feat: add verification/validation to IdentityAndTrustService

[paullatzelsperger]

What this PR changes/adds

This PR adds basic scaffolding and collaborator interfaces for performing the validation and verification of VerifiablePresentations and SI tokens in the following ways

• validating incoming SI tokens (structural)
• verifying incoming SI tokens (cryptographically) re-using the DidResolverRegistry
• verifying VPs (cryptographically, currently stubbed)
• validating VCs (structurally), extensibility not yet implemented

Why it does that

IATP adoption.

Further notes

Much of the actual code has been stubbed, to keep the PR relatively small and focused.
The following things are not yet implemented (currently mocked) and will follow either later or in subsequent PRs:

• making the VP Request (http) against the CredentialService
• actual cryptographic verification of VPs (JSON-LD, JWT). The SignatureSuite implementations are there, but there are some open questions about the formats. So we need to connect the dots.
• checking the StatusList2021 (revocation)
• pluggable additional VC validations (e.g. validating the credentialSubject)
• [edit] Validating and verifying JWTs has been implemented in similar ways several times already, in a future PR we should harmonize this Refactor multiple modules handling JWT generation and validation #1357

Linked Issue(s)

Closes #3496

Please be sure to take a look at the contributing guidelines and our etiquette for pull requests.

[codecov-commenter]

Codecov Report

Attention: 42 lines in your changes are missing coverage. Please review.

Comparison is base (2bfcdd7) 72.21% compared to head (37b2dd8) 72.24%.
Report is 3 commits behind head on main.

❗ Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #3528      +/-   ##
==========================================
+ Coverage   72.21%   72.24%   +0.02%     
==========================================
  Files         853      863      +10     
  Lines       17162    17304     +142     
  Branches      965      985      +20     
==========================================
+ Hits        12394    12501     +107     
- Misses       4359     4392      +33     
- Partials      409      411       +2     

Files	Coverage Δ
...entitytrust/core/IatpDefaultServicesExtension.java	100.00% <ø> (ø)
...trust/core/service/EmbeddedSecureTokenService.java	66.66% <ø> (ø)
...identitytrust/validation/rules/HasValidIssuer.java	100.00% <100.00%> (ø)
...titytrust/validation/rules/HasValidSubjectIds.java	100.00% <100.00%> (ø)
.../iam/identitytrust/validation/rules/IsRevoked.java	100.00% <100.00%> (ø)
...o/JsonObjectToVerifiableCredentialTransformer.java	90.00% <100.00%> (ø)
.../edc/identitytrust/model/VerifiableCredential.java	50.00% <ø> (ø)
...dc/identitytrust/model/VerifiablePresentation.java	58.62% <100.00%> (ø)
...tytrust/model/VerifiablePresentationContainer.java	0.00% <ø> (ø)
...edc/iam/identitytrust/IdentityAndTrustService.java	97.61% <97.61%> (ø)
... and 8 more

... and 1 file with indirect coverage changes

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[bscholtes1A]

As discussed this implementation is almost similar to the verifyJwtToken of the DecentralizedIdentityService

[paullatzelsperger]

yes, there are many similarities, also regarding JWT validation and verification. I'd prefer to do the harmonization and clean up later, so that the PR doesn't get blown out of proportion.