@bifold/core 2.10.2 → 2.11.1

package/lib/module/modules/openid/hooks/useAcceptReplacement.js

@@ -0,0 +1,76 @@
+// modules/openid/hooks/useAcceptReplacement.ts
+
+import { useCallback } from 'react';
+import { TOKENS, useServices } from '../../../container-api';
+import { useOpenIDCredentials } from '../context/OpenIDCredentialRecordProvider';
+import { credentialRegistry, selectOldIdByReplacementId } from '../refresh/registery';
+import { OpenIDCredentialType } from '../types';
+const sleep = ms => new Promise(res => setTimeout(res, ms));
+/**
+ * A hook that provides functions to accept newly issued credentials, handling replacements if applicable.
+ */
+
+export function useAcceptReplacement() {
+  const {
+    storeCredential,
+    removeCredential,
+    getW3CCredentialById,
+    getSdJwtCredentialById
+  } = useOpenIDCredentials();
+  const [logger] = useServices([TOKENS.UTIL_LOGGER]);
+
+  /**
+   * Accept a newly issued credential:
+   * 1) store it
+   * 2) if it replaces an old one (per registry), fetch old via provider & delete it
+   * 3) update the registry (acceptReplacement)
+   */
+  const acceptNewCredential = useCallback(async newCred => {
+    logger.info(`🟢 [useAcceptReplacement] accepting new credential → ${newCred.id}`);
+
+    // 1) persist new
+    await storeCredential(newCred);
+
+    // 2) check if it replaces an old credential
+    const oldId = selectOldIdByReplacementId(newCred.id);
+    if (!oldId) {
+      logger.info(`ℹ️ [useAcceptReplacement] no replacement mapping for ${newCred.id} — done`);
+      return;
+    }
+
+    // 3) fetch old via provider (always)
+    const oldRecord = await getSdJwtCredentialById(oldId);
+    if (!oldRecord) {
+      logger.warn(`⚠️ [useAcceptReplacement] old record ${oldId} not found — skipping delete`);
+      // still accept swap in registry to avoid stuck state
+      credentialRegistry.getState().acceptReplacement(oldId);
+      return;
+    }
+    await sleep(200);
+
+    // 4) delete old
+    await removeCredential(oldRecord, OpenIDCredentialType.SdJwtVc);
+
+    // 5) finalize the swap in registry
+    credentialRegistry.getState().acceptReplacement(oldId);
+    logger.info(`✅ [useAcceptReplacement] replacement complete: old=${oldId} → new=${newCred.id}`);
+  }, [storeCredential, removeCredential, getSdJwtCredentialById, logger]);
+
+  /**
+   * Convenience: accept by new credential id (fetch via provider first).
+   * Useful if your screen only carries the new id.
+   */
+  const acceptById = useCallback(async newId => {
+    // try W3C first, then Sd-JWT
+    const newW3c = await getW3CCredentialById(newId);
+    const newSd = newW3c ? undefined : await getSdJwtCredentialById(newId);
+    const rec = newW3c ?? newSd;
+    if (!rec) throw new Error(`New credential not found for id=${newId}`);
+    await acceptNewCredential(rec);
+  }, [getW3CCredentialById, getSdJwtCredentialById, acceptNewCredential]);
+  return {
+    acceptNewCredential,
+    acceptById
+  };
+}
+//# sourceMappingURL=useAcceptReplacement.js.map

package/lib/module/modules/openid/hooks/useAcceptReplacement.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["useCallback","TOKENS","useServices","useOpenIDCredentials","credentialRegistry","selectOldIdByReplacementId","OpenIDCredentialType","sleep","ms","Promise","res","setTimeout","useAcceptReplacement","storeCredential","removeCredential","getW3CCredentialById","getSdJwtCredentialById","logger","UTIL_LOGGER","acceptNewCredential","newCred","info","id","oldId","oldRecord","warn","getState","acceptReplacement","SdJwtVc","acceptById","newId","newW3c","newSd","undefined","rec","Error"],"sourceRoot":"../../../../../src","sources":["modules/openid/hooks/useAcceptReplacement.ts"],"mappings":"AAAA;;AAEA,SAASA,WAAW,QAAQ,OAAO;AACnC,SAASC,MAAM,EAAEC,WAAW,QAAQ,wBAAwB;AAC5D,SAASC,oBAAoB,QAAQ,2CAA2C;AAChF,SAASC,kBAAkB,EAAEC,0BAA0B,QAAQ,sBAAsB;AACrF,SAASC,oBAAoB,QAAQ,UAAU;AAI/C,MAAMC,KAAK,GAAIC,EAAU,IAAK,IAAIC,OAAO,CAAQC,GAAG,IAAKC,UAAU,CAACD,GAAG,EAAEF,EAAE,CAAC,CAAC;AAC7E;AACA;AACA;;AAEA,OAAO,SAASI,oBAAoBA,CAAA,EAAG;EACrC,MAAM;IAAEC,eAAe;IAAEC,gBAAgB;IAAEC,oBAAoB;IAAEC;EAAuB,CAAC,GAAGb,oBAAoB,CAAC,CAAC;EAClH,MAAM,CAACc,MAAM,CAAC,GAAGf,WAAW,CAAC,CAACD,MAAM,CAACiB,WAAW,CAAC,CAAC;;EAElD;AACF;AACA;AACA;AACA;AACA;EACE,MAAMC,mBAAmB,GAAGnB,WAAW,CACrC,MAAOoB,OAAgB,IAAK;IAC1BH,MAAM,CAACI,IAAI,CAAC,wDAAwDD,OAAO,CAACE,EAAE,EAAE,CAAC;;IAEjF;IACA,MAAMT,eAAe,CAACO,OAAO,CAAC;;IAE9B;IACA,MAAMG,KAAK,GAAGlB,0BAA0B,CAACe,OAAO,CAACE,EAAE,CAAC;IACpD,IAAI,CAACC,KAAK,EAAE;MACVN,MAAM,CAACI,IAAI,CAAC,wDAAwDD,OAAO,CAACE,EAAE,SAAS,CAAC;MACxF;IACF;;IAEA;IACA,MAAME,SAAS,GAAG,MAAMR,sBAAsB,CAACO,KAAK,CAAC;IAErD,IAAI,CAACC,SAAS,EAAE;MACdP,MAAM,CAACQ,IAAI,CAAC,wCAAwCF,KAAK,8BAA8B,CAAC;MACxF;MACAnB,kBAAkB,CAACsB,QAAQ,CAAC,CAAC,CAACC,iBAAiB,CAACJ,KAAK,CAAC;MACtD;IACF;IAEA,MAAMhB,KAAK,CAAC,GAAG,CAAC;;IAEhB;IACA,MAAMO,gBAAgB,CAACU,SAAS,EAAElB,oBAAoB,CAACsB,OAAO,CAAC;;IAE/D;IACAxB,kBAAkB,CAACsB,QAAQ,CAAC,CAAC,CAACC,iBAAiB,CAACJ,KAAK,CAAC;IAEtDN,MAAM,CAACI,IAAI,CAAC,sDAAsDE,KAAK,UAAUH,OAAO,CAACE,EAAE,EAAE,CAAC;EAChG,CAAC,EACD,CAACT,eAAe,EAAEC,gBAAgB,EAAEE,sBAAsB,EAAEC,MAAM,CACpE,CAAC;;EAED;AACF;AACA;AACA;EACE,MAAMY,UAAU,GAAG7B,WAAW,CAC5B,MAAO8B,KAAa,IAAK;IACvB;IACA,MAAMC,MAAM,GAAG,MAAMhB,oBAAoB,CAACe,KAAK,CAAC;IAChD,MAAME,KAAK,GAAGD,MAAM,GAAGE,SAAS,GAAG,MAAMjB,sBAAsB,CAACc,KAAK,CAAC;IACtE,MAAMI,GAAG,GAAIH,MAAM,IAAIC,KAA6B;IACpD,IAAI,CAACE,GAAG,EAAE,MAAM,IAAIC,KAAK,CAAC,mCAAmCL,KAAK,EAAE,CAAC;IACrE,MAAMX,mBAAmB,CAACe,GAAG,CAAC;EAChC,CAAC,EACD,CAACnB,oBAAoB,EAAEC,sBAAsB,EAAEG,mBAAmB,CACpE,CAAC;EAED,OAAO;IAAEA,mBAAmB;IAAEU;EAAW,CAAC;AAC5C","ignoreList":[]}

package/lib/module/modules/openid/hooks/useCredentialErrorsFromRegistry.js

@@ -0,0 +1,54 @@
+// hooks/useCredentialErrorsFromRegistry.ts
+import { useEffect, useMemo, useState } from 'react';
+import { credentialRegistry } from '../refresh/registery';
+import { getRefreshCredentialMetadata } from '../metadata';
+import { RefreshStatus } from '../refresh/types';
+import { CredentialErrors } from '../../../types/credentials';
+import { MdocRecord, SdJwtVcRecord, W3cCredentialRecord } from '@credo-ts/core';
+
+/**
+ * Computes the UI error list for a credential by:
+ *   1) Checking the in-memory registry (live session truth)
+ *   2) Falling back to persisted refresh metadata (after app restart)
+ * You can merge with any existing `propErrors` provided by the caller.
+ */
+export function useCredentialErrorsFromRegistry(credential, propErrors) {
+  const id = credential === null || credential === void 0 ? void 0 : credential.id;
+  const [isInvalidByRegistry, setIsInvalidByRegistry] = useState(false);
+
+  // Subscribe to registry changes and keep a boolean for this credential
+  useEffect(() => {
+    if (!id) return;
+
+    // Immediate read
+    const s = credentialRegistry.getState();
+    setIsInvalidByRegistry(s.expired.includes(id));
+
+    // Subscribe to changes
+    const unsub = credentialRegistry.subscribe(next => {
+      const flagged = next.expired.includes(id);
+      setIsInvalidByRegistry(flagged);
+    });
+    return unsub;
+  }, [id]);
+
+  // Fallback: metadata (covers case after restart when registry is empty)
+  const isInvalidByMetadata = useMemo(() => {
+    if (!(credential instanceof W3cCredentialRecord || credential instanceof SdJwtVcRecord || credential instanceof MdocRecord)) {
+      return;
+    }
+    if (!credential) return false;
+    const meta = getRefreshCredentialMetadata(credential);
+    return (meta === null || meta === void 0 ? void 0 : meta.lastCheckResult) === RefreshStatus.Invalid;
+  }, [credential]);
+
+  // Merge: propErrors + derived “invalid” → map to existing enum (Revoked)
+  const merged = useMemo(() => {
+    const base = Array.isArray(propErrors) ? [...propErrors] : [];
+    const withoutRevoked = base.filter(e => e !== CredentialErrors.Revoked);
+    const shouldMarkInvalid = isInvalidByRegistry || isInvalidByMetadata;
+    return shouldMarkInvalid ? [...withoutRevoked, CredentialErrors.Revoked] : withoutRevoked;
+  }, [propErrors, isInvalidByRegistry, isInvalidByMetadata]);
+  return merged;
+}
+//# sourceMappingURL=useCredentialErrorsFromRegistry.js.map

