@atproto/bsky 0.0.198 → 0.0.199

package/CHANGELOG.md

@@ -1,5 +1,19 @@
 # @atproto/bsky
 
+## 0.0.199
+
+### Patch Changes
+
+- [#4407](https://github.com/bluesky-social/atproto/pull/4407) [`90f1569`](https://github.com/bluesky-social/atproto/commit/90f15698ee63d9a7374f1206754eda5d530873d7) Thanks [@estrattonbailey](https://github.com/estrattonbailey)! - Adds ageassurance namespace, methods, and utils for Age Assurance V2
+
+- Updated dependencies [[`8012627`](https://github.com/bluesky-social/atproto/commit/8012627a1226cb2f1c753385ad2497b6b43ffd2e), [`bcae2b7`](https://github.com/bluesky-social/atproto/commit/bcae2b77b68da6dc2ec202651c8bf41fd5769f69), [`d396de0`](https://github.com/bluesky-social/atproto/commit/d396de016d1d55d08cfad1dabd3ffd9eaeea76ea), [`90f1569`](https://github.com/bluesky-social/atproto/commit/90f15698ee63d9a7374f1206754eda5d530873d7), [`d396de0`](https://github.com/bluesky-social/atproto/commit/d396de016d1d55d08cfad1dabd3ffd9eaeea76ea)]:
+  - @atproto/did@0.2.3
+  - @atproto/syntax@0.4.2
+  - @atproto/crypto@0.4.5
+  - @atproto/api@0.18.4
+  - @atproto/common@0.5.2
+  - @atproto/xrpc-server@0.10.2
+
 ## 0.0.198
 
 ### Patch Changes

package/dist/api/age-assurance/const.d.ts

@@ -0,0 +1,11 @@
+import { AppBskyAgeassuranceDefs } from '@atproto/api';
+/**
+ * Age assurance configuration defining rules for various regions.
+ *
+ * NOTE: These rules are matched in order, and the first matching rule
+ * determines the access level granted.
+ *
+ * NOTE: all regions MUST have a default rule as the last rule.
+ */
+export declare const AGE_ASSURANCE_CONFIG: AppBskyAgeassuranceDefs.Config;
+//# sourceMappingURL=const.d.ts.map

package/dist/api/age-assurance/const.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"const.d.ts","sourceRoot":"","sources":["../../../src/api/age-assurance/const.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,uBAAuB,EAExB,MAAM,cAAc,CAAA;AAErB;;;;;;;GAOG;AACH,eAAO,MAAM,oBAAoB,EAAE,uBAAuB,CAAC,MAgI1D,CAAA"}

package/dist/api/age-assurance/const.js

@@ -0,0 +1,142 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AGE_ASSURANCE_CONFIG = void 0;
+const api_1 = require("@atproto/api");
+/**
+ * Age assurance configuration defining rules for various regions.
+ *
+ * NOTE: These rules are matched in order, and the first matching rule
+ * determines the access level granted.
+ *
+ * NOTE: all regions MUST have a default rule as the last rule.
+ */
+exports.AGE_ASSURANCE_CONFIG = {
+    regions: [
+        {
+            countryCode: 'GB',
+            regionCode: undefined,
+            rules: [
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfAssuredOverAge,
+                    age: 18,
+                    access: 'full',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfDeclaredOverAge,
+                    age: 13,
+                    access: 'safe',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.Default,
+                    access: 'none',
+                },
+            ],
+        },
+        {
+            countryCode: 'AU',
+            regionCode: undefined,
+            rules: [
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfAccountNewerThan,
+                    date: '2025-12-10T00:00:00Z',
+                    access: 'none',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfAssuredOverAge,
+                    age: 18,
+                    access: 'full',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfAssuredOverAge,
+                    age: 16,
+                    access: 'safe',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfDeclaredOverAge,
+                    age: 16,
+                    access: 'safe',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.Default,
+                    access: 'none',
+                },
+            ],
+        },
+        {
+            countryCode: 'US',
+            regionCode: 'SD',
+            rules: [
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfAssuredOverAge,
+                    age: 18,
+                    access: 'full',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfDeclaredOverAge,
+                    age: 13,
+                    access: 'safe',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.Default,
+                    access: 'none',
+                },
+            ],
+        },
+        {
+            countryCode: 'US',
+            regionCode: 'WY',
+            rules: [
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfAssuredOverAge,
+                    age: 18,
+                    access: 'full',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfDeclaredOverAge,
+                    age: 13,
+                    access: 'safe',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.Default,
+                    access: 'none',
+                },
+            ],
+        },
+        {
+            countryCode: 'US',
+            regionCode: 'OH',
+            rules: [
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfAssuredOverAge,
+                    age: 18,
+                    access: 'full',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfDeclaredOverAge,
+                    age: 13,
+                    access: 'safe',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.Default,
+                    access: 'none',
+                },
+            ],
+        },
+        {
+            countryCode: 'US',
+            regionCode: 'MS',
+            rules: [
+                {
+                    $type: api_1.ageAssuranceRuleIDs.IfAssuredOverAge,
+                    age: 18,
+                    access: 'full',
+                },
+                {
+                    $type: api_1.ageAssuranceRuleIDs.Default,
+                    access: 'none',
+                },
+            ],
+        },
+    ],
+};
+//# sourceMappingURL=const.js.map

