npm - @bsv/sdk - Versions diffs - 1.2.20 → 1.2.22 - Mend

@bsv/sdk 1.2.20 → 1.2.22

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (160) hide show

package/dist/esm/src/auth/certificates/MasterCertificate.js ADDED Viewed

@@ -0,0 +1,73 @@
+import { SymmetricKey, Utils } from '../../../mod.js';
+import Certificate from './Certificate.js';
+/**
+ * MasterCertificate extends the base Certificate class to manage a master keyring, enabling the creation of verifiable certificates.
+ *
+ * It allows for the selective disclosure of certificate fields by creating a `VerifiableCertificate` for a specific verifier.
+ * The `MasterCertificate` can securely decrypt each master key and re-encrypt it for a verifier, creating a customized
+ * keyring containing only the keys necessary for the verifier to access designated fields.
+ *
+ */
+export class MasterCertificate extends Certificate {
+    masterKeyring;
+    constructor(type, serialNumber, subject, certifier, revocationOutpoint, fields, masterKeyring, signature) {
+        super(type, serialNumber, subject, certifier, revocationOutpoint, fields, signature);
+        this.masterKeyring = masterKeyring;
+    }
+    /**
+     * Creates a verifiable certificate structure for a specific verifier, allowing them access to specified fields.
+     * This method decrypts the master field keys for each field specified in `fieldsToReveal` and re-encrypts them
+     * for the verifier's identity key. The resulting certificate structure includes only the fields intended to be
+     * revealed and a verifier-specific keyring for field decryption.
+     *
+     * @param {Wallet} subjectWallet - The wallet instance of the subject, used to decrypt and re-encrypt field keys.
+     * @param {string} verifierIdentityKey - The public identity key of the verifier who will receive access to the specified fields.
+     * @param {string[]} fieldsToReveal - An array of field names to be revealed to the verifier. Must be a subset of the certificate's fields.
+     * @param {string} [originator] - Optional originator identifier, used if additional context is needed for decryption and encryption operations.
+     * @returns {Promise<Object>} - A new certificate structure containing the original encrypted fields, the verifier-specific field decryption keyring, and essential certificate metadata.
+     * @throws {Error} Throws an error if:
+     *   - fieldsToReveal is empty or a field in `fieldsToReveal` does not exist in the certificate.
+     *   - The decrypted master field key fails to decrypt the corresponding field (indicating an invalid key).
+     */
+    async createKeyringForVerifier(subjectWallet, verifierIdentityKey, fieldsToReveal, originator) {
+        if (!Array.isArray(fieldsToReveal)) {
+            throw new Error('fieldsToReveal must be an array of strings');
+        }
+        const fieldRevelationKeyring = {};
+        for (const fieldName of fieldsToReveal) {
+            // Make sure that fields to reveal is a subset of the certificate fields
+            if (!this.fields[fieldName]) {
+                throw new Error(`Fields to reveal must be a subset of the certificate fields. Missing the "${fieldName}" field.`);
+            }
+            // Create a keyID
+            const keyID = `${this.serialNumber} ${fieldName}`;
+            const encryptedMasterFieldKey = this.masterKeyring[fieldName];
+            // Decrypt the master field key
+            const { plaintext: masterFieldKey } = await subjectWallet.decrypt({
+                ciphertext: Utils.toArray(encryptedMasterFieldKey, 'base64'),
+                protocolID: [2, 'certificate field encryption'],
+                keyID,
+                counterparty: 'self'
+            }, originator);
+            // Verify that derived key actually decrypts requested field
+            try {
+                new SymmetricKey(masterFieldKey).decrypt(Utils.toArray(this.fields[fieldName], 'base64'));
+            }
+            catch (_) {
+                throw new Error(`Decryption of the "${fieldName}" field with its revelation key failed.`);
+            }
+            // Encrypt derived fieldRevelationKey for verifier
+            const { ciphertext: encryptedFieldRevelationKey } = await subjectWallet.encrypt({
+                plaintext: masterFieldKey,
+                protocolID: [2, 'certificate field encryption'],
+                keyID: `${this.serialNumber} ${fieldName}`,
+                counterparty: verifierIdentityKey
+            }, originator);
+            // Add encryptedFieldRevelationKey to fieldRevelationKeyring
+            fieldRevelationKeyring[fieldName] = Utils.toBase64(encryptedFieldRevelationKey);
+        }
+        // Return the field revelation keyring which can be used to create a verifiable certificate for a verifier.
+        return fieldRevelationKeyring;
+    }
+}
+//# sourceMappingURL=MasterCertificate.js.map

