@bcts/xid 1.0.0-alpha.16 → 1.0.0-alpha.18

package/dist/index.cjs

@@ -2,7 +2,6 @@ let _bcts_components = require("@bcts/components");
 let _bcts_known_values = require("@bcts/known-values");
 let _bcts_envelope = require("@bcts/envelope");
 let _bcts_provenance_mark = require("@bcts/provenance-mark");
-let _bcts_dcbor = require("@bcts/dcbor");
 
 //#region src/error.ts
 /**
@@ -11,37 +10,37 @@ let _bcts_dcbor = require("@bcts/dcbor");
 * Error types returned when operating on XID Documents.
 * Ported from bc-xid-rust/src/error.rs
 */
-let XIDErrorCode = /* @__PURE__ */ function(XIDErrorCode$1) {
-	XIDErrorCode$1["DUPLICATE"] = "DUPLICATE";
-	XIDErrorCode$1["NOT_FOUND"] = "NOT_FOUND";
-	XIDErrorCode$1["STILL_REFERENCED"] = "STILL_REFERENCED";
-	XIDErrorCode$1["EMPTY_VALUE"] = "EMPTY_VALUE";
-	XIDErrorCode$1["UNKNOWN_PRIVILEGE"] = "UNKNOWN_PRIVILEGE";
-	XIDErrorCode$1["INVALID_XID"] = "INVALID_XID";
-	XIDErrorCode$1["MISSING_INCEPTION_KEY"] = "MISSING_INCEPTION_KEY";
-	XIDErrorCode$1["INVALID_RESOLUTION_METHOD"] = "INVALID_RESOLUTION_METHOD";
-	XIDErrorCode$1["MULTIPLE_PROVENANCE_MARKS"] = "MULTIPLE_PROVENANCE_MARKS";
-	XIDErrorCode$1["UNEXPECTED_PREDICATE"] = "UNEXPECTED_PREDICATE";
-	XIDErrorCode$1["UNEXPECTED_NESTED_ASSERTIONS"] = "UNEXPECTED_NESTED_ASSERTIONS";
-	XIDErrorCode$1["NO_PERMISSIONS"] = "NO_PERMISSIONS";
-	XIDErrorCode$1["NO_REFERENCES"] = "NO_REFERENCES";
-	XIDErrorCode$1["UNKNOWN_KEY_REFERENCE"] = "UNKNOWN_KEY_REFERENCE";
-	XIDErrorCode$1["UNKNOWN_DELEGATE_REFERENCE"] = "UNKNOWN_DELEGATE_REFERENCE";
-	XIDErrorCode$1["KEY_NOT_FOUND_IN_DOCUMENT"] = "KEY_NOT_FOUND_IN_DOCUMENT";
-	XIDErrorCode$1["DELEGATE_NOT_FOUND_IN_DOCUMENT"] = "DELEGATE_NOT_FOUND_IN_DOCUMENT";
-	XIDErrorCode$1["INVALID_PASSWORD"] = "INVALID_PASSWORD";
-	XIDErrorCode$1["ENVELOPE_NOT_SIGNED"] = "ENVELOPE_NOT_SIGNED";
-	XIDErrorCode$1["SIGNATURE_VERIFICATION_FAILED"] = "SIGNATURE_VERIFICATION_FAILED";
-	XIDErrorCode$1["NO_PROVENANCE_MARK"] = "NO_PROVENANCE_MARK";
-	XIDErrorCode$1["GENERATOR_CONFLICT"] = "GENERATOR_CONFLICT";
-	XIDErrorCode$1["NO_GENERATOR"] = "NO_GENERATOR";
-	XIDErrorCode$1["CHAIN_ID_MISMATCH"] = "CHAIN_ID_MISMATCH";
-	XIDErrorCode$1["SEQUENCE_MISMATCH"] = "SEQUENCE_MISMATCH";
-	XIDErrorCode$1["ENVELOPE_PARSING"] = "ENVELOPE_PARSING";
-	XIDErrorCode$1["COMPONENT"] = "COMPONENT";
-	XIDErrorCode$1["CBOR"] = "CBOR";
-	XIDErrorCode$1["PROVENANCE_MARK"] = "PROVENANCE_MARK";
-	return XIDErrorCode$1;
+let XIDErrorCode = /* @__PURE__ */ function(XIDErrorCode) {
+	XIDErrorCode["DUPLICATE"] = "DUPLICATE";
+	XIDErrorCode["NOT_FOUND"] = "NOT_FOUND";
+	XIDErrorCode["STILL_REFERENCED"] = "STILL_REFERENCED";
+	XIDErrorCode["EMPTY_VALUE"] = "EMPTY_VALUE";
+	XIDErrorCode["UNKNOWN_PRIVILEGE"] = "UNKNOWN_PRIVILEGE";
+	XIDErrorCode["INVALID_XID"] = "INVALID_XID";
+	XIDErrorCode["MISSING_INCEPTION_KEY"] = "MISSING_INCEPTION_KEY";
+	XIDErrorCode["INVALID_RESOLUTION_METHOD"] = "INVALID_RESOLUTION_METHOD";
+	XIDErrorCode["MULTIPLE_PROVENANCE_MARKS"] = "MULTIPLE_PROVENANCE_MARKS";
+	XIDErrorCode["UNEXPECTED_PREDICATE"] = "UNEXPECTED_PREDICATE";
+	XIDErrorCode["UNEXPECTED_NESTED_ASSERTIONS"] = "UNEXPECTED_NESTED_ASSERTIONS";
+	XIDErrorCode["NO_PERMISSIONS"] = "NO_PERMISSIONS";