package/lib/module/modules/openid/hooks/useCredentialErrorsFromRegistry.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["useEffect","useMemo","useState","credentialRegistry","getRefreshCredentialMetadata","RefreshStatus","CredentialErrors","MdocRecord","SdJwtVcRecord","W3cCredentialRecord","useCredentialErrorsFromRegistry","credential","propErrors","id","isInvalidByRegistry","setIsInvalidByRegistry","s","getState","expired","includes","unsub","subscribe","next","flagged","isInvalidByMetadata","meta","lastCheckResult","Invalid","merged","base","Array","isArray","withoutRevoked","filter","e","Revoked","shouldMarkInvalid"],"sourceRoot":"../../../../../src","sources":["modules/openid/hooks/useCredentialErrorsFromRegistry.ts"],"mappings":"AAAA;AACA,SAASA,SAAS,EAAEC,OAAO,EAAEC,QAAQ,QAAQ,OAAO;AACpD,SAASC,kBAAkB,QAAuB,sBAAsB;AACxE,SAASC,4BAA4B,QAAQ,aAAa;AAC1D,SAASC,aAAa,QAAQ,kBAAkB;AAChD,SAASC,gBAAgB,QAAyC,4BAA4B;AAC9F,SAASC,UAAU,EAAEC,aAAa,EAAEC,mBAAmB,QAAQ,gBAAgB;;AAE/E;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,SAASC,+BAA+BA,CAC7CC,UAAuD,EACvDC,UAA+B,EAC/B;EACA,MAAMC,EAAE,GAAGF,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAEE,EAAE;EACzB,MAAM,CAACC,mBAAmB,EAAEC,sBAAsB,CAAC,GAAGb,QAAQ,CAAC,KAAK,CAAC;;EAErE;EACAF,SAAS,CAAC,MAAM;IACd,IAAI,CAACa,EAAE,EAAE;;IAET;IACA,MAAMG,CAAC,GAAGb,kBAAkB,CAACc,QAAQ,CAAC,CAAC;IACvCF,sBAAsB,CAACC,CAAC,CAACE,OAAO,CAACC,QAAQ,CAACN,EAAE,CAAC,CAAC;;IAE9C;IACA,MAAMO,KAAK,GAAGjB,kBAAkB,CAACkB,SAAS,CAAEC,IAAmB,IAAK;MAClE,MAAMC,OAAO,GAAGD,IAAI,CAACJ,OAAO,CAACC,QAAQ,CAACN,EAAE,CAAC;MACzCE,sBAAsB,CAACQ,OAAO,CAAC;IACjC,CAAC,CAAC;IAEF,OAAOH,KAAK;EACd,CAAC,EAAE,CAACP,EAAE,CAAC,CAAC;;EAER;EACA,MAAMW,mBAAmB,GAAGvB,OAAO,CAAC,MAAM;IACxC,IACE,EACEU,UAAU,YAAYF,mBAAmB,IACzCE,UAAU,YAAYH,aAAa,IACnCG,UAAU,YAAYJ,UAAU,CACjC,EACD;MACA;IACF;IACA,IAAI,CAACI,UAAU,EAAE,OAAO,KAAK;IAC7B,MAAMc,IAAI,GAAGrB,4BAA4B,CAACO,UAAU,CAAC;IACrD,OAAO,CAAAc,IAAI,aAAJA,IAAI,uBAAJA,IAAI,CAAEC,eAAe,MAAKrB,aAAa,CAACsB,OAAO;EACxD,CAAC,EAAE,CAAChB,UAAU,CAAC,CAAC;;EAEhB;EACA,MAAMiB,MAAM,GAAG3B,OAAO,CAAC,MAAM;IAC3B,MAAM4B,IAAI,GAAGC,KAAK,CAACC,OAAO,CAACnB,UAAU,CAAC,GAAG,CAAC,GAAGA,UAAU,CAAC,GAAG,EAAE;IAC7D,MAAMoB,cAAc,GAAGH,IAAI,CAACI,MAAM,CAAEC,CAAC,IAAKA,CAAC,KAAK5B,gBAAgB,CAAC6B,OAAO,CAAC;IACzE,MAAMC,iBAAiB,GAAGtB,mBAAmB,IAAIU,mBAAmB;IACpE,OAAOY,iBAAiB,GAAG,CAAC,GAAGJ,cAAc,EAAE1B,gBAAgB,CAAC6B,OAAO,CAAC,GAAGH,cAAc;EAC3F,CAAC,EAAE,CAACpB,UAAU,EAAEE,mBAAmB,EAAEU,mBAAmB,CAAC,CAAC;EAE1D,OAAOI,MAAM;AACf","ignoreList":[]}

package/lib/module/modules/openid/hooks/useDeclineReplacement.js

@@ -0,0 +1,77 @@
+// modules/openid/hooks/useDeclineReplacement.ts
+import { useCallback } from 'react';
+import { credentialRegistry } from '../refresh/registery';
+function findOldIdByNewId(newId) {
+  const s = credentialRegistry.getState();
+  // replacements: { [oldId]: { id: newId, ... } }
+  for (const [oldId, lite] of Object.entries(s.replacements)) {
+    if ((lite === null || lite === void 0 ? void 0 : lite.id) === newId) return oldId;
+  }
+  return undefined;
+}
+
+/**
+ * Decline a replacement offer: clears the registry entry so the notification disappears.
+ * No repo operations (no save/delete) are performed.
+ */
+export function useDeclineReplacement(opts = {}) {
+  const {
+    logger
+  } = opts;
+
+  /**
+   * Decline by OLD credential id (kept for callers that know oldId)
+   */
+  const declineByOldId = useCallback(async oldId => {
+    credentialRegistry.setState(prev => {
+      // eslint-disable-next-line @typescript-eslint/no-unused-vars
+      const {
+        [oldId]: _drop,
+        ...restRepl
+      } = prev.replacements;
+      return {
+        ...prev,
+        expired: prev.expired.filter(x => x !== oldId),
+        replacements: restRepl,
+        refreshing: Object.fromEntries(Object.entries(prev.refreshing).filter(([k]) => k !== oldId))
+      };
+    });
+    logger === null || logger === void 0 || logger.info(`🧹 [Decline] Cleared replacement notification for oldId=${oldId}`);
+  }, [logger]);
+
+  /**
+   * Decline by NEW credential id (use this from the Offer screen where you only know newId)
+   */
+  const declineByNewId = useCallback(async newId => {
+    const oldId = findOldIdByNewId(newId);
+    if (!oldId) {
+      logger === null || logger === void 0 || logger.warn(`🧹 [Decline] No matching oldId found for newId=${newId}`);
+      return;
+    }
+    await declineByOldId(oldId);
+  }, [declineByOldId, logger]);
+
+  /**
+   * Helper: decline directly from a CustomNotification object
+   */
+  const declineFromNotification = useCallback(async notif => {
+    var _notif$metadata, _notif$metadata2;
+    const oldId = notif === null || notif === void 0 || (_notif$metadata = notif.metadata) === null || _notif$metadata === void 0 ? void 0 : _notif$metadata.oldId;
+    if (oldId) {
+      await declineByOldId(oldId);
+      return;
+    }
+    const newId = notif === null || notif === void 0 || (_notif$metadata2 = notif.metadata) === null || _notif$metadata2 === void 0 ? void 0 : _notif$metadata2.replacementId;
+    if (newId) {
+      await declineByNewId(newId);
+      return;
+    }
+    logger === null || logger === void 0 || logger.warn(`🧹 [Decline] Missing oldId/newId in notification.metadata`);
+  }, [declineByOldId, declineByNewId, logger]);
+  return {
+    declineByOldId,
+    declineByNewId,
+    declineFromNotification
+  };
+}
+//# sourceMappingURL=useDeclineReplacement.js.map

package/lib/module/modules/openid/hooks/useDeclineReplacement.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["useCallback","credentialRegistry","findOldIdByNewId","newId","s","getState","oldId","lite","Object","entries","replacements","id","undefined","useDeclineReplacement","opts","logger","declineByOldId","setState","prev","_drop","restRepl","expired","filter","x","refreshing","fromEntries","k","info","declineByNewId","warn","declineFromNotification","notif","_notif$metadata","_notif$metadata2","metadata","replacementId"],"sourceRoot":"../../../../../src","sources":["modules/openid/hooks/useDeclineReplacement.ts"],"mappings":"AAAA;AACA,SAASA,WAAW,QAAQ,OAAO;AACnC,SAASC,kBAAkB,QAAQ,sBAAsB;AAQzD,SAASC,gBAAgBA,CAACC,KAAa,EAAsB;EAC3D,MAAMC,CAAC,GAAGH,kBAAkB,CAACI,QAAQ,CAAC,CAAC;EACvC;EACA,KAAK,MAAM,CAACC,KAAK,EAAEC,IAAI,CAAC,IAAIC,MAAM,CAACC,OAAO,CAACL,CAAC,CAACM,YAAY,CAAC,EAAE;IAC1D,IAAI,CAAAH,IAAI,aAAJA,IAAI,uBAAJA,IAAI,CAAEI,EAAE,MAAKR,KAAK,EAAE,OAAOG,KAAK;EACtC;EACA,OAAOM,SAAS;AAClB;;AAEA;AACA;AACA;AACA;AACA,OAAO,SAASC,qBAAqBA,CAACC,IAAa,GAAG,CAAC,CAAC,EAAE;EACxD,MAAM;IAAEC;EAAO,CAAC,GAAGD,IAAI;;EAEvB;AACF;AACA;EACE,MAAME,cAAc,GAAGhB,WAAW,CAChC,MAAOM,KAAa,IAAK;IACvBL,kBAAkB,CAACgB,QAAQ,CAAEC,IAAI,IAAK;MACpC;MACA,MAAM;QAAE,CAACZ,KAAK,GAAGa,KAAK;QAAE,GAAGC;MAAS,CAAC,GAAGF,IAAI,CAACR,YAAY;MACzD,OAAO;QACL,GAAGQ,IAAI;QACPG,OAAO,EAAEH,IAAI,CAACG,OAAO,CAACC,MAAM,CAAEC,CAAC,IAAKA,CAAC,KAAKjB,KAAK,CAAC;QAChDI,YAAY,EAAEU,QAAQ;QACtBI,UAAU,EAAEhB,MAAM,CAACiB,WAAW,CAACjB,MAAM,CAACC,OAAO,CAACS,IAAI,CAACM,UAAU,CAAC,CAACF,MAAM,CAAC,CAAC,CAACI,CAAC,CAAC,KAAKA,CAAC,KAAKpB,KAAK,CAAC;MAC7F,CAAC;IACH,CAAC,CAAC;IACFS,MAAM,aAANA,MAAM,eAANA,MAAM,CAAEY,IAAI,CAAC,2DAA2DrB,KAAK,EAAE,CAAC;EAClF,CAAC,EACD,CAACS,MAAM,CACT,CAAC;;EAED;AACF;AACA;EACE,MAAMa,cAAc,GAAG5B,WAAW,CAChC,MAAOG,KAAa,IAAK;IACvB,MAAMG,KAAK,GAAGJ,gBAAgB,CAACC,KAAK,CAAC;IACrC,IAAI,CAACG,KAAK,EAAE;MACVS,MAAM,aAANA,MAAM,eAANA,MAAM,CAAEc,IAAI,CAAC,kDAAkD1B,KAAK,EAAE,CAAC;MACvE;IACF;IACA,MAAMa,cAAc,CAACV,KAAK,CAAC;EAC7B,CAAC,EACD,CAACU,cAAc,EAAED,MAAM,CACzB,CAAC;;EAED;AACF;AACA;EACE,MAAMe,uBAAuB,GAAG9B,WAAW,CACzC,MAAO+B,KAAyB,IAAK;IAAA,IAAAC,eAAA,EAAAC,gBAAA;IACnC,MAAM3B,KAAK,GAAGyB,KAAK,aAALA,KAAK,gBAAAC,eAAA,GAALD,KAAK,CAAEG,QAAQ,cAAAF,eAAA,uBAAfA,eAAA,CAAiB1B,KAA2B;IAC1D,IAAIA,KAAK,EAAE;MACT,MAAMU,cAAc,CAACV,KAAK,CAAC;MAC3B;IACF;IACA,MAAMH,KAAK,GAAG4B,KAAK,aAALA,KAAK,gBAAAE,gBAAA,GAALF,KAAK,CAAEG,QAAQ,cAAAD,gBAAA,uBAAfA,gBAAA,CAAiBE,aAAmC;IAClE,IAAIhC,KAAK,EAAE;MACT,MAAMyB,cAAc,CAACzB,KAAK,CAAC;MAC3B;IACF;IACAY,MAAM,aAANA,MAAM,eAANA,MAAM,CAAEc,IAAI,CAAC,2DAA2D,CAAC;EAC3E,CAAC,EACD,CAACb,cAAc,EAAEY,cAAc,EAAEb,MAAM,CACzC,CAAC;EAED,OAAO;IAAEC,cAAc;IAAEY,cAAc;IAAEE;EAAwB,CAAC;AACpE","ignoreList":[]}