package/dist/api/age-assurance/const.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"const.js","sourceRoot":"","sources":["../../../src/api/age-assurance/const.ts"],"names":[],"mappings":";;;AAAA,sCAGqB;AAErB;;;;;;;GAOG;AACU,QAAA,oBAAoB,GAAmC;IAClE,OAAO,EAAE;QACP;YACE,WAAW,EAAE,IAAI;YACjB,UAAU,EAAE,SAAS;YACrB,KAAK,EAAE;gBACL;oBACE,KAAK,EAAE,yBAAG,CAAC,gBAAgB;oBAC3B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,iBAAiB;oBAC5B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,OAAO;oBAClB,MAAM,EAAE,MAAM;iBACf;aACF;SACF;QACD;YACE,WAAW,EAAE,IAAI;YACjB,UAAU,EAAE,SAAS;YACrB,KAAK,EAAE;gBACL;oBACE,KAAK,EAAE,yBAAG,CAAC,kBAAkB;oBAC7B,IAAI,EAAE,sBAAsB;oBAC5B,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,gBAAgB;oBAC3B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,gBAAgB;oBAC3B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,iBAAiB;oBAC5B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,OAAO;oBAClB,MAAM,EAAE,MAAM;iBACf;aACF;SACF;QACD;YACE,WAAW,EAAE,IAAI;YACjB,UAAU,EAAE,IAAI;YAChB,KAAK,EAAE;gBACL;oBACE,KAAK,EAAE,yBAAG,CAAC,gBAAgB;oBAC3B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,iBAAiB;oBAC5B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,OAAO;oBAClB,MAAM,EAAE,MAAM;iBACf;aACF;SACF;QACD;YACE,WAAW,EAAE,IAAI;YACjB,UAAU,EAAE,IAAI;YAChB,KAAK,EAAE;gBACL;oBACE,KAAK,EAAE,yBAAG,CAAC,gBAAgB;oBAC3B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,iBAAiB;oBAC5B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,OAAO;oBAClB,MAAM,EAAE,MAAM;iBACf;aACF;SACF;QACD;YACE,WAAW,EAAE,IAAI;YACjB,UAAU,EAAE,IAAI;YAChB,KAAK,EAAE;gBACL;oBACE,KAAK,EAAE,yBAAG,CAAC,gBAAgB;oBAC3B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,iBAAiB;oBAC5B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,OAAO;oBAClB,MAAM,EAAE,MAAM;iBACf;aACF;SACF;QACD;YACE,WAAW,EAAE,IAAI;YACjB,UAAU,EAAE,IAAI;YAChB,KAAK,EAAE;gBACL;oBACE,KAAK,EAAE,yBAAG,CAAC,gBAAgB;oBAC3B,GAAG,EAAE,EAAE;oBACP,MAAM,EAAE,MAAM;iBACf;gBACD;oBACE,KAAK,EAAE,yBAAG,CAAC,OAAO;oBAClB,MAAM,EAAE,MAAM;iBACf;aACF;SACF;KACF;CACF,CAAA","sourcesContent":["import {\n  AppBskyAgeassuranceDefs,\n  ageAssuranceRuleIDs as ids,\n} from '@atproto/api'\n\n/**\n * Age assurance configuration defining rules for various regions.\n *\n * NOTE: These rules are matched in order, and the first matching rule\n * determines the access level granted.\n *\n * NOTE: all regions MUST have a default rule as the last rule.\n */\nexport const AGE_ASSURANCE_CONFIG: AppBskyAgeassuranceDefs.Config = {\n  regions: [\n    {\n      countryCode: 'GB',\n      regionCode: undefined,\n      rules: [\n        {\n          $type: ids.IfAssuredOverAge,\n          age: 18,\n          access: 'full',\n        },\n        {\n          $type: ids.IfDeclaredOverAge,\n          age: 13,\n          access: 'safe',\n        },\n        {\n          $type: ids.Default,\n          access: 'none',\n        },\n      ],\n    },\n    {\n      countryCode: 'AU',\n      regionCode: undefined,\n      rules: [\n        {\n          $type: ids.IfAccountNewerThan,\n          date: '2025-12-10T00:00:00Z',\n          access: 'none',\n        },\n        {\n          $type: ids.IfAssuredOverAge,\n          age: 18,\n          access: 'full',\n        },\n        {\n          $type: ids.IfAssuredOverAge,\n          age: 16,\n          access: 'safe',\n        },\n        {\n          $type: ids.IfDeclaredOverAge,\n          age: 16,\n          access: 'safe',\n        },\n        {\n          $type: ids.Default,\n          access: 'none',\n        },\n      ],\n    },\n    {\n      countryCode: 'US',\n      regionCode: 'SD',\n      rules: [\n        {\n          $type: ids.IfAssuredOverAge,\n          age: 18,\n          access: 'full',\n        },\n        {\n          $type: ids.IfDeclaredOverAge,\n          age: 13,\n          access: 'safe',\n        },\n        {\n          $type: ids.Default,\n          access: 'none',\n        },\n      ],\n    },\n    {\n      countryCode: 'US',\n      regionCode: 'WY',\n      rules: [\n        {\n          $type: ids.IfAssuredOverAge,\n          age: 18,\n          access: 'full',\n        },\n        {\n          $type: ids.IfDeclaredOverAge,\n          age: 13,\n          access: 'safe',\n        },\n        {\n          $type: ids.Default,\n          access: 'none',\n        },\n      ],\n    },\n    {\n      countryCode: 'US',\n      regionCode: 'OH',\n      rules: [\n        {\n          $type: ids.IfAssuredOverAge,\n          age: 18,\n          access: 'full',\n        },\n        {\n          $type: ids.IfDeclaredOverAge,\n          age: 13,\n          access: 'safe',\n        },\n        {\n          $type: ids.Default,\n          access: 'none',\n        },\n      ],\n    },\n    {\n      countryCode: 'US',\n      regionCode: 'MS',\n      rules: [\n        {\n          $type: ids.IfAssuredOverAge,\n          age: 18,\n          access: 'full',\n        },\n        {\n          $type: ids.Default,\n          access: 'none',\n        },\n      ],\n    },\n  ],\n}\n"]}