+	XIDErrorCode["NO_REFERENCES"] = "NO_REFERENCES";
+	XIDErrorCode["UNKNOWN_KEY_REFERENCE"] = "UNKNOWN_KEY_REFERENCE";
+	XIDErrorCode["UNKNOWN_DELEGATE_REFERENCE"] = "UNKNOWN_DELEGATE_REFERENCE";
+	XIDErrorCode["KEY_NOT_FOUND_IN_DOCUMENT"] = "KEY_NOT_FOUND_IN_DOCUMENT";
+	XIDErrorCode["DELEGATE_NOT_FOUND_IN_DOCUMENT"] = "DELEGATE_NOT_FOUND_IN_DOCUMENT";
+	XIDErrorCode["INVALID_PASSWORD"] = "INVALID_PASSWORD";
+	XIDErrorCode["ENVELOPE_NOT_SIGNED"] = "ENVELOPE_NOT_SIGNED";
+	XIDErrorCode["SIGNATURE_VERIFICATION_FAILED"] = "SIGNATURE_VERIFICATION_FAILED";
+	XIDErrorCode["NO_PROVENANCE_MARK"] = "NO_PROVENANCE_MARK";
+	XIDErrorCode["GENERATOR_CONFLICT"] = "GENERATOR_CONFLICT";
+	XIDErrorCode["NO_GENERATOR"] = "NO_GENERATOR";
+	XIDErrorCode["CHAIN_ID_MISMATCH"] = "CHAIN_ID_MISMATCH";
+	XIDErrorCode["SEQUENCE_MISMATCH"] = "SEQUENCE_MISMATCH";
+	XIDErrorCode["ENVELOPE_PARSING"] = "ENVELOPE_PARSING";
+	XIDErrorCode["COMPONENT"] = "COMPONENT";
+	XIDErrorCode["CBOR"] = "CBOR";
+	XIDErrorCode["PROVENANCE_MARK"] = "PROVENANCE_MARK";
+	return XIDErrorCode;
 }({});
 var XIDError = class XIDError extends Error {
 	code;
@@ -243,36 +242,36 @@ var XIDError = class XIDError extends Error {
 /**
 * Enum representing XID privileges.
 */
-let Privilege = /* @__PURE__ */ function(Privilege$1) {
+let Privilege = /* @__PURE__ */ function(Privilege) {
 	/** Allow all applicable XID operations */
-	Privilege$1["All"] = "All";
+	Privilege["All"] = "All";
 	/** Authenticate as the subject (e.g., log into services) */
-	Privilege$1["Auth"] = "Auth";
+	Privilege["Auth"] = "Auth";
 	/** Sign digital communications as the subject */
-	Privilege$1["Sign"] = "Sign";
+	Privilege["Sign"] = "Sign";
 	/** Encrypt messages from the subject */
-	Privilege$1["Encrypt"] = "Encrypt";
+	Privilege["Encrypt"] = "Encrypt";
 	/** Elide data under the subject's control */
-	Privilege$1["Elide"] = "Elide";
+	Privilege["Elide"] = "Elide";
 	/** Issue or revoke verifiable credentials on the subject's authority */
-	Privilege$1["Issue"] = "Issue";
+	Privilege["Issue"] = "Issue";
 	/** Access resources under the subject's control */
-	Privilege$1["Access"] = "Access";
+	Privilege["Access"] = "Access";
 	/** Delegate privileges to third parties */
-	Privilege$1["Delegate"] = "Delegate";
+	Privilege["Delegate"] = "Delegate";
 	/** Verify (update) the XID document */
-	Privilege$1["Verify"] = "Verify";
+	Privilege["Verify"] = "Verify";
 	/** Update service endpoints */
-	Privilege$1["Update"] = "Update";
+	Privilege["Update"] = "Update";
 	/** Remove the inception key from the XID document */
-	Privilege$1["Transfer"] = "Transfer";
+	Privilege["Transfer"] = "Transfer";
 	/** Add or remove other verifiers (rotate keys) */
-	Privilege$1["Elect"] = "Elect";
+	Privilege["Elect"] = "Elect";
 	/** Transition to a new provenance mark chain */
-	Privilege$1["Burn"] = "Burn";
+	Privilege["Burn"] = "Burn";
 	/** Revoke the XID entirely */
-	Privilege$1["Revoke"] = "Revoke";
-	return Privilege$1;
+	Privilege["Revoke"] = "Revoke";
+	return Privilege;
 }({});
 /**
 * Convert a Privilege to its corresponding KnownValue.
@@ -562,16 +561,16 @@ const kv$3 = (v) => v;
 /**
 * Options for handling private keys in envelopes.
