feat(isle): view credential details

apps/isle/src/features/permissions.tsx

@@ -430,7 +430,11 @@ export function Permissions() {
                         size="xs"
                         colorPalette="green"
                         rounded="full"
-                        onClick={() => {}}
+                        onClick={() => {
+                          node?.post("view-credential-details", {
+                            id: grant.dataId,
+                          });
+                        }}
                       >
                         <ViewIcon w="5" h="5" color="neutral.400" />
                       </IconButton>

examples/consumer-and-issuer/src/app/page.tsx

@@ -9,6 +9,7 @@ import { useEffect, useRef, useState } from "react";
 import { useAccount, useSignMessage } from "wagmi";
 
 import { createIDOSUserProfile } from "@/app/actions";
+import invariant from "tiny-invariant";
 
 export default function Home() {
   const isleRef = useRef<ReturnType<typeof createIsleController> | null>(null);
@@ -87,6 +88,30 @@ export default function Home() {
       // @todo: this should redirect the user to the issuer's knownKYC provider
     });
 
+    isleRef.current.on("view-credential-details", async ({ data }) => {
+      const credential = await isleRef.current?.viewCredentialDetails(data.id);
+      const enclave = new IframeEnclave({
+        container: "#idOS-enclave",
+        url: "https://localhost:5173/",
+      });
+
+      await enclave.load();
+      const user = await isleRef.current?.getUserProfile();
+      invariant(user, "No user profile found");
+
+      await enclave.ready(
+        user?.id,
+        address,
+        address, // @todo: remove public key as a parameter
+        user.recipient_encryption_public_key,
+      );
+      // @todo: use the credential content
+      const credentialContent = await enclave.decrypt(
+        credential?.content,
+        user.recipient_encryption_public_key,
+      );
+    });
+
     isleRef.current.on("updated", async ({ data }) => {
       switch (data.status) {
         case "not-verified": {

packages/@controllers/src/isle/index.ts

@@ -9,7 +9,11 @@ import {
   createKwilSigner,
   createWebKwilClient,
   getAllCredentials,
+  getSharedCredential,
+  getUserProfile as getUserProfileCore,
   hasProfile,
+  type idOSCredential,
+  type idOSUser,
   requestDWGSignature,
   revokeAccessGrant,
 } from "@idos-network/core";
@@ -95,14 +99,18 @@ interface idOSIsleController {
   send: (type: IsleControllerMessage["type"], data: IsleControllerMessage["data"]) => void;
   /** Subscribes to messages from the Isle iframe */
   on: <T extends IsleNodeMessage["type"]>(type: T, handler: IsleMessageHandler<T>) => () => void;
-  /** Requests a delegated write grant for the given grantee */
+  /** Requests a `delegated write grant` for the given `grantee` */
   requestDelegatedWriteGrant: (
     options: RequestPermissionOptions,
   ) => Promise<{ signature: string; writeGrant: DelegatedWriteGrantSignatureRequest } | undefined>;
-  /** Requests an access grant for the given grantee */
+  /** Requests an access grant for the given `grantee` */
   requestPermission: (options: RequestPermissionOptions) => Promise<void>;
-  /** Revokes an access grant for the given id */
+  /** Revokes an access grant for the given `id` */
   revokePermission: (id: string) => Promise<unknown>;
+  /** View credential details for the given `id` */
+  viewCredentialDetails: (id: string) => Promise<idOSCredential>;
+  /** Get the user profile */
+  getUserProfile: () => Promise<idOSUser>;
 }
 
 // Singleton wagmi config instance shared across all Isle instances
@@ -241,6 +249,11 @@ export const createIsleController = (options: idOSIsleControllerOptions): idOSIs
     return { signature, writeGrant: delegatedWriteGrant };
   };
 
+  const getUserProfile = async (): Promise<idOSUser> => {
+    invariant(kwilClient, "No `KwilActionClient` found");
+    return getUserProfileCore(kwilClient);
+  };
+
   /**
    * Requests an access grant for the given grantee
    */
@@ -285,6 +298,15 @@ export const createIsleController = (options: idOSIsleControllerOptions): idOSIs
     return result;
   };
 
+  /**
+   * View credential details for the given `id`
+   */
+  const viewCredentialDetails = async (id: string): Promise<idOSCredential> => {
+    invariant(kwilClient, "No `KwilActionClient` found");
+    const [credential] = await getSharedCredential(kwilClient, id);
+    return credential;
+  };
+
   /**
    * Sets up the communication channel with the Isle iframe
    * Initializes message handlers and establishes the connection
@@ -565,5 +587,7 @@ export const createIsleController = (options: idOSIsleControllerOptions): idOSIs
     requestDelegatedWriteGrant,
     requestPermission,
     revokePermission,
+    viewCredentialDetails,
+    getUserProfile,
   };
 };

packages/@core/src/kwil-actions/user.ts

@@ -1,3 +1,4 @@
+import type { idOSUser } from "..";
 import type { KwilActionClient } from "./create-kwil-client";
 
 /**
@@ -14,6 +15,14 @@ export async function hasProfile(kwilClient: KwilActionClient, address: string)
   return has_profile;
 }
 
+export async function getUserProfile(kwilClient: KwilActionClient) {
+  const [user] = await kwilClient.call<[idOSUser]>({
+    name: "get_user",
+    inputs: {},
+  });
+  return user;
+}
+
 export interface CreateUserReqParams {
   id: string;
   recipient_encryption_public_key: string;

packages/@core/src/types/index.ts

@@ -129,6 +129,12 @@ export type IsleControllerMessage =
         };
         KYCPermissions: string[];
       };
+    }
+  | {
+      type: "credential-details";
+      data: {
+        credential: idOSCredential;
+      };
     };
 
 export type IsleNodeMessage =
@@ -166,6 +172,12 @@ export type IsleNodeMessage =
       data: {
         id: string;
       };
+    }
+  | {
+      type: "view-credential-details";
+      data: {
+        id: string;
+      };
     };
 
 export type IsleMessageHandler<T extends IsleNodeMessage["type"]> = (