1id 0.7.0 → 0.8.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/LICENSE +0 -0
- package/README.md +0 -0
- package/dist/auth.d.ts +0 -0
- package/dist/auth.d.ts.map +1 -1
- package/dist/auth.js +2 -1
- package/dist/auth.js.map +1 -1
- package/dist/cli.d.ts +0 -0
- package/dist/cli.d.ts.map +0 -0
- package/dist/cli.js +0 -0
- package/dist/cli.js.map +0 -0
- package/dist/client.d.ts +0 -0
- package/dist/client.d.ts.map +0 -0
- package/dist/client.js +0 -0
- package/dist/client.js.map +0 -0
- package/dist/credentialPointers.d.ts +99 -0
- package/dist/credentialPointers.d.ts.map +1 -0
- package/dist/credentialPointers.js +138 -0
- package/dist/credentialPointers.js.map +1 -0
- package/dist/credentials.d.ts +0 -4
- package/dist/credentials.d.ts.map +1 -1
- package/dist/credentials.js +0 -8
- package/dist/credentials.js.map +1 -1
- package/dist/devices.d.ts +0 -0
- package/dist/devices.d.ts.map +0 -0
- package/dist/devices.js +0 -0
- package/dist/devices.js.map +0 -0
- package/dist/enroll.d.ts +0 -0
- package/dist/enroll.d.ts.map +0 -0
- package/dist/enroll.js +0 -0
- package/dist/enroll.js.map +0 -0
- package/dist/exceptions.d.ts +1 -1
- package/dist/exceptions.d.ts.map +0 -0
- package/dist/exceptions.js +1 -1
- package/dist/exceptions.js.map +0 -0
- package/dist/helper.d.ts +0 -0
- package/dist/helper.d.ts.map +0 -0
- package/dist/helper.js +0 -0
- package/dist/helper.js.map +0 -0
- package/dist/identity.d.ts +0 -0
- package/dist/identity.d.ts.map +0 -0
- package/dist/identity.js +0 -0
- package/dist/identity.js.map +0 -0
- package/dist/index.d.ts +7 -13
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +9 -22
- package/dist/index.js.map +1 -1
- package/dist/keys.d.ts +0 -0
- package/dist/keys.d.ts.map +0 -0
- package/dist/keys.js +0 -0
- package/dist/keys.js.map +0 -0
- package/dist/test/test_declared_enrollment.d.ts +0 -0
- package/dist/test/test_declared_enrollment.d.ts.map +0 -0
- package/dist/test/test_declared_enrollment.js +0 -0
- package/dist/test/test_declared_enrollment.js.map +0 -0
- package/dist/test/test_peer_verification.d.ts +0 -0
- package/dist/test/test_peer_verification.d.ts.map +0 -0
- package/dist/test/test_peer_verification.js +0 -0
- package/dist/test/test_peer_verification.js.map +0 -0
- package/dist/trustRoots.d.ts +0 -0
- package/dist/trustRoots.d.ts.map +0 -0
- package/dist/trustRoots.js +0 -0
- package/dist/trustRoots.js.map +0 -0
- package/dist/verify.d.ts +0 -0
- package/dist/verify.d.ts.map +0 -0
- package/dist/verify.js +0 -0
- package/dist/verify.js.map +0 -0
- package/dist/world.d.ts +0 -0
- package/dist/world.d.ts.map +0 -0
- package/dist/world.js +0 -0
- package/dist/world.js.map +0 -0
- package/package.json +1 -1
package/LICENSE
CHANGED
|
File without changes
|
package/README.md
CHANGED
|
File without changes
|
package/dist/auth.d.ts
CHANGED
|
File without changes
|
package/dist/auth.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,KAAK,iBAAiB,EAAoB,MAAM,kBAAkB,CAAC;AAE5E,OAAO,KAAK,EAAE,KAAK,EAAE,MAAM,eAAe,CAAC;AAY3C;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAsB,SAAS,CAC7B,aAAa,GAAE,OAAe,EAC9B,WAAW,CAAC,EAAE,iBAAiB,GAAG,IAAI,GACrC,OAAO,CAAC,KAAK,CAAC,CAqBhB;AA2ED;;;;GAIG;AACH,wBAAgB,kBAAkB,IAAI,IAAI,CAEzC;AAMD;;;;;;;;;;;;;;GAcG;AACH,wBAAsB,qBAAqB,CACzC,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,EAC3B,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,EACzB,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,EAC5B,WAAW,CAAC,EAAE,iBAAiB,GAAG,IAAI,GACrC,OAAO,CAAC,KAAK,CAAC,CA2FhB;AAGD;;;;;GAKG;AACH,wBAAsB,qBAAqB,CACzC,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,EAC3B,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,EAC5B,WAAW,CAAC,EAAE,iBAAiB,GAAG,IAAI,GACrC,OAAO,CAAC,KAAK,CAAC,
|
|
1
|
+
{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,KAAK,iBAAiB,EAAoB,MAAM,kBAAkB,CAAC;AAE5E,OAAO,KAAK,EAAE,KAAK,EAAE,MAAM,eAAe,CAAC;AAY3C;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAsB,SAAS,CAC7B,aAAa,GAAE,OAAe,EAC9B,WAAW,CAAC,EAAE,iBAAiB,GAAG,IAAI,GACrC,OAAO,CAAC,KAAK,CAAC,CAqBhB;AA2ED;;;;GAIG;AACH,wBAAgB,kBAAkB,IAAI,IAAI,CAEzC;AAMD;;;;;;;;;;;;;;GAcG;AACH,wBAAsB,qBAAqB,CACzC,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,EAC3B,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,EACzB,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,EAC5B,WAAW,CAAC,EAAE,iBAAiB,GAAG,IAAI,GACrC,OAAO,CAAC,KAAK,CAAC,CA2FhB;AAGD;;;;;GAKG;AACH,wBAAsB,qBAAqB,CACzC,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,EAC3B,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,EAC5B,WAAW,CAAC,EAAE,iBAAiB,GAAG,IAAI,GACrC,OAAO,CAAC,KAAK,CAAC,CA6EhB"}
|
package/dist/auth.js
CHANGED
|
@@ -158,12 +158,12 @@ export async function authenticate_with_tpm(identity_id, ak_handle, api_base_url
|
|
|
158
158
|
if (api_base_url == null) {
|
|
159
159
|
api_base_url = credentials.api_base_url;
|
|
160
160
|
}
|
|
161
|
-
// Step 1: Request a challenge nonce from the server
|
|
162
161
|
const api_client = new OneIDAPIClient(api_base_url, TOKEN_REQUEST_TIMEOUT_MILLISECONDS);
|
|
163
162
|
let challenge_data;
|
|
164
163
|
try {
|
|
165
164
|
challenge_data = await api_client["_make_request"]("POST", "/api/v1/auth/challenge", {
|
|
166
165
|
identity_id,
|
|
166
|
+
device_type: "tpm",
|
|
167
167
|
});
|
|
168
168
|
}
|
|
169
169
|
catch (error) {
|
|
@@ -240,6 +240,7 @@ export async function authenticate_with_piv(identity_id, api_base_url, credentia
|
|
|
240
240
|
try {
|
|
241
241
|
challenge_data = await api_client["_make_request"]("POST", "/api/v1/auth/challenge", {
|
|
242
242
|
identity_id,
|
|
243
|
+
device_type: "piv",
|
|
243
244
|
});
|
|
244
245
|
}
|
|
245
246
|
catch (error) {
|
package/dist/auth.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"auth.js","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAA0B,gBAAgB,EAAE,MAAM,kBAAkB,CAAC;AAC5E,OAAO,EAAE,mBAAmB,EAAE,6BAA6B,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAEnG,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAE7C,MAAM,iCAAiC,GAAG,MAAM,CAAC;AACjD,MAAM,kCAAkC,GAAG,MAAM,CAAC;AAElD,MAAM,6BAA6B,GAAG,IAAI,GAAG,CAAC,CAAC,WAAW,EAAE,UAAU,EAAE,SAAS,CAAC,CAAC,CAAC;AACpF,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,CAAC;AAC1D,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC;AAE9C,IAAI,YAAY,GAAiB,IAAI,CAAC;AAEtC;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,gBAAyB,KAAK,EAC9B,WAAsC;IAEtC,IAAI,CAAC,aAAa,IAAI,YAAY,IAAI,IAAI,EAAE,CAAC;QAC3C,MAAM,sBAAsB,GAAG,IAAI,IAAI,CAAC,YAAY,CAAC,UAAU,CAAC,OAAO,EAAE,GAAG,iCAAiC,CAAC,CAAC;QAC/G,IAAI,IAAI,IAAI,EAAE,GAAG,sBAAsB,EAAE,CAAC;YACxC,OAAO,YAAY,CAAC;QACtB,CAAC;IACH,CAAC;IAED,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;QACxB,WAAW,GAAG,gBAAgB,EAAE,CAAC;IACnC,CAAC;IAED,IAAI,6BAA6B,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,EAAE,CAAC;QAC9D,MAAM,KAAK,GAAG,MAAM,6CAA6C,CAAC,WAAW,CAAC,CAAC;QAC/E,YAAY,GAAG,KAAK,CAAC;QACrB,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,KAAK,GAAG,MAAM,2BAA2B,CAAC,WAAW,CAAC,CAAC;IAC7D,YAAY,GAAG,KAAK,CAAC;IACrB,OAAO,KAAK,CAAC;AACf,CAAC;AAED,KAAK,UAAU,6CAA6C,CAAC,WAA8B;IACzF,IAAI,eAAe,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,EAAE,CAAC;QAChD,IAAI,CAAC;YACH,OAAO,MAAM,qBAAqB,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,WAAW,CAAC,CAAC;QACpE,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,6BAA6B,EAAE,CAAC;gBAAC,MAAM,KAAK,CAAC;YAAC,CAAC;YACpE,MAAM,IAAI,6BAA6B,CACrC,yDAAyD;gBACzD,GAAG,WAAW,CAAC,UAAU,iCAAiC;gBAC1D,iBAAiB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAC1E,CAAC;QACJ,CAAC;IACH,CAAC;IAED,IAAI,eAAe,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,EAAE,CAAC;QAChD,IAAI,CAAC;YACH,OAAO,MAAM,qBAAqB,CAAC,IAAI,EAAE,IAAI,EAAE,WAAW,CAAC,CAAC;QAC9D,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,6BAA6B,EAAE,CAAC;gBAAC,MAAM,KAAK,CAAC;YAAC,CAAC;YACpE,MAAM,IAAI,6BAA6B,CACrC,yDAAyD;gBACzD,GAAG,WAAW,CAAC,UAAU,kCAAkC;gBAC3D,iBAAiB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAC1E,CAAC;QACJ,CAAC;IACH,CAAC;IAED,MAAM,IAAI,6BAA6B,CACrC,eAAe,WAAW,CAAC,UAAU,6BAA6B;QAClE,+CAA+C,CAChD,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,2BAA2B,CAAC,WAA8B;IACvE,MAAM,UAAU,GAAG,IAAI,cAAc,CACnC,WAAW,CAAC,YAAY,EACxB,kCAAkC,CACnC,CAAC;IAEF,IAAI,cAAuC,CAAC;IAC5C,IAAI,CAAC;QACH,cAAc,GAAG,MAAM,UAAU,CAAC,iCAAiC,CACjE,WAAW,CAAC,SAAS,EACrB,WAAW,CAAC,aAAa,CAC1B,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,YAAY,IAAI,KAAK,YAAY,mBAAmB,EAAE,CAAC;YAC1E,MAAM,KAAK,CAAC;QACd,CAAC;QACD,MAAM,IAAI,mBAAmB,CAC3B,yBAAyB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAClF,CAAC;IACJ,CAAC;IAED,MAAM,YAAY,GAAG,cAAc,CAAC,YAAsB,CAAC;IAC3D,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,MAAM,IAAI,mBAAmB,CAAC,6CAA6C,CAAC,CAAC;IAC/E,CAAC;IAED,MAAM,kBAAkB,GAAI,cAAc,CAAC,UAAqB,IAAI,IAAI,CAAC;IACzE,MAAM,UAAU,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,kBAAkB,GAAG,IAAI,CAAC,CAAC;IAEpE,OAAO;QACL,YAAY;QACZ,UAAU,EAAG,cAAc,CAAC,UAAqB,IAAI,QAAQ;QAC7D,UAAU;QACV,aAAa,EAAG,cAAc,CAAC,aAAwB,IAAI,IAAI;KAChE,CAAC;AACJ,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,kBAAkB;IAChC,YAAY,GAAG,IAAI,CAAC;AACtB,CAAC;AAED,8EAA8E;AAC9E,kEAAkE;AAClE,8EAA8E;AAE9E;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,WAA2B,EAC3B,SAAyB,EACzB,YAA4B,EAC5B,WAAsC;IAEtC,mCAAmC;IACnC,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;QACxB,WAAW,GAAG,gBAAgB,EAAE,CAAC;IACnC,CAAC;IAED,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;QACxB,WAAW,GAAG,WAAW,CAAC,SAAS,CAAC;IACtC,CAAC;IAED,IAAI,SAAS,IAAI,IAAI,EAAE,CAAC;QACtB,SAAS,GAAG,WAAW,CAAC,iBAAiB,IAAI,IAAI,CAAC;QAClD,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,MAAM,IAAI,mBAAmB,CAC3B,iEAAiE;gBACjE,oDAAoD,CACrD,CAAC;QACJ,CAAC;IACH,CAAC;IAED,IAAI,YAAY,IAAI,IAAI,EAAE,CAAC;QACzB,YAAY,GAAG,WAAW,CAAC,YAAY,CAAC;IAC1C,CAAC;IAED,