package/dist/api/age-assurance/index.d.ts

@@ -0,0 +1,4 @@
+import { Router } from 'express';
+import { AppContext } from '../../context';
+export declare const createRouter: (ctx: AppContext) => Router;
+//# sourceMappingURL=index.d.ts.map

package/dist/api/age-assurance/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/api/age-assurance/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAO,MAAM,SAAS,CAAA;AACrC,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAA;AAM1C,eAAO,MAAM,YAAY,GAAI,KAAK,UAAU,KAAG,MAkB9C,CAAA"}

package/dist/api/age-assurance/index.js

@@ -0,0 +1,24 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createRouter = void 0;
+const express_1 = require("express");
+const webhook_1 = require("../kws/webhook");
+const kws_age_verified_1 = require("./redirects/kws-age-verified");
+const kws_age_verified_2 = require("./webhooks/kws-age-verified");
+const createRouter = (ctx) => {
+    assertAppContextWithAgeAssuranceClient(ctx);
+    const router = (0, express_1.Router)();
+    router.use((0, express_1.raw)({ type: 'application/json' }));
+    router.post('/age-assurance/webhooks/kws-age-verified', (0, webhook_1.webhookAuth)({
+        secret: ctx.cfg.kws.ageVerifiedWebhookSecret,
+    }), (0, kws_age_verified_2.handler)(ctx));
+    router.get('/age-assurance/redirects/kws-age-verified', (0, kws_age_verified_1.handler)(ctx));
+    return router;
+};
+exports.createRouter = createRouter;
+const assertAppContextWithAgeAssuranceClient = (ctx) => {
+    if (!ctx.kwsClient) {
+        throw new Error('Tried to set up KWS router without kwsClient configured.');
+    }
+};
+//# sourceMappingURL=index.js.map

