Core API

Reference for the idprova-core Rust crate. All Python and TypeScript SDK classes map directly to these Rust types.

SDK Type Mapping

Rust (idprova-core)	Python (idprova)	TypeScript (@idprova/core)
`KeyPair`	`KeyPair`	`KeyPair`
`AidBuilder`	`AIDBuilder`	`AidBuilder`
`Aid` / AID Document	`AID`	`Aid`
`DelegationToken`	`DAT`	`Dat`
`Scope`	`Scope`	`Scope`
`TrustLevel`	`TrustLevel`	`TrustLevel`
`ReceiptLog`	`ReceiptLog`	`ReceiptLog`
—	`AgentIdentity`	`AgentIdentity`

AgentIdentity is a high-level convenience class available in the Python and TypeScript SDKs that combines KeyPair, AidBuilder, and DelegationToken into a single interface.

`crypto` Module

`KeyPair`

Ed25519 key pair for signing and verification.

// Generate
let kp = KeyPair::generate()?;

// Sign / verify
let sig = kp.sign(b"message");
assert!(kp.verify(b"message", &sig));

// Public key access
let multibase: String = kp.public_key_multibase();
let bytes: &[u8; 32] = kp.public_key_bytes();

// Restore from secret
let kp2 = KeyPair::from_secret_bytes(&secret)?;

kp = KeyPair.generate()
sig = kp.sign(b"message")
assert kp.verify(b"message", sig)
kp.public_key_multibase  # str
kp.public_key_bytes      # bytes (32)

const kp = KeyPair.generate();
const sig = kp.sign(Buffer.from('message'));
kp.verify(Buffer.from('message'), sig); // boolean
kp.publicKeyMultibase; // string
kp.publicKeyBytes;     // Buffer (32)

`hash`

Hashing functions.

Function	Algorithm	Output Format
`hash::blake3(data)`	BLAKE3	`blake3:<hex>`
`hash::sha256(data)`	SHA-256	`sha256:<hex>`

`aid` Module

`AidBuilder`

Fluent builder for creating Agent Identity Documents.

Method	Type	Description
`new()`	Constructor	Create a new builder
`id(did)`	`&str`	Set the DID identifier
`controller(did)`	`&str`	Set the controller DID
`name(name)`	`&str`	Set human-readable name
`description(desc)`	`&str`	Set description
`model(model)`	`&str`	Set AI model identifier
`runtime(runtime)`	`&str`	Set runtime environment
`trust_level(level)`	`&str`	Set trust level (`L0`-`L4`)
`add_verification_key(pk)`	Public key	Add an Ed25519 key
`build()`	—	Build and validate the AID

`Aid` (AID Document)

Property / Method	Return Type	Description
`id()` / `did`	`String`	DID identifier
`controller()`	`String`	Controller DID
`trust_level()`	`Option<String>`	Trust level
`to_json()`	`String`	JSON serialization
`from_json(json)`	`Aid`	Parse from JSON
`validate()`	`Result<()>`	Validate structure

`dat` Module

`DelegationToken` (DAT)

Method	Description
`issue(key, issuer, subject, scopes, duration)`	Issue a signed DAT
`from_compact(jws)`	Parse from JWS compact serialization
`compact()` / `to_compact()`	Serialize to JWS compact format
`verify(public_key)` / `verify_signature(pk_bytes)`	Verify signature
`validate_timing()`	Check expiry and not-before
`issuer()`	Issuer DID
`subject()`	Subject DID
`jti()`	Unique token ID
`scopes()` / `scope`	Granted scope strings
`expires_at()`	Expiration Unix timestamp
`is_expired()`	Boolean expiry check

`Scope`

Method	Description
`parse(str)` / `new(str)`	Parse a scope string
`covers(other)`	Check if this scope permits the other scope
`to_string()`	String representation

Scope format: namespace:resource:action — wildcards (*) match any segment.

`DelegationChain`

Method	Description
`new(dats)`	Create a chain from ordered DATs
`validate()`	Verify signatures, scope narrowing, timing

`receipt` Module

`ReceiptLog`

Method	Description
`new(agent_did)`	Create empty log for an agent
`verify_integrity()`	Verify hash chain integrity
`len()` / `length`	Number of entries
`last_hash()`	Hash of most recent entry
`next_sequence()`	Next sequence number
`to_json()`	Serialize to JSON

`trust` Module

`TrustLevel`

Variant	Description
`L0`	Self-declared — no external verification
`L1`	Domain-verified — DNS TXT record confirms control
`L2`	Organisation-verified — third-party attestation of org identity
`L3`	Third-party attested — independent security audit
`L4`	Continuously monitored — real-time compliance and behavioural monitoring

Method	Description
`meets_minimum(required)`	Check if this level >= required
`description`	Human-readable description

`error` Module

`IdprovaError`

Variant	Description
`Crypto(String)`	Key generation, signing, or verification failure
`Aid(String)`	DID parsing, document validation error
`Dat(String)`	Token issuance, verification, or scope error
`Receipt(String)`	Receipt creation or chain integrity error
`Trust(String)`	Trust level parsing or comparison error
`Serialization(String)`	JSON serialization/deserialization error

Cargo Features

Feature	Default	Description
`default`	Yes	Core protocol types and Ed25519 cryptography
`pyo3/extension-module`	No	Python bindings (used by `idprova` Python package)
`napi`	No	TypeScript/Node.js bindings (used by `@idprova/core`)

Next Steps

Rust SDK Guide — Getting started with the Rust crate
Python SDK Guide — Python bindings documentation
TypeScript SDK Guide — TypeScript bindings documentation

Core API

SDK Type Mapping

crypto Module

KeyPair

hash

aid Module

AidBuilder

Aid (AID Document)

dat Module

DelegationToken (DAT)

Scope

DelegationChain

receipt Module

ReceiptLog

trust Module

TrustLevel

error Module

IdprovaError