|
|
1
|
+
{"version":3,"file":"auth.js","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAA0B,gBAAgB,EAAE,MAAM,kBAAkB,CAAC;AAC5E,OAAO,EAAE,mBAAmB,EAAE,6BAA6B,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAEnG,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAE7C,MAAM,iCAAiC,GAAG,MAAM,CAAC;AACjD,MAAM,kCAAkC,GAAG,MAAM,CAAC;AAElD,MAAM,6BAA6B,GAAG,IAAI,GAAG,CAAC,CAAC,WAAW,EAAE,UAAU,EAAE,SAAS,CAAC,CAAC,CAAC;AACpF,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,CAAC;AAC1D,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC;AAE9C,IAAI,YAAY,GAAiB,IAAI,CAAC;AAEtC;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,gBAAyB,KAAK,EAC9B,WAAsC;IAEtC,IAAI,CAAC,aAAa,IAAI,YAAY,IAAI,IAAI,EAAE,CAAC;QAC3C,MAAM,sBAAsB,GAAG,IAAI,IAAI,CAAC,YAAY,CAAC,UAAU,CAAC,OAAO,EAAE,GAAG,iCAAiC,CAAC,CAAC;QAC/G,IAAI,IAAI,IAAI,EAAE,GAAG,sBAAsB,EAAE,CAAC;YACxC,OAAO,YAAY,CAAC;QACtB,CAAC;IACH,CAAC;IAED,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;QACxB,WAAW,GAAG,gBAAgB,EAAE,CAAC;IACnC,CAAC;IAED,IAAI,6BAA6B,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,EAAE,CAAC;QAC9D,MAAM,KAAK,GAAG,MAAM,6CAA6C,CAAC,WAAW,CAAC,CAAC;QAC/E,YAAY,GAAG,KAAK,CAAC;QACrB,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,KAAK,GAAG,MAAM,2BAA2B,CAAC,WAAW,CAAC,CAAC;IAC7D,YAAY,GAAG,KAAK,CAAC;IACrB,OAAO,KAAK,CAAC;AACf,CAAC;AAED,KAAK,UAAU,6CAA6C,CAAC,WAA8B;IACzF,IAAI,eAAe,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,EAAE,CAAC;QAChD,IAAI,CAAC;YACH,OAAO,MAAM,qBAAqB,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,WAAW,CAAC,CAAC;QACpE,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,6BAA6B,EAAE,CAAC;gBAAC,MAAM,KAAK,CAAC;YAAC,CAAC;YACpE,MAAM,IAAI,6BAA6B,CACrC,yDAAyD;gBACzD,GAAG,WAAW,CAAC,UAAU,iCAAiC;gBAC1D,iBAAiB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAC1E,CAAC;QACJ,CAAC;IACH,CAAC;IAED,IAAI,eAAe,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,EAAE,CAAC;QAChD,IAAI,CAAC;YACH,OAAO,MAAM,qBAAqB,CAAC,IAAI,EAAE,IAAI,EAAE,WAAW,CAAC,CAAC;QAC9D,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,6BAA6B,EAAE,CAAC;gBAAC,MAAM,KAAK,CAAC;YAAC,CAAC;YACpE,MAAM,IAAI,6BAA6B,CACrC,yDAAyD;gBACzD,GAAG,WAAW,CAAC,UAAU,kCAAkC;gBAC3D,iBAAiB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAC1E,CAAC;QACJ,CAAC;IACH,CAAC;IAED,MAAM,IAAI,6BAA6B,CACrC,eAAe,WAAW,CAAC,UAAU,6BAA6B;QAClE,+CAA+C,CAChD,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,2BAA2B,CAAC,WAA8B;IACvE,MAAM,UAAU,GAAG,IAAI,cAAc,CACnC,WAAW,CAAC,YAAY,EACxB,kCAAkC,CACnC,CAAC;IAEF,IAAI,cAAuC,CAAC;IAC5C,IAAI,CAAC;QACH,cAAc,GAAG,MAAM,UAAU,CAAC,iCAAiC,CACjE,WAAW,CAAC,SAAS,EACrB,WAAW,CAAC,aAAa,CAC1B,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,YAAY,IAAI,KAAK,YAAY,mBAAmB,EAAE,CAAC;YAC1E,MAAM,KAAK,CAAC;QACd,CAAC;QACD,MAAM,IAAI,mBAAmB,CAC3B,yBAAyB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAClF,CAAC;IACJ,CAAC;IAED,MAAM,YAAY,GAAG,cAAc,CAAC,YAAsB,CAAC;IAC3D,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,MAAM,IAAI,mBAAmB,CAAC,6CAA6C,CAAC,CAAC;IAC/E,CAAC;IAED,MAAM,kBAAkB,GAAI,cAAc,CAAC,UAAqB,IAAI,IAAI,CAAC;IACzE,MAAM,UAAU,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,kBAAkB,GAAG,IAAI,CAAC,CAAC;IAEpE,OAAO;QACL,YAAY;QACZ,UAAU,EAAG,cAAc,CAAC,UAAqB,IAAI,QAAQ;QAC7D,UAAU;QACV,aAAa,EAAG,cAAc,CAAC,aAAwB,IAAI,IAAI;KAChE,CAAC;AACJ,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,kBAAkB;IAChC,YAAY,GAAG,IAAI,CAAC;AACtB,CAAC;AAED,8EAA8E;AAC9E,kEAAkE;AAClE,8EAA8E;AAE9E;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,WAA2B,EAC3B,SAAyB,EACzB,YAA4B,EAC5B,WAAsC;IAEtC,mCAAmC;IACnC,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;QACxB,WAAW,GAAG,gBAAgB,EAAE,CAAC;IACnC,CAAC;IAED,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;QACxB,WAAW,GAAG,WAAW,CAAC,SAAS,CAAC;IACtC,CAAC;IAED,IAAI,SAAS,IAAI,IAAI,EAAE,CAAC;QACtB,SAAS,GAAG,WAAW,CAAC,iBAAiB,IAAI,IAAI,CAAC;QAClD,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,MAAM,IAAI,mBAAmB,CAC3B,iEAAiE;gBACjE,oDAAoD,CACrD,CAAC;QACJ,CAAC;IACH,CAAC;IAED,IAAI,YAAY,IAAI,IAAI,EAAE,CAAC;QACzB,YAAY,GAAG,WAAW,CAAC,YAAY,CAAC;IAC1C,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,cAAc,CAAC,YAAY,EAAE,kCAAkC,CAAC,CAAC;IAExF,IAAI,cAAuC,CAAC;IAC5C,IAAI,CAAC;QACH,cAAc,GAAG,MAAM,UAAU,CAAC,eAAe,CAAC,CAAC,MAAM,EAAE,wBAAwB,EAAE;YACnF,WAAW;YACX,WAAW,EAAE,KAAK;SACnB,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,YAAY,EAAE,CAAC;YAAC,MAAM,KAAK,CAAC;QAAC,CAAC;QACnD,MAAM,IAAI,mBAAmB,CAC3B,6BAA6B,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CACtF,CAAC;IACJ,CAAC;IAED,MAAM,YAAY,GAAG,cAAc,CAAC,YAAsB,CAAC;IAC3D,MAAM,SAAS,GAAG,cAAc,CAAC,SAAmB,CAAC;IAErD,IAAI,CAAC,YAAY,IAAI,CAAC,SAAS,EAAE,CAAC;QAChC,MAAM,IAAI,mBAAmB,CAAC,+CAA+C,CAAC,CAAC;IACjF,CAAC;IAED,+DAA+D;IAC/D,MAAM,EAAE,uBAAuB,EAAE,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,CAAC;IAChE,MAAM,WAAW,GAAG,MAAM,uBAAuB,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;IACxE,MAAM,aAAa,GAAG,WAAW,CAAC,aAAa,IAAI,EAAE,CAAC;IAEtD,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,IAAI,mBAAmB,CAAC,sCAAsC,CAAC,CAAC;IACxE,CAAC;IAED,4DAA4D;IAC5D,IAAI,WAAoC,CAAC;IACzC,IAAI,CAAC;QACH,WAAW,GAAG,MAAM,UAAU,CAAC,eAAe,CAAC,CAAC,MAAM,EAAE,qBAAqB,EAAE;YAC7E,YAAY;YACZ,aAAa;SACd,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,YAAY,EAAE,CAAC;YAAC,MAAM,KAAK,CAAC;QAAC,CAAC;QACnD,MAAM,IAAI,mBAAmB,CAC3B,8BAA8B,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CACvF,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,WAAW,CAAC,aAAa,EAAE,CAAC;QAC/B,MAAM,IAAI,mBAAmB,CAAC,uCAAuC,CAAC,CAAC;IACzE,CAAC;IAED,8BAA8B;IAC9B,MAAM,MAAM,GAAG,WAAW,CAAC,MAA6C,CAAC;IACzE,IAAI,MAAM,EAAE,YAAY,EAAE,CAAC;QACzB,MAAM,kBAAkB,GAAI,MAAM,CAAC,UAAqB,IAAI,IAAI,CAAC;QACjE,MAAM,KAAK,GAAU;YACnB,YAAY,EAAE,MAAM,CAAC,YAAsB;YAC3C,UAAU,EAAG,MAAM,CAAC,UAAqB,IAAI,QAAQ;YACrD,UAAU,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,kBAAkB,GAAG,IAAI,CAAC;YAC5D,aAAa,EAAG,MAAM,CAAC,aAAwB,IAAI,IAAI;SACxD,CAAC;QACF,YAAY,GAAG,KAAK,CAAC;QACrB,OAAO,KAAK,CAAC;IACf,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,mBAAmB,CAC3B,oDAAoD;YACpD,iDAAiD,CAClD,CAAC;IACJ,CAAC;AACH,CAAC;AAGD;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,WAA2B,EAC3B,YAA4B,EAC5B,WAAsC;IAEtC,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;QACxB,WAAW,GAAG,gBAAgB,EAAE,CAAC;IACnC,CAAC;IAED,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;QACxB,WAAW,GAAG,WAAW,CAAC,SAAS,CAAC;IACtC,CAAC;IAED,IAAI,YAAY,IAAI,IAAI,EAAE,CAAC;QACzB,YAAY,GAAG,WAAW,CAAC,YAAY,CAAC;IAC1C,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,cAAc,CAAC,YAAY,EAAE,kCAAkC,CAAC,CAAC;IAExF,IAAI,cAAuC,CAAC;IAC5C,IAAI,CAAC;QACH,cAAc,GAAG,MAAM,UAAU,CAAC,eAAe,CAAC,CAAC,MAAM,EAAE,wBAAwB,EAAE;YACnF,WAAW;YACX,WAAW,EAAE,KAAK;SACnB,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,YAAY,EAAE,CAAC;YAAC,MAAM,KAAK,CAAC;QAAC,CAAC;QACnD,MAAM,IAAI,mBAAmB,CAC3B,6BAA6B,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CACtF,CAAC;IACJ,CAAC;IAED,MAAM,YAAY,GAAG,cAAc,CAAC,YAAsB,CAAC;IAC3D,MAAM,SAAS,GAAG,cAAc,CAAC,SAAmB,CAAC;IAErD,IAAI,CAAC,YAAY,IAAI,CAAC,SAAS,EAAE,CAAC;QAChC,MAAM,IAAI,mBAAmB,CAAC,+CAA+C,CAAC,CAAC;IACjF,CAAC;IAED,MAAM,EAAE,uBAAuB,EAAE,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,CAAC;IAChE,MAAM,WAAW,GAAG,MAAM,uBAAuB,CAAC,SAAS,CAAC,CAAC;IAC7D,MAAM,aAAa,GAAG,WAAW,CAAC,aAAa,IAAI,EAAE,CAAC;IAEtD,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,IAAI,mBAAmB,CAAC,sCAAsC,CAAC,CAAC;IACxE,CAAC;IAED,IAAI,WAAoC,CAAC;IACzC,IAAI,CAAC;QACH,WAAW,GAAG,MAAM,UAAU,CAAC,eAAe,CAAC,CAAC,MAAM,EAAE,qBAAqB,EAAE;YAC7E,YAAY;YACZ,aAAa;SACd,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,YAAY,EAAE,CAAC;YAAC,MAAM,KAAK,CAAC;QAAC,CAAC;QACnD,MAAM,IAAI,mBAAmB,CAC3B,8BAA8B,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CACvF,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,WAAW,CAAC,aAAa,EAAE,CAAC;QAC/B,MAAM,IAAI,mBAAmB,CAAC,2CAA2C,CAAC,CAAC;IAC7E,CAAC;IAED,MAAM,MAAM,GAAG,WAAW,CAAC,MAA6C,CAAC;IACzE,IAAI,MAAM,EAAE,YAAY,EAAE,CAAC;QACzB,MAAM,kBAAkB,GAAI,MAAM,CAAC,UAAqB,IAAI,IAAI,CAAC;QACjE,MAAM,KAAK,GAAU;YACnB,YAAY,EAAE,MAAM,CAAC,YAAsB;YAC3C,UAAU,EAAG,MAAM,CAAC,UAAqB,IAAI,QAAQ;YACrD,UAAU,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,kBAAkB,GAAG,IAAI,CAAC;YAC5D,aAAa,EAAG,MAAM,CAAC,aAAwB,IAAI,IAAI;SACxD,CAAC;QACF,YAAY,GAAG,KAAK,CAAC;QACrB,OAAO,KAAK,CAAC;IACf,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,mBAAmB,CAC3B,oDAAoD;YACpD,iDAAiD,CAClD,CAAC;IACJ,CAAC;AACH,CAAC"}
|
package/dist/cli.d.ts
CHANGED
|
File without changes
|
package/dist/cli.d.ts.map
CHANGED
|
File without changes
|
package/dist/cli.js
CHANGED
|
File without changes
|
package/dist/cli.js.map
CHANGED
|
File without changes
|
package/dist/client.d.ts
CHANGED
|
File without changes
|
package/dist/client.d.ts.map
CHANGED
|
File without changes
|
package/dist/client.js
CHANGED
|
File without changes
|
package/dist/client.js.map
CHANGED
|
File without changes
|
|
@@ -0,0 +1,99 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Credential Pointer management for the 1id.com Node.js SDK.
