apps/shared ./apps/shared
+COPY apps/${SERVICE} ./apps/${SERVICE}
+RUN pnpm install --frozen-lockfile && pnpm --filter ${SERVICE} build && pnpm --filter ${SERVICE} --prod deploy build
+
+# Final
+FROM node:20.11-slim AS final
+
+ARG NODE_ENV=production
+ENV NODE_ENV=${NODE_ENV}
+
+WORKDIR /home/node/app
+CMD ["node", "dist/main.js"]
+
+COPY --from=build-service --chown=node:node /home/node/app/build/dist ./dist
+COPY --from=build-service --chown=node:node /home/node/app/build/node_modules ./node_modules
+COPY --from=build-service --chown=node:node /home/node/app/build/package.json .
+
+# Cut unnecessary stuff from package.json. Only leave name, version, description and module type
+RUN node -e "\
+  const { name, description, version, type } = JSON.parse(fs.readFileSync('./package.json', 'utf-8'));\
+  fs.writeFileSync('./package.json', JSON.stringify({ name, version, description, type }, null, 2));\
+"
+
+USER node

README.md

-# ocm-engine version 1
+# Organization Credential Manager (OCM)
 
-#### Dependencies
-Node 12
-Python 2.5.0 >= <3.0.0
-pnpm 
+## Introduction
 
-### Setup local
+Organization Credential Manager (OCM) is a comprehensive suite of microservices designed to facilitate the management of digital credentials within an organizational context. Utilizing the principles of Self-Sovereign Identity (SSI), OCM leverages a series of components to enable secure, efficient handling of credentials, keys, and connections between entities.
 
-1. pnpm install
-2. pnpm prisma:generate
-3. pnpm /app/:build
+## Components
 
-app options: attestation, connection, principal, ssi
+OCM is comprised of several key microservices, each serving a specific role within the credential management ecosystem:
 
-### Docker compose 
+### [SSI Abstraction](apps/ssi-abstraction/README.md)
+A wrapper around the Credo library ([Credo](https://credo.js.org)), formerly known as Aries Framework Javascript, an implementation of a Hyperledger Indy Agent in TypeScript. This service abstracts the complexities of SSI operations for other components.
 
-1. Go to compose dir 
+### [Tenant Manager](apps/tenant-manager/README.md)
+Manages the creation and listing of OCM tenants, with each tenant maintaining their collections of credentials, keys, etc. This service acts as a critical interface to the SSI Abstraction functionality and is intended for administrative use only.
 
-2. docker-compose up
+### [DID Manager](apps/did-manager/README.md)
+Provides API functions for registering Decentralized Identifiers (DIDs) on the Indy Ledger and resolving existing DID Documents, facilitating secure identity verification and management.
 
-## Example Flows (OCM Usage)
+### [Connection Manager](apps/connection-manager/README.md)
+Facilitates the establishment of connections between OCM tenants using Aries protocols, enabling secure, verified interactions.
 
-Please refer to [OCM-flow-overview](documentation/ocm-flow-overview.md)
+### [Schema Manager](apps/schema-manager/README.md)
+Allows tenants to manage Indy Schemas and Credential Definitions, laying the groundwork for the creation and recognition of standardized credential formats.
 