package/dist/api/age-assurance/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/api/age-assurance/index.ts"],"names":[],"mappings":";;;AAAA,qCAAqC;AAErC,4CAA4C;AAC5C,mEAA6E;AAE7E,kEAA2E;AAEpE,MAAM,YAAY,GAAG,CAAC,GAAe,EAAU,EAAE;IACtD,sCAAsC,CAAC,GAAG,CAAC,CAAA;IAE3C,MAAM,MAAM,GAAG,IAAA,gBAAM,GAAE,CAAA;IACvB,MAAM,CAAC,GAAG,CAAC,IAAA,aAAG,EAAC,EAAE,IAAI,EAAE,kBAAkB,EAAE,CAAC,CAAC,CAAA;IAC7C,MAAM,CAAC,IAAI,CACT,0CAA0C,EAC1C,IAAA,qBAAW,EAAC;QACV,MAAM,EAAE,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,wBAAwB;KAC7C,CAAC,EACF,IAAA,0BAAkB,EAAC,GAAG,CAAC,CACxB,CAAA;IACD,MAAM,CAAC,GAAG,CACR,2CAA2C,EAC3C,IAAA,0BAAmB,EAAC,GAAG,CAAC,CACzB,CAAA;IAED,OAAO,MAAM,CAAA;AACf,CAAC,CAAA;AAlBY,QAAA,YAAY,gBAkBxB;AAED,MAAM,sCAAsC,GAEL,CAAC,GAAe,EAAE,EAAE;IACzD,IAAI,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAA;IAC7E,CAAC;AACH,CAAC,CAAA","sourcesContent":["import { Router, raw } from 'express'\nimport { AppContext } from '../../context'\nimport { webhookAuth } from '../kws/webhook'\nimport { handler as ageVerifiedRedirect } from './redirects/kws-age-verified'\nimport { AppContextWithAA } from './types'\nimport { handler as ageVerifiedWebhook } from './webhooks/kws-age-verified'\n\nexport const createRouter = (ctx: AppContext): Router => {\n  assertAppContextWithAgeAssuranceClient(ctx)\n\n  const router = Router()\n  router.use(raw({ type: 'application/json' }))\n  router.post(\n    '/age-assurance/webhooks/kws-age-verified',\n    webhookAuth({\n      secret: ctx.cfg.kws.ageVerifiedWebhookSecret,\n    }),\n    ageVerifiedWebhook(ctx),\n  )\n  router.get(\n    '/age-assurance/redirects/kws-age-verified',\n    ageVerifiedRedirect(ctx),\n  )\n\n  return router\n}\n\nconst assertAppContextWithAgeAssuranceClient: (\n  ctx: AppContext,\n) => asserts ctx is AppContextWithAA = (ctx: AppContext) => {\n  if (!ctx.kwsClient) {\n    throw new Error('Tried to set up KWS router without kwsClient configured.')\n  }\n}\n"]}

package/dist/api/age-assurance/kws/age-verified.d.ts

@@ -0,0 +1,109 @@
+import { z } from 'zod';
+/**
+ * Schema for KWS the `status` object on `age-verified` payloads.
+ */
+export declare const KWSAgeVerifiedStatusSchema: z.ZodObject<{
+    verified: z.ZodBoolean;
+    verifiedMinimumAge: z.ZodNumber;
+    transactionId: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    verified: boolean;
+    verifiedMinimumAge: number;
+    transactionId?: string | undefined;
+}, {
+    verified: boolean;
+    verifiedMinimumAge: number;
+    transactionId?: string | undefined;
+}>;
+/**
+ * The KWS `status` object on `age-verified` payloads.
+ */
+export type KWSAgeVerifiedStatus = z.infer<typeof KWSAgeVerifiedStatusSchema>;
+export declare function serializeKWSAgeVerifiedStatus(status: KWSAgeVerifiedStatus): string;
+/**
+ * Parse KWS `age-verified` status object.
+ */
+export declare const parseKWSAgeVerifiedStatus: (raw: string) => KWSAgeVerifiedStatus;
+/**
+ * Schema for KWS `age-verified` webhooks.
+ *
+ * Note: we don't use `.strict()` here so that we avoid breaking if KWS adds
+ * fields, and some fields below are not strictly typed since we're not using
+ * them.
+ */
+export declare const KWSAgeVerifiedWebhookSchema: z.ZodObject<{
+    name: z.ZodString;
+    time: z.ZodString;
+    orgId: z.ZodOptional<z.ZodString>;
+    productId: z.ZodOptional<z.ZodString>;
+    payload: z.ZodObject<{
+        email: z.ZodString;
+        externalPayload: z.ZodString;
+        status: z.ZodObject<{
+            verified: z.ZodBoolean;
+            verifiedMinimumAge: z.ZodNumber;
+            transactionId: z.ZodOptional<z.ZodString>;
+        }, "strip", z.ZodTypeAny, {
+            verified: boolean;
+            verifiedMinimumAge: number;
+            transactionId?: string | undefined;
+        }, {
+            verified: boolean;
+            verifiedMinimumAge: number;
+            transactionId?: string | undefined;
+        }>;
+    }, "strip", z.ZodTypeAny, {
+        status: {
+            verified: boolean;
+            verifiedMinimumAge: number;
+            transactionId?: string | undefined;
+        };
+        email: string;
+        externalPayload: string;
+    }, {
+        status: {
+            verified: boolean;
+            verifiedMinimumAge: number;
+            transactionId?: string | undefined;
+        };
+        email: string;
+        externalPayload: string;
+    }>;
+}, "strip", z.ZodTypeAny, {
+    time: string;
+    name: string;
+    payload: {
+        status: {
+            verified: boolean;
+            verifiedMinimumAge: number;
+            transactionId?: string | undefined;
+        };
+        email: string;
+        externalPayload: string;
+    };
+    orgId?: string | undefined;
+    productId?: string | undefined;
+}, {
+    time: string;
+    name: string;
+    payload: {
+        status: {
+            verified: boolean;
+            verifiedMinimumAge: number;
+            transactionId?: string | undefined;
+        };
+        email: string;
+        externalPayload: string;
+    };
+    orgId?: string | undefined;
+    productId?: string | undefined;
+}>;
+/**
+ * The raw KWS `age-verified` webhook body
+ */
+export type KWSWebhookAgeVerified = z.infer<typeof KWSAgeVerifiedWebhookSchema>;
+/**
+ * Parse KWS `age-verified` webhook body and its external payload.
+ */
+export declare const parseKWSAgeVerifiedWebhook: (raw: string) => KWSWebhookAgeVerified;
+//# sourceMappingURL=age-verified.d.ts.map