|
|
3
|
+
*
|
|
4
|
+
* Manages the lightweight pointer registry that links an agent's identity
|
|
5
|
+
* to credentials held by external credential authorities. 1ID never stores
|
|
6
|
+
* credential content -- only pointer metadata (issuer, type, verification URL).
|
|
7
|
+
*
|
|
8
|
+
* Consent tokens enforce agent-initiated registration:
|
|
9
|
+
* 1. Agent calls generateConsentToken(issuer_id, credential_type) -> token
|
|
10
|
+
* 2. Agent gives the token to the credential authority
|
|
11
|
+
* 3. Authority calls the server's register endpoint with the token
|
|
12
|
+
* 4. Server validates: token is valid, not expired, not used, scopes match
|
|
13
|
+
*
|
|
14
|
+
* Usage:
|
|
15
|
+
* import oneid from "1id";
|
|
16
|
+
* import { generateConsentToken, listCredentialPointers } from "1id";
|
|
17
|
+
*
|
|
18
|
+
* const token = await generateConsentToken("did:web:university.example", "degree");
|
|
19
|
+
* console.log(`Send this to the CA: ${token.consent_token_id}`);
|
|
20
|
+
*
|
|
21
|
+
* const result = await listCredentialPointers();
|
|
22
|
+
* for (const p of result.pointers) {
|
|
23
|
+
* console.log(`${p.issuer_name}: ${p.credential_type} [${p.verification_url}]`);
|
|
24
|
+
* }
|
|
25
|
+
*/
|
|
26
|
+
import { StoredCredentials } from "./credentials.js";
|
|
27
|
+
export interface ConsentTokenResult {
|
|
28
|
+
consent_token_id: string;
|
|
29
|
+
issuer_id: string;
|
|
30
|
+
credential_type: string;
|
|
31
|
+
expires_at: string;
|
|
32
|
+
}
|
|
33
|
+
export interface CredentialPointerInfo {
|
|
34
|
+
pointer_id: string;
|
|
35
|
+
issuer_id: string;
|
|
36
|
+
issuer_name: string;
|
|
37
|
+
credential_type: string;
|
|
38
|
+
credential_scope: string | null;
|
|
39
|
+
verification_url: string;
|
|
40
|
+
publicly_visible: boolean;
|
|
41
|
+
valid_from: string | null;
|
|
42
|
+
valid_until: string | null;
|
|
43
|
+
registered_at: string | null;
|
|
44
|
+
removed_at: string | null;
|
|
45
|
+
}
|
|
46
|
+
export interface CredentialPointerListResult {
|
|
47
|
+
agent_id: string;
|
|
48
|
+
pointers: CredentialPointerInfo[];
|
|
49
|
+
pointer_count: number;
|
|
50
|
+
view: string;
|
|
51
|
+
}
|
|
52
|
+
/**
|
|
53
|
+
* Generate a scoped, single-use consent token for a credential authority.
|
|
54
|
+
*
|
|
55
|
+
* Give the returned token_id to the credential authority. The authority
|
|
56
|
+
* uses it in a POST /api/v1/identity/credential-pointers call to register
|
|
57
|
+
* a pointer.
|
|
58
|
+
*
|
|
59
|
+
* @param issuer_id DID or URI of the credential authority (e.g. "did:web:university.example").
|
|
60
|
+
* @param credential_type The type of credential being authorized (e.g. "degree", "license").
|
|
61
|
+
* @param valid_for_seconds How long the token is valid (60..604800, default 86400).
|
|
62
|
+
* @param credentials Optional pre-loaded credentials.
|
|
63
|
+
* @returns ConsentTokenResult with the token_id, scoped issuer/type, and expiry.
|
|
64
|
+
*/
|
|
65
|
+
export declare function generateConsentToken(issuer_id: string, credential_type: string, valid_for_seconds?: number, credentials?: StoredCredentials | null): Promise<ConsentTokenResult>;
|
|
66
|
+
/**
|
|
67
|
+
* List credential pointers for an identity.
|
|
68
|
+
*
|
|
69
|
+
* If agent_id is null or matches the current identity, makes an
|
|
70
|
+
* authenticated request returning all active pointers (full view).
|
|
71
|
+
* If agent_id is a different identity, makes an unauthenticated
|
|
72
|
+
* request returning only publicly visible pointers.
|
|
73
|
+
*
|
|
74
|
+
* @param agent_id Identity to query. Null = query your own pointers.
|
|
75
|
+
* @param credentials Optional pre-loaded credentials.
|
|
76
|
+
* @returns CredentialPointerListResult with the list of pointers and metadata.
|
|
77
|
+
*/
|
|
78
|
+
export declare function listCredentialPointers(agent_id?: string | null, credentials?: StoredCredentials | null): Promise<CredentialPointerListResult>;
|
|
79
|
+
/**
|
|
80
|
+
* Toggle a credential pointer between public and private visibility.
|
|
81
|
+
*
|
|
82
|
+
* @param pointer_id The pointer to update (prefix: cp-).
|
|
83
|
+
* @param publicly_visible True to make public, False to make private.
|
|
84
|
+
* @param credentials Optional pre-loaded credentials.
|
|
85
|
+
* @returns The updated CredentialPointerInfo.
|
|
86
|
+
*/
|
|
87
|
+
export declare function setCredentialPointerVisibility(pointer_id: string, publicly_visible: boolean, credentials?: StoredCredentials | null): Promise<CredentialPointerInfo>;
|
|
88
|
+
/**
|
|
89
|
+
* Soft-delete a credential pointer.
|
|
90
|
+
*
|
|
91
|
+
* The pointer is marked as removed and no longer appears in list results.
|
|
92
|
+
* The pointer is never hard-deleted, preserving the audit trail.
|
|
93
|
+
*
|
|
94
|
+
* @param pointer_id The pointer to remove (prefix: cp-).
|
|
95
|
+
* @param credentials Optional pre-loaded credentials.
|
|
96
|
+
* @returns The removed CredentialPointerInfo (with removed_at set).
|
|
97
|
+
*/
|
|
98
|
+
export declare function removeCredentialPointer(pointer_id: string, credentials?: StoredCredentials | null): Promise<CredentialPointerInfo>;
|
|
99
|
+
//# sourceMappingURL=credentialPointers.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"credentialPointers.d.ts","sourceRoot":"","sources":["../src/credentialPointers.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAGH,OAAO,EAAE,iBAAiB,EAA0C,MAAM,kBAAkB,CAAC;AAI7F,MAAM,WAAW,kBAAkB;IACjC,gBAAgB,EAAE,MAAM,CAAC;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,eAAe,EAAE,MAAM,CAAC;IACxB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,qBAAqB;IACpC,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,MAAM,CAAC;IACxB,gBAAgB,EAAE,MAAM,GAAG,IAAI,CAAC;IAChC,gBAAgB,EAAE,MAAM,CAAC;IACzB,gBAAgB,EAAE,OAAO,CAAC;IAC1B,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;CAC3B;AAED,MAAM,WAAW,2BAA2B;IAC1C,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,qBAAqB,EAAE,CAAC;IAClC,aAAa,EAAE,MAAM,CAAC;IACtB,IAAI,EAAE,MAAM,CAAC;CACd;AAgCD;;;;;;;;;;;;GAYG;AACH,wBAAsB,oBAAoB,CACxC,SAAS,EAAE,MAAM,EACjB,eAAe,EAAE,MAAM,EACvB,iBAAiB,GAAE,MAAc,EACjC,WAAW,CAAC,EAAE,iBAAiB,GAAG,IAAI,GACrC,OAAO,CAAC,kBAAkB,CAAC,CAc7B;AAED;;;;;;;;;;;GAWG;AACH,wBAAsB,sBAAsB,CAC1C,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,EACxB,WAAW,CAAC,EAAE,iBAAiB,GAAG,IAAI,GACrC,OAAO,CAAC,2BAA2B,CAAC,CA6BtC;AAED;;;;;;;GAOG;AACH,wBAAsB,8BAA8B,CAClD,UAAU,EAAE,MAAM,EAClB,gBAAgB,EAAE,OAAO,EACzB,WAAW,CAAC,EAAE,iBAAiB,GAAG,IAAI,GACrC,OAAO,CAAC,qBAAqB,CAAC,CAShC;AAED;;;;;;;;;GASG;AACH,wBAAsB,uBAAuB,CAC3C,UAAU,EAAE,MAAM,EAClB,WAAW,CAAC,EAAE,iBAAiB,GAAG,IAAI,GACrC,OAAO,CAAC,qBAAqB,CAAC,CAShC"}
|
|
@@ -0,0 +1,138 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Credential Pointer management for the 1id.com Node.js SDK.