 */
-let XIDPrivateKeyOptions = /* @__PURE__ */ function(XIDPrivateKeyOptions$1) {
+let XIDPrivateKeyOptions = /* @__PURE__ */ function(XIDPrivateKeyOptions) {
 	/** Omit the private key from the envelope (default). */
-	XIDPrivateKeyOptions$1["Omit"] = "Omit";
+	XIDPrivateKeyOptions["Omit"] = "Omit";
 	/** Include the private key in plaintext (with salt for decorrelation). */
-	XIDPrivateKeyOptions$1["Include"] = "Include";
+	XIDPrivateKeyOptions["Include"] = "Include";
 	/** Include the private key assertion but elide it (maintains digest tree). */
-	XIDPrivateKeyOptions$1["Elide"] = "Elide";
+	XIDPrivateKeyOptions["Elide"] = "Elide";
 	/** Include the private key encrypted with a password. */
-	XIDPrivateKeyOptions$1["Encrypt"] = "Encrypt";
-	return XIDPrivateKeyOptions$1;
+	XIDPrivateKeyOptions["Encrypt"] = "Encrypt";
+	return XIDPrivateKeyOptions;
 }({});
 /**
 * Represents a key in an XID document.
@@ -618,8 +617,8 @@ var Key = class Key {
 	* Create a new Key with private key base (derives keys from it).
 	*/
 	static newWithPrivateKeyBase(privateKeyBase) {
-		const privateKeys = privateKeyBase.ed25519PrivateKeys();
-		const publicKeys = privateKeyBase.ed25519PublicKeys();
+		const privateKeys = privateKeyBase.schnorrPrivateKeys();
+		const publicKeys = privateKeyBase.schnorrPublicKeys();
 		return Key.newWithPrivateKeys(privateKeys, publicKeys);
 	}
 	/**
@@ -660,6 +659,18 @@ var Key = class Key {
 		return this._publicKeys.reference();
 	}
 	/**
+	* Get the signing public key.
+	*/
+	signingPublicKey() {
+		return this._publicKeys.signingPublicKey();
+	}
+	/**
+	* Get the encapsulation public key.
+	*/
+	encapsulationPublicKey() {
+		return this._publicKeys.encapsulationPublicKey();
+	}
+	/**
 	* Verify a signature against a message.
 	*/
 	verify(signature, message) {
@@ -724,7 +735,9 @@ var Key = class Key {
 				}
 				case XIDPrivateKeyOptions.Encrypt:
 					if (typeof privateKeyOptions === "object") {
-						const encrypted = _bcts_envelope.Envelope.new(data.privateKeys.taggedCborData()).encryptSubject(privateKeyOptions.password);
+						const privateKeysEnvelope = _bcts_envelope.Envelope.new(data.privateKeys.taggedCborData());
+						const method = privateKeyOptions.method ?? (0, _bcts_components.defaultKeyDerivationMethod)();
+						const encrypted = privateKeysEnvelope.lockSubject(method, privateKeyOptions.password);
 						envelope = envelope.addAssertion(kv$3(_bcts_known_values.PRIVATE_KEY), encrypted);
 						envelope = envelope.addAssertion(kv$3(_bcts_known_values.SALT), salt.toData());
 					}
@@ -746,9 +759,15 @@ var Key = class Key {
 	*/
 	static tryFromEnvelope(envelope, password) {
 		const env = envelope;
-		const publicKeysData = (env.case().type === "node" ? env.subject() : env).asByteString();
-		if (publicKeysData === void 0) throw XIDError.component(/* @__PURE__ */ new Error("Could not extract public keys from envelope"));
-		const publicKeys = _bcts_components.PublicKeys.fromTaggedCborData(publicKeysData);
+		const subject = env.case().type === "node" ? env.subject() : env;
+		let publicKeys;
+		const publicKeysData = subject.asByteString();
+		if (publicKeysData !== void 0) publicKeys = _bcts_components.PublicKeys.fromTaggedCborData(publicKeysData);
+		else {
+			const leaf = subject.asLeaf?.();
+			if (leaf === void 0) throw XIDError.component(/* @__PURE__ */ new Error("Could not extract public keys from envelope"));
+			publicKeys = _bcts_components.PublicKeys.fromTaggedCbor(leaf);
+		}
 		let privateKeyData;
 		let salt = _bcts_components.Salt.random(32);
 		const saltAssertions = env.assertionsWithPredicate(_bcts_known_values.SALT);
@@ -764,8 +783,8 @@ var Key = class Key {
 			const assertionCase = privateKeyAssertions[0].case();
 			if (assertionCase.type === "assertion") {
 				const privateKeyObject = assertionCase.assertion.object();
-				if (privateKeyObject.case().type === "encrypted") if (password !== void 0) try {
-					const decryptedData = privateKeyObject.decryptSubject(password).asByteString();
+				if (privateKeyObject.isLockedWithPassword()) if (password !== void 0) try {
+					const decryptedData = privateKeyObject.unlockSubject(password).subject().asByteString();
 					if (decryptedData !== void 0) privateKeyData = {
 						data: {
 							type: "decrypted",
@@ -816,6 +835,27 @@ var Key = class Key {
 		return new Key(publicKeys, privateKeyData, nickname, endpoints, permissions);
 	}
 	/**
+	* Get the private key envelope, optionally decrypting it.
+	*
+	* Returns:
+	* - undefined if no private keys
+	* - The decrypted private key envelope if unencrypted
+	* - The decrypted envelope if encrypted + correct password
+	* - The encrypted envelope as-is if encrypted + no password
+	* - Throws on wrong password
+	*/
+	privateKeyEnvelope(password) {
+		if (this._privateKeyData === void 0) return;
+		const { data } = this._privateKeyData;
+		if (data.type === "decrypted") return _bcts_envelope.Envelope.new(data.privateKeys.taggedCborData());
+		if (password !== void 0) try {
+			return data.envelope.unlockSubject(new TextEncoder().encode(password));
+		} catch {
+			throw XIDError.invalidPassword();
+		}
+		return data.envelope;
+	}
+	/**
 	* Check equality with another Key.