package/dist/api/age-assurance/kws/age-verified.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"age-verified.d.ts","sourceRoot":"","sources":["../../../../src/api/age-assurance/kws/age-verified.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AAEvB;;GAEG;AACH,eAAO,MAAM,0BAA0B;;;;;;;;;;;;EAIrC,CAAA;AAEF;;GAEG;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAA;AAE7E,wBAAgB,6BAA6B,CAC3C,MAAM,EAAE,oBAAoB,GAC3B,MAAM,CAER;AAED;;GAEG;AACH,eAAO,MAAM,yBAAyB,GACpC,KAAK,MAAM,KACV,oBASF,CAAA;AAED;;;;;;GAMG;AACH,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAUtC,CAAA;AAEF;;GAEG;AACH,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,2BAA2B,CAAC,CAAA;AAE/E;;GAEG;AACH,eAAO,MAAM,0BAA0B,GACrC,KAAK,MAAM,KACV,qBAOF,CAAA"}

package/dist/api/age-assurance/kws/age-verified.js

@@ -0,0 +1,63 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.parseKWSAgeVerifiedWebhook = exports.KWSAgeVerifiedWebhookSchema = exports.parseKWSAgeVerifiedStatus = exports.KWSAgeVerifiedStatusSchema = void 0;
+exports.serializeKWSAgeVerifiedStatus = serializeKWSAgeVerifiedStatus;
+const zod_1 = require("zod");
+/**
+ * Schema for KWS the `status` object on `age-verified` payloads.
+ */
+exports.KWSAgeVerifiedStatusSchema = zod_1.z.object({
+    verified: zod_1.z.boolean(),
+    verifiedMinimumAge: zod_1.z.number(),
+    transactionId: zod_1.z.string().optional(),
+});
+function serializeKWSAgeVerifiedStatus(status) {
+    return JSON.stringify(exports.KWSAgeVerifiedStatusSchema.parse(status));
+}
+/**
+ * Parse KWS `age-verified` status object.
+ */
+const parseKWSAgeVerifiedStatus = (raw) => {
+    try {
+        const value = JSON.parse(raw);
+        return exports.KWSAgeVerifiedStatusSchema.parse(value);
+    }
+    catch (err) {
+        throw new Error(`Invalid KWS age-verified status: ${raw}`, {
+            cause: err,
+        });
+    }
+};
+exports.parseKWSAgeVerifiedStatus = parseKWSAgeVerifiedStatus;
+/**
+ * Schema for KWS `age-verified` webhooks.
+ *
+ * Note: we don't use `.strict()` here so that we avoid breaking if KWS adds
+ * fields, and some fields below are not strictly typed since we're not using
+ * them.
+ */
+exports.KWSAgeVerifiedWebhookSchema = zod_1.z.object({
+    name: zod_1.z.string(),
+    time: zod_1.z.string(), // ISO8601 timestamp, but don't validate here
+    orgId: zod_1.z.string().uuid().optional(),
+    productId: zod_1.z.string().uuid().optional(),
+    payload: zod_1.z.object({
+        email: zod_1.z.string(), // no need to validate here
+        externalPayload: zod_1.z.string(),
+        status: exports.KWSAgeVerifiedStatusSchema,
+    }),
+});
+/**
+ * Parse KWS `age-verified` webhook body and its external payload.
+ */
+const parseKWSAgeVerifiedWebhook = (raw) => {
+    try {
+        const value = JSON.parse(raw);
+        return exports.KWSAgeVerifiedWebhookSchema.parse(value);
+    }
+    catch (err) {
+        throw new Error(`Invalid webhook body: ${raw}`, { cause: err });
+    }
+};
+exports.parseKWSAgeVerifiedWebhook = parseKWSAgeVerifiedWebhook;
+//# sourceMappingURL=age-verified.js.map