|
|
3
|
+
*
|
|
4
|
+
* Manages the lightweight pointer registry that links an agent's identity
|
|
5
|
+
* to credentials held by external credential authorities. 1ID never stores
|
|
6
|
+
* credential content -- only pointer metadata (issuer, type, verification URL).
|
|
7
|
+
*
|
|
8
|
+
* Consent tokens enforce agent-initiated registration:
|
|
9
|
+
* 1. Agent calls generateConsentToken(issuer_id, credential_type) -> token
|
|
10
|
+
* 2. Agent gives the token to the credential authority
|
|
11
|
+
* 3. Authority calls the server's register endpoint with the token
|
|
12
|
+
* 4. Server validates: token is valid, not expired, not used, scopes match
|
|
13
|
+
*
|
|
14
|
+
* Usage:
|
|
15
|
+
* import oneid from "1id";
|
|
16
|
+
* import { generateConsentToken, listCredentialPointers } from "1id";
|
|
17
|
+
*
|
|
18
|
+
* const token = await generateConsentToken("did:web:university.example", "degree");
|
|
19
|
+
* console.log(`Send this to the CA: ${token.consent_token_id}`);
|
|
20
|
+
*
|
|
21
|
+
* const result = await listCredentialPointers();
|
|
22
|
+
* for (const p of result.pointers) {
|
|
23
|
+
* console.log(`${p.issuer_name}: ${p.credential_type} [${p.verification_url}]`);
|
|
24
|
+
* }
|
|
25
|
+
*/
|
|
26
|
+
import { OneIDAPIClient } from "./client.js";
|
|
27
|
+
import { load_credentials } from "./credentials.js";
|
|
28
|
+
import { get_token } from "./auth.js";
|
|
29
|
+
function parse_pointer_from_api_response(raw) {
|
|
30
|
+
return {
|
|
31
|
+
pointer_id: (raw.pointer_id ?? ""),
|
|
32
|
+
issuer_id: (raw.issuer_id ?? ""),
|
|
33
|
+
issuer_name: (raw.issuer_name ?? ""),
|
|
34
|
+
credential_type: (raw.credential_type ?? ""),
|
|
35
|
+
credential_scope: (raw.credential_scope ?? null),
|
|
36
|
+
verification_url: (raw.verification_url ?? ""),
|
|
37
|
+
publicly_visible: Boolean(raw.publicly_visible),
|
|
38
|
+
valid_from: (raw.valid_from ?? null),
|
|
39
|
+
valid_until: (raw.valid_until ?? null),
|
|
40
|
+
registered_at: (raw.registered_at ?? null),
|
|
41
|
+
removed_at: (raw.removed_at ?? null),
|
|
42
|
+
};
|
|
43
|
+
}
|
|
44
|
+
async function make_authenticated_credential_pointer_request(method, api_path, json_body, credentials) {
|
|
45
|
+
if (credentials == null) {
|
|
46
|
+
credentials = load_credentials();
|
|
47
|
+
}
|
|
48
|
+
const token = await get_token(false, credentials);
|
|
49
|
+
const api_client = new OneIDAPIClient(credentials.api_base_url);
|
|
50
|
+
return api_client.make_authenticated_request(method, api_path, token.access_token, json_body);
|
|
51
|
+
}
|
|
52
|
+
/**
|
|
53
|
+
* Generate a scoped, single-use consent token for a credential authority.
|
|
54
|
+
*
|
|
55
|
+
* Give the returned token_id to the credential authority. The authority
|
|
56
|
+
* uses it in a POST /api/v1/identity/credential-pointers call to register
|
|
57
|
+
* a pointer.
|
|
58
|
+
*
|
|
59
|
+
* @param issuer_id DID or URI of the credential authority (e.g. "did:web:university.example").
|
|
60
|
+
* @param credential_type The type of credential being authorized (e.g. "degree", "license").
|
|
61
|
+
* @param valid_for_seconds How long the token is valid (60..604800, default 86400).
|
|
62
|
+
* @param credentials Optional pre-loaded credentials.
|
|
63
|
+
* @returns ConsentTokenResult with the token_id, scoped issuer/type, and expiry.
|
|
64
|
+
*/
|
|
65
|
+
export async function generateConsentToken(issuer_id, credential_type, valid_for_seconds = 86400, credentials) {
|
|
66
|
+
const raw_data = await make_authenticated_credential_pointer_request("POST", "/api/v1/identity/credential-pointer-consent", { issuer_id, credential_type, valid_for_seconds }, credentials);
|
|
67
|
+
return {
|
|
68
|
+
consent_token_id: (raw_data.token_id ?? ""),
|
|
69
|
+
issuer_id: (raw_data.issuer_id ?? issuer_id),
|
|
70
|
+
credential_type: (raw_data.credential_type ?? credential_type),
|
|
71
|
+
expires_at: (raw_data.expires_at ?? ""),
|
|
72
|
+
};
|
|
73
|
+
}
|
|
74
|
+
/**
|
|
75
|
+
* List credential pointers for an identity.
|
|
76
|
+
*
|
|
77
|
+
* If agent_id is null or matches the current identity, makes an
|
|
78
|
+
* authenticated request returning all active pointers (full view).
|
|
79
|
+
* If agent_id is a different identity, makes an unauthenticated
|
|
80
|
+
* request returning only publicly visible pointers.
|
|
81
|
+
*
|
|
82
|
+
* @param agent_id Identity to query. Null = query your own pointers.
|
|
83
|
+
* @param credentials Optional pre-loaded credentials.
|
|
84
|
+
* @returns CredentialPointerListResult with the list of pointers and metadata.
|
|
85
|
+
*/
|
|
86
|
+
export async function listCredentialPointers(agent_id, credentials) {
|
|
87
|
+
if (credentials == null) {
|
|
88
|
+
credentials = load_credentials();
|
|
89
|
+
}
|
|
90
|
+
if (agent_id == null) {
|
|
91
|
+
agent_id = credentials.client_id;
|
|
92
|
+
}
|
|
93
|
+
const this_request_is_for_own_identity = (credentials.client_id === agent_id);
|
|
94
|
+
const api_path = `/api/v1/identity/${agent_id}/credential-pointers`;
|
|
95
|
+
let raw_data;
|
|
96
|
+
if (this_request_is_for_own_identity) {
|
|
97
|
+
raw_data = await make_authenticated_credential_pointer_request("GET", api_path, null, credentials);
|
|
98
|
+
}
|
|
99
|
+
else {
|
|
100
|
+
const api_client = new OneIDAPIClient(credentials.api_base_url);
|
|
101
|
+
raw_data = await api_client["_make_request"]("GET", api_path);
|
|
102
|
+
}
|
|
103
|
+
const raw_pointers = (raw_data.pointers ?? []);
|
|
104
|
+
const pointers = raw_pointers.map(parse_pointer_from_api_response);
|
|
105
|
+
return {
|
|
106
|
+
agent_id: (raw_data.agent_id ?? agent_id),
|
|
107
|
+
pointers,
|
|
108
|
+
pointer_count: (raw_data.pointer_count ?? pointers.length),
|
|
109
|
+
view: (raw_data.view ?? "public_only"),
|
|
110
|
+
};
|
|
111
|
+
}
|
|
112
|
+
/**
|
|
113
|
+
* Toggle a credential pointer between public and private visibility.
|
|
114
|
+
*
|
|
115
|
+
* @param pointer_id The pointer to update (prefix: cp-).
|
|
116
|
+
* @param publicly_visible True to make public, False to make private.
|
|
117
|
+
* @param credentials Optional pre-loaded credentials.
|
|
118
|
+
* @returns The updated CredentialPointerInfo.
|
|
119
|
+
*/
|
|
120
|
+
export async function setCredentialPointerVisibility(pointer_id, publicly_visible, credentials) {
|
|
121
|
+
const raw_data = await make_authenticated_credential_pointer_request("PUT", `/api/v1/identity/credential-pointers/${pointer_id}/visibility`, { publicly_visible }, credentials);
|
|
122
|
+
return parse_pointer_from_api_response(raw_data);
|
|
123
|
+
}
|
|
124
|
+
/**
|
|
125
|
+
* Soft-delete a credential pointer.
|
|
126
|
+
*
|
|
127
|
+
* The pointer is marked as removed and no longer appears in list results.
|
|
128
|
+
* The pointer is never hard-deleted, preserving the audit trail.
|
|
129
|
+
*
|
|
130
|
+
* @param pointer_id The pointer to remove (prefix: cp-).
|
|
131
|
+
* @param credentials Optional pre-loaded credentials.
|
|
132
|
+
* @returns The removed CredentialPointerInfo (with removed_at set).
|
|
133
|
+
*/
|
|
134
|
+
export async function removeCredentialPointer(pointer_id, credentials) {
|
|
135
|
+
const raw_data = await make_authenticated_credential_pointer_request("DELETE", `/api/v1/identity/credential-pointers/${pointer_id}`, null, credentials);
|
|
136
|
+
return parse_pointer_from_api_response(raw_data);
|
|
137
|
+
}
|
|
138
|
+