package/lib/module/modules/openid/hooks/useOpenIdReplacementNavigation.js

@@ -0,0 +1,47 @@
+// hooks/useOpenIdReplacementNavigation.ts
+import { useCallback } from 'react';
+import { useNavigation } from '@react-navigation/native';
+import Toast from 'react-native-toast-message';
+import { TOKENS, useServices } from '../../../container-api';
+import { Screens, Stacks } from '../../../types/navigators';
+/**
+ * A hook that returns a function to open the OpenID Credential Offer screen for a replacement credential
+ */
+export function useOpenIdReplacementNavigation() {
+  const navigation = useNavigation();
+  const [orchestrator] = useServices([TOKENS.UTIL_REFRESH_ORCHESTRATOR]);
+  const openReplacementOffer = useCallback(notif => {
+    var _notif$metadata;
+    const replacementId = notif === null || notif === void 0 || (_notif$metadata = notif.metadata) === null || _notif$metadata === void 0 ? void 0 : _notif$metadata['replacementId'];
+    //   const oldId = notif?.metadata?.['oldId'] as string | undefined
+
+    if (!replacementId) {
+      Toast.show({
+        type: 'error',
+        text1: 'Missing replacement',
+        text2: 'No replacementId in notification.'
+      });
+      return;
+    }
+
+    // Fetch the full record strictly from orchestrator’s in-memory cache
+    const full = orchestrator.resolveFull(replacementId);
+    if (!full) {
+      // Keep it dead simple: no repo lookups here
+      Toast.show({
+        type: 'info',
+        text1: 'Preparing credential',
+        text2: 'Please try again in a moment.'
+      });
+      return;
+    }
+    navigation.navigate(Stacks.ConnectionStack, {
+      screen: Screens.OpenIDCredentialOffer,
+      params: {
+        credential: full
+      }
+    });
+  }, [navigation, orchestrator]);
+  return openReplacementOffer;
+}
+//# sourceMappingURL=useOpenIdReplacementNavigation.js.map

package/lib/module/modules/openid/hooks/useOpenIdReplacementNavigation.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["useCallback","useNavigation","Toast","TOKENS","useServices","Screens","Stacks","useOpenIdReplacementNavigation","navigation","orchestrator","UTIL_REFRESH_ORCHESTRATOR","openReplacementOffer","notif","_notif$metadata","replacementId","metadata","show","type","text1","text2","full","resolveFull","navigate","ConnectionStack","screen","OpenIDCredentialOffer","params","credential"],"sourceRoot":"../../../../../src","sources":["modules/openid/hooks/useOpenIdReplacementNavigation.ts"],"mappings":"AAAA;AACA,SAASA,WAAW,QAAQ,OAAO;AACnC,SAASC,aAAa,QAAwB,0BAA0B;AACxE,OAAOC,KAAK,MAAM,4BAA4B;AAC9C,SAASC,MAAM,EAAEC,WAAW,QAAQ,wBAAwB;AAC5D,SAA0BC,OAAO,EAAEC,MAAM,QAAQ,2BAA2B;AAK5E;AACA;AACA;AACA,OAAO,SAASC,8BAA8BA,CAAA,EAA2B;EACvE,MAAMC,UAAU,GAAGP,aAAa,CAAkC,CAAC;EACnE,MAAM,CAACQ,YAAY,CAAC,GAAGL,WAAW,CAAC,CAACD,MAAM,CAACO,yBAAyB,CAAC,CAAC;EAEtE,MAAMC,oBAAoB,GAAGX,WAAW,CACrCY,KAAK,IAAK;IAAA,IAAAC,eAAA;IACT,MAAMC,aAAa,GAAGF,KAAK,aAALA,KAAK,gBAAAC,eAAA,GAALD,KAAK,CAAEG,QAAQ,cAAAF,eAAA,uBAAfA,eAAA,CAAkB,eAAe,CAAuB;IAC9E;;IAEA,IAAI,CAACC,aAAa,EAAE;MAClBZ,KAAK,CAACc,IAAI,CAAC;QAAEC,IAAI,EAAE,OAAO;QAAEC,KAAK,EAAE,qBAAqB;QAAEC,KAAK,EAAE;MAAoC,CAAC,CAAC;MACvG;IACF;;IAEA;IACA,MAAMC,IAAI,GAAGX,YAAY,CAACY,WAAW,CAACP,aAAa,CAAC;IACpD,IAAI,CAACM,IAAI,EAAE;MACT;MACAlB,KAAK,CAACc,IAAI,CAAC;QAAEC,IAAI,EAAE,MAAM;QAAEC,KAAK,EAAE,sBAAsB;QAAEC,KAAK,EAAE;MAAgC,CAAC,CAAC;MACnG;IACF;IAEAX,UAAU,CAACc,QAAQ,CAAChB,MAAM,CAACiB,eAAe,EAAE;MAC1CC,MAAM,EAAEnB,OAAO,CAACoB,qBAAqB;MACrCC,MAAM,EAAE;QAAEC,UAAU,EAAEP;MAAK;IAC7B,CAAC,CAAC;EACJ,CAAC,EACD,CAACZ,UAAU,EAAEC,YAAY,CAC3B,CAAC;EAED,OAAOE,oBAAoB;AAC7B","ignoreList":[]}

package/lib/module/modules/openid/hooks/useReplacementNotifications.js

@@ -0,0 +1,75 @@
+// modules/openid/ui/useReplacementNotifications.ts
+import { useCallback, useEffect, useMemo, useRef, useState } from 'react';
+import { credentialRegistry } from '../refresh/registery';
+import { OpenIDCustomNotificationType } from '../refresh/types';
+import { useDeclineReplacement } from './useDeclineReplacement';
+import { TOKENS, useServices } from '../../../container-api';
+
+/**
+ * A hook that returns a list of CustomNotifications for credentials that have replacements available
+ */
+
+export const useReplacementNotifications = () => {
+  const [items, setItems] = useState([]);
+  const [logger] = useServices([TOKENS.UTIL_LOGGER]);
+  const {
+    declineByOldId
+  } = useDeclineReplacement({
+    logger
+  });
+
+  // Keep first-seen timestamps stable per (oldId -> replId)
+  const firstSeenRef = useRef({});
+  const build = useCallback(s => {
+    const out = [];
+    for (const oldId of s.expired) {
+      const repl = s.replacements[oldId];
+      if (!repl) continue;
+      const key = `${oldId}::${repl.id}`;
+      if (!firstSeenRef.current[key]) firstSeenRef.current[key] = new Date().toISOString();
+      out.push({
+        type: OpenIDCustomNotificationType.CredentialReplacementAvailable,
+        title: 'Credential update available',
+        pageTitle: 'Credential Update',
+        buttonTitle: 'Review update',
+        description: 'A newer version of this credential is ready to accept.',
+        createdAt: new Date(firstSeenRef.current[key]),
+        onPressAction: () => {},
+        // your list item handles navigation
+        onCloseAction: () => declineByOldId(oldId),
+        component: () => null,
+        // keeps renderer happy
+        metadata: {
+          oldId,
+          replacementId: repl.id
+        }
+      });
+    }
+
+    // Newest first for consistent UI
+    out.sort((a, b) => {
+      var _b$createdAt, _a$createdAt;
+      return (((_b$createdAt = b.createdAt) === null || _b$createdAt === void 0 ? void 0 : _b$createdAt.getTime()) ?? 0) - (((_a$createdAt = a.createdAt) === null || _a$createdAt === void 0 ? void 0 : _a$createdAt.getTime()) ?? 0);
+    });
+    return out;
+  }, [declineByOldId]);
+  useEffect(() => {
+    // Initial build
+    const s = credentialRegistry.getState();
+    setItems(build({
+      expired: s.expired,
+      replacements: s.replacements
+    }));
+
+    // Subscribe to full state updates (since vanilla store lacks selector arg)
+    const unsub = credentialRegistry.subscribe(state => {
+      setItems(build({
+        expired: state.expired,
+        replacements: state.replacements
+      }));
+    });
+    return unsub;
+  }, [build]);
+  return useMemo(() => items, [items]);
+};
+//# sourceMappingURL=useReplacementNotifications.js.map