package/dist/api/age-assurance/kws/age-verified.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"age-verified.js","sourceRoot":"","sources":["../../../../src/api/age-assurance/kws/age-verified.ts"],"names":[],"mappings":";;;AAgBA,sEAIC;AApBD,6BAAuB;AAEvB;;GAEG;AACU,QAAA,0BAA0B,GAAG,OAAC,CAAC,MAAM,CAAC;IACjD,QAAQ,EAAE,OAAC,CAAC,OAAO,EAAE;IACrB,kBAAkB,EAAE,OAAC,CAAC,MAAM,EAAE;IAC9B,aAAa,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACrC,CAAC,CAAA;AAOF,SAAgB,6BAA6B,CAC3C,MAA4B;IAE5B,OAAO,IAAI,CAAC,SAAS,CAAC,kCAA0B,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAA;AACjE,CAAC;AAED;;GAEG;AACI,MAAM,yBAAyB,GAAG,CACvC,GAAW,EACW,EAAE;IACxB,IAAI,CAAC;QACH,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;QAC7B,OAAO,kCAA0B,CAAC,KAAK,CAAC,KAAK,CAAC,CAAA;IAChD,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CAAC,oCAAoC,GAAG,EAAE,EAAE;YACzD,KAAK,EAAE,GAAG;SACX,CAAC,CAAA;IACJ,CAAC;AACH,CAAC,CAAA;AAXY,QAAA,yBAAyB,6BAWrC;AAED;;;;;;GAMG;AACU,QAAA,2BAA2B,GAAG,OAAC,CAAC,MAAM,CAAC;IAClD,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE;IAChB,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,EAAE,6CAA6C;IAC/D,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC,QAAQ,EAAE;IACnC,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC,QAAQ,EAAE;IACvC,OAAO,EAAE,OAAC,CAAC,MAAM,CAAC;QAChB,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,EAAE,2BAA2B;QAC9C,eAAe,EAAE,OAAC,CAAC,MAAM,EAAE;QAC3B,MAAM,EAAE,kCAA0B;KACnC,CAAC;CACH,CAAC,CAAA;AAOF;;GAEG;AACI,MAAM,0BAA0B,GAAG,CACxC,GAAW,EACY,EAAE;IACzB,IAAI,CAAC;QACH,MAAM,KAAK,GAAY,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;QACtC,OAAO,mCAA2B,CAAC,KAAK,CAAC,KAAK,CAAC,CAAA;IACjD,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CAAC,yBAAyB,GAAG,EAAE,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAA;IACjE,CAAC;AACH,CAAC,CAAA;AATY,QAAA,0BAA0B,8BAStC","sourcesContent":["import { z } from 'zod'\n\n/**\n * Schema for KWS the `status` object on `age-verified` payloads.\n */\nexport const KWSAgeVerifiedStatusSchema = z.object({\n  verified: z.boolean(),\n  verifiedMinimumAge: z.number(),\n  transactionId: z.string().optional(),\n})\n\n/**\n * The KWS `status` object on `age-verified` payloads.\n */\nexport type KWSAgeVerifiedStatus = z.infer<typeof KWSAgeVerifiedStatusSchema>\n\nexport function serializeKWSAgeVerifiedStatus(\n  status: KWSAgeVerifiedStatus,\n): string {\n  return JSON.stringify(KWSAgeVerifiedStatusSchema.parse(status))\n}\n\n/**\n * Parse KWS `age-verified` status object.\n */\nexport const parseKWSAgeVerifiedStatus = (\n  raw: string,\n): KWSAgeVerifiedStatus => {\n  try {\n    const value = JSON.parse(raw)\n    return KWSAgeVerifiedStatusSchema.parse(value)\n  } catch (err) {\n    throw new Error(`Invalid KWS age-verified status: ${raw}`, {\n      cause: err,\n    })\n  }\n}\n\n/**\n * Schema for KWS `age-verified` webhooks.\n *\n * Note: we don't use `.strict()` here so that we avoid breaking if KWS adds\n * fields, and some fields below are not strictly typed since we're not using\n * them.\n */\nexport const KWSAgeVerifiedWebhookSchema = z.object({\n  name: z.string(),\n  time: z.string(), // ISO8601 timestamp, but don't validate here\n  orgId: z.string().uuid().optional(),\n  productId: z.string().uuid().optional(),\n  payload: z.object({\n    email: z.string(), // no need to validate here\n    externalPayload: z.string(),\n    status: KWSAgeVerifiedStatusSchema,\n  }),\n})\n\n/**\n * The raw KWS `age-verified` webhook body\n */\nexport type KWSWebhookAgeVerified = z.infer<typeof KWSAgeVerifiedWebhookSchema>\n\n/**\n * Parse KWS `age-verified` webhook body and its external payload.\n */\nexport const parseKWSAgeVerifiedWebhook = (\n  raw: string,\n): KWSWebhookAgeVerified => {\n  try {\n    const value: unknown = JSON.parse(raw)\n    return KWSAgeVerifiedWebhookSchema.parse(value)\n  } catch (err) {\n    throw new Error(`Invalid webhook body: ${raw}`, { cause: err })\n  }\n}\n"]}