 	*/
 	equals(other) {
@@ -955,6 +995,20 @@ var Service = class Service {
 		this.addDelegateReferenceHex(delegateReference.toHex());
 	}
 	/**
+	* Add a key by its public keys provider (convenience method).
+	* Matches Rust's `add_key(&mut self, key: &dyn PublicKeysProvider)`.
+	*/
+	addKey(keyProvider) {
+		this.addKeyReference(keyProvider.publicKeys().reference());
+	}
+	/**
+	* Add a delegate by its XID provider (convenience method).
+	* Matches Rust's `add_delegate(&mut self, delegate: &dyn XIDProvider)`.
+	*/
+	addDelegate(xidProvider) {
+		this.addDelegateReference(_bcts_components.Reference.hash(xidProvider.xid().toData()));
+	}
+	/**
 	* Get the name.
 	*/
 	name() {
@@ -1171,19 +1225,21 @@ var Delegate = class Delegate {
 * Ported from bc-xid-rust/src/provenance.rs
 */
 const kv$1 = (v) => v;
+const encodeGeneratorJSON = (json) => new TextEncoder().encode(JSON.stringify(json));
+const decodeGeneratorJSON = (data) => JSON.parse(new TextDecoder().decode(data));
 /**
 * Options for handling generators in envelopes.
 */
-let XIDGeneratorOptions = /* @__PURE__ */ function(XIDGeneratorOptions$1) {
+let XIDGeneratorOptions = /* @__PURE__ */ function(XIDGeneratorOptions) {
 	/** Omit the generator from the envelope (default). */
-	XIDGeneratorOptions$1["Omit"] = "Omit";
+	XIDGeneratorOptions["Omit"] = "Omit";
 	/** Include the generator in plaintext (with salt for decorrelation). */
-	XIDGeneratorOptions$1["Include"] = "Include";
+	XIDGeneratorOptions["Include"] = "Include";
 	/** Include the generator assertion but elide it (maintains digest tree). */
-	XIDGeneratorOptions$1["Elide"] = "Elide";
+	XIDGeneratorOptions["Elide"] = "Elide";
 	/** Include the generator encrypted with a password. */
-	XIDGeneratorOptions$1["Encrypt"] = "Encrypt";
-	return XIDGeneratorOptions$1;
+	XIDGeneratorOptions["Encrypt"] = "Encrypt";
+	return XIDGeneratorOptions;
 }({});
 /**
 * Represents provenance information in an XID document.
@@ -1281,9 +1337,9 @@ var Provenance = class Provenance {
 		if (password !== void 0) {
 			const encryptedEnvelope = this._generator.data.envelope;
 			try {
-				const generatorData = encryptedEnvelope.decryptSubject(password).tryUnwrap().asByteString();
+				const generatorData = encryptedEnvelope.unlockSubject(password).subject().tryUnwrap().asByteString();
 				if (generatorData !== void 0) {
-					const json = (0, _bcts_dcbor.decodeCbor)(generatorData);
+					const json = decodeGeneratorJSON(generatorData);
 					const generator = _bcts_provenance_mark.ProvenanceMarkGenerator.fromJSON(json);
 					this._generator = {
 						data: {
@@ -1301,6 +1357,30 @@ var Provenance = class Provenance {
 		throw XIDError.invalidPassword();
 	}
 	/**
+	* Get the generator envelope, optionally decrypting it.
+	*
+	* Returns:
+	* - undefined if no generator
+	* - An envelope containing the generator if unencrypted
+	* - The decrypted envelope if encrypted + correct password
+	* - The encrypted envelope as-is if encrypted + no password
+	* - Throws on wrong password
+	*/
+	generatorEnvelope(password) {
+		if (this._generator === void 0) return;
+		const { data } = this._generator;
+		if (data.type === "decrypted") {
+			const generatorBytes = encodeGeneratorJSON(data.generator.toJSON());
+			return _bcts_envelope.Envelope.new(generatorBytes);
+		}
+		if (password !== void 0) try {
+			return data.envelope.unlockSubject(new TextEncoder().encode(password)).subject().tryUnwrap();
+		} catch {
+			throw XIDError.invalidPassword();
+		}
+		return data.envelope;
+	}
+	/**
 	* Convert to envelope with specified options.