package/lib/module/modules/openid/hooks/useReplacementNotifications.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["useCallback","useEffect","useMemo","useRef","useState","credentialRegistry","OpenIDCustomNotificationType","useDeclineReplacement","TOKENS","useServices","useReplacementNotifications","items","setItems","logger","UTIL_LOGGER","declineByOldId","firstSeenRef","build","s","out","oldId","expired","repl","replacements","key","id","current","Date","toISOString","push","type","CredentialReplacementAvailable","title","pageTitle","buttonTitle","description","createdAt","onPressAction","onCloseAction","component","metadata","replacementId","sort","a","b","_b$createdAt","_a$createdAt","getTime","getState","unsub","subscribe","state"],"sourceRoot":"../../../../../src","sources":["modules/openid/hooks/useReplacementNotifications.ts"],"mappings":"AAAA;AACA,SAASA,WAAW,EAAEC,SAAS,EAAEC,OAAO,EAAEC,MAAM,EAAEC,QAAQ,QAAQ,OAAO;AACzE,SAASC,kBAAkB,QAA6C,sBAAsB;AAE9F,SAASC,4BAA4B,QAAQ,kBAAkB;AAC/D,SAASC,qBAAqB,QAAQ,yBAAyB;AAC/D,SAASC,MAAM,EAAEC,WAAW,QAAQ,wBAAwB;;AAE5D;AACA;AACA;;AAEA,OAAO,MAAMC,2BAA2B,GAAGA,CAAA,KAA4B;EACrE,MAAM,CAACC,KAAK,EAAEC,QAAQ,CAAC,GAAGR,QAAQ,CAAuB,EAAE,CAAC;EAC5D,MAAM,CAACS,MAAM,CAAC,GAAGJ,WAAW,CAAC,CAACD,MAAM,CAACM,WAAW,CAAC,CAAC;EAClD,MAAM;IAAEC;EAAe,CAAC,GAAGR,qBAAqB,CAAC;IAAEM;EAAO,CAAC,CAAC;;EAE5D;EACA,MAAMG,YAAY,GAAGb,MAAM,CAAyB,CAAC,CAAC,CAAC;EAEvD,MAAMc,KAAK,GAAGjB,WAAW,CACtBkB,CAAkD,IAA2B;IAC5E,MAAMC,GAAyB,GAAG,EAAE;IAEpC,KAAK,MAAMC,KAAK,IAAIF,CAAC,CAACG,OAAO,EAAE;MAC7B,MAAMC,IAAI,GAAGJ,CAAC,CAACK,YAAY,CAACH,KAAK,CAAqC;MACtE,IAAI,CAACE,IAAI,EAAE;MAEX,MAAME,GAAG,GAAG,GAAGJ,KAAK,KAAKE,IAAI,CAACG,EAAE,EAAE;MAClC,IAAI,CAACT,YAAY,CAACU,OAAO,CAACF,GAAG,CAAC,EAAER,YAAY,CAACU,OAAO,CAACF,GAAG,CAAC,GAAG,IAAIG,IAAI,CAAC,CAAC,CAACC,WAAW,CAAC,CAAC;MAEpFT,GAAG,CAACU,IAAI,CAAC;QACPC,IAAI,EAAExB,4BAA4B,CAACyB,8BAA8B;QACjEC,KAAK,EAAE,6BAA6B;QACpCC,SAAS,EAAE,mBAAmB;QAC9BC,WAAW,EAAE,eAAe;QAC5BC,WAAW,EAAE,wDAAwD;QACrEC,SAAS,EAAE,IAAIT,IAAI,CAACX,YAAY,CAACU,OAAO,CAACF,GAAG,CAAC,CAAC;QAC9Ca,aAAa,EAAEA,CAAA,KAAM,CAAC,CAAC;QAAE;QACzBC,aAAa,EAAEA,CAAA,KAAMvB,cAAc,CAACK,KAAK,CAAC;QAC1CmB,SAAS,EAAEA,CAAA,KAAM,IAAI;QAAE;QACvBC,QAAQ,EAAE;UAAEpB,KAAK;UAAEqB,aAAa,EAAEnB,IAAI,CAACG;QAAG;MAC5C,CAAC,CAAC;IACJ;;IAEA;IACAN,GAAG,CAACuB,IAAI,CAAC,CAACC,CAAC,EAAEC,CAAC;MAAA,IAAAC,YAAA,EAAAC,YAAA;MAAA,OAAK,CAAC,EAAAD,YAAA,GAAAD,CAAC,CAACR,SAAS,cAAAS,YAAA,uBAAXA,YAAA,CAAaE,OAAO,CAAC,CAAC,KAAI,CAAC,KAAK,EAAAD,YAAA,GAAAH,CAAC,CAACP,SAAS,cAAAU,YAAA,uBAAXA,YAAA,CAAaC,OAAO,CAAC,CAAC,KAAI,CAAC,CAAC;IAAA,EAAC;IACjF,OAAO5B,GAAG;EACZ,CAAC,EACD,CAACJ,cAAc,CACjB,CAAC;EAEDd,SAAS,CAAC,MAAM;IACd;IACA,MAAMiB,CAAC,GAAGb,kBAAkB,CAAC2C,QAAQ,CAAC,CAAC;IACvCpC,QAAQ,CAACK,KAAK,CAAC;MAAEI,OAAO,EAAEH,CAAC,CAACG,OAAO;MAAEE,YAAY,EAAEL,CAAC,CAACK;IAAa,CAAC,CAAC,CAAC;;IAErE;IACA,MAAM0B,KAAK,GAAG5C,kBAAkB,CAAC6C,SAAS,CAAEC,KAAK,IAAK;MACpDvC,QAAQ,CAACK,KAAK,CAAC;QAAEI,OAAO,EAAE8B,KAAK,CAAC9B,OAAO;QAAEE,YAAY,EAAE4B,KAAK,CAAC5B;MAAa,CAAC,CAAC,CAAC;IAC/E,CAAC,CAAC;IAEF,OAAO0B,KAAK;EACd,CAAC,EAAE,CAAChC,KAAK,CAAC,CAAC;EAEX,OAAOf,OAAO,CAAC,MAAMS,KAAK,EAAE,CAACA,KAAK,CAAC,CAAC;AACtC,CAAC","ignoreList":[]}

package/lib/module/modules/openid/metadata.js

@@ -1,4 +1,6 @@
-const openId4VcCredentialMetadataKey = '_bifold/openId4VcCredentialMetadata';
+import { W3cCredentialRecord, SdJwtVcRecord, MdocRecord, W3cCredentialRepository, SdJwtVcRepository, MdocRepository } from '@credo-ts/core';
+export const openId4VcCredentialMetadataKey = '_bifold/openId4VcCredentialMetadata';
+export const refreshCredentialMetadataKey = '_bifold/refreshCredentialMetadata';
 export function extractOpenId4VcCredentialMetadata(credentialMetadata, serverMetadata) {
   return {
     credential: {
@@ -28,4 +30,53 @@ export function getOpenId4VcCredentialMetadata(credentialRecord) {
 export function setOpenId4VcCredentialMetadata(credentialRecord, metadata) {
   credentialRecord.metadata.set(openId4VcCredentialMetadataKey, metadata);
 }
+
+/**
+ * Gets the refresh credential metadata from the given credential record.
+ */
+export function getRefreshCredentialMetadata(credentialRecord) {
+  return credentialRecord.metadata.get(refreshCredentialMetadataKey);
+}
+
+/**
+ * Sets the refresh credential metadata on the given credential record
+ *
+ * NOTE: this does not save the record.
+ */
+export function setRefreshCredentialMetadata(credentialRecord, metadata) {
+  credentialRecord.metadata.set(refreshCredentialMetadataKey, metadata);
+}
+export function deleteRefreshCredentialMetadata(credentialRecord) {
+  credentialRecord.metadata.delete(refreshCredentialMetadataKey);
+}
+export async function persistCredentialRecord(agentContext, record) {
+  if (record instanceof W3cCredentialRecord) {
+    await agentContext.dependencyManager.resolve(W3cCredentialRepository).update(agentContext, record);
+  } else if (record instanceof SdJwtVcRecord) {
+    await agentContext.dependencyManager.resolve(SdJwtVcRepository).update(agentContext, record);
+  } else if (record instanceof MdocRecord) {
+    await agentContext.dependencyManager.resolve(MdocRepository).update(agentContext, record);
+  } else {
+    throw new Error('Unsupported credential record type for persistence');
+  }
+}
+export async function markOpenIDCredentialStatus({
+  credential,
+  status,
+  agentContext
+}) {
+  const refreshMetadata = getRefreshCredentialMetadata(credential);
+  if (!refreshMetadata) {
+    throw new Error('No refresh metadata found on the credential record.');
+  }
+  refreshMetadata.lastCheckResult = status;
+  setRefreshCredentialMetadata(credential, refreshMetadata);
+
+  // Persist the updated credential record
+  await persistCredentialRecord(agentContext, credential);
+}
+export const temporaryMetaVanillaObject = {
+  notificationMetadata: undefined,
+  tokenResponse: undefined
+};
 //# sourceMappingURL=metadata.js.map