package/dist/api/age-assurance/kws/const.d.ts

@@ -0,0 +1,13 @@
+/**
+ * Supported languages for KWS Adult Verification. This list comes from KWS's
+ * Age Verification Developer Guide PDF doc.
+ */
+export declare const KWS_SUPPORTED_LANGUAGES: Set<string>;
+/**
+ * Regions where our "version 2" using the `age-verified` KWS flow is
+ * available. In these regions, we'll use a different KWS flow from the
+ * existing `adult-verified` flow, pass along a different external payload, and
+ * handle webhooks/redirects differently in the appview.
+ */
+export declare const KWS_V2_COUNTRIES: Set<string>;
+//# sourceMappingURL=const.d.ts.map

package/dist/api/age-assurance/kws/const.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"const.d.ts","sourceRoot":"","sources":["../../../../src/api/age-assurance/kws/const.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,eAAO,MAAM,uBAAuB,aAoBlC,CAAA;AAEF;;;;;GAKG;AACH,eAAO,MAAM,gBAAgB,aAAkB,CAAA"}

package/dist/api/age-assurance/kws/const.js

@@ -0,0 +1,36 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.KWS_V2_COUNTRIES = exports.KWS_SUPPORTED_LANGUAGES = void 0;
+/**
+ * Supported languages for KWS Adult Verification. This list comes from KWS's
+ * Age Verification Developer Guide PDF doc.
+ */
+exports.KWS_SUPPORTED_LANGUAGES = new Set([
+    'en',
+    'ar',
+    'zh-Hans',
+    'nl',
+    'tl',
+    'fr',
+    'de',
+    'id',
+    'it',
+    'ja',
+    'ko',
+    'pl',
+    'pt-BR',
+    'pt',
+    'ru',
+    'es',
+    'th',
+    'tr',
+    'vi',
+]);
+/**
+ * Regions where our "version 2" using the `age-verified` KWS flow is
+ * available. In these regions, we'll use a different KWS flow from the
+ * existing `adult-verified` flow, pass along a different external payload, and
+ * handle webhooks/redirects differently in the appview.
+ */
+exports.KWS_V2_COUNTRIES = new Set(['AU']);
+//# sourceMappingURL=const.js.map

package/dist/api/age-assurance/kws/const.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"const.js","sourceRoot":"","sources":["../../../../src/api/age-assurance/kws/const.ts"],"names":[],"mappings":";;;AAAA;;;GAGG;AACU,QAAA,uBAAuB,GAAG,IAAI,GAAG,CAAC;IAC7C,IAAI;IACJ,IAAI;IACJ,SAAS;IACT,IAAI;IACJ,IAAI;IACJ,IAAI;IACJ,IAAI;IACJ,IAAI;IACJ,IAAI;IACJ,IAAI;IACJ,IAAI;IACJ,IAAI;IACJ,OAAO;IACP,IAAI;IACJ,IAAI;IACJ,IAAI;IACJ,IAAI;IACJ,IAAI;IACJ,IAAI;CACL,CAAC,CAAA;AAEF;;;;;GAKG;AACU,QAAA,gBAAgB,GAAG,IAAI,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,CAAA","sourcesContent":["/**\n * Supported languages for KWS Adult Verification. This list comes from KWS's\n * Age Verification Developer Guide PDF doc.\n */\nexport const KWS_SUPPORTED_LANGUAGES = new Set([\n  'en',\n  'ar',\n  'zh-Hans',\n  'nl',\n  'tl',\n  'fr',\n  'de',\n  'id',\n  'it',\n  'ja',\n  'ko',\n  'pl',\n  'pt-BR',\n  'pt',\n  'ru',\n  'es',\n  'th',\n  'tr',\n  'vi',\n])\n\n/**\n * Regions where our \"version 2\" using the `age-verified` KWS flow is\n * available. In these regions, we'll use a different KWS flow from the\n * existing `adult-verified` flow, pass along a different external payload, and\n * handle webhooks/redirects differently in the appview.\n */\nexport const KWS_V2_COUNTRIES = new Set(['AU'])\n"]}

