# Wallet App Simulator
- Execute each cell with Crtl+Enter
- Two cells will ask for an input. Use a screen QR code reader to scan from your screen (e.g. a Chrome plugin)


Install libraries if you run this notebook for the first time

In [None]:
!pip install pyjwt cryptography protobuf pycryptodome pyjwt ecdsa


### Scan a QR code

Create a process in the booking portal. Match the personal data (firstname, lastname, birthdate) with a valid DCC that you have. 

Scan the QR code that is displayed with a screen QR code reader. 

Run the code cell with Crtl+Enter and paste the QR code contents. 

The code will print the decoded token which is embedded in the QR code.

In [2]:
import requests
import json
import jwt

qr_code = input('Paste QR code contents here: ')
qr_code_data =  json.loads(qr_code)
token_info = jwt.decode(qr_code_data['token'], options={"verify_signature":False})
print(f"Token: {token_info}")


Paste QR code contents here: {"protocol":"DCCVALIDATION","protocolVersion":"1.0.0","serviceIdentity":"https://dgca-booking-demo-eu-test.cfapps.eu10.hana.ondemand.com/api/identity","privacyUrl":"https://validation-decorator.example","token":"eyJ0eXAiOiJKV1QiLCJraWQiOiJiUzhEMi9XejV0WT0iLCJhbGciOiJFUzI1NiJ9.eyJpc3MiOiJodHRwczovL2RnY2EtYm9va2luZy1kZW1vLWV1LXRlc3QuY2ZhcHBzLmV1MTAuaGFuYS5vbmRlbWFuZC5jb20vYXBpL2lkZW50aXR5IiwiZXhwIjoxNjM4ODcyODc1LCJzdWIiOiJjZDIwNGM0OC1lMTY3LTRiNGItYjU3Ni02YzA3MWUxN2I0MWMifQ.FxDgak-OWm1xJ4CdgfX0o20abYuW-wH_ik9KEVfuzjXGl8-utvECVTZakVm2CVuvgFSIRrHWjqNDzAKsD1fTtA","consent":"Please confirm to start the DCC Exchange flow. If you not confirm, the flow is aborted.","subject":"cd204c48-e167-4b4b-b576-6c071e17b41c","serviceProvider":"Booking Demo"}
Token: {'iss': 'https://dgca-booking-demo-eu-test.cfapps.eu10.hana.ondemand.com/api/identity', 'exp': 1638872875, 'sub': 'cd204c48-e167-4b4b-b576-6c071e17b41c'}


### QR code handling by wallet app
The QR code is scanned be the wallet app. 

The following block simulates that the code is scanned by the wallet app and the identity doc is queried.

With that information, the wallet app does the following:
 - get the endpoint for the validation service
 - request an access token from the token service by sending a freshly generated public key
    - the keypair is saved for later to sign the DCC upload
    - together with the access token, a nonce for encryption is obtained

In [3]:
import ecdsa
import base64
from Crypto.Hash import SHA256
from ecdsa.curves import NIST256p

userkey = ecdsa.SigningKey.generate(curve=NIST256p,hashfunc=SHA256.new)

# Load the identity document 
serviceIdentity = requests.get( qr_code_data['serviceIdentity'] ).json()

# Get the information from the identity document

for service in serviceIdentity['service']:
    
    # This should not always be 'ValidationService-1' but the current service
    # depending on rules and requirements
    if service['id'].endswith('#ValidationService-1'): 
        validation_service_id = service['id']    
        validation_service_endpoint = service['serviceEndpoint']    
        print(f"Validation Service ID {validation_service_id}")                              
                              
    # App should select the latest AccessTokenService here
    # We always choose #1 for demonstration purposes
    if service['id'].endswith('#AccessTokenService-1'):
        response = requests.post( service['serviceEndpoint'], 
                    headers={'Authorization': f'Bearer {qr_code_data["token"]}',
                             'Content-Type':'application/json', 
                             'X-Version' : '1.0'},
                    json = {
                            "pubKey": userkey.get_verifying_key().to_pem().decode(), 
                            "service":validation_service_id}
        )
        print ("Undecoded Response", response.status_code, response.text, '\n\n')
        
        # This is the access token for the validation service
        validator_token = response.text     
        validation_nonce = response.headers['x-nonce']
        
        token_info = jwt.decode(validator_token, options={"verify_signature":False})
        print(f"Token: {json.dumps(token_info, indent=4)}")




Validation Service ID https://dgca-booking-demo-backend-eu-test.cfapps.eu10.hana.ondemand.com/identity/service/ValidationService#ValidationService-1
Undecoded Response 200 eyJ0eXAiOiJKV1QiLCJraWQiOiJiUzhEMi9XejV0WT0iLCJhbGciOiJFUzI1NiJ9.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

### Get the public key from the validation service
With the validation service endpoint that has been extracted from the decorator's identity document, we now load the validation service's identity document too to obtain its public key for encryption. 