package/lib/module/modules/openid/metadata.js.map

@@ -1 +1 @@
-{"version":3,"names":["openId4VcCredentialMetadataKey","extractOpenId4VcCredentialMetadata","credentialMetadata","serverMetadata","credential","display","order","credential_subject","issuer","id","getOpenId4VcCredentialMetadata","credentialRecord","metadata","get","setOpenId4VcCredentialMetadata","set"],"sourceRoot":"../../../../src","sources":["modules/openid/metadata.tsx"],"mappings":"AAoBA,MAAMA,8BAA8B,GAAG,qCAAqC;AAE5E,OAAO,SAASC,kCAAkCA,CAChDC,kBAA4G,EAC5GC,cAA2D,EAC9B;EAC7B,OAAO;IACLC,UAAU,EAAE;MACVC,OAAO,EAAEH,kBAAkB,CAACG,OAAO;MACnCC,KAAK,EAAEJ,kBAAkB,CAACI,KAAK;MAC/BC,kBAAkB,EAAEL,kBAAkB,CAACK;IACzC,CAAC;IACDC,MAAM,EAAE;MACNH,OAAO,EAAEF,cAAc,CAACE,OAAO;MAC/BI,EAAE,EAAEN,cAAc,CAACM;IACrB;EACF,CAAC;AACH;;AAEA;AACA;AACA;AACA,OAAO,SAASC,8BAA8BA,CAC5CC,gBAAkE,EAC9B;EACpC,OAAOA,gBAAgB,CAACC,QAAQ,CAACC,GAAG,CAACb,8BAA8B,CAAC;AACtE;;AAEA;AACA;AACA;AACA;AACA;AACA,OAAO,SAASc,8BAA8BA,CAC5CH,gBAAkE,EAClEC,QAAqC,EACrC;EACAD,gBAAgB,CAACC,QAAQ,CAACG,GAAG,CAACf,8BAA8B,EAAEY,QAAQ,CAAC;AACzE","ignoreList":[]}
+{"version":3,"names":["W3cCredentialRecord","SdJwtVcRecord","MdocRecord","W3cCredentialRepository","SdJwtVcRepository","MdocRepository","openId4VcCredentialMetadataKey","refreshCredentialMetadataKey","extractOpenId4VcCredentialMetadata","credentialMetadata","serverMetadata","credential","display","order","credential_subject","issuer","id","getOpenId4VcCredentialMetadata","credentialRecord","metadata","get","setOpenId4VcCredentialMetadata","set","getRefreshCredentialMetadata","setRefreshCredentialMetadata","deleteRefreshCredentialMetadata","delete","persistCredentialRecord","agentContext","record","dependencyManager","resolve","update","Error","markOpenIDCredentialStatus","status","refreshMetadata","lastCheckResult","temporaryMetaVanillaObject","notificationMetadata","undefined","tokenResponse"],"sourceRoot":"../../../../src","sources":["modules/openid/metadata.tsx"],"mappings":"AAAA,SACEA,mBAAmB,EACnBC,aAAa,EACbC,UAAU,EAEVC,uBAAuB,EACvBC,iBAAiB,EACjBC,cAAc,QACT,gBAAgB;AAWvB,OAAO,MAAMC,8BAA8B,GAAG,qCAAqC;AACnF,OAAO,MAAMC,4BAA4B,GAAG,mCAAmC;AAsB/E,OAAO,SAASC,kCAAkCA,CAChDC,kBAA4G,EAC5GC,cAA2D,EAC9B;EAC7B,OAAO;IACLC,UAAU,EAAE;MACVC,OAAO,EAAEH,kBAAkB,CAACG,OAAO;MACnCC,KAAK,EAAEJ,kBAAkB,CAACI,KAAK;MAC/BC,kBAAkB,EAAEL,kBAAkB,CAACK;IACzC,CAAC;IACDC,MAAM,EAAE;MACNH,OAAO,EAAEF,cAAc,CAACE,OAAO;MAC/BI,EAAE,EAAEN,cAAc,CAACM;IACrB;EACF,CAAC;AACH;;AAEA;AACA;AACA;AACA,OAAO,SAASC,8BAA8BA,CAC5CC,gBAAkE,EAC9B;EACpC,OAAOA,gBAAgB,CAACC,QAAQ,CAACC,GAAG,CAACd,8BAA8B,CAAC;AACtE;;AAEA;AACA;AACA;AACA;AACA;AACA,OAAO,SAASe,8BAA8BA,CAC5CH,gBAAkE,EAClEC,QAAqC,EACrC;EACAD,gBAAgB,CAACC,QAAQ,CAACG,GAAG,CAAChB,8BAA8B,EAAEa,QAAQ,CAAC;AACzE;;AAEA;AACA;AACA;AACA,OAAO,SAASI,4BAA4BA,CAC1CL,gBAAkE,EAChC;EAClC,OAAOA,gBAAgB,CAACC,QAAQ,CAACC,GAAG,CAACb,4BAA4B,CAAC;AACpE;;AAEA;AACA;AACA;AACA;AACA;AACA,OAAO,SAASiB,4BAA4BA,CAC1CN,gBAAkE,EAClEC,QAAmC,EACnC;EACAD,gBAAgB,CAACC,QAAQ,CAACG,GAAG,CAACf,4BAA4B,EAAEY,QAAQ,CAAC;AACvE;AAEA,OAAO,SAASM,+BAA+BA,CAACP,gBAAkE,EAAE;EAClHA,gBAAgB,CAACC,QAAQ,CAACO,MAAM,CAACnB,4BAA4B,CAAC;AAChE;AAEA,OAAO,eAAeoB,uBAAuBA,CAC3CC,YAA0B,EAC1BC,MAAwD,EACxD;EACA,IAAIA,MAAM,YAAY7B,mBAAmB,EAAE;IACzC,MAAM4B,YAAY,CAACE,iBAAiB,CAACC,OAAO,CAAC5B,uBAAuB,CAAC,CAAC6B,MAAM,CAACJ,YAAY,EAAEC,MAAM,CAAC;EACpG,CAAC,MAAM,IAAIA,MAAM,YAAY5B,aAAa,EAAE;IAC1C,MAAM2B,YAAY,CAACE,iBAAiB,CAACC,OAAO,CAAC3B,iBAAiB,CAAC,CAAC4B,MAAM,CAACJ,YAAY,EAAEC,MAAM,CAAC;EAC9F,CAAC,MAAM,IAAIA,MAAM,YAAY3B,UAAU,EAAE;IACvC,MAAM0B,YAAY,CAACE,iBAAiB,CAACC,OAAO,CAAC1B,cAAc,CAAC,CAAC2B,MAAM,CAACJ,YAAY,EAAEC,MAAM,CAAC;EAC3F,CAAC,MAAM;IACL,MAAM,IAAII,KAAK,CAAC,oDAAoD,CAAC;EACvE;AACF;AAEA,OAAO,eAAeC,0BAA0BA,CAAC;EAC/CvB,UAAU;EACVwB,MAAM;EACNP;AAKF,CAAC,EAAE;EACD,MAAMQ,eAAe,GAAGb,4BAA4B,CAACZ,UAAU,CAAC;EAChE,IAAI,CAACyB,eAAe,EAAE;IACpB,MAAM,IAAIH,KAAK,CAAC,qDAAqD,CAAC;EACxE;EAEAG,eAAe,CAACC,eAAe,GAAGF,MAAM;EAExCX,4BAA4B,CAACb,UAAU,EAAEyB,eAAe,CAAC;;EAEzD;EACA,MAAMT,uBAAuB,CAACC,YAAY,EAAEjB,UAAU,CAAC;AACzD;AAEA,OAAO,MAAM2B,0BAAgE,GAAG;EAC9EC,oBAAoB,EAAEC,SAAS;EAC/BC,aAAa,EAAED;AACjB,CAAC","ignoreList":[]}

package/lib/module/modules/openid/notification.js

@@ -0,0 +1,38 @@
+import { useAgent } from '@credo-ts/react-hooks';
+import { useServices, TOKENS } from '../../container-api';
+export let NotificationEventType = /*#__PURE__*/function (NotificationEventType) {
+  NotificationEventType["CREDENTIAL_ACCEPTED"] = "credential_accepted";
+  NotificationEventType["CREDENTIAL_DELETED"] = "credential_deleted";
+  NotificationEventType["CREDENTIAL_FAILURE"] = "credential_failure";
+  return NotificationEventType;
+}({});
+
+//TODO: ADD TYPE SAFETY
+
+export const useOpenId4VciNotifications = () => {
+  const {
+    agent
+  } = useAgent();
+  const [logger] = useServices([TOKENS.UTIL_LOGGER, TOKENS.UTIL_OCA_RESOLVER]);
+
+  /**
+   * Sends notification to issuer with credential status.
+   * @param options
+   */
+  const sendOpenId4VciNotification = async options => {
+    if (!agent) {
+      const error = 'Agent undefined!';
+      logger.error(`[OpenIDCredentialNotification] ${error}`);
+      throw new Error(error);
+    }
+    await agent.modules.openId4VcHolder.sendNotification({
+      notificationMetadata: options === null || options === void 0 ? void 0 : options.notificationMetadata,
+      accessToken: options === null || options === void 0 ? void 0 : options.accessToken,
+      notificationEvent: options === null || options === void 0 ? void 0 : options.notificationEvent
+    });
+  };
+  return {
+    sendOpenId4VciNotification
+  };
+};
+//# sourceMappingURL=notification.js.map

package/lib/module/modules/openid/notification.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["useAgent","useServices","TOKENS","NotificationEventType","useOpenId4VciNotifications","agent","logger","UTIL_LOGGER","UTIL_OCA_RESOLVER","sendOpenId4VciNotification","options","error","Error","modules","openId4VcHolder","sendNotification","notificationMetadata","accessToken","notificationEvent"],"sourceRoot":"../../../../src","sources":["modules/openid/notification.tsx"],"mappings":"AACA,SAASA,QAAQ,QAAQ,uBAAuB;AAChD,SAASC,WAAW,EAAEC,MAAM,QAAQ,qBAAqB;AAEzD,WAAYC,qBAAqB,0BAArBA,qBAAqB;EAArBA,qBAAqB;EAArBA,qBAAqB;EAArBA,qBAAqB;EAAA,OAArBA,qBAAqB;AAAA;;AAMjC;;AAOA,OAAO,MAAMC,0BAA0B,GAAGA,CAAA,KAAM;EAC9C,MAAM;IAAEC;EAAM,CAAC,GAAGL,QAAQ,CAAC,CAAC;EAC5B,MAAM,CAACM,MAAM,CAAC,GAAGL,WAAW,CAAC,CAACC,MAAM,CAACK,WAAW,EAAEL,MAAM,CAACM,iBAAiB,CAAC,CAAC;;EAE5E;AACF;AACA;AACA;EACE,MAAMC,0BAA0B,GAAG,MAAOC,OAA0C,IAAK;IACvF,IAAI,CAACL,KAAK,EAAE;MACV,MAAMM,KAAK,GAAG,kBAAkB;MAChCL,MAAM,CAACK,KAAK,CAAC,kCAAkCA,KAAK,EAAE,CAAC;MACvD,MAAM,IAAIC,KAAK,CAACD,KAAK,CAAC;IACxB;IACA,MAAMN,KAAK,CAACQ,OAAO,CAACC,eAAe,CAACC,gBAAgB,CAAC;MACnDC,oBAAoB,EAAEN,OAAO,aAAPA,OAAO,uBAAPA,OAAO,CAAEM,oBAAoB;MACnDC,WAAW,EAAEP,OAAO,aAAPA,OAAO,uBAAPA,OAAO,CAAEO,WAAW;MACjCC,iBAAiB,EAAER,OAAO,aAAPA,OAAO,uBAAPA,OAAO,CAAEQ;IAC9B,CAAC,CAAC;EACJ,CAAC;EACD,OAAO;IACLT;EACF,CAAC;AACH,CAAC","ignoreList":[]}

package/lib/module/modules/openid/offerResolve.js

@@ -1,6 +1,6 @@
 import { OpenId4VciCredentialFormatProfile } from '@credo-ts/openid4vc';
 import { DidJwk, DidKey, getJwkFromKey, JwaSignatureAlgorithm, KeyBackend, Mdoc, MdocRecord, SdJwtVcRecord, W3cCredentialRecord } from '@credo-ts/core';
-import { extractOpenId4VcCredentialMetadata, setOpenId4VcCredentialMetadata } from './metadata';
+import { extractOpenId4VcCredentialMetadata, setOpenId4VcCredentialMetadata, temporaryMetaVanillaObject } from './metadata';
 export const resolveOpenId4VciOffer = async ({
   agent,
   data,
@@ -169,6 +169,12 @@ export const receiveCredentialFromOpenId4VciOffer = async ({
       tags: {}
     });
   }
+  const notificationMetadata = {
+    ...firstCredential.notificationMetadata
+  };
+  if (notificationMetadata) {
+    temporaryMetaVanillaObject.notificationMetadata = notificationMetadata;
+  }
   const openId4VcMetadata = extractOpenId4VcCredentialMetadata(resolvedCredentialOffer.offeredCredentials[0], {
     id: resolvedCredentialOffer.metadata.issuer,
     display: resolvedCredentialOffer.metadata.credentialIssuerMetadata.display