 	*/
 	intoEnvelopeOpt(generatorOptions = XIDGeneratorOptions.Omit) {
@@ -1312,13 +1392,13 @@ var Provenance = class Provenance {
 				envelope = envelope.addAssertion(kv$1(_bcts_known_values.SALT), salt.toData());
 			} else if (data.type === "decrypted") switch (typeof generatorOptions === "object" ? generatorOptions.type : generatorOptions) {
 				case XIDGeneratorOptions.Include: {
-					const generatorBytes = (0, _bcts_dcbor.cborData)(data.generator.toJSON());
+					const generatorBytes = encodeGeneratorJSON(data.generator.toJSON());
 					envelope = envelope.addAssertion(kv$1(_bcts_known_values.PROVENANCE_GENERATOR), generatorBytes);
 					envelope = envelope.addAssertion(kv$1(_bcts_known_values.SALT), salt.toData());
 					break;
 				}
 				case XIDGeneratorOptions.Elide: {
-					const generatorBytes2 = (0, _bcts_dcbor.cborData)(data.generator.toJSON());
+					const generatorBytes2 = encodeGeneratorJSON(data.generator.toJSON());
 					const elidedAssertion = _bcts_envelope.Envelope.newAssertion(kv$1(_bcts_known_values.PROVENANCE_GENERATOR), generatorBytes2).elide();
 					envelope = envelope.addAssertionEnvelope(elidedAssertion);
 					envelope = envelope.addAssertion(kv$1(_bcts_known_values.SALT), salt.toData());
@@ -1326,8 +1406,10 @@ var Provenance = class Provenance {
 				}
 				case XIDGeneratorOptions.Encrypt:
 					if (typeof generatorOptions === "object") {
-						const generatorBytes3 = (0, _bcts_dcbor.cborData)(data.generator.toJSON());
-						const encrypted = _bcts_envelope.Envelope.new(generatorBytes3).wrap().encryptSubject(generatorOptions.password);
+						const generatorBytes3 = encodeGeneratorJSON(data.generator.toJSON());
+						const wrapped = _bcts_envelope.Envelope.new(generatorBytes3).wrap();
+						const method = generatorOptions.method ?? (0, _bcts_components.defaultKeyDerivationMethod)();
+						const encrypted = wrapped.lockSubject(method, generatorOptions.password);
 						envelope = envelope.addAssertion(kv$1(_bcts_known_values.PROVENANCE_GENERATOR), encrypted);
 						envelope = envelope.addAssertion(kv$1(_bcts_known_values.SALT), salt.toData());
 					}
@@ -1364,10 +1446,10 @@ var Provenance = class Provenance {
 			const assertionCase = generatorAssertions[0].case();
 			if (assertionCase.type === "assertion") {
 				const generatorObject = assertionCase.assertion.object();
-				if (generatorObject.case().type === "encrypted") if (password !== void 0) try {
-					const generatorData = generatorObject.decryptSubject(password).tryUnwrap().asByteString();
+				if (generatorObject.isLockedWithPassword()) if (password !== void 0) try {
+					const generatorData = generatorObject.unlockSubject(password).subject().tryUnwrap().asByteString();
 					if (generatorData !== void 0) {
-						const json = (0, _bcts_dcbor.decodeCbor)(generatorData);
+						const json = decodeGeneratorJSON(generatorData);
 						generator = {
 							data: {
 								type: "decrypted",
@@ -1395,7 +1477,7 @@ var Provenance = class Provenance {
 				else {
 					const generatorData = generatorObject.asByteString();
 					if (generatorData !== void 0) {
-						const json2 = (0, _bcts_dcbor.decodeCbor)(generatorData);
+						const json2 = decodeGeneratorJSON(generatorData);
 						generator = {
 							data: {
 								type: "decrypted",
@@ -1442,15 +1524,17 @@ const DELEGATE_RAW = _bcts_known_values.DELEGATE.value();
 const SERVICE_RAW = _bcts_known_values.SERVICE.value();
 const PROVENANCE_RAW = _bcts_known_values.PROVENANCE.value();
 const DEREFERENCE_VIA_RAW = _bcts_known_values.DEREFERENCE_VIA.value();
+const ATTACHMENT_RAW_VALUE = Number(_bcts_known_values.ATTACHMENT_RAW);
+const EDGE_RAW_VALUE = Number(_bcts_known_values.EDGE_RAW);
 /**
 * Options for verifying the signature on an envelope when loading.
 */
-let XIDVerifySignature = /* @__PURE__ */ function(XIDVerifySignature$1) {
+let XIDVerifySignature = /* @__PURE__ */ function(XIDVerifySignature) {
 	/** Do not verify the signature (default). */
-	XIDVerifySignature$1["None"] = "None";
+	XIDVerifySignature["None"] = "None";
 	/** Verify that the envelope is signed with the inception key. */
-	XIDVerifySignature$1["Inception"] = "Inception";
-	return XIDVerifySignature$1;
+	XIDVerifySignature["Inception"] = "Inception";
+	return XIDVerifySignature;
 }({});
 /**
 * Represents an XID document.
@@ -1462,13 +1546,17 @@ var XIDDocument = class XIDDocument {
 	_delegates;
 	_services;
 	_provenance;
-	constructor(xid, resolutionMethods = /* @__PURE__ */ new Set(), keys = /* @__PURE__ */ new Map(), delegates = /* @__PURE__ */ new Map(), services = /* @__PURE__ */ new Map(), provenance) {
+	_attachments;
+	_edges;
+	constructor(xid, resolutionMethods = /* @__PURE__ */ new Set(), keys = /* @__PURE__ */ new Map(), delegates = /* @__PURE__ */ new Map(), services = /* @__PURE__ */ new Map(), provenance, attachments, edges) {
 		this._xid = xid;
 		this._resolutionMethods = resolutionMethods;
 		this._keys = keys;
 		this._delegates = delegates;
 		this._services = services;
 		this._provenance = provenance;
+		this._attachments = attachments ?? new _bcts_envelope.Attachments();
+		this._edges = edges ?? new _bcts_envelope.Edges();
 	}
 	/**
 	* Create a new XIDDocument with the given options.