package/dist/esm/src/auth/certificates/MasterCertificate.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"MasterCertificate.js","sourceRoot":"","sources":["../../../../../src/auth/certificates/MasterCertificate.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,YAAY,EACZ,KAAK,EAON,MAAM,iBAAiB,CAAA;AACxB,OAAO,WAAW,MAAM,kBAAkB,CAAA;AAE1C;;;;;;;GAOG;AACH,MAAM,OAAO,iBAAkB,SAAQ,WAAW;IAShD,aAAa,CAAkD;IAE/D,YACE,IAAkB,EAClB,YAA0B,EAC1B,OAAkB,EAClB,SAAoB,EACpB,kBAAkC,EAClC,MAAwD,EACxD,aAA+D,EAC/D,SAAqB;QAErB,KAAK,CAAC,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE,SAAS,EAAE,kBAAkB,EAAE,MAAM,EAAE,SAAS,CAAC,CAAA;QACpF,IAAI,CAAC,aAAa,GAAG,aAAa,CAAA;IACpC,CAAC;IAED;;;;;;;;;;;;;;OAcG;IACH,KAAK,CAAC,wBAAwB,CAAC,aAAqB,EAAE,mBAA2B,EAAE,cAAwB,EAAE,UAAmB;QAC9H,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC,EAAE,CAAC;YACnC,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAA;QAC/D,CAAC;QACD,MAAM,sBAAsB,GAAG,EAAE,CAAA;QACjC,KAAK,MAAM,SAAS,IAAI,cAAc,EAAE,CAAC;YACvC,wEAAwE;YACxE,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC;gBAC5B,MAAM,IAAI,KAAK,CAAC,6EAA6E,SAAS,UAAU,CAAC,CAAA;YACnH,CAAC;YAED,iBAAiB;YACjB,MAAM,KAAK,GAAG,GAAG,IAAI,CAAC,YAAY,IAAI,SAAS,EAAE,CAAA;YACjD,MAAM,uBAAuB,GAAG,IAAI,CAAC,aAAa,CAAC,SAAS,CAAC,CAAA;YAE7D,+BAA+B;YAC/B,MAAM,EAAE,SAAS,EAAE,cAAc,EAAE,GAAG,MAAM,aAAa,CAAC,OAAO,CAAC;gBAChE,UAAU,EAAE,KAAK,CAAC,OAAO,CAAC,uBAAuB,EAAE,QAAQ,CAAC;gBAC5D,UAAU,EAAE,CAAC,CAAC,EAAE,8BAA8B,CAAC;gBAC/C,KAAK;gBACL,YAAY,EAAE,MAAM;aACrB,EAAE,UAAU,CAAC,CAAA;YAEd,4DAA4D;YAC5D,IAAI,CAAC;gBACH,IAAI,YAAY,CAAC,cAAc,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,QAAQ,CAAC,CAAC,CAAA;YAC3F,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,MAAM,IAAI,KAAK,CAAC,sBAAsB,SAAS,yCAAyC,CAAC,CAAA;YAC3F,CAAC;YAED,kDAAkD;YAClD,MAAM,EAAE,UAAU,EAAE,2BAA2B,EAAE,GAAG,MAAM,aAAa,CAAC,OAAO,CAAC;gBAC9E,SAAS,EAAE,cAAc;gBACzB,UAAU,EAAE,CAAC,CAAC,EAAE,8BAA8B,CAAC;gBAC/C,KAAK,EAAE,GAAG,IAAI,CAAC,YAAY,IAAI,SAAS,EAAE;gBAC1C,YAAY,EAAE,mBAAmB;aAClC,EAAE,UAAU,CAAC,CAAA;YAEd,4DAA4D;YAC5D,sBAAsB,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,QAAQ,CAAC,2BAA2B,CAAC,CAAA;QACjF,CAAC;QAED,2GAA2G;QAC3G,OAAO,sBAAsB,CAAA;IAC/B,CAAC;CACF"}

package/dist/esm/src/auth/certificates/VerifiableCertificate.js ADDED Viewed

@@ -0,0 +1,44 @@
+import { SymmetricKey, Utils } from '../../../mod.js';
+import Certificate from './Certificate.js';
+/**
+ * VerifiableCertificate extends the Certificate class, adding functionality to manage a verifier-specific keyring.
+ * This keyring allows selective decryption of certificate fields for authorized verifiers.
+ */
+export class VerifiableCertificate extends Certificate {
+    keyring;