package/lib/module/modules/openid/offerResolve.js.map

@@ -1 +1 @@
-{"version":3,"names":["OpenId4VciCredentialFormatProfile","DidJwk","DidKey","getJwkFromKey","JwaSignatureAlgorithm","KeyBackend","Mdoc","MdocRecord","SdJwtVcRecord","W3cCredentialRecord","extractOpenId4VcCredentialMetadata","setOpenId4VcCredentialMetadata","resolveOpenId4VciOffer","agent","data","uri","authorization","offerUri","encodeURIComponent","JSON","stringify","Error","config","logger","info","resolvedCredentialOffer","modules","openId4VcHolder","resolveCredentialOffer","acquirePreAuthorizedAccessToken","txCode","requestToken","customCredentialBindingResolver","supportedDidMethods","keyType","supportsAllDidMethods","supportsJwk","credentialFormat","supportedCredentialId","pidSchemes","didMethod","includes","undefined","offeredCredentialConfiguration","offeredCredentialConfigurations","shouldKeyBeHardwareBackedForMsoMdoc","format","MsoMdoc","msoMdocDoctypes","doctype","shouldKeyBeHardwareBackedForSdJwtVc","sdJwtVcVcts","vct","shouldKeyBeHardwareBacked","key","wallet","createKey","keyBackend","SecureElement","Software","didResult","dids","create","method","options","didState","state","verificationMethodId","didJwk","fromDid","did","didKey","fingerprint","didUrl","SdJwtVc","jwk","join","receiveCredentialFromOpenId4VciOffer","tokenResponse","credentialConfigurationIdsToRequest","clientId","offeredCredentialsToRequest","offeredCredentials","filter","offered","id","length","credentials","requestCredentials","credentialsToRequest","verifyCredentialStatus","allowedProofOfPossessionSignatureAlgorithms","EdDSA","ES256","credentialBindingResolver","firstCredential","record","credential","compactSdJwtVc","compact","mdoc","tags","openId4VcMetadata","metadata","issuer","display","credentialIssuerMetadata"],"sourceRoot":"../../../../src","sources":["modules/openid/offerResolve.tsx"],"mappings":"AAAA,SAGEA,iCAAiC,QAI5B,qBAAqB;AAC5B,SAEEC,MAAM,EACNC,MAAM,EACNC,aAAa,EACbC,qBAAqB,EAErBC,UAAU,EAEVC,IAAI,EACJC,UAAU,EACVC,aAAa,EACbC,mBAAmB,QAGd,gBAAgB;AACvB,SAASC,kCAAkC,EAAEC,8BAA8B,QAAQ,YAAY;AAE/F,OAAO,MAAMC,sBAAsB,GAAG,MAAAA,CAAO;EAC3CC,KAAK;EACLC,IAAI;EACJC,GAAG;EACHC;AAQF,CAAC,KAAiD;EAChD,IAAIC,QAAQ,GAAGF,GAAG;EAElB,IAAI,CAACE,QAAQ,IAAIH,IAAI,EAAE;IACrB;IACA;IACAG,QAAQ,GAAG,8CAA8CC,kBAAkB,CAACC,IAAI,CAACC,SAAS,CAACN,IAAI,CAAC,CAAC,EAAE;EACrG,CAAC,MAAM,IAAI,CAACG,QAAQ,EAAE;IACpB,MAAM,IAAII,KAAK,CAAC,qCAAqC,CAAC;EACxD;EAEAR,KAAK,CAACS,MAAM,CAACC,MAAM,CAACC,IAAI,CAAC,wBAAwBP,QAAQ,EAAE,EAAE;IAC3DA,QAAQ;IACRH,IAAI,EAAEA,IAAI;IACVC,GAAG,EAAEE;EACP,CAAC,CAAC;EAEF,MAAMQ,uBAAuB,GAAG,MAAMZ,KAAK,CAACa,OAAO,CAACC,eAAe,CAACC,sBAAsB,CAACX,QAAQ,CAAC;EAEpG,IAAID,aAAa,EAAE;IACjB,MAAM,IAAIK,KAAK,CAAC,4DAA4D,CAAC;EAC/E;EAEA,OAAOI,uBAAuB;AAChC,CAAC;AAED,OAAO,eAAeI,+BAA+BA,CAAC;EACpDhB,KAAK;EACLY,uBAAuB;EACvBK;AAKF,CAAC,EAA2C;EAC1C,OAAO,MAAMjB,KAAK,CAACa,OAAO,CAACC,eAAe,CAACI,YAAY,CAAC;IACtDN,uBAAuB;IACvBK;EACF,CAAC,CAAC;AACJ;AAEA,OAAO,MAAME,+BAA+B,GAAG,MAAAA,CAAO;EACpDnB,KAAK;EACLoB,mBAAmB;EACnBC,OAAO;EACPC,qBAAqB;EACrBC,WAAW;EACXC,gBAAgB;EAChBC,qBAAqB;EACrBb,uBAAuB;EACvBc;AAKF,CAAC,KAAgD;EAC/C;EACA;EACA,IAAIC,SAAoC,GACtCL,qBAAqB,IAAIF,mBAAmB,aAAnBA,mBAAmB,eAAnBA,mBAAmB,CAAEQ,QAAQ,CAAC,SAAS,CAAC,GAC7D,KAAK,GACLR,mBAAmB,aAAnBA,mBAAmB,eAAnBA,mBAAmB,CAAEQ,QAAQ,CAAC,SAAS,CAAC,GACxC,KAAK,GACLC,SAAS;;EAEf;EACA;EACA;EACA,IAAI,CAACT,mBAAmB,IAAI,CAACG,WAAW,EAAE;IACxCI,SAAS,GAAG,KAAK;EACnB;EAEA,MAAMG,8BAA8B,GAAGL,qBAAqB,GACxDb,uBAAuB,CAACmB,+BAA+B,CAACN,qBAAqB,CAAC,GAC9EI,SAAS;EAEb,MAAMG,mCAAmC,GACvC,CAAAF,8BAA8B,aAA9BA,8BAA8B,uBAA9BA,8BAA8B,CAAEG,MAAM,MAAK9C,iCAAiC,CAAC+C,OAAO,KACpFR,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAES,eAAe,CAACP,QAAQ,CAACE,8BAA8B,CAACM,OAAO,CAAC;EAE9E,MAAMC,mCAAmC,GACvC,CAAAP,8BAA8B,aAA9BA,8BAA8B,uBAA9BA,8BAA8B,CAAEG,MAAM,MAAK,WAAW,KACtDP,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAEY,WAAW,CAACV,QAAQ,CAACE,8BAA8B,CAACS,GAAG,CAAC;EAEtE,MAAMC,yBAAyB,GAAGH,mCAAmC,IAAIL,mCAAmC;EAE5G,IAAI,CAACX,OAAO,EAAE;IACZ,MAAM,IAAIb,KAAK,CAAC,sBAAsB,CAAC;EACzC;EAEA,MAAMiC,GAAG,GAAG,MAAMzC,KAAK,CAAC0C,MAAM,CAACC,SAAS,CAAC;IACvCtB,OAAO;IACPuB,UAAU,EAAEJ,yBAAyB,GAAGhD,UAAU,CAACqD,aAAa,GAAGrD,UAAU,CAACsD;EAChF,CAAC,CAAC;EAEF,IAAInB,SAAS,EAAE;IACb,MAAMoB,SAAS,GAAG,MAAM/C,KAAK,CAACgD,IAAI,CAACC,MAAM,CAA4C;MACnFC,MAAM,EAAEvB,SAAS;MACjBwB,OAAO,EAAE;QACPV;MACF;IACF,CAAC,CAAC;IAEF,IAAIM,SAAS,CAACK,QAAQ,CAACC,KAAK,KAAK,UAAU,EAAE;MAC3C,MAAM,IAAI7C,KAAK,CAAC,sBAAsB,CAAC;IACzC;IAEA,IAAI8C,oBAA4B;IAChC,IAAI3B,SAAS,KAAK,KAAK,EAAE;MACvB,MAAM4B,MAAM,GAAGnE,MAAM,CAACoE,OAAO,CAACT,SAAS,CAACK,QAAQ,CAACK,GAAG,CAAC;MACrDH,oBAAoB,GAAGC,MAAM,CAACD,oBAAoB;IACpD,CAAC,MAAM;MACL,MAAMI,MAAM,GAAGrE,MAAM,CAACmE,OAAO,CAACT,SAAS,CAACK,QAAQ,CAACK,GAAG,CAAC;MACrDH,oBAAoB,GAAG,GAAGI,MAAM,CAACD,GAAG,IAAIC,MAAM,CAACjB,GAAG,CAACkB,WAAW,EAAE;IAClE;IAEA,OAAO;MACLC,MAAM,EAAEN,oBAAoB;MAC5BJ,MAAM,EAAE;IACV,CAAC;EACH;;EAEA;EACA,IACE3B,WAAW,KACVC,gBAAgB,KAAKrC,iCAAiC,CAAC0E,OAAO,IAC7DrC,gBAAgB,KAAKrC,iCAAiC,CAAC+C,OAAO,CAAC,EACjE;IACA,OAAO;MACLgB,MAAM,EAAE,KAAK;MACbY,GAAG,EAAExE,aAAa,CAACmD,GAAG;IACxB,CAAC;EACH;EAEA,MAAM,IAAIjC,KAAK,CACb,wIACEe,WAAW,GAAG,OAAO,GAAG,EAAE,GACzB,CAAAH,mBAAmB,aAAnBA,mBAAmB,uBAAnBA,mBAAmB,CAAE2C,IAAI,CAAC,IAAI,CAAC,KAAI,SAAS,EACjD,CAAC;AACH,CAAC;AAED,OAAO,MAAMC,oCAAoC,GAAG,MAAAA,CAAO;EACzDhE,KAAK;EACLY,uBAAuB;EACvBqD,aAAa;EACbC,mCAAmC;EACnCC,QAAQ;EACRzC;AAQF,CAAC,KAAK;EACJ,MAAM0C,2BAA2B,GAAGF,mCAAmC,GACnEtD,uBAAuB,CAACyD,kBAAkB,CAACC,MAAM,CAAEC,OAAO,IACxDL,mCAAmC,CAACtC,QAAQ,CAAC2C,OAAO,CAACC,EAAE,CACzD,CAAC,GACD,CAAC5D,uBAAuB,CAACyD,kBAAkB,CAAC,CAAC,CAAC,CAAC;EAEnD,IAAID,2BAA2B,CAACK,MAAM,KAAK,CAAC,EAAE;IAC5C,MAAM,IAAIjE,KAAK,CACb,+DAA+D0D,mCAAmC,gEACpG,CAAC;EACH;EAEA,MAAMQ,WAAW,GAAG,MAAM1E,KAAK,CAACa,OAAO,CAACC,eAAe,CAAC6D,kBAAkB,CAAC;IACzE/D,uBAAuB;IACvB,GAAGqD,aAAa;IAChBE,QAAQ;IACRS,oBAAoB,EAAEV,mCAAmC;IACzDW,sBAAsB,EAAE,KAAK;IAC7BC,2CAA2C,EAAE;IAC3C;IACA;IACA;IACAvF,qBAAqB,CAACwF,KAAK,EAC3BxF,qBAAqB,CAACyF,KAAK,CAC5B;IACDC,yBAAyB,EAAE,MAAAA,CAAO;MAChC7D,mBAAmB;MACnBC,OAAO;MACPC,qBAAqB;MACrBC,WAAW;MACXC,gBAAgB;MAChBC;IACkC,CAAC,KAAK;MACxC,OAAON,+BAA+B,CAAC;QACrCnB,KAAK;QACLoB,mBAAmB;QACnBC,OAAO;QACPC,qBAAqB;QACrBC,WAAW;QACXC,gBAAgB;QAChBC,qBAAqB;QACrBb,uBAAuB;QACvBc;MACF,CAAC,CAAC;IACJ;EACF,CAAC,CAAC;;EAEF;EACA,MAAM,CAACwD,eAAe,CAAC,GAAGR,WAAW;EACrC,IAAI,CAACQ,eAAe,EAClB,MAAM,IAAI1E,KAAK,CAAC,oFAAoF,CAAC;EAEvG,IAAI2E,MAAwD;EAE5D,IAAI,OAAOD,eAAe,KAAK,QAAQ,EAAE;IACvC,MAAM,IAAI1E,KAAK,CAAC,mFAAmF,CAAC;EACtG;EAEA,IAAI,SAAS,IAAI0E,eAAe,CAACE,UAAU,EAAE;IAC3C;IACAD,MAAM,GAAG,IAAIxF,aAAa,CAAC;MACzB0F,cAAc,EAAEH,eAAe,CAACE,UAAU,CAACE;IAC7C,CAAC,CAAC;EACJ,CAAC,MAAM,IAAIJ,eAAe,CAACE,UAAU,YAAY3F,IAAI,EAAE;IACrD0F,MAAM,GAAG,IAAIzF,UAAU,CAAC;MACtB6F,IAAI,EAAEL,eAAe,CAACE;IACxB,CAAC,CAAC;EACJ,CAAC,MAAM;IACLD,MAAM,GAAG,IAAIvF,mBAAmB,CAAC;MAC/BwF,UAAU,EAAEF,eAAe,CAACE,UAAwE;MACpG;MACAI,IAAI,EAAE,CAAC;IACT,CAAC,CAAC;EACJ;EAEA,MAAMC,iBAAiB,GAAG5F,kCAAkC,CAC1De,uBAAuB,CAACyD,kBAAkB,CAAC,CAAC,CAAC,EAC7C;IACEG,EAAE,EAAE5D,uBAAuB,CAAC8E,QAAQ,CAACC,MAAM;IAC3CC,OAAO,EAAEhF,uBAAuB,CAAC8E,QAAQ,CAACG,wBAAwB,CAACD;EACrE,CACF,CAAC;EAED9F,8BAA8B,CAACqF,MAAM,EAAEM,iBAAiB,CAAC;EAEzD,OAAON,MAAM;AACf,CAAC","ignoreList":[]}