@@ -1476,7 +1564,7 @@ var XIDDocument = class XIDDocument {
 	static new(keyOptions = { type: "default" }, markOptions = { type: "none" }) {
 		const inceptionKey = XIDDocument.inceptionKeyForOptions(keyOptions);
 		const provenance = XIDDocument.genesisMarkWithOptions(markOptions);
-		const doc = new XIDDocument(_bcts_components.XID.from(inceptionKey.publicKeys().reference().getDigest().toData()), /* @__PURE__ */ new Set(), /* @__PURE__ */ new Map(), /* @__PURE__ */ new Map(), /* @__PURE__ */ new Map(), provenance);
+		const doc = new XIDDocument(_bcts_components.XID.newFromSigningKey(inceptionKey.publicKeys().signingPublicKey()), /* @__PURE__ */ new Set(), /* @__PURE__ */ new Map(), /* @__PURE__ */ new Map(), /* @__PURE__ */ new Map(), provenance);
 		doc.addKey(inceptionKey);
 		return doc;
 	}
@@ -1585,16 +1673,17 @@ var XIDDocument = class XIDDocument {
 		if (!this._keys.delete(hashKey)) throw XIDError.notFound("key");
 	}
 	/**
-	* Check if the given public keys is the inception signing key.
+	* Check if the given signing public key is the inception signing key.
+	* Matches Rust: `is_inception_signing_key(&self, signing_public_key: &SigningPublicKey) -> bool`
 	*/
-	isInceptionKey(publicKeys) {
-		return bytesEqual(publicKeys.reference().getDigest().toData(), this._xid.toData());
+	isInceptionSigningKey(signingPublicKey) {
+		return this._xid.validate(signingPublicKey);
 	}
 	/**
 	* Get the inception key, if it exists in the document.
 	*/
 	inceptionKey() {
-		for (const key of this._keys.values()) if (this.isInceptionKey(key.publicKeys())) return key;
+		for (const key of this._keys.values()) if (this.isInceptionSigningKey(key.publicKeys().signingPublicKey())) return key;
 	}
 	/**
 	* Get the inception private keys, if available.
@@ -1623,6 +1712,136 @@ var XIDDocument = class XIDDocument {
 		return inceptionKey;
 	}
 	/**
+	* Set the name (nickname) for a key identified by its public keys.
+	*/
+	setNameForKey(publicKeys, name) {
+		const key = this.takeKey(publicKeys);
+		if (key === void 0) throw XIDError.notFound("key");
+		key.setNickname(name);
+		this.addKey(key);
+	}
+	/**
+	* Get the inception signing public key, if it exists.
+	*/
+	inceptionSigningKey() {
+		return this.inceptionKey()?.publicKeys().signingPublicKey();
+	}
+	/**
+	* Get the verification (signing) key for this document.
+	* Prefers the inception key. Falls back to the first key.
+	*/
+	verificationKey() {
+		const inceptionKey = this.inceptionKey();
+		if (inceptionKey !== void 0) return inceptionKey.publicKeys().signingPublicKey();
+		return this._keys.values().next().value?.publicKeys().signingPublicKey();
+	}
+	/**
+	* Extract inception private keys from an envelope (convenience static method).
+	*/
+	static extractInceptionPrivateKeysFromEnvelope(envelope, password) {
+		return XIDDocument.fromEnvelope(envelope, password, XIDVerifySignature.None).inceptionPrivateKeys();
+	}
+	/**
+	* Get the private key envelope for a specific key, optionally decrypting it.
+	*/
+	privateKeyEnvelopeForKey(publicKeys, password) {
+		const key = this.findKeyByPublicKeys(publicKeys);
+		if (key === void 0) return;
+		return key.privateKeyEnvelope(password);
+	}
+	/**
+	* Check that the document contains a key with the given public keys.
+	* Throws if not found.
+	*/
+	checkContainsKey(publicKeys) {
+		if (this.findKeyByPublicKeys(publicKeys) === void 0) throw XIDError.keyNotFoundInDocument(publicKeys.toString());
+	}
+	/**
+	* Check that the document contains a delegate with the given XID.
+	* Throws if not found.
+	*/
+	checkContainsDelegate(xid) {
+		if (this.findDelegateByXid(xid) === void 0) throw XIDError.delegateNotFoundInDocument(xid.toString());
+	}
+	/**
+	* Get the attachments container.
+	*/
+	getAttachments() {
+		return this._attachments;
+	}
+	/**
+	* Add an attachment with the specified payload and metadata.
+	*/
+	addAttachment(payload, vendor, conformsTo) {
+		this._attachments.add(payload, vendor, conformsTo);
+	}
+	/**
+	* Check if the document has any attachments.
+	*/
+	hasAttachments() {
+		return !this._attachments.isEmpty();
+	}
+	/**
+	* Remove all attachments.
+	*/
+	clearAttachments() {
+		this._attachments.clear();
+	}
+	/**
+	* Get an attachment by its digest.
+	*/
+	getAttachment(digest) {
+		return this._attachments.get(digest);
+	}
+	/**
+	* Remove an attachment by its digest.
+	*/
+	removeAttachment(digest) {
+		return this._attachments.remove(digest);
+	}
+	/**
+	* Get the edges container (read-only).
+	*/
+	edges() {
+		return this._edges;
+	}
+	/**
+	* Get the edges container (mutable).