//# sourceMappingURL=credentialPointers.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"credentialPointers.js","sourceRoot":"","sources":["../src/credentialPointers.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAEH,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAqB,gBAAgB,EAAwB,MAAM,kBAAkB,CAAC;AAC7F,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AA+BtC,SAAS,+BAA+B,CAAC,GAA4B;IACnE,OAAO;QACL,UAAU,EAAE,CAAC,GAAG,CAAC,UAAU,IAAI,EAAE,CAAW;QAC5C,SAAS,EAAE,CAAC,GAAG,CAAC,SAAS,IAAI,EAAE,CAAW;QAC1C,WAAW,EAAE,CAAC,GAAG,CAAC,WAAW,IAAI,EAAE,CAAW;QAC9C,eAAe,EAAE,CAAC,GAAG,CAAC,eAAe,IAAI,EAAE,CAAW;QACtD,gBAAgB,EAAE,CAAC,GAAG,CAAC,gBAAgB,IAAI,IAAI,CAAkB;QACjE,gBAAgB,EAAE,CAAC,GAAG,CAAC,gBAAgB,IAAI,EAAE,CAAW;QACxD,gBAAgB,EAAE,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC;QAC/C,UAAU,EAAE,CAAC,GAAG,CAAC,UAAU,IAAI,IAAI,CAAkB;QACrD,WAAW,EAAE,CAAC,GAAG,CAAC,WAAW,IAAI,IAAI,CAAkB;QACvD,aAAa,EAAE,CAAC,GAAG,CAAC,aAAa,IAAI,IAAI,CAAkB;QAC3D,UAAU,EAAE,CAAC,GAAG,CAAC,UAAU,IAAI,IAAI,CAAkB;KACtD,CAAC;AACJ,CAAC;AAED,KAAK,UAAU,6CAA6C,CAC1D,MAAc,EACd,QAAgB,EAChB,SAA0C,EAC1C,WAAsC;IAEtC,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;QACxB,WAAW,GAAG,gBAAgB,EAAE,CAAC;IACnC,CAAC;IACD,MAAM,KAAK,GAAG,MAAM,SAAS,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;IAClD,MAAM,UAAU,GAAG,IAAI,cAAc,CAAC,WAAW,CAAC,YAAY,CAAC,CAAC;IAChE,OAAO,UAAU,CAAC,0BAA0B,CAAC,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAC,YAAY,EAAE,SAAS,CAAC,CAAC;AAChG,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,SAAiB,EACjB,eAAuB,EACvB,oBAA4B,KAAK,EACjC,WAAsC;IAEtC,MAAM,QAAQ,GAAG,MAAM,6CAA6C,CAClE,MAAM,EACN,6CAA6C,EAC7C,EAAE,SAAS,EAAE,eAAe,EAAE,iBAAiB,EAAE,EACjD,WAAW,CACZ,CAAC;IAEF,OAAO;QACL,gBAAgB,EAAE,CAAC,QAAQ,CAAC,QAAQ,IAAI,EAAE,CAAW;QACrD,SAAS,EAAE,CAAC,QAAQ,CAAC,SAAS,IAAI,SAAS,CAAW;QACtD,eAAe,EAAE,CAAC,QAAQ,CAAC,eAAe,IAAI,eAAe,CAAW;QACxE,UAAU,EAAE,CAAC,QAAQ,CAAC,UAAU,IAAI,EAAE,CAAW;KAClD,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,QAAwB,EACxB,WAAsC;IAEtC,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;QACxB,WAAW,GAAG,gBAAgB,EAAE,CAAC;IACnC,CAAC;IAED,IAAI,QAAQ,IAAI,IAAI,EAAE,CAAC;QACrB,QAAQ,GAAG,WAAW,CAAC,SAAS,CAAC;IACnC,CAAC;IAED,MAAM,gCAAgC,GAAG,CAAC,WAAW,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC;IAC9E,MAAM,QAAQ,GAAG,oBAAoB,QAAQ,sBAAsB,CAAC;IAEpE,IAAI,QAAiC,CAAC;IACtC,IAAI,gCAAgC,EAAE,CAAC;QACrC,QAAQ,GAAG,MAAM,6CAA6C,CAAC,KAAK,EAAE,QAAQ,EAAE,IAAI,EAAE,WAAW,CAAC,CAAC;IACrG,CAAC;SAAM,CAAC;QACN,MAAM,UAAU,GAAG,IAAI,cAAc,CAAC,WAAW,CAAC,YAAY,CAAC,CAAC;QAChE,QAAQ,GAAG,MAAM,UAAU,CAAC,eAAe,CAAC,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;IAChE,CAAC;IAED,MAAM,YAAY,GAAG,CAAC,QAAQ,CAAC,QAAQ,IAAI,EAAE,CAA8B,CAAC;IAC5E,MAAM,QAAQ,GAAG,YAAY,CAAC,GAAG,CAAC,+BAA+B,CAAC,CAAC;IAEnE,OAAO;QACL,QAAQ,EAAE,CAAC,QAAQ,CAAC,QAAQ,IAAI,QAAQ,CAAW;QACnD,QAAQ;QACR,aAAa,EAAE,CAAC,QAAQ,CAAC,aAAa,IAAI,QAAQ,CAAC,MAAM,CAAW;QACpE,IAAI,EAAE,CAAC,QAAQ,CAAC,IAAI,IAAI,aAAa,CAAW;KACjD,CAAC;AACJ,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,8BAA8B,CAClD,UAAkB,EAClB,gBAAyB,EACzB,WAAsC;IAEtC,MAAM,QAAQ,GAAG,MAAM,6CAA6C,CAClE,KAAK,EACL,wCAAwC,UAAU,aAAa,EAC/D,EAAE,gBAAgB,EAAE,EACpB,WAAW,CACZ,CAAC;IAEF,OAAO,+BAA+B,CAAC,QAAQ,CAAC,CAAC;AACnD,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAC3C,UAAkB,EAClB,WAAsC;IAEtC,MAAM,QAAQ,GAAG,MAAM,6CAA6C,CAClE,QAAQ,EACR,wCAAwC,UAAU,EAAE,EACpD,IAAI,EACJ,WAAW,CACZ,CAAC;IAEF,OAAO,+BAA+B,CAAC,QAAQ,CAAC,CAAC;AACnD,CAAC"}
|
package/dist/credentials.d.ts
CHANGED
|
@@ -46,10 +46,6 @@ export interface StoredCredentials {
|
|
|
46
46
|
display_name?: string | null;
|
|
47
47
|
/** Agent Identity URN (e.g., 'urn:aid:1id.com:1id-a7b3c9d2'), or null if not yet assigned. */
|
|
48
48
|
agent_identity_urn?: string | null;
|
|
49
|
-
/** ISO 8601 timestamp of when the user consented to privacy implications. */
|
|
50
|
-
privacy_consent_given_at?: string | null;
|
|
51
|
-
/** The user's chosen default attestation mode: 'sd-jwt' or 'direct'. */
|
|
52
|
-
default_attestation_mode?: string | null;
|
|
53
49
|
/** Full PEM-encoded certificate chain (leaf -> intermediate -> root) issued during enrollment. */
|
|
54
50
|
identity_certificate_chain_pem?: string | null;
|
|
55
51
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"credentials.d.ts","sourceRoot":"","sources":["../src/credentials.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAQH,eAAO,MAAM,oBAAoB,oBAAoB,CAAC;AACtD,eAAO,MAAM,sBAAsB,gEAAgE,CAAC;AAKpG;;;;;GAKG;AACH,MAAM,WAAW,iBAAiB;IAChC,4EAA4E;IAC5E,SAAS,EAAE,MAAM,CAAC;IAClB,+CAA+C;IAC/C,aAAa,EAAE,MAAM,CAAC;IACtB,+CAA+C;IAC/C,cAAc,EAAE,MAAM,CAAC;IACvB,+CAA+C;IAC/C,YAAY,EAAE,MAAM,CAAC;IACrB,6CAA6C;IAC7C,UAAU,EAAE,MAAM,CAAC;IACnB,kDAAkD;IAClD,aAAa,EAAE,MAAM,CAAC;IACtB,mEAAmE;IACnE,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAChC,qFAAqF;IACrF,iBAAiB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAClC,wCAAwC;IACxC,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,qEAAqE;IACrE,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,8FAA8F;IAC9F,kBAAkB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACnC,
|
|
1
|
+
{"version":3,"file":"credentials.d.ts","sourceRoot":"","sources":["../src/credentials.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAQH,eAAO,MAAM,oBAAoB,oBAAoB,CAAC;AACtD,eAAO,MAAM,sBAAsB,gEAAgE,CAAC;AAKpG;;;;;GAKG;AACH,MAAM,WAAW,iBAAiB;IAChC,4EAA4E;IAC5E,SAAS,EAAE,MAAM,CAAC;IAClB,+CAA+C;IAC/C,aAAa,EAAE,MAAM,CAAC;IACtB,+CAA+C;IAC/C,cAAc,EAAE,MAAM,CAAC;IACvB,+CAA+C;IAC/C,YAAY,EAAE,MAAM,CAAC;IACrB,6CAA6C;IAC7C,UAAU,EAAE,MAAM,CAAC;IACnB,kDAAkD;IAClD,aAAa,EAAE,MAAM,CAAC;IACtB,mEAAmE;IACnE,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAChC,qFAAqF;IACrF,iBAAiB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAClC,wCAAwC;IACxC,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,qEAAqE;IACrE,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,8FAA8F;IAC9F,kBAAkB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACnC,kGAAkG;IAClG,8BAA8B,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAChD;AAED;;;;;;GAMG;AACH,wBAAgB,yBAAyB,IAAI,MAAM,CAelD;AAED;;GAEG;AACH,wBAAgB,yBAAyB,IAAI,MAAM,CAElD;AAgBD;;;;;;;GAOG;AACH,wBAAgB,gBAAgB,CAAC,WAAW,EAAE,iBAAiB,GAAG,MAAM,CAqCvE;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,IAAI,iBAAiB,CAqCpD;AAED;;GAEG;AACH,wBAAgB,iBAAiB,IAAI,OAAO,CAE3C;AAED;;;;GAIG;AACH,wBAAgB,kBAAkB,IAAI,OAAO,CAO5C"}
|
package/dist/credentials.js
CHANGED
|
@@ -102,12 +102,6 @@ export function save_credentials(credentials) {
|
|
|
102
102
|
if (credentials.agent_identity_urn != null) {
|
|
103
103
|
credentials_dict["agent_identity_urn"] = credentials.agent_identity_urn;
|
|
104
104
|
}
|
|
105
|
-
if (credentials.privacy_consent_given_at != null) {
|
|
106
|
-
credentials_dict["privacy_consent_given_at"] = credentials.privacy_consent_given_at;
|
|
107
|
-
}
|
|
108
|
-
if (credentials.default_attestation_mode != null) {
|
|
109
|
-
credentials_dict["default_attestation_mode"] = credentials.default_attestation_mode;
|
|
110
|
-
}
|
|
111
105
|
if (credentials.identity_certificate_chain_pem != null) {
|
|
112
106
|
credentials_dict["identity_certificate_chain_pem"] = credentials.identity_certificate_chain_pem;
|
|
113
107
|
}
|
|
@@ -148,8 +142,6 @@ export function load_credentials() {
|
|
|
148
142
|
enrolled_at: credentials_dict["enrolled_at"] ?? null,
|
|
149
143
|
display_name: credentials_dict["display_name"] ?? null,
|
|
150
144
|
agent_identity_urn: credentials_dict["agent_identity_urn"] ?? null,
|
|
151
|
-
privacy_consent_given_at: credentials_dict["privacy_consent_given_at"] ?? null,
|
|
152
|
-
default_attestation_mode: credentials_dict["default_attestation_mode"] ?? null,
|
|
153
145
|
identity_certificate_chain_pem: credentials_dict["identity_certificate_chain_pem"] ?? null,
|
|
154
146
|
};
|
|
155
147
|
}
|
package/dist/credentials.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"credentials.js","sourceRoot":"","sources":["../src/credentials.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAClC,OAAO,EAAE,gBAAgB,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAE/D,iCAAiC;AACjC,MAAM,CAAC,MAAM,oBAAoB,GAAG,iBAAiB,CAAC;AACtD,MAAM,CAAC,MAAM,sBAAsB,GAAG,6DAA6D,CAAC;AAEpG,6BAA6B;AAC7B,MAAM,oBAAoB,GAAG,kBAAkB,CAAC;
|
|
1
|
+