+{"version":3,"names":["OpenId4VciCredentialFormatProfile","DidJwk","DidKey","getJwkFromKey","JwaSignatureAlgorithm","KeyBackend","Mdoc","MdocRecord","SdJwtVcRecord","W3cCredentialRecord","extractOpenId4VcCredentialMetadata","setOpenId4VcCredentialMetadata","temporaryMetaVanillaObject","resolveOpenId4VciOffer","agent","data","uri","authorization","offerUri","encodeURIComponent","JSON","stringify","Error","config","logger","info","resolvedCredentialOffer","modules","openId4VcHolder","resolveCredentialOffer","acquirePreAuthorizedAccessToken","txCode","requestToken","customCredentialBindingResolver","supportedDidMethods","keyType","supportsAllDidMethods","supportsJwk","credentialFormat","supportedCredentialId","pidSchemes","didMethod","includes","undefined","offeredCredentialConfiguration","offeredCredentialConfigurations","shouldKeyBeHardwareBackedForMsoMdoc","format","MsoMdoc","msoMdocDoctypes","doctype","shouldKeyBeHardwareBackedForSdJwtVc","sdJwtVcVcts","vct","shouldKeyBeHardwareBacked","key","wallet","createKey","keyBackend","SecureElement","Software","didResult","dids","create","method","options","didState","state","verificationMethodId","didJwk","fromDid","did","didKey","fingerprint","didUrl","SdJwtVc","jwk","join","receiveCredentialFromOpenId4VciOffer","tokenResponse","credentialConfigurationIdsToRequest","clientId","offeredCredentialsToRequest","offeredCredentials","filter","offered","id","length","credentials","requestCredentials","credentialsToRequest","verifyCredentialStatus","allowedProofOfPossessionSignatureAlgorithms","EdDSA","ES256","credentialBindingResolver","firstCredential","record","credential","compactSdJwtVc","compact","mdoc","tags","notificationMetadata","openId4VcMetadata","metadata","issuer","display","credentialIssuerMetadata"],"sourceRoot":"../../../../src","sources":["modules/openid/offerResolve.tsx"],"mappings":"AAAA,SAGEA,iCAAiC,QAI5B,qBAAqB;AAC5B,SAEEC,MAAM,EACNC,MAAM,EACNC,aAAa,EACbC,qBAAqB,EAErBC,UAAU,EAEVC,IAAI,EACJC,UAAU,EACVC,aAAa,EACbC,mBAAmB,QAGd,gBAAgB;AACvB,SACEC,kCAAkC,EAClCC,8BAA8B,EAC9BC,0BAA0B,QACrB,YAAY;AAEnB,OAAO,MAAMC,sBAAsB,GAAG,MAAAA,CAAO;EAC3CC,KAAK;EACLC,IAAI;EACJC,GAAG;EACHC;AAQF,CAAC,KAAiD;EAChD,IAAIC,QAAQ,GAAGF,GAAG;EAElB,IAAI,CAACE,QAAQ,IAAIH,IAAI,EAAE;IACrB;IACA;IACAG,QAAQ,GAAG,8CAA8CC,kBAAkB,CAACC,IAAI,CAACC,SAAS,CAACN,IAAI,CAAC,CAAC,EAAE;EACrG,CAAC,MAAM,IAAI,CAACG,QAAQ,EAAE;IACpB,MAAM,IAAII,KAAK,CAAC,qCAAqC,CAAC;EACxD;EAEAR,KAAK,CAACS,MAAM,CAACC,MAAM,CAACC,IAAI,CAAC,wBAAwBP,QAAQ,EAAE,EAAE;IAC3DA,QAAQ;IACRH,IAAI,EAAEA,IAAI;IACVC,GAAG,EAAEE;EACP,CAAC,CAAC;EAEF,MAAMQ,uBAAuB,GAAG,MAAMZ,KAAK,CAACa,OAAO,CAACC,eAAe,CAACC,sBAAsB,CAACX,QAAQ,CAAC;EAEpG,IAAID,aAAa,EAAE;IACjB,MAAM,IAAIK,KAAK,CAAC,4DAA4D,CAAC;EAC/E;EAEA,OAAOI,uBAAuB;AAChC,CAAC;AAED,OAAO,eAAeI,+BAA+BA,CAAC;EACpDhB,KAAK;EACLY,uBAAuB;EACvBK;AAKF,CAAC,EAA2C;EAC1C,OAAO,MAAMjB,KAAK,CAACa,OAAO,CAACC,eAAe,CAACI,YAAY,CAAC;IACtDN,uBAAuB;IACvBK;EACF,CAAC,CAAC;AACJ;AAEA,OAAO,MAAME,+BAA+B,GAAG,MAAAA,CAAO;EACpDnB,KAAK;EACLoB,mBAAmB;EACnBC,OAAO;EACPC,qBAAqB;EACrBC,WAAW;EACXC,gBAAgB;EAChBC,qBAAqB;EACrBb,uBAAuB;EACvBc;AAKF,CAAC,KAAgD;EAC/C;EACA;EACA,IAAIC,SAAoC,GACtCL,qBAAqB,IAAIF,mBAAmB,aAAnBA,mBAAmB,eAAnBA,mBAAmB,CAAEQ,QAAQ,CAAC,SAAS,CAAC,GAC7D,KAAK,GACLR,mBAAmB,aAAnBA,mBAAmB,eAAnBA,mBAAmB,CAAEQ,QAAQ,CAAC,SAAS,CAAC,GACxC,KAAK,GACLC,SAAS;;EAEf;EACA;EACA;EACA,IAAI,CAACT,mBAAmB,IAAI,CAACG,WAAW,EAAE;IACxCI,SAAS,GAAG,KAAK;EACnB;EAEA,MAAMG,8BAA8B,GAAGL,qBAAqB,GACxDb,uBAAuB,CAACmB,+BAA+B,CAACN,qBAAqB,CAAC,GAC9EI,SAAS;EAEb,MAAMG,mCAAmC,GACvC,CAAAF,8BAA8B,aAA9BA,8BAA8B,uBAA9BA,8BAA8B,CAAEG,MAAM,MAAK/C,iCAAiC,CAACgD,OAAO,KACpFR,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAES,eAAe,CAACP,QAAQ,CAACE,8BAA8B,CAACM,OAAO,CAAC;EAE9E,MAAMC,mCAAmC,GACvC,CAAAP,8BAA8B,aAA9BA,8BAA8B,uBAA9BA,8BAA8B,CAAEG,MAAM,MAAK,WAAW,KACtDP,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAEY,WAAW,CAACV,QAAQ,CAACE,8BAA8B,CAACS,GAAG,CAAC;EAEtE,MAAMC,yBAAyB,GAAGH,mCAAmC,IAAIL,mCAAmC;EAE5G,IAAI,CAACX,OAAO,EAAE;IACZ,MAAM,IAAIb,KAAK,CAAC,sBAAsB,CAAC;EACzC;EAEA,MAAMiC,GAAG,GAAG,MAAMzC,KAAK,CAAC0C,MAAM,CAACC,SAAS,CAAC;IACvCtB,OAAO;IACPuB,UAAU,EAAEJ,yBAAyB,GAAGjD,UAAU,CAACsD,aAAa,GAAGtD,UAAU,CAACuD;EAChF,CAAC,CAAC;EAEF,IAAInB,SAAS,EAAE;IACb,MAAMoB,SAAS,GAAG,MAAM/C,KAAK,CAACgD,IAAI,CAACC,MAAM,CAA4C;MACnFC,MAAM,EAAEvB,SAAS;MACjBwB,OAAO,EAAE;QACPV;MACF;IACF,CAAC,CAAC;IAEF,IAAIM,SAAS,CAACK,QAAQ,CAACC,KAAK,KAAK,UAAU,EAAE;MAC3C,MAAM,IAAI7C,KAAK,CAAC,sBAAsB,CAAC;IACzC;IAEA,IAAI8C,oBAA4B;IAChC,IAAI3B,SAAS,KAAK,KAAK,EAAE;MACvB,MAAM4B,MAAM,GAAGpE,MAAM,CAACqE,OAAO,CAACT,SAAS,CAACK,QAAQ,CAACK,GAAG,CAAC;MACrDH,oBAAoB,GAAGC,MAAM,CAACD,oBAAoB;IACpD,CAAC,MAAM;MACL,MAAMI,MAAM,GAAGtE,MAAM,CAACoE,OAAO,CAACT,SAAS,CAACK,QAAQ,CAACK,GAAG,CAAC;MACrDH,oBAAoB,GAAG,GAAGI,MAAM,CAACD,GAAG,IAAIC,MAAM,CAACjB,GAAG,CAACkB,WAAW,EAAE;IAClE;IAEA,OAAO;MACLC,MAAM,EAAEN,oBAAoB;MAC5BJ,MAAM,EAAE;IACV,CAAC;EACH;;EAEA;EACA,IACE3B,WAAW,KACVC,gBAAgB,KAAKtC,iCAAiC,CAAC2E,OAAO,IAC7DrC,gBAAgB,KAAKtC,iCAAiC,CAACgD,OAAO,CAAC,EACjE;IACA,OAAO;MACLgB,MAAM,EAAE,KAAK;MACbY,GAAG,EAAEzE,aAAa,CAACoD,GAAG;IACxB,CAAC;EACH;EAEA,MAAM,IAAIjC,KAAK,CACb,wIACEe,WAAW,GAAG,OAAO,GAAG,EAAE,GACzB,CAAAH,mBAAmB,aAAnBA,mBAAmB,uBAAnBA,mBAAmB,CAAE2C,IAAI,CAAC,IAAI,CAAC,KAAI,SAAS,EACjD,CAAC;AACH,CAAC;AAED,OAAO,MAAMC,oCAAoC,GAAG,MAAAA,CAAO;EACzDhE,KAAK;EACLY,uBAAuB;EACvBqD,aAAa;EACbC,mCAAmC;EACnCC,QAAQ;EACRzC;AAQF,CAAC,KAAK;EACJ,MAAM0C,2BAA2B,GAAGF,mCAAmC,GACnEtD,uBAAuB,CAACyD,kBAAkB,CAACC,MAAM,CAAEC,OAAO,IACxDL,mCAAmC,CAACtC,QAAQ,CAAC2C,OAAO,CAACC,EAAE,CACzD,CAAC,GACD,CAAC5D,uBAAuB,CAACyD,kBAAkB,CAAC,CAAC,CAAC,CAAC;EAEnD,IAAID,2BAA2B,CAACK,MAAM,KAAK,CAAC,EAAE;IAC5C,MAAM,IAAIjE,KAAK,CACb,+DAA+D0D,mCAAmC,gEACpG,CAAC;EACH;EAEA,MAAMQ,WAAW,GAAG,MAAM1E,KAAK,CAACa,OAAO,CAACC,eAAe,CAAC6D,kBAAkB,CAAC;IACzE/D,uBAAuB;IACvB,GAAGqD,aAAa;IAChBE,QAAQ;IACRS,oBAAoB,EAAEV,mCAAmC;IACzDW,sBAAsB,EAAE,KAAK;IAC7BC,2CAA2C,EAAE;IAC3C;IACA;IACA;IACAxF,qBAAqB,CAACyF,KAAK,EAC3BzF,qBAAqB,CAAC0F,KAAK,CAC5B;IACDC,yBAAyB,EAAE,MAAAA,CAAO;MAChC7D,mBAAmB;MACnBC,OAAO;MACPC,qBAAqB;MACrBC,WAAW;MACXC,gBAAgB;MAChBC;IACkC,CAAC,KAAK;MACxC,OAAON,+BAA+B,CAAC;QACrCnB,KAAK;QACLoB,mBAAmB;QACnBC,OAAO;QACPC,qBAAqB;QACrBC,WAAW;QACXC,gBAAgB;QAChBC,qBAAqB;QACrBb,uBAAuB;QACvBc;MACF,CAAC,CAAC;IACJ;EACF,CAAC,CAAC;;EAEF;EACA,MAAM,CAACwD,eAAe,CAAC,GAAGR,WAAW;EAErC,IAAI,CAACQ,eAAe,EAClB,MAAM,IAAI1E,KAAK,CAAC,oFAAoF,CAAC;EAEvG,IAAI2E,MAAwD;EAE5D,IAAI,OAAOD,eAAe,KAAK,QAAQ,EAAE;IACvC,MAAM,IAAI1E,KAAK,CAAC,mFAAmF,CAAC;EACtG;EAEA,IAAI,SAAS,IAAI0E,eAAe,CAACE,UAAU,EAAE;IAC3C;IACAD,MAAM,GAAG,IAAIzF,aAAa,CAAC;MACzB2F,cAAc,EAAEH,eAAe,CAACE,UAAU,CAACE;IAC7C,CAAC,CAAC;EACJ,CAAC,MAAM,IAAIJ,eAAe,CAACE,UAAU,YAAY5F,IAAI,EAAE;IACrD2F,MAAM,GAAG,IAAI1F,UAAU,CAAC;MACtB8F,IAAI,EAAEL,eAAe,CAACE;IACxB,CAAC,CAAC;EACJ,CAAC,MAAM;IACLD,MAAM,GAAG,IAAIxF,mBAAmB,CAAC;MAC/ByF,UAAU,EAAEF,eAAe,CAACE,UAAwE;MACpG;MACAI,IAAI,EAAE,CAAC;IACT,CAAC,CAAC;EACJ;EAEA,MAAMC,oBAAoB,GAAG;IAAE,GAAGP,eAAe,CAACO;EAAqB,CAAC;EACxE,IAAIA,oBAAoB,EAAE;IACxB3F,0BAA0B,CAAC2F,oBAAoB,GAAGA,oBAAoB;EACxE;EAEA,MAAMC,iBAAiB,GAAG9F,kCAAkC,CAC1DgB,uBAAuB,CAACyD,kBAAkB,CAAC,CAAC,CAAC,EAC7C;IACEG,EAAE,EAAE5D,uBAAuB,CAAC+E,QAAQ,CAACC,MAAM;IAC3CC,OAAO,EAAEjF,uBAAuB,CAAC+E,QAAQ,CAACG,wBAAwB,CAACD;EACrE,CACF,CAAC;EAEDhG,8BAA8B,CAACsF,MAAM,EAAEO,iBAAiB,CAAC;EAEzD,OAAOP,MAAM;AACf,CAAC","ignoreList":[]}

