ResolveSigningVM resolves a DID KeyID using the given did resolver, and returns either: - the Verification Method identified by the given key ID, or - the first Assertion Method in the DID doc, if the DID provided has no fragment component.

SignJWT signs a JWT using a key in the given KMS, identified by an owned DID.

UseDefaultSigner provides SignJWT with a signer that uses the given KMS and Crypto instances.

VerifyJWT verifies a JWT that was signed with a DID.

A Signer is capable of signing data.

SignerGetter creates a signer that signs with the private key corresponding to the given public key.