credebl · sujitaw · Sep 1, 2025 · Aug 12, 2025 · Aug 29, 2025 · Sep 1, 2025
diff --git a/src/authentication.ts b/src/authentication.ts
@@ -82,7 +82,7 @@
        throw new Error('Token not decoded')
      }
    } catch (err) {
      agent.config.logger.error('Error decoding token', err as Record<string, any>)
      return Promise.reject(new StatusException(`${ErrorMessages.Unauthorized}: Invalid token`, 401))
    }

@@ -97,8 +97,8 @@
       }
       if (role === AgentRole.RestTenantAgent) {
         // Logic if the token is of tenant agent
-        if (scopes && scopes?.includes(SCOPES.MULTITENANT_BASE_AGENT)) {
-          logger.debug('Tenants cannot manage tenants')
+        if (scopes && !scopes?.includes(SCOPES.TENANT_AGENT)) {
+          logger.debug('Tenants cannot access this route')
           return Promise.reject(new StatusException(ErrorMessages.Unauthorized, 401))
         } else {
           // Auth: tenant agent
@@ -157,7 +157,7 @@
    jwt.verify(token, secretKey)
    return true
  } catch (error) {
    logger.error('Error verifying jwt token', error as Record<string, any>)
    return false
  }
 }

diff --git a/src/controllers/agent/AgentController.ts b/src/controllers/agent/AgentController.ts
@@ -118,7 +118,7 @@
     @Request() request: Req,
     @Query('storeCredential') storeCredential: boolean,
     @Query('dataTypeToSign') dataTypeToSign: 'rawData' | 'jsonLd',
-    @Body() data: CustomW3cJsonLdSignCredentialOptions | SignDataOptions,
+    @Body() data: CustomW3cJsonLdSignCredentialOptions | SignDataOptions | unknown,
   ) {
     try {
       // JSON-LD VC Signing
@@ -160,7 +160,7 @@
       }
 
       if (!keyToUse) {
-        throw new Error('Unable to construct signing key.')
+        throw new Error('Unable to construct signing key. ')
       }
 
       const signature = await request.agent.context.wallet.sign({
@@ -178,7 +178,7 @@
   @Post('/credential/verify')
   public async verifyCredential(
     @Request() request: Req,
-    @Body() credentialToVerify: SafeW3cJsonLdVerifyCredentialOptions,
+    @Body() credentialToVerify: SafeW3cJsonLdVerifyCredentialOptions | any,
   ) {
     try {
       const { credential, ...credentialOptions } = credentialToVerify

diff --git a/src/routes/routes.ts b/src/routes/routes.ts
@@ -1464,7 +1464,7 @@ export function RegisterRoutes(app: Router) {
         const argsPolygon_createKeyPair: Record<string, TsoaRoute.ParameterSchema> = {
         };
         app.post('/polygon/create-keys',
-            authenticateMiddleware([{"jwt":["tenant","dedicated"]}]),
+            authenticateMiddleware([{"jwt":["tenant","dedicated","Basewallet"]}]),
             ...(fetchMiddlewares<RequestHandler>(Polygon)),
             ...(fetchMiddlewares<RequestHandler>(Polygon.prototype.createKeyPair)),
 
@@ -1538,7 +1538,7 @@ export function RegisterRoutes(app: Router) {
                 estimateTransactionRequest: {"in":"body","name":"estimateTransactionRequest","required":true,"ref":"DidOperationOptions"},
         };
         app.post('/polygon/estimate-transaction',
-            authenticateMiddleware([{"jwt":["tenant","dedicated"]}]),
+            authenticateMiddleware([{"jwt":["tenant","dedicated","Basewallet"]}]),
             ...(fetchMiddlewares<RequestHandler>(Polygon)),
             ...(fetchMiddlewares<RequestHandler>(Polygon.prototype.estimateTransaction)),
 

diff --git a/src/routes/swagger.json b/src/routes/swagger.json
@@ -3335,7 +3335,8 @@
 					{
 						"jwt": [
 							"tenant",
-							"dedicated"
+							"dedicated",
+							"Basewallet"
 						]
 					}
 				],
@@ -3417,7 +3418,8 @@
 					{
 						"jwt": [
 							"tenant",
-							"dedicated"
+							"dedicated",
+							"Basewallet"
 						]
 					}
 				],