package/lib/module/modules/openid/refresh/reIssuance.js

@@ -0,0 +1,89 @@
+import { JwaSignatureAlgorithm, Mdoc, MdocRecord, SdJwtVcRecord, W3cCredentialRecord } from '@credo-ts/core';
+import { customCredentialBindingResolver } from '../offerResolve';
+import { extractOpenId4VcCredentialMetadata, getRefreshCredentialMetadata, setOpenId4VcCredentialMetadata, setRefreshCredentialMetadata } from '../metadata';
+import { RefreshStatus } from './types';
+export async function reissueCredentialWithAccessToken({
+  agent,
+  logger,
+  record,
+  tokenResponse,
+  clientId,
+  pidSchemes
+}) {
+  if (!record) {
+    throw new Error('No credential record provided for re-issuance.');
+  }
+  const refreshMetaData = getRefreshCredentialMetadata(record);
+  if (!refreshMetaData) {
+    throw new Error('No refresh metadata found on the record for re-issuance.');
+  }
+  const {
+    credentialConfigurationId,
+    resolvedCredentialOffer
+  } = refreshMetaData;
+  if (!resolvedCredentialOffer) {
+    throw new Error('No resolved credential offer found in the refresh metadata for re-issuance.');
+  }
+  if (!tokenResponse.access_token) {
+    throw new Error('No access token found in the token response for re-issuance.');
+  }
+  logger.info('*** Starting to get new credential via re-issuance flow ***');
+  // Request a **new** credential using the *existing* configuration id
+  const creds = await agent.modules.openId4VcHolder.requestCredentials({
+    resolvedCredentialOffer,
+    accessToken: tokenResponse.access_token,
+    tokenType: tokenResponse.token_type || 'Bearer',
+    cNonce: tokenResponse.c_nonce,
+    clientId,
+    credentialsToRequest: [credentialConfigurationId],
+    verifyCredentialStatus: false,
+    // you’ll check after storing
+    allowedProofOfPossessionSignatureAlgorithms: [JwaSignatureAlgorithm.EdDSA, JwaSignatureAlgorithm.ES256],
+    credentialBindingResolver: async opts => customCredentialBindingResolver({
+      agent,
+      supportedDidMethods: opts.supportedDidMethods,
+      keyType: opts.keyType,
+      supportsAllDidMethods: opts.supportsAllDidMethods,
+      supportsJwk: opts.supportsJwk,
+      credentialFormat: opts.credentialFormat,
+      supportedCredentialId: opts.supportedCredentialId,
+      resolvedCredentialOffer: resolvedCredentialOffer,
+      pidSchemes
+    })
+  });
+  logger.info('*** New credential received via re-issuance flow ***.');
+
+  // Normalize to your local record types
+  const [firstCredential] = creds;
+  if (!firstCredential || typeof firstCredential === 'string') {
+    throw new Error('Issuer returned empty or malformed credential on re-issuance.');
+  }
+  let newRecord;
+  if ('compact' in firstCredential.credential) {
+    newRecord = new SdJwtVcRecord({
+      compactSdJwtVc: firstCredential.credential.compact
+    });
+  } else if ((firstCredential === null || firstCredential === void 0 ? void 0 : firstCredential.credential) instanceof Mdoc) {
+    newRecord = new MdocRecord({
+      mdoc: firstCredential.credential
+    });
+  } else {
+    newRecord = new W3cCredentialRecord({
+      credential: firstCredential.credential,
+      tags: {}
+    });
+  }
+  const openId4VcMetadata = extractOpenId4VcCredentialMetadata(resolvedCredentialOffer.offeredCredentials[0], {
+    id: resolvedCredentialOffer.metadata.issuer,
+    display: resolvedCredentialOffer.metadata.credentialIssuerMetadata.display
+  });
+  setOpenId4VcCredentialMetadata(newRecord, openId4VcMetadata);
+  setRefreshCredentialMetadata(newRecord, {
+    ...refreshMetaData,
+    refreshToken: tokenResponse.refresh_token || refreshMetaData.refreshToken,
+    lastCheckedAt: Date.now(),
+    lastCheckResult: RefreshStatus.Valid
+  });
+  return newRecord;
+}
+//# sourceMappingURL=reIssuance.js.map