In [4]:
validation_identity = requests.get(validation_service_endpoint+'/identity').json()

for verificationMethod in validation_identity['verificationMethod']:
    if verificationMethod['id'].endswith('ValidationServiceEncKey-1'):
        validation_service_publickey =  verificationMethod['publicKeyJwk']
        print("Selected Public Key:", validation_service_publickey )

Selected Public Key: {'x5c': ['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

### Submit the health certificate
You can either enter the health certificate data into an input field or scan a DCC-QR-Code from screen. Comment or uncomment the first lines according to the behavior that you prefer. Make sure that the name and date-of-birth match the data in the token from above. 

The wallet app now executes the following steps: 
- choose a random password (32 bytes)
- AES-encrypt the DCC with the password from above and the nonce that was obtained together with the access token 
- encrypt the password with the validation service's public key 
- sign the encrypted AES-encrypted data with the userkey that has been submitted to get the access token
- send JSON data to the validation service:
   - kid of validation server's public key that was used to encrypt password
   - encrypted dcc data
   - signature of encrypted dcc data
   - PKI encrypted password for dcc
   - constants: encScheme = RSAOAEPWithSHA256AESCBC, sigAlg = SHA256withECDSA
   - header: Access token that was previously obtained
- decode the response and print it

In [5]:
hcert = input('Please paste your HCert: ').strip()  
assert hcert.startswith('HC1:')

from base64 import b64decode
from random import randint
from Crypto.Cipher import PKCS1_OAEP
from Crypto.PublicKey import RSA
from Crypto.Cipher import AES
from Crypto.Util.Padding import pad
from ecdsa.util import sigencode_der

# Use real random numbers for production instead!
password = bytearray([randint(0,255) for i in range(32)])

validatorkey = RSA.import_key(f'-----BEGIN CERTIFICATE-----\n{validation_service_publickey["x5c"]}\n-----END CERTIFICATE-----')
aesCipher = AES.new(password, AES.MODE_CBC,iv=b64decode(validation_nonce))

cipher = PKCS1_OAEP.new(validatorkey,hashAlgo=SHA256)
cryptKey = cipher.encrypt(password)
ciphertext= aesCipher.encrypt(pad(bytes(hcert,'utf-8'),AES.block_size))
signature = userkey.sign(ciphertext,hashfunc=SHA256.new,sigencode=sigencode_der)

headers = {'content-type': 'application/json', "Authorization":"Bearer " + validator_token ,"X-Version":"1.0"}

body = {"kid":validation_service_publickey["kid"],
        "dcc":base64.b64encode(ciphertext).decode(),
        "sig":base64.b64encode(signature).decode(),
        "encKey":base64.b64encode(cryptKey).decode(),
        "encScheme":"RSAOAEPWithSHA256AESCBC",
        "sigAlg":"SHA256withECDSA"}

headers = {'content-type': 'application/json', "Authorization":"Bearer " +validator_token,"X-Version":"1.0"}
response = requests.post(token_info['aud'], data=json.dumps(body), headers=headers)
print ("Undecoded Response", response.status_code, response.text, '\n\n')
if response.ok:
    validate_result = jwt.decode(response.content, options={"verify_signature":False})
    print(f'Validate result message: {json.dumps(validate_result, indent=4)}')

Please paste your HCert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
Undecoded Response 200 eyJ0eXAiOiJKV1QiLCJraWQiOiJSQU0yU3R3N0VrRT0iLCJhbGciOiJFUzI1NiJ9.eyJzdWIiOiJjZDIwNGM0OC1lMTY3LTRiNGItYjU3Ni02YzA3MWUxN2I0MWMiLCJpc3MiOiJodHRwczovL2RnY2EtdmFsaWRhdGlvbi1zZXJ2aWNlLWV1LXRlc3QuY2ZhcHBzLmV1MTAuaGFuYS5vbmRlbWFuZC5jb20iLCJpYXQiOjE2Mzg4NjkzMzUsImV4cCI6MTYzODk1NTczNSwiY2F0ZWdvcnkiOlsiU3RhbmRhcmQiXSwiY29uZmlybWF0aW9uIjoiZXlKcmFXUWlPaUpTUVUweVUzUjNOMFZyUlQwaUxDSmhiR2NpT2lKRlV6STFOaUo5LmV5S