package/dist/api/age-assurance/kws/external-payload.d.ts

@@ -0,0 +1,75 @@
+import { z } from 'zod';
+export declare const KWS_EXTERNAL_PAYLOAD_CHAR_LIMIT = 250;
+/**
+ * Thrown when the provided external payload exceeds KWS's character limit.
+ *
+ * This is most commonly caused by DIDs that are too long, such as for
+ * `did:web` DIDs. But it's very rare, and the client has special handling for
+ * this case.
+ */
+export declare class KWSExternalPayloadTooLargeError extends Error {
+}
+export declare enum KWSExternalPayloadVersion {
+    V1 = "1",
+    V2 = "2"
+}
+export declare function parseKWSExternalPayloadVersion(raw: string): KWSExternalPayloadVersion;
+export type KWSExternalPayloadV1 = {
+    actorDid: string;
+    attemptId: string;
+};
+export declare const KWSExternalPayloadV1Schema: z.ZodObject<{
+    actorDid: z.ZodString;
+    attemptId: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    actorDid: string;
+    attemptId: string;
+}, {
+    actorDid: string;
+    attemptId: string;
+}>;
+export declare function parseKWSExternalPayloadV1(raw: string): KWSExternalPayloadV1;
+export declare function serializeKWSExternalPayloadV1(payload: KWSExternalPayloadV1): string;
+/**
+ * During our migration from v1 to v2 of the KWS external payload, we'll be
+ * sending v2 payloads on the v1 flow (the `adult-verified` email flow). We use
+ * this utility to parse either v1 or v2 payloads in that flow.
+ *
+ * Check for the `version` field on the output of this method to discriminate
+ * between the two types and handle them differently.
+ */
+export declare function parseKWSExternalPayloadV1WithV2Compat(raw: string): (KWSExternalPayloadV1 & {
+    version: KWSExternalPayloadVersion.V1;
+}) | KWSExternalPayloadV2;
+/***************************
+ * KWS External Payload V2 *
+ ***************************/
+export type KWSExternalPayloadV2 = {
+    version: KWSExternalPayloadVersion.V2;
+    attemptId: string;
+    actorDid: string;
+    countryCode: string;
+    regionCode?: string;
+};
+export declare const KWSExternalPayloadV2Schema: z.ZodObject<{
+    v: z.ZodString;
+    id: z.ZodString;
+    did: z.ZodString;
+    gc: z.ZodString;
+    gr: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    did: string;
+    id: string;
+    v: string;
+    gc: string;
+    gr?: string | undefined;
+}, {
+    did: string;
+    id: string;
+    v: string;
+    gc: string;
+    gr?: string | undefined;
+}>;
+export declare function serializeKWSExternalPayloadV2(payload: KWSExternalPayloadV2): string;
+export declare function parseKWSExternalPayloadV2(raw: string): KWSExternalPayloadV2;
+//# sourceMappingURL=external-payload.d.ts.map

package/dist/api/age-assurance/kws/external-payload.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"external-payload.d.ts","sourceRoot":"","sources":["../../../../src/api/age-assurance/kws/external-payload.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AAEvB,eAAO,MAAM,+BAA+B,MAAM,CAAA;AAElD;;;;;;GAMG;AACH,qBAAa,+BAAgC,SAAQ,KAAK;CAAG;AAE7D,oBAAY,yBAAyB;IACnC,EAAE,MAAM;IACR,EAAE,MAAM;CACT;AAED,wBAAgB,8BAA8B,CAAC,GAAG,EAAE,MAAM,6BAOzD;AAED,MAAM,MAAM,oBAAoB,GAAG;IACjC,QAAQ,EAAE,MAAM,CAAA;IAChB,SAAS,EAAE,MAAM,CAAA;CAClB,CAAA;AAED,eAAO,MAAM,0BAA0B;;;;;;;;;EAGrC,CAAA;AAEF,wBAAgB,yBAAyB,CAAC,GAAG,EAAE,MAAM,GAAG,oBAAoB,CAS3E;AAED,wBAAgB,6BAA6B,CAC3C,OAAO,EAAE,oBAAoB,GAC5B,MAAM,CAMR;AAED;;;;;;;GAOG;AACH,wBAAgB,qCAAqC,CACnD,GAAG,EAAE,MAAM,GAET,CAAC,oBAAoB,GAAG;IAAE,OAAO,EAAE,yBAAyB,CAAC,EAAE,CAAA;CAAE,CAAC,GAClE,oBAAoB,CAYvB;AAED;;6BAE6B;AAE7B,MAAM,MAAM,oBAAoB,GAAG;IACjC,OAAO,EAAE,yBAAyB,CAAC,EAAE,CAAA;IACrC,SAAS,EAAE,MAAM,CAAA;IACjB,QAAQ,EAAE,MAAM,CAAA;IAChB,WAAW,EAAE,MAAM,CAAA;IACnB,UAAU,CAAC,EAAE,MAAM,CAAA;CACpB,CAAA;AAED,eAAO,MAAM,0BAA0B;;;;;;;;;;;;;;;;;;EAMrC,CAAA;AAEF,wBAAgB,6BAA6B,CAC3C,OAAO,EAAE,oBAAoB,GAC5B,MAAM,CAuBR;AAED,wBAAgB,yBAAyB,CAAC,GAAG,EAAE,MAAM,GAAG,oBAAoB,CAiB3E"}