+### [Credential Manager](apps/credential-manager/README.md)
+Offers an API for the detailed management of tenant credentials, streamlining the process of issuing, holding, and verifying digital credentials.
+
+### [Proof Manager](apps/proof-manager/README.md)
+Enables tenants to create proof requests, an essential feature for the verification of credential authenticity and integrity.
+
+## Deployment
+
+### Kubernetes
+
+OCM can be deployed within a Kubernetes cluster to leverage the benefits of container orchestration for managing and scaling the microservices efficiently. The deployment process is streamlined through the use of Helm, a package manager for Kubernetes that facilitates the installation, upgrade, and management of Kubernetes applications.
+
+Each microservice within OCM is equipped with its own Helm chart located in the service's folder. These Helm charts define the Kubernetes resources required for deploying and running the service, including Deployments, Services, and any necessary ConfigMaps or Secrets.
+
+### Docker Compose (Local)
+
+For local development and testing purposes, the OCM stack can also be run using Docker Compose with the following command:
+
+```bash
+docker compose up -d
+```
+
+This command builds the service container images and starts the stack. It's a convenient way to quickly bring up the OCM environment on a local machine for development, testing, or demonstration purposes.
+
+#### Starting multiple instances of OCM
+
+To demonstrate 
+```bash
+./scripts/start_instance.sh
+```
+
+> This command can be run multiple times to start several instances of OCM.
+
+> To stop instances that were started using the above command, use `./scripts/stop_instance.sh`.
+
+## Local Development
+
+To run each service locally, the following prerequisites are needed:
+
+- Node.js (installed on the local machine)
+- pnpm (package manager)
+- Docker Compose (for running NATS server and S3 storage)
+
+Before starting a service, create a `.env` file in the service's directory based on the `.env.example` provided, renaming it to `.env`.
+
+## Documentation and Example Flows
+
+For detailed usage and example flows, please refer to the [Postman Collection](documentation/Gaia-X_Organization_Credential_Manager.postman_collection.json) and the [OCM Example Flows](documentation/ocm-example-flows.md).
+
+## Security
+
+Note: Authentication and Authorization mechanisms are considered outside the scope of this project and should be addressed at the infrastructure level or through other means.
+
+## License
+
+Licensed under the Apache 2.0 License ([LICENSE](LICENSE)).

apps/attestation-manager/.dockerignore

-Dockerfile
-Jenkinsfile
-coverage
-docker-compose.yml
-docs
-node_modules
-yarn-error.log
-*.md
-!README.md
-.circle*
-.codecov*
-.coveralls*
-.dockerignore
-.drone*
-.editorconfig
-# .env
-.git*
-.huskyrc*
-.lintstagedrc*
-.npmignore
-.prettierrc*
-dist
\ No newline at end of file

apps/attestation-manager/.env.example

-PORT=3005
-DATABASE_URL=postgresql://root:password@localhost:5432/postgres?schema=attestation
-ECSURL=http://localhost:9200/
-ACCEPT_MEMBERSHIP_CREDENTIALS_CONFIG = AUTO
-NATS_URL=nats://localhost:4222
-AGENT_URL=http://localhost:3010
-TSA_URL=https://gaiax.vereign.com/tsa/policy/policy/example
-USE_AUTH=false
-OAUTH_CLIENT_ID=clientid
-OAUTH_CLIENT_SECRET=clientsecret
-OAUTH_TOKEN_URL=https://tokenurl
\ No newline at end of file

apps/attestation-manager/.swcrc

-{
-  "jsc": {
-    "preserveAllComments": true,
-    "parser": {
-      "syntax": "typescript",
-      "tsx": false,
-      "decorators": true
-    },
-    "transform": {
-      "legacyDecorator": true,
-      "decoratorMetadata": true
-    },
-    "target": "es2022"
-  },
-  "module": {
-    "type": "es6"
-  },
-  "sourceMaps": true,
-  "exclude": [".spec.ts", ".e2e-spec.ts"]
-}

apps/attestation-manager/GDPR.md

-# GDPR Compliance Document
-The objective of this document is to detail, the data being stored and proccessed by the Organization Credential Manager's, Attestation Manger.
-
-## What information is stored
-### Source User Information
-The Open Id connect claims that MAY contain all sorts of personal data (like email, name, age and others), are received from any external source.
-
-### Technical User Information (Public)
-
-- Schema information (public)
-- Credential/credential definition ids and states
-- DID of issuer
-- DID of holder
-- Created/updated dates
-- Offered credential attributes and attachments
-
-## How is the information stored
-### Source User Information
-Source User Information is encrypted using the Private Key of the Organizations SSI Agent and stored until the issuance of credential in Organization's SSI Agent's PostgreSQL database.
-
-### Technical User Information (Public)
-Technical User Information is encrypted using the Private Key of the Organizations SSI Agent and stored internally (on the agent) on PostgreSQL and externally/ metadata (shared between the OCM services) on PostgreSQL of Organization.
-
-## Who can access the information
-The Source User Information and Technical User Information both are accessible only by the Organization specific SSI agent's private key.
-
-## How long will the information stay 
-### Source User Information
-The Source User Information is wiped out once the credential is issued.
-
-### Technical User Information (Public)
-The Technical User Information is wiped out according to the retention periods (not defined yet).

