github.com/s7techlab/cckit@v0.10.5/identity/cert_identity.go

package identity

import (
	"crypto/x509"
	"encoding/pem"
	"fmt"
	"time"

	"github.com/golang/protobuf/proto"
	"github.com/hyperledger/fabric-chaincode-go/pkg/cid"
	"github.com/hyperledger/fabric-chaincode-go/shim"
	protomsp "github.com/hyperledger/fabric-protos-go/msp"
	"github.com/hyperledger/fabric/msp"
)

// New creates CertIdentity struct from an mspID and certificate
func New(mspID string, certPEM []byte) (ci *CertIdentity, err error) {
	cert, err := Certificate(certPEM)
	if err != nil {
		return nil, err
	}
	return &CertIdentity{mspID, cert}, nil
}

// FromStub creates Identity interface  from tx creator mspID and certificate (stub.GetCreator)
func FromStub(stub shim.ChaincodeStubInterface) (*CertIdentity, error) {
	clientIdentity, err := cid.New(stub)
	if err != nil {
		return nil, fmt.Errorf(`client identity from stub: %w`, err)
	}
	mspID, err := clientIdentity.GetMSPID()
	if err != nil {
		return nil, err
	}
	cert, err := clientIdentity.GetX509Certificate()
	if err != nil {
		return nil, err
	}
	return &CertIdentity{mspID, cert}, nil
}

// FromSerialized converts  msp.SerializedIdentity struct  to Identity interface{}
func FromSerialized(s protomsp.SerializedIdentity) (ci *CertIdentity, err error) {
	return New(s.Mspid, s.IdBytes)
}

// CertIdentity  structs holds data of tx creator
type CertIdentity struct {
	MspID string
	Cert  *x509.Certificate
}

// GetID get id based in certificate subject and issuer
func (ci CertIdentity) GetID() string {
	return IDByCert(ci.Cert)
}

func (ci CertIdentity) ExpiresAt() time.Time {
	return ci.Cert.NotAfter
}

func (ci CertIdentity) GetMSPIdentifier() string {
	return ci.MspID
}

func (ci CertIdentity) GetIdentifier() *msp.IdentityIdentifier {
	return &msp.IdentityIdentifier{
		Mspid: ci.MspID,
		Id:    ci.GetID(),
	}
}

func (ci CertIdentity) Validate() error {
	return nil
}

func (ci CertIdentity) Verify(msg []byte, sig []byte) error {
	return nil
}

func (ci CertIdentity) Anonymous() bool {
	return false
}

func (ci CertIdentity) GetOrganizationalUnits() []*msp.OUIdentifier {
	return nil
}

// GetSubject returns invoker's certificate subject
func (ci CertIdentity) GetSubject() string {
	return GetDN(&ci.Cert.Subject)
}

// GetIssuer returns invoker's certificate issuer
func (ci CertIdentity) GetIssuer() string {
	return GetDN(&ci.Cert.Issuer)
}

func (ci CertIdentity) GetPublicKey() interface{} {
	return ci.Cert.PublicKey
}

// GetPEM certificate encoded to PEM
func (ci CertIdentity) GetPEM() []byte {
	return pem.EncodeToMemory(&pem.Block{
		Type:  `CERTIFICATE`,
		Bytes: ci.Cert.Raw,
	})
}

// ToSerialized converts CertIdentity to *msp.SerializedIdentity
func (ci CertIdentity) ToSerialized() *protomsp.SerializedIdentity {
	return &protomsp.SerializedIdentity{
		Mspid:   ci.MspID,
		IdBytes: ci.GetPEM(),
	}
}

func (ci CertIdentity) Serialize() ([]byte, error) {
	return ci.ToBytes()
}

// ToBytes converts to serializedIdentity and then to json
func (ci CertIdentity) ToBytes() ([]byte, error) {
	return proto.Marshal(ci.ToSerialized())
}

func (ci CertIdentity) SatisfiesPrincipal(principal *protomsp.MSPPrincipal) error {
	return nil
}

func (ci CertIdentity) Sign(msg []byte) ([]byte, error) {
	return nil, nil
}

func (ci CertIdentity) GetPublicVersion() msp.Identity {
	return nil
}