{"version":3,"file":"credentials.js","sourceRoot":"","sources":["../src/credentials.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAClC,OAAO,EAAE,gBAAgB,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAE/D,iCAAiC;AACjC,MAAM,CAAC,MAAM,oBAAoB,GAAG,iBAAiB,CAAC;AACtD,MAAM,CAAC,MAAM,sBAAsB,GAAG,6DAA6D,CAAC;AAEpG,6BAA6B;AAC7B,MAAM,oBAAoB,GAAG,kBAAkB,CAAC;AAmChD;;;;;;GAMG;AACH,MAAM,UAAU,yBAAyB;IACvC,MAAM,eAAe,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC;IACtC,IAAI,eAAe,KAAK,OAAO,EAAE,CAAC;QAChC,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QACvC,IAAI,OAAO,EAAE,CAAC;YACZ,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QACrC,CAAC;QACD,OAAO,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,SAAS,EAAE,OAAO,CAAC,CAAC;IAChE,CAAC;SAAM,CAAC;QACN,MAAM,eAAe,GAAG,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC;QACvD,IAAI,eAAe,EAAE,CAAC;YACpB,OAAO,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,OAAO,CAAC,CAAC;QAC7C,CAAC;QACD,OAAO,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,OAAO,CAAC,CAAC;IACrD,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,yBAAyB;IACvC,OAAO,IAAI,CAAC,IAAI,CAAC,yBAAyB,EAAE,EAAE,oBAAoB,CAAC,CAAC;AACtE,CAAC;AAED;;;GAGG;AACH,SAAS,0BAA0B,CAAC,SAAiB;IACnD,IAAI,EAAE,CAAC,QAAQ,EAAE,KAAK,OAAO,EAAE,CAAC;QAC9B,IAAI,CAAC;YACH,EAAE,CAAC,SAAS,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;QAAC,MAAM,CAAC;YACP,+CAA+C;QACjD,CAAC;IACH,CAAC;AACH,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,gBAAgB,CAAC,WAA8B;IAC7D,MAAM,qBAAqB,GAAG,yBAAyB,EAAE,CAAC;IAC1D,EAAE,CAAC,SAAS,CAAC,qBAAqB,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAEzD,MAAM,qBAAqB,GAAG,IAAI,CAAC,IAAI,CAAC,qBAAqB,EAAE,oBAAoB,CAAC,CAAC;IAErF,gEAAgE;IAChE,MAAM,gBAAgB,GAA4B;QAChD,SAAS,EAAE,WAAW,CAAC,SAAS;QAChC,aAAa,EAAE,WAAW,CAAC,aAAa;QACxC,cAAc,EAAE,WAAW,CAAC,cAAc;QAC1C,YAAY,EAAE,WAAW,CAAC,YAAY;QACtC,UAAU,EAAE,WAAW,CAAC,UAAU;QAClC,aAAa,EAAE,WAAW,CAAC,aAAa;QACxC,WAAW,EAAE,WAAW,CAAC,WAAW,IAAI,IAAI;KAC7C,CAAC;IAEF,IAAI,WAAW,CAAC,eAAe,IAAI,IAAI,EAAE,CAAC;QACxC,gBAAgB,CAAC,iBAAiB,CAAC,GAAG,WAAW,CAAC,eAAe,CAAC;IACpE,CAAC;IACD,IAAI,WAAW,CAAC,iBAAiB,IAAI,IAAI,EAAE,CAAC;QAC1C,gBAAgB,CAAC,mBAAmB,CAAC,GAAG,WAAW,CAAC,iBAAiB,CAAC;IACxE,CAAC;IACD,IAAI,WAAW,CAAC,YAAY,IAAI,IAAI,EAAE,CAAC;QACrC,gBAAgB,CAAC,cAAc,CAAC,GAAG,WAAW,CAAC,YAAY,CAAC;IAC9D,CAAC;IACD,IAAI,WAAW,CAAC,kBAAkB,IAAI,IAAI,EAAE,CAAC;QAC3C,gBAAgB,CAAC,oBAAoB,CAAC,GAAG,WAAW,CAAC,kBAAkB,CAAC;IAC1E,CAAC;IACD,IAAI,WAAW,CAAC,8BAA8B,IAAI,IAAI,EAAE,CAAC;QACvD,gBAAgB,CAAC,gCAAgC,CAAC,GAAG,WAAW,CAAC,8BAA8B,CAAC;IAClG,CAAC;IAED,EAAE,CAAC,aAAa,CAAC,qBAAqB,EAAE,IAAI,CAAC,SAAS,CAAC,gBAAgB,EAAE,IAAI,EAAE,CAAC,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC,CAAC;IACnG,0BAA0B,CAAC,qBAAqB,CAAC,CAAC;IAElD,OAAO,qBAAqB,CAAC;AAC/B,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,gBAAgB;IAC9B,MAAM,qBAAqB,GAAG,yBAAyB,EAAE,CAAC;IAE1D,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,qBAAqB,CAAC,EAAE,CAAC;QAC1C,MAAM,IAAI,gBAAgB,CACxB,gCAAgC,qBAAqB,IAAI;YACzD,kDAAkD,CACnD,CAAC;IACJ,CAAC;IAED,IAAI,aAAqB,CAAC;IAC1B,IAAI,gBAAyC,CAAC;IAE9C,IAAI,CAAC;QACH,aAAa,GAAG,EAAE,CAAC,YAAY,CAAC,qBAAqB,EAAE,OAAO,CAAC,CAAC;QAChE,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;IAC/C,CAAC;IAAC,OAAO,UAAU,EAAE,CAAC;QACpB,MAAM,IAAI,UAAU,CAClB,uBAAuB,qBAAqB,gCAAgC,UAAU,EAAE,EACxF,uBAAuB,CACxB,CAAC;IACJ,CAAC;IAED,OAAO;QACL,SAAS,EAAE,gBAAgB,CAAC,WAAW,CAAW;QAClD,aAAa,EAAE,gBAAgB,CAAC,eAAe,CAAW;QAC1D,cAAc,EAAE,gBAAgB,CAAC,gBAAgB,CAAW;QAC5D,YAAY,EAAE,gBAAgB,CAAC,cAAc,CAAW;QACxD,UAAU,EAAG,gBAAgB,CAAC,YAAY,CAAY,IAAI,UAAU;QACpE,aAAa,EAAG,gBAAgB,CAAC,eAAe,CAAY,IAAI,SAAS;QACzE,eAAe,EAAG,gBAAgB,CAAC,iBAAiB,CAAY,IAAI,IAAI;QACxE,iBAAiB,EAAG,gBAAgB,CAAC,mBAAmB,CAAY,IAAI,IAAI;QAC5E,WAAW,EAAG,gBAAgB,CAAC,aAAa,CAAY,IAAI,IAAI;QAChE,YAAY,EAAG,gBAAgB,CAAC,cAAc,CAAY,IAAI,IAAI;QAClE,kBAAkB,EAAG,gBAAgB,CAAC,oBAAoB,CAAY,IAAI,IAAI;QAC9E,8BAA8B,EAAG,gBAAgB,CAAC,gCAAgC,CAAY,IAAI,IAAI;KACvG,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB;IAC/B,OAAO,EAAE,CAAC,UAAU,CAAC,yBAAyB,EAAE,CAAC,CAAC;AACpD,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,kBAAkB;IAChC,MAAM,qBAAqB,GAAG,yBAAyB,EAAE,CAAC;IAC1D,IAAI,EAAE,CAAC,UAAU,CAAC,qBAAqB,CAAC,EAAE,CAAC;QACzC,EAAE,CAAC,UAAU,CAAC,qBAAqB,CAAC,CAAC;QACrC,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC"}
|
package/dist/devices.d.ts
CHANGED
|
File without changes
|
package/dist/devices.d.ts.map
CHANGED
|
File without changes
|
package/dist/devices.js
CHANGED
|
File without changes
|
package/dist/devices.js.map
CHANGED
|
File without changes
|
package/dist/enroll.d.ts
CHANGED
|
File without changes
|
package/dist/enroll.d.ts.map
CHANGED
|
File without changes
|
package/dist/enroll.js
CHANGED
|
File without changes
|
package/dist/enroll.js.map
CHANGED
|
File without changes
|
package/dist/exceptions.d.ts
CHANGED
|
@@ -54,7 +54,7 @@ export declare class HSMAccessError extends EnrollmentError {
|
|
|
54
54
|
* On Windows, non-admin users cannot access the TPM unless a one-time
|
|
55
55
|
* registry key is set. This exception signals that the calling application
|
|
56
56
|
* should display a privacy warning, call oneid.setup_tbs() if the user
|
|
57
|
-
* consents,
|
|
57
|
+
* consents, and retry enrollment.
|
|
58
58
|
*
|
|
59
59
|
* Distinct from NoHSMError (no TPM) and HSMAccessError (TPM broken/locked).
|
|
60
60
|
*/
|
package/dist/exceptions.d.ts.map
CHANGED
|
File without changes
|
package/dist/exceptions.js
CHANGED
|
@@ -72,7 +72,7 @@ export class HSMAccessError extends EnrollmentError {
|
|
|
72
72
|
* On Windows, non-admin users cannot access the TPM unless a one-time
|
|
73
73
|
* registry key is set. This exception signals that the calling application
|
|
74
74
|
* should display a privacy warning, call oneid.setup_tbs() if the user
|
|
75
|
-
* consents,
|
|
75
|
+
* consents, and retry enrollment.
|
|
76
76
|
*
|
|
77
77
|
* Distinct from NoHSMError (no TPM) and HSMAccessError (TPM broken/locked).
|
|
78
78
|
*/
|
package/dist/exceptions.js.map
CHANGED
|
File without changes
|
package/dist/helper.d.ts
CHANGED
|
File without changes
|
package/dist/helper.d.ts.map
CHANGED
|
File without changes
|
package/dist/helper.js
CHANGED
|
File without changes
|
package/dist/helper.js.map
CHANGED
|
File without changes
|
package/dist/identity.d.ts
CHANGED
|
File without changes
|
package/dist/identity.d.ts.map
CHANGED
|
File without changes
|
package/dist/identity.js
CHANGED
|
File without changes
|
package/dist/identity.js.map
CHANGED
|
File without changes
|
package/dist/index.d.ts
CHANGED
|
@@ -25,13 +25,15 @@ import { invalidate_world_cache, type WorldStatus, type WorldIdentitySection, ty
|
|
|
25
25
|
import { listDevices, lockHardware, registerOperatorEmail, type DeviceInfo, type DeviceListResult, type HardwareLockResult } from "./devices.js";
|
|
26
26
|
import { signChallenge, verifyPeerIdentity, PeerVerificationError, CertificateChainValidationError, SignatureVerificationError, MissingIdentityCertificateError, type IdentityProofBundle, type VerifiedPeerIdentity } from "./verify.js";
|
|
27
27
|
import { refresh_trust_roots, get_trust_roots } from "./trustRoots.js";
|
|
28
|
+
import { generateConsentToken, listCredentialPointers, setCredentialPointerVisibility, removeCredentialPointer, type ConsentTokenResult, type CredentialPointerInfo, type CredentialPointerListResult } from "./credentialPointers.js";
|
|
28
29
|
export { OneIDError, EnrollmentError, NoHSMError, UACDeniedError, HSMAccessError, TPMSetupRequiredError, AlreadyEnrolledError, HandleTakenError, HandleInvalidError, HandleRetiredError, AuthenticationError, HardwareDeviceNotPresentError, NetworkError, NotEnrolledError, BinaryNotFoundError, RateLimitExceededError, } from "./exceptions.js";
|
|
29
30
|
export { TrustTier, KeyAlgorithm, HSMType, DEFAULT_KEY_ALGORITHM, type Identity, type Token, type EnrollOptions, this_token_has_not_yet_expired, format_authorization_header_value, format_identity_as_display_string, };
|
|
30
31
|
export { type WorldStatus, type WorldIdentitySection, type WorldDeviceEntry, type WorldServiceEntry, type WorldGuidanceItem, type WorldOperatorGuidance, invalidate_world_cache, };
|
|
31
32
|
export { type DeviceInfo, type DeviceListResult, type HardwareLockResult, };
|
|
32
33
|
export { signChallenge, verifyPeerIdentity, refresh_trust_roots, get_trust_roots, PeerVerificationError, CertificateChainValidationError, SignatureVerificationError, MissingIdentityCertificateError, type IdentityProofBundle, type VerifiedPeerIdentity, };
|
|
34
|
+
export { generateConsentToken, listCredentialPointers, setCredentialPointerVisibility, removeCredentialPointer, type ConsentTokenResult, type CredentialPointerInfo, type CredentialPointerListResult, };
|
|
33
35
|
/** SDK version string. */
|
|
34
|
-
export declare const VERSION = "0.
|
|
36
|
+
export declare const VERSION = "0.8.0";
|
|
35
37
|
/**
|
|
36
38
|
* Check the current enrolled identity.
|
|
37
39
|
*
|
|
@@ -100,17 +102,6 @@ export declare function refresh(): void;
|
|
|
100
102
|
* @throws HSMAccessError if the registry key could not be set.
|
|
101
103
|
*/
|
|
102
104
|
export declare function setup_tbs(): Promise<boolean>;
|
|
103
|
-
/**
|
|
104
|
-
* Record the user's privacy consent choice in the credentials file.
|
|
105
|
-
*
|
|
106
|
-
* After the calling application shows a privacy warning and the user
|
|
107
|
-
* consents, call this to persist their preferred attestation mode.
|
|
108
|
-
*
|
|
109
|
-
* @param mode The user's chosen attestation mode: 'sd-jwt' or 'direct'.
|
|
110
|
-
* @throws NotEnrolledError if no credentials file exists yet.
|
|
111
|
-
* @throws Error if mode is not 'sd-jwt' or 'direct'.
