2023-01-10 Aries Cloud Agent - Python Users Group Community Meeting

Summary:

Zoom Link: https://zoom.us/j/99220079317?pwd=OHk0U05ITnBkSmZ0aXlIQzFDYWg3UT09

Call Time: 8:00 Pacific / 16:00 CET

Recordings From the Call:

• Full Meeting:  

• Topics:

Welcome, Introductions and Announcements

Attendees

• @Stephen Curran (BC Gov/Cloud Compass Computing Inc.) <swcurran@cloudcompass.ca>,Announcements

• @Warren Gallagher (AffinitiQuest) <warren@affinitiquest.io>

Agenda

• Update on BC Gov Code With Us – ACA-Py Indy-SDK to Askar conversion script - Indicio

  • Started from Andrew's script, SQLite only though

  • Adding Postgres support

  • Upgraded the per database wallet and adding tests

  • Repo is: https://github.com/Indicio-tech/acapy-wallet-upgrade; open question as to where it will live in the end – ACA-Py or external?  Leaning to leaving it outside.

  • Current branch: https://github.com/Indicio-tech/acapy-wallet-upgrade/tree/feature/psql-support

  • From @Timo Glastra – AFJ issue: https://github.com/Indicio-tech/acapy-wallet-upgrade/tree/feature/psql-support

• Ledger-Agnostic AnonCreds Interface is ACA-Py: progress

  • Issue: #2044 in ACA-Py is about the ledger-agnostic AnonCreds interface

  • Hack MD Document: https://hackmd.io/Ailjb-WDTeC48EjF0gjrGA

    • DID Registration interface from DIF: https://identity.foundation/did-registration/ – basis of the API

    • Bottom line – a new endpoint /anoncreds will be added to the Admin API for handling AnonCreds

      • Will handle the differences in the ledgers

      • Tricky will be handling endorsing within Indy – and possibly other ledgers that need similar (but not the same) support

  • RootsID working on Cardano AnonCreds implementation

    • https://github.com/roots-id/cardano-anoncreds

    • AnonCreds Method Registry entry: https://hyperledger.github.io/anoncreds-methods-registry/#cardano-anoncreds-method 

  • Question from Alex in chat:  What would be the process to add cheqd and cardano anoncreds in acapy 1.0? Is the driver to write to the ledger enough?

    • From Timo Glastra : Alex, there's some work that needs to be done on the did registrar module, as you need to have the key in the wallet to publish to the ledgers

• BC Gov ACA-Py 1.0 Priorities – Project

  • Adding a Documentation site for ACA-Py - as nice as the AFJ one - https://aries.js.org/

  • AIP 2.0 Support

    • Legacy Peer DIDs / Peer DIDs / DID Key / Encryption Envelope

    • Please Ack

  • Other activities:

    • Cluster Support - PQs and Shared Cache - Documentation and Testing

    • OCA for Aries – Issuer support, plus holder for testing

    • Ledger Agnostic DIDs

    • Ledger Agnostic AnonCreds

      • Drop indy-sdk support in 1.0?

        • OK if we have the upgrade script and do some patch releases if really needed.

        • Agents with different underlying features can interop – indy-sdk and shared-components

  • Need a release roadmap, as that is a long list for 1.0.0.

• Open Discussion

  • Encryption Envelope for DIDComm V2, issues to discuss: 

    • Encryption envelope in Askar - how do we proceed to get that created?

    • Other libraries are available (Python, Rust, others) - e.g., SICPA – should we use one of those are keep working on Askar's implementation?

      • Askar – somethings are still missing

      • SICPA Python library is more complete - suggestion is to use that - donated to the OWF - contact SICPA to find out development status

        • Indicio also looking at it.

        • Use authlib – private keys are being called to a library – makes it harder to use an HSM for handling secrets

      • 2 or 3 others available - Rust, Go

      • Decision: Go with SICPA library for now.

  • Python upgrade

    • Completing the upgrade away from 3.6.  What is needed?

      • Creating images for 3.9 as the target - @Daniel Bluhm has started, but if others want to pick it up, he'll review.

    • Why are 3.7 and 3.10 failing?  Could be a dependency issue away from 3.6.

    • First important step is 3.9 images.

Next Meeting

• Does anyone use/see a use case for Web Sockets and Return Route beyond ACA-Py as a mobile agent mediator?

• Issue 2029: Additional security controls for webhooks for multi-tenancy

Future Topics

Action items