+	*/
+	edgesMut() {
+		return this._edges;
+	}
+	/**
+	* Add an edge envelope.
+	*/
+	addEdge(edgeEnvelope) {
+		this._edges.add(edgeEnvelope);
+	}
+	/**
+	* Get an edge by its digest.
+	*/
+	getEdge(digest) {
+		return this._edges.get(digest);
+	}
+	/**
+	* Remove an edge by its digest.
+	*/
+	removeEdge(digest) {
+		return this._edges.remove(digest);
+	}
+	/**
+	* Remove all edges.
+	*/
+	clearEdges() {
+		this._edges.clear();
+	}
+	/**
+	* Check if the document has any edges.
+	*/
+	hasEdges() {
+		return !this._edges.isEmpty();
+	}
+	/**
 	* Check if the document is empty (no keys, delegates, services, or provenance).
 	*/
 	isEmpty() {
@@ -1799,12 +2018,14 @@ var XIDDocument = class XIDDocument {
 	* Convert to envelope with options.
 	*/
 	toEnvelope(privateKeyOptions = XIDPrivateKeyOptions.Omit, generatorOptions = XIDGeneratorOptions.Omit, signingOptions = { type: "none" }) {
-		let envelope = _bcts_envelope.Envelope.new(this._xid.toData());
+		let envelope = _bcts_envelope.Envelope.newLeaf(this._xid.taggedCbor());
 		for (const method of this._resolutionMethods) envelope = envelope.addAssertion(kv(_bcts_known_values.DEREFERENCE_VIA), method);
 		for (const key of this._keys.values()) envelope = envelope.addAssertion(kv(_bcts_known_values.KEY), key.intoEnvelopeOpt(privateKeyOptions));
 		for (const delegate of this._delegates.values()) envelope = envelope.addAssertion(kv(_bcts_known_values.DELEGATE), delegate.intoEnvelope());
 		for (const service of this._services.values()) envelope = envelope.addAssertion(kv(_bcts_known_values.SERVICE), service.intoEnvelope());
 		if (this._provenance !== void 0) envelope = envelope.addAssertion(kv(_bcts_known_values.PROVENANCE), this._provenance.intoEnvelopeOpt(generatorOptions));
+		envelope = this._attachments.addToEnvelope(envelope);
+		envelope = this._edges.addToEnvelope(envelope);
 		switch (signingOptions.type) {
 			case "inception": {
 				const inceptionKey = this.inceptionKey();
@@ -1814,20 +2035,18 @@ var XIDDocument = class XIDDocument {
 				envelope = envelope.sign(privateKeys);
 				break;
 			}
-			case "privateKeyBase": {
-				const privateKeys = signingOptions.privateKeyBase.ed25519PrivateKeys();
-				envelope = envelope.sign(privateKeys);
-				break;
-			}
 			case "privateKeys":
 				envelope = envelope.sign(signingOptions.privateKeys);
 				break;
-			case "none":
+			case "signingPrivateKey":
+				envelope = envelope.sign(signingOptions.signingPrivateKey);
+				break;
 			default: break;
 		}
 		return envelope;
 	}
 	intoEnvelope() {
+		if (this.isEmpty()) return _bcts_envelope.Envelope.new(this._xid.toData());
 		return this.toEnvelope();
 	}
 	/**
@@ -1839,25 +2058,42 @@ var XIDDocument = class XIDDocument {
 			case XIDVerifySignature.None: {
 				const subject = envelopeExt.subject();
 				const envelopeToParse = subject.isWrapped() ? subject.tryUnwrap() : envelope;
-				return XIDDocument.fromEnvelopeInner(envelopeToParse, password);
+				const attachments = _bcts_envelope.Attachments.fromEnvelope(envelopeToParse);
+				const edges = _bcts_envelope.Edges.fromEnvelope(envelopeToParse);
+				const doc = XIDDocument.fromEnvelopeInner(envelopeToParse, password);
+				doc._attachments = attachments;
+				doc._edges = edges;
+				return doc;
 			}
 			case XIDVerifySignature.Inception: {
 				if (!envelopeExt.subject().isWrapped()) throw XIDError.envelopeNotSigned();
 				const unwrapped = envelopeExt.tryUnwrap();
+				const attachments = _bcts_envelope.Attachments.fromEnvelope(unwrapped);
+				const edges = _bcts_envelope.Edges.fromEnvelope(unwrapped);
 				const doc = XIDDocument.fromEnvelopeInner(unwrapped, password);
 				const inceptionKey = doc.inceptionKey();
 				if (inceptionKey === void 0) throw XIDError.missingInceptionKey();
 				if (!envelopeExt.hasSignatureFrom(inceptionKey.publicKeys())) throw XIDError.signatureVerificationFailed();
-				if (!doc.isInceptionKey(inceptionKey.publicKeys())) throw XIDError.invalidXid();
+				if (!doc.isInceptionSigningKey(inceptionKey.publicKeys().signingPublicKey())) throw XIDError.invalidXid();
+				doc._attachments = attachments;
+				doc._edges = edges;
 				return doc;
 			}
 		}
 	}
 	static fromEnvelopeInner(envelope, password) {
 		const envelopeExt = envelope;
-		const xidData = (envelope.case().type === "node" ? envelopeExt.subject() : envelope).asByteString();
-		if (xidData === void 0) throw XIDError.invalidXid();
-		const xid = _bcts_components.XID.from(xidData);
+		const subject = envelope.case().type === "node" ? envelopeExt.subject() : envelope;
+		const leaf = subject.asLeaf?.();
+		if (leaf === void 0) throw XIDError.invalidXid();
+		let xid;
+		try {
+			xid = _bcts_components.XID.fromTaggedCbor(leaf);
+		} catch {
+			const xidData = subject.asByteString();
+			if (xidData === void 0) throw XIDError.invalidXid();
+			xid = _bcts_components.XID.from(xidData);
+		}
 		const doc = XIDDocument.fromXid(xid);
 		for (const assertion of envelopeExt.assertions()) {
 			const assertionCase = assertion.case();
@@ -1892,6 +2128,8 @@ var XIDDocument = class XIDDocument {
 					if (doc._provenance !== void 0) throw XIDError.multipleProvenanceMarks();
 					doc._provenance = Provenance.tryFromEnvelope(object, password);
 					break;
+				case ATTACHMENT_RAW_VALUE: break;
+				case EDGE_RAW_VALUE: break;
 				default: throw XIDError.unexpectedPredicate(String(predicate));
 			}
 		}
@@ -1902,7 +2140,13 @@ var XIDDocument = class XIDDocument {
 	* Create a signed envelope.