|
|
112
|
-
*/
|
|
113
|
-
export declare function record_privacy_consent(mode?: string): void;
|
|
114
105
|
export { enroll, get_token as getToken, get_token, clear_cached_token, authenticate_with_tpm, authenticate_with_piv, credentials_exist, sign_challenge_with_private_key, listDevices, lockHardware, registerOperatorEmail, };
|
|
115
106
|
declare const oneid: {
|
|
116
107
|
enroll: typeof enroll;
|
|
@@ -121,7 +112,6 @@ declare const oneid: {
|
|
|
121
112
|
whoami: typeof whoami;
|
|
122
113
|
refresh: typeof refresh;
|
|
123
114
|
setup_tbs: typeof setup_tbs;
|
|
124
|
-
record_privacy_consent: typeof record_privacy_consent;
|
|
125
115
|
credentials_exist: typeof credentials_exist;
|
|
126
116
|
authenticate_with_tpm: typeof authenticate_with_tpm;
|
|
127
117
|
authenticate_with_piv: typeof authenticate_with_piv;
|
|
@@ -136,6 +126,10 @@ declare const oneid: {
|
|
|
136
126
|
verifyPeerIdentity: typeof verifyPeerIdentity;
|
|
137
127
|
refresh_trust_roots: typeof refresh_trust_roots;
|
|
138
128
|
get_trust_roots: typeof get_trust_roots;
|
|
129
|
+
generateConsentToken: typeof generateConsentToken;
|
|
130
|
+
listCredentialPointers: typeof listCredentialPointers;
|
|
131
|
+
setCredentialPointerVisibility: typeof setCredentialPointerVisibility;
|
|
132
|
+
removeCredentialPointer: typeof removeCredentialPointer;
|
|
139
133
|
VERSION: string;
|
|
140
134
|
TrustTier: typeof TrustTier;
|
|
141
135
|
KeyAlgorithm: typeof KeyAlgorithm;
|
package/dist/index.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,OAAO,EAAE,kBAAkB,EAAE,SAAS,EAAE,qBAAqB,EAAE,qBAAqB,EAAE,MAAM,WAAW,CAAC;AACxG,OAAO,EAAE,iBAAiB,EAAsC,MAAM,kBAAkB,CAAC;AACzF,OAAO,EAAE,MAAM,EAAE,KAAK,aAAa,EAAE,MAAM,aAAa,CAAC;AACzD,OAAO,EAAE,+BAA+B,EAAE,MAAM,WAAW,CAAC;AAC5D,OAAO,EACL,qBAAqB,EACrB,OAAO,EACP,KAAK,QAAQ,EACb,YAAY,EACZ,KAAK,KAAK,EACV,SAAS,EACT,8BAA8B,EAC9B,iCAAiC,EACjC,iCAAiC,EAClC,MAAM,eAAe,CAAC;AACvB,OAAO,EAEL,sBAAsB,EACtB,KAAK,WAAW,EAChB,KAAK,oBAAoB,EACzB,KAAK,gBAAgB,EACrB,KAAK,iBAAiB,EACtB,KAAK,iBAAiB,EACtB,KAAK,qBAAqB,EAC3B,MAAM,YAAY,CAAC;AACpB,OAAO,EACL,WAAW,EACX,YAAY,EACZ,qBAAqB,EACrB,KAAK,UAAU,EACf,KAAK,gBAAgB,EACrB,KAAK,kBAAkB,EACxB,MAAM,cAAc,CAAC;AACtB,OAAO,EACL,aAAa,EACb,kBAAkB,EAClB,qBAAqB,EACrB,+BAA+B,EAC/B,0BAA0B,EAC1B,+BAA+B,EAC/B,KAAK,mBAAmB,EACxB,KAAK,oBAAoB,EAC1B,MAAM,aAAa,CAAC;AACrB,OAAO,EAAE,mBAAmB,EAAE,eAAe,EAAE,MAAM,iBAAiB,CAAC;
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,OAAO,EAAE,kBAAkB,EAAE,SAAS,EAAE,qBAAqB,EAAE,qBAAqB,EAAE,MAAM,WAAW,CAAC;AACxG,OAAO,EAAE,iBAAiB,EAAsC,MAAM,kBAAkB,CAAC;AACzF,OAAO,EAAE,MAAM,EAAE,KAAK,aAAa,EAAE,MAAM,aAAa,CAAC;AACzD,OAAO,EAAE,+BAA+B,EAAE,MAAM,WAAW,CAAC;AAC5D,OAAO,EACL,qBAAqB,EACrB,OAAO,EACP,KAAK,QAAQ,EACb,YAAY,EACZ,KAAK,KAAK,EACV,SAAS,EACT,8BAA8B,EAC9B,iCAAiC,EACjC,iCAAiC,EAClC,MAAM,eAAe,CAAC;AACvB,OAAO,EAEL,sBAAsB,EACtB,KAAK,WAAW,EAChB,KAAK,oBAAoB,EACzB,KAAK,gBAAgB,EACrB,KAAK,iBAAiB,EACtB,KAAK,iBAAiB,EACtB,KAAK,qBAAqB,EAC3B,MAAM,YAAY,CAAC;AACpB,OAAO,EACL,WAAW,EACX,YAAY,EACZ,qBAAqB,EACrB,KAAK,UAAU,EACf,KAAK,gBAAgB,EACrB,KAAK,kBAAkB,EACxB,MAAM,cAAc,CAAC;AACtB,OAAO,EACL,aAAa,EACb,kBAAkB,EAClB,qBAAqB,EACrB,+BAA+B,EAC/B,0BAA0B,EAC1B,+BAA+B,EAC/B,KAAK,mBAAmB,EACxB,KAAK,oBAAoB,EAC1B,MAAM,aAAa,CAAC;AACrB,OAAO,EAAE,mBAAmB,EAAE,eAAe,EAAE,MAAM,iBAAiB,CAAC;AACvE,OAAO,EACL,oBAAoB,EACpB,sBAAsB,EACtB,8BAA8B,EAC9B,uBAAuB,EACvB,KAAK,kBAAkB,EACvB,KAAK,qBAAqB,EAC1B,KAAK,2BAA2B,EACjC,MAAM,yBAAyB,CAAC;AAGjC,OAAO,EACL,UAAU,EACV,eAAe,EACf,UAAU,EACV,cAAc,EACd,cAAc,EACd,qBAAqB,EACrB,oBAAoB,EACpB,gBAAgB,EAChB,kBAAkB,EAClB,kBAAkB,EAClB,mBAAmB,EACnB,6BAA6B,EAC7B,YAAY,EACZ,gBAAgB,EAChB,mBAAmB,EACnB,sBAAsB,GACvB,MAAM,iBAAiB,CAAC;AAGzB,OAAO,EACL,SAAS,EACT,YAAY,EACZ,OAAO,EACP,qBAAqB,EACrB,KAAK,QAAQ,EACb,KAAK,KAAK,EACV,KAAK,aAAa,EAClB,8BAA8B,EAC9B,iCAAiC,EACjC,iCAAiC,GAClC,CAAC;AAGF,OAAO,EACL,KAAK,WAAW,EAChB,KAAK,oBAAoB,EACzB,KAAK,gBAAgB,EACrB,KAAK,iBAAiB,EACtB,KAAK,iBAAiB,EACtB,KAAK,qBAAqB,EAC1B,sBAAsB,GACvB,CAAC;AAGF,OAAO,EACL,KAAK,UAAU,EACf,KAAK,gBAAgB,EACrB,KAAK,kBAAkB,GACxB,CAAC;AAGF,OAAO,EACL,aAAa,EACb,kBAAkB,EAClB,mBAAmB,EACnB,eAAe,EACf,qBAAqB,EACrB,+BAA+B,EAC/B,0BAA0B,EAC1B,+BAA+B,EAC/B,KAAK,mBAAmB,EACxB,KAAK,oBAAoB,GAC1B,CAAC;AAGF,OAAO,EACL,oBAAoB,EACpB,sBAAsB,EACtB,8BAA8B,EAC9B,uBAAuB,EACvB,KAAK,kBAAkB,EACvB,KAAK,qBAAqB,EAC1B,KAAK,2BAA2B,GACjC,CAAC;AAEF,0BAA0B;AAC1B,eAAO,MAAM,OAAO,UAAU,CAAC;AAE/B;;;;;;;GAOG;AACH,wBAAgB,MAAM,IAAI,QAAQ,CAoDjC;AAED,MAAM,WAAW,0BAA0B;IACzC,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,cAAc,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,gBAAgB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACjC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED;;;;;;;;;;;;;;GAcG;AACH,wBAAsB,mBAAmB,CACvC,OAAO,CAAC,EAAE,0BAA0B,GACnC,OAAO,CAAC,QAAQ,CAAC,CAqBnB;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAsB,MAAM,IAAI,OAAO,CAAC,WAAW,CAAC,CAEnD;AAED;;;;;GAKG;AACH,wBAAgB,OAAO,IAAI,IAAI,CAE9B;AAED;;;;;;;;;;;;GAYG;AACH,wBAAsB,SAAS,IAAI,OAAO,CAAC,OAAO,CAAC,CAIlD;AAGD,OAAO,EACL,MAAM,EACN,SAAS,IAAI,QAAQ,EACrB,SAAS,EACT,kBAAkB,EAClB,qBAAqB,EACrB,qBAAqB,EACrB,iBAAiB,EACjB,+BAA+B,EAC/B,WAAW,EACX,YAAY,EACZ,qBAAqB,GACtB,CAAC;AAEF,QAAA,MAAM,KAAK;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAgCV,CAAC;AAEF,eAAe,KAAK,CAAC"}
|
package/dist/index.js
CHANGED
|
@@ -17,7 +17,7 @@
|
|
|
17
17
|
* and enrolls at the highest available trust tier.
|
|
18
18
|
*/
|
|
19
19
|
import { clear_cached_token, get_token, authenticate_with_tpm, authenticate_with_piv } from "./auth.js";
|
|
20
|
-
import { credentials_exist, load_credentials
|
|
20
|
+
import { credentials_exist, load_credentials } from "./credentials.js";
|
|
21
21
|
import { enroll } from "./enroll.js";
|
|
22
22
|
import { sign_challenge_with_private_key } from "./keys.js";
|
|
23
23
|
import { DEFAULT_KEY_ALGORITHM, HSMType, KeyAlgorithm, TrustTier, this_token_has_not_yet_expired, format_authorization_header_value, format_identity_as_display_string, } from "./identity.js";
|
|
@@ -25,6 +25,7 @@ import { fetch_world_status_from_server, invalidate_world_cache, } from "./world
|
|
|
25
25
|
import { listDevices, lockHardware, registerOperatorEmail, } from "./devices.js";
|
|
26
26
|
import { signChallenge, verifyPeerIdentity, PeerVerificationError, CertificateChainValidationError, SignatureVerificationError, MissingIdentityCertificateError, } from "./verify.js";
|
|
27
27
|
import { refresh_trust_roots, get_trust_roots } from "./trustRoots.js";
|
|
28
|
+
import { generateConsentToken, listCredentialPointers, setCredentialPointerVisibility, removeCredentialPointer, } from "./credentialPointers.js";
|
|
28
29
|
// Re-export all exception classes
|
|
29
30
|
export { OneIDError, EnrollmentError, NoHSMError, UACDeniedError, HSMAccessError, TPMSetupRequiredError, AlreadyEnrolledError, HandleTakenError, HandleInvalidError, HandleRetiredError, AuthenticationError, HardwareDeviceNotPresentError, NetworkError, NotEnrolledError, BinaryNotFoundError, RateLimitExceededError, } from "./exceptions.js";
|
|
30
31
|
// Re-export types and enums
|
|
@@ -33,8 +34,10 @@ export { TrustTier, KeyAlgorithm, HSMType, DEFAULT_KEY_ALGORITHM, this_token_has
|
|
|
33
34
|
export { invalidate_world_cache, };
|
|
34
35
|
// Re-export peer verification types and functions
|
|
35
36
|
export { signChallenge, verifyPeerIdentity, refresh_trust_roots, get_trust_roots, PeerVerificationError, CertificateChainValidationError, SignatureVerificationError, MissingIdentityCertificateError, };
|
|
37
|
+
// Re-export credential pointer functions and types
|
|
38
|
+
export { generateConsentToken, listCredentialPointers, setCredentialPointerVisibility, removeCredentialPointer, };
|
|
36
39
|
/** SDK version string. */
|
|
37
|
-
export const VERSION = "0.
|
|
40
|
+
export const VERSION = "0.8.0";
|
|
38
41
|
/**
|
|
39
42
|
* Check the current enrolled identity.
|
|
40
43
|
*
|
|
@@ -171,25 +174,6 @@ export async function setup_tbs() {
|
|
|
171
174
|
const result = await setup_tbs_for_non_admin_tpm_access();
|
|
172
175
|
return result.ok ?? false;
|
|
173
176
|
}
|
|
174
|
-
/**
|
|
175
|
-
* Record the user's privacy consent choice in the credentials file.
|
|
176
|
-
*
|
|
177
|
-
* After the calling application shows a privacy warning and the user
|
|
178
|
-
* consents, call this to persist their preferred attestation mode.
|
|
179
|
-
*
|
|
180
|
-
* @param mode The user's chosen attestation mode: 'sd-jwt' or 'direct'.
|
|
181
|
-
* @throws NotEnrolledError if no credentials file exists yet.
|
|
182
|
-
* @throws Error if mode is not 'sd-jwt' or 'direct'.