apps/attestation-manager/README.md

-# OCM Attestation Manager
-
-## Description
-<hr/>
-
-The Attestation Manager is the microservice responsible for handling the features related to Issuance of Credentials. It handles REST endpoints for Schemas, Credential Definitions and Verifiable Credentials.
-
-## Usage
-<hr/>
-
-###  Swagger Documentation: 
-
-[Swagger/OpenAPI](swagger.json)
-
-## Installation
-<hr/>
-
-### Pre-requisite
-
-* pnpm
-* docker
-* docker-compose
-* PostgreSQL
-
-### OCM Services Dependencies
-
-* SSI Abstraction
-* Connection Manager
-
-## Running the app
-
-**Each service in the Organizational Credential Manager can be run from the infrastructure repository with Docker.**
-
-**The .env files are in the infrastructure repository under /env**
-
-```bash
-    ## production in:
-      ./deployment/ci
-    ## development in:
-      ./deployment/dev
-```
-
-* (optional) Edit docker-compose.yml in "infrastructure" to use either **/ci/** or **/dev/** Dockerfiles.
-
-* Run while in **"infrastructure"** project:
-```bash
-$ docker-compose up --build attestation-m
-```
-to run only Attestation Manager or
-```bash
-$ docker-compose up --build
-```
-to run all the services.
-
-## Build
-```
-pnpm build
-```
-
-## Run
-```
-pnpm start
-```
-
-### Environment Variables Required
-```
-1. PORT
-2. DATABASE_URL
-3. ECSURL
-4. NATS_URL
-5. AGENT_URL
-```
-
-### Outgoing communication services
-```
-1. SSI Abstraction
-```
-
-### Incomming communication services
-```
-1. Principal Manager
-```
-
-### Features supported
-```
-1. Create Schema
-2. Create Credential Definition
-3. Offer Credentials
-4. Propose Credentials
-5. Accept Credential
-```
-
-
-## Test
-<hr/>
-
-```bash
-# unit tests
-$ pnpm test
-
-# e2e tests
-$ pnpm test:e2e
-
-# test coverage
-$ pnpm test:cov
-```
-
-
-## GDPR
-<hr/>
-
-[GDPR](GDPR.md)
-
-## Dependencies
-<hr/>
-
-[Dependencies](package.json)
-
-## License
-<hr/>
-
-[Apache 2.0 license](LICENSE)

apps/attestation-manager/deployment/ci/Dockerfile

-FROM node:16-slim AS builder
-
-RUN apt-get update
-RUN apt-get install -y openssl 
-
-WORKDIR /app
-
-RUN npm i -g pnpm
-
-COPY . .
-
-RUN pnpm install
-
-RUN pnpm -F attestation-manager prisma:generate
-
-RUN pnpm -F attestation-manager build 
-
-FROM node:16-slim 
-
-RUN apt-get update
-RUN apt-get install -y openssl
-
-
-ENV PATH /usr/src/app/node_modules/.bin:$PATH
-
-WORKDIR /usr/src/app
-
-COPY --from=builder /app/dist ./dist
-COPY --from=builder /app/start.sh ./start.sh
-COPY --from=builder /app/node_modules ./node_modules
-COPY --from=builder /app/src/prisma prisma
-
-EXPOSE 3005
-
-RUN chmod +x ./start.sh
-
-CMD ["./start.sh"]
-
-
-
-
-
-
-
-
-
-
-
-

apps/attestation-manager/deployment/helm/Chart.yaml

-apiVersion: v1
-appVersion: v1.0.4-rc
-description: attestation-manager deployment
-name: attestation-manager
-version: 1.0.4
-icon: "https://www.vereign.com/wp-content/themes/vereign2020/images/vereign-logo.svg"