 	*/
 	toSignedEnvelope(signingKey) {
-		return this.toEnvelope(XIDPrivateKeyOptions.Omit, XIDGeneratorOptions.Omit, { type: "none" }).sign(signingKey);
+		return this.toSignedEnvelopeOpt(signingKey, XIDPrivateKeyOptions.Omit);
+	}
+	/**
+	* Create a signed envelope with private key options.
+	*/
+	toSignedEnvelopeOpt(signingKey, privateKeyOptions = XIDPrivateKeyOptions.Omit) {
+		return this.toEnvelope(privateKeyOptions, XIDGeneratorOptions.Omit, { type: "none" }).sign(signingKey);
 	}
 	/**
 	* Get the reference for this document.
@@ -1914,13 +2158,41 @@ var XIDDocument = class XIDDocument {
 	* Check equality with another XIDDocument.
 	*/
 	equals(other) {
-		return this._xid.equals(other._xid);
+		if (!this._xid.equals(other._xid)) return false;
+		if (this._resolutionMethods.size !== other._resolutionMethods.size) return false;
+		for (const m of this._resolutionMethods) if (!other._resolutionMethods.has(m)) return false;
+		if (this._keys.size !== other._keys.size) return false;
+		for (const [hash, key] of this._keys) {
+			const otherKey = other._keys.get(hash);
+			if (otherKey === void 0 || !key.equals(otherKey)) return false;
+		}
+		if (this._delegates.size !== other._delegates.size) return false;
+		for (const [hash, delegate] of this._delegates) {
+			const otherDelegate = other._delegates.get(hash);
+			if (otherDelegate === void 0 || !delegate.equals(otherDelegate)) return false;
+		}
+		if (this._services.size !== other._services.size) return false;
+		for (const [uri, service] of this._services) {
+			const otherService = other._services.get(uri);
+			if (otherService === void 0 || !service.equals(otherService)) return false;
+		}
+		if (this._provenance === void 0 && other._provenance !== void 0) return false;
+		if (this._provenance !== void 0 && other._provenance === void 0) return false;
+		if (this._provenance !== void 0 && other._provenance !== void 0) {
+			if (!this._provenance.equals(other._provenance)) return false;
+		}
+		if (!this._attachments.equals(other._attachments)) return false;
+		if (!this._edges.equals(other._edges)) return false;
+		return true;
 	}
 	/**
 	* Clone this XIDDocument.
 	*/
 	clone() {
-		return new XIDDocument(this._xid, new Set(this._resolutionMethods), new Map(Array.from(this._keys.entries()).map(([k, v]) => [k, v.clone()])), new Map(Array.from(this._delegates.entries()).map(([k, v]) => [k, v.clone()])), new Map(Array.from(this._services.entries()).map(([k, v]) => [k, v.clone()])), this._provenance?.clone());
+		const doc = new XIDDocument(this._xid, new Set(this._resolutionMethods), new Map(Array.from(this._keys.entries()).map(([k, v]) => [k, v.clone()])), new Map(Array.from(this._delegates.entries()).map(([k, v]) => [k, v.clone()])), new Map(Array.from(this._services.entries()).map(([k, v]) => [k, v.clone()])), this._provenance?.clone());
+		for (const [, env] of this._attachments.iter()) doc._attachments.addEnvelope(env);
+		for (const [, env] of this._edges.iter()) doc._edges.add(env);
+		return doc;
 	}
 	/**
 	* Try to extract from envelope (alias for fromEnvelope with default options).
@@ -1941,7 +2213,19 @@ function bytesEqual(a, b) {
 const VERSION = "1.0.0-alpha.3";
 
 //#endregion
+Object.defineProperty(exports, 'Attachments', {
+  enumerable: true,
+  get: function () {
+    return _bcts_envelope.Attachments;
+  }
+});
 exports.Delegate = Delegate;
+Object.defineProperty(exports, 'Edges', {
+  enumerable: true,
+  get: function () {
+    return _bcts_envelope.Edges;
+  }
+});
 exports.HasNicknameMixin = HasNicknameMixin;
 exports.HasPermissionsMixin = HasPermissionsMixin;
 exports.Key = Key;