|
|
183
|
-
*/
|
|
184
|
-
export function record_privacy_consent(mode = "sd-jwt") {
|
|
185
|
-
if (mode !== "sd-jwt" && mode !== "direct") {
|
|
186
|
-
throw new Error(`Invalid attestation mode '${mode}'. Must be 'sd-jwt' or 'direct'.`);
|
|
187
|
-
}
|
|
188
|
-
const creds = load_credentials();
|
|
189
|
-
creds.privacy_consent_given_at = new Date().toISOString();
|
|
190
|
-
creds.default_attestation_mode = mode;
|
|
191
|
-
save_credentials(creds);
|
|
192
|
-
}
|
|
193
177
|
// Re-export core functions
|
|
194
178
|
export { enroll, get_token as getToken, get_token, clear_cached_token, authenticate_with_tpm, authenticate_with_piv, credentials_exist, sign_challenge_with_private_key, listDevices, lockHardware, registerOperatorEmail, };
|
|
195
179
|
const oneid = {
|
|
@@ -201,7 +185,6 @@ const oneid = {
|
|
|
201
185
|
whoami,
|
|
202
186
|
refresh,
|
|
203
187
|
setup_tbs,
|
|
204
|
-
record_privacy_consent,
|
|
205
188
|
credentials_exist,
|
|
206
189
|
authenticate_with_tpm,
|
|
207
190
|
authenticate_with_piv,
|
|
@@ -216,6 +199,10 @@ const oneid = {
|
|
|
216
199
|
verifyPeerIdentity,
|
|
217
200
|
refresh_trust_roots,
|
|
218
201
|
get_trust_roots,
|
|
202
|
+
generateConsentToken,
|
|
203
|
+
listCredentialPointers,
|
|
204
|
+
setCredentialPointerVisibility,
|
|
205
|
+
removeCredentialPointer,
|
|
219
206
|
VERSION,
|
|
220
207
|
TrustTier,
|
|
221
208
|
KeyAlgorithm,
|
package/dist/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,OAAO,EAAE,kBAAkB,EAAE,SAAS,EAAE,qBAAqB,EAAE,qBAAqB,EAAE,MAAM,WAAW,CAAC;AACxG,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,OAAO,EAAE,kBAAkB,EAAE,SAAS,EAAE,qBAAqB,EAAE,qBAAqB,EAAE,MAAM,WAAW,CAAC;AACxG,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,EAAoB,MAAM,kBAAkB,CAAC;AACzF,OAAO,EAAE,MAAM,EAAsB,MAAM,aAAa,CAAC;AACzD,OAAO,EAAE,+BAA+B,EAAE,MAAM,WAAW,CAAC;AAC5D,OAAO,EACL,qBAAqB,EACrB,OAAO,EAEP,YAAY,EAEZ,SAAS,EACT,8BAA8B,EAC9B,iCAAiC,EACjC,iCAAiC,GAClC,MAAM,eAAe,CAAC;AACvB,OAAO,EACL,8BAA8B,EAC9B,sBAAsB,GAOvB,MAAM,YAAY,CAAC;AACpB,OAAO,EACL,WAAW,EACX,YAAY,EACZ,qBAAqB,GAItB,MAAM,cAAc,CAAC;AACtB,OAAO,EACL,aAAa,EACb,kBAAkB,EAClB,qBAAqB,EACrB,+BAA+B,EAC/B,0BAA0B,EAC1B,+BAA+B,GAGhC,MAAM,aAAa,CAAC;AACrB,OAAO,EAAE,mBAAmB,EAAE,eAAe,EAAE,MAAM,iBAAiB,CAAC;AACvE,OAAO,EACL,oBAAoB,EACpB,sBAAsB,EACtB,8BAA8B,EAC9B,uBAAuB,GAIxB,MAAM,yBAAyB,CAAC;AAEjC,kCAAkC;AAClC,OAAO,EACL,UAAU,EACV,eAAe,EACf,UAAU,EACV,cAAc,EACd,cAAc,EACd,qBAAqB,EACrB,oBAAoB,EACpB,gBAAgB,EAChB,kBAAkB,EAClB,kBAAkB,EAClB,mBAAmB,EACnB,6BAA6B,EAC7B,YAAY,EACZ,gBAAgB,EAChB,mBAAmB,EACnB,sBAAsB,GACvB,MAAM,iBAAiB,CAAC;AAEzB,4BAA4B;AAC5B,OAAO,EACL,SAAS,EACT,YAAY,EACZ,OAAO,EACP,qBAAqB,EAIrB,8BAA8B,EAC9B,iCAAiC,EACjC,iCAAiC,GAClC,CAAC;AAEF,+BAA+B;AAC/B,OAAO,EAOL,sBAAsB,GACvB,CAAC;AASF,kDAAkD;AAClD,OAAO,EACL,aAAa,EACb,kBAAkB,EAClB,mBAAmB,EACnB,eAAe,EACf,qBAAqB,EACrB,+BAA+B,EAC/B,0BAA0B,EAC1B,+BAA+B,GAGhC,CAAC;AAEF,mDAAmD;AACnD,OAAO,EACL,oBAAoB,EACpB,sBAAsB,EACtB,8BAA8B,EAC9B,uBAAuB,GAIxB,CAAC;AAEF,0BAA0B;AAC1B,MAAM,CAAC,MAAM,OAAO,GAAG,OAAO,CAAC;AAE/B;;;;;;;GAOG;AACH,MAAM,UAAU,MAAM;IACpB,MAAM,KAAK,GAAG,gBAAgB,EAAE,CAAC;IAEjC,qBAAqB;IACrB,IAAI,UAAqB,CAAC;IAC1B,MAAM,WAAW,GAAG,MAAM,CAAC,MAAM,CAAC,SAAS,CAAa,CAAC;IACzD,IAAI,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,UAAU,CAAC,EAAE,CAAC;QAC3C,UAAU,GAAG,KAAK,CAAC,UAAuB,CAAC;IAC7C,CAAC;SAAM,CAAC;QACN,UAAU,GAAG,SAAS,CAAC,QAAQ,CAAC;IAClC,CAAC;IAED,wBAAwB;IACxB,IAAI,aAA2B,CAAC;IAChC,MAAM,gBAAgB,GAAG,MAAM,CAAC,MAAM,CAAC,YAAY,CAAa,CAAC;IACjE,IAAI,gBAAgB,CAAC,QAAQ,CAAC,KAAK,CAAC,aAAa,CAAC,EAAE,CAAC;QACnD,aAAa,GAAG,KAAK,CAAC,aAA6B,CAAC;IACtD,CAAC;SAAM,CAAC;QACN,aAAa,GAAG,qBAAqB,CAAC;IACxC,CAAC;IAED,oBAAoB;IACpB,IAAI,WAAiB,CAAC;IACtB,IAAI,CAAC;QACH,WAAW,GAAG,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,IAAI,IAAI,EAAE,CAAC;IAC7E,CAAC;IAAC,MAAM,CAAC;QACP,WAAW,GAAG,IAAI,IAAI,EAAE,CAAC;IAC3B,CAAC;IAED,MAAM,WAAW,GAAG,KAAK,CAAC,SAAS,CAAC;IACpC,MAAM,MAAM,GAAG,WAAW,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,WAAW,EAAE,CAAC;IAE7E,sCAAsC;IACtC,IAAI,QAAQ,GAAmB,IAAI,CAAC;IACpC,IAAI,KAAK,CAAC,eAAe,IAAI,IAAI,EAAE,CAAC;QAClC,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;IAC9B,CAAC;SAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,IAAI,EAAE,CAAC;QAC3C,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC;IACzB,CAAC;IAED,OAAO;QACL,WAAW;QACX,MAAM;QACN,UAAU;QACV,QAAQ;QACR,gBAAgB,EAAE,IAAI;QACtB,WAAW;QACX,YAAY,EAAE,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAC7C,aAAa;QACb,kBAAkB,EAAE,KAAK,CAAC,kBAAkB,IAAI,IAAI;QACpD,YAAY,EAAE,KAAK,CAAC,YAAY,IAAI,IAAI;KACzC,CAAC;AACJ,CAAC;AAUD;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,OAAoC;IAEpC,IAAI,iBAAiB,EAAE,EAAE,CAAC;QACxB,OAAO,MAAM,EAAE,CAAC;IAClB,CAAC;IAED,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;QACtB,MAAM,EAAE,gBAAgB,EAAE,WAAW,EAAE,GAAG,MAAM,MAAM,CAAC,iBAAiB,CAAC,CAAC;QAC1E,MAAM,IAAI,WAAW,CACnB,yCAAyC;YACzC,iEAAiE;YACjE,yDAAyD;YACzD,4BAA4B,CAC7B,CAAC;IACJ,CAAC;IAED,OAAO,MAAM,CAAC;QACZ,YAAY,EAAE,OAAO,EAAE,YAAY,IAAI,IAAI;QAC3C,cAAc,EAAE,OAAO,EAAE,cAAc,IAAI,IAAI;QAC/C,gBAAgB,EAAE,OAAO,EAAE,gBAAgB,IAAI,IAAI;QACnD,YAAY,EAAE,OAAO,EAAE,YAAY;KACpC,CAAC,CAAC;AACL,CAAC;AAED;;;;;;;;;;;;;GAaG;AACH,MAAM,CAAC,KAAK,UAAU,MAAM;IAC1B,OAAO,8BAA8B,EAAE,CAAC;AAC1C,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,OAAO;IACrB,kBAAkB,EAAE,CAAC;AACvB,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS;IAC7B,MAAM,EAAE,kCAAkC,EAAE,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,CAAC;IAC3E,MAAM,MAAM,GAAG,MAAM,kCAAkC,EAAE,CAAC;IAC1D,OAAQ,MAAM,CAAC,EAAc,IAAI,KAAK,CAAC;AACzC,CAAC;AAED,2BAA2B;AAC3B,OAAO,EACL,MAAM,EACN,SAAS,IAAI,QAAQ,EACrB,SAAS,EACT,kBAAkB,EAClB,qBAAqB,EACrB,qBAAqB,EACrB,iBAAiB,EACjB,+BAA+B,EAC/B,WAAW,EACX,YAAY,EACZ,qBAAqB,GACtB,CAAC;AAEF,MAAM,KAAK,GAAG;IACZ,MAAM;IACN,mBAAmB;IACnB,MAAM;IACN,QAAQ,EAAE,SAAS;IACnB,SAAS;IACT,MAAM;IACN,OAAO;IACP,SAAS;IACT,iBAAiB;IACjB,qBAAqB;IACrB,qBAAqB;IACrB,+BAA+B;IAC/B,kBAAkB;IAClB,iCAAiC;IACjC,sBAAsB;IACtB,WAAW;IACX,YAAY;IACZ,qBAAqB;IACrB,aAAa;IACb,kBAAkB;IAClB,mBAAmB;IACnB,eAAe;IACf,oBAAoB;IACpB,sBAAsB;IACtB,8BAA8B;IAC9B,uBAAuB;IACvB,OAAO;IACP,SAAS;IACT,YAAY;IACZ,OAAO;IACP,qBAAqB;CACtB,CAAC;AAEF,eAAe,KAAK,CAAC"}
|
package/dist/keys.d.ts
CHANGED
|
File without changes
|
package/dist/keys.d.ts.map
CHANGED
|
File without changes
|
package/dist/keys.js
CHANGED
|
File without changes
|
package/dist/keys.js.map
CHANGED
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
package/dist/trustRoots.d.ts
CHANGED
|
File without changes
|
package/dist/trustRoots.d.ts.map
CHANGED
|
File without changes
|
package/dist/trustRoots.js
CHANGED
|
File without changes
|
package/dist/trustRoots.js.map
CHANGED
|
File without changes
|
package/dist/verify.d.ts
CHANGED
|
File without changes
|
package/dist/verify.d.ts.map
CHANGED
|
File without changes
|
package/dist/verify.js
CHANGED
|
File without changes
|
package/dist/verify.js.map
CHANGED
|
File without changes
|
package/dist/world.d.ts
CHANGED
|
File without changes
|
package/dist/world.d.ts.map
CHANGED
|
File without changes
|
package/dist/world.js
CHANGED
|
File without changes
|
package/dist/world.js.map
CHANGED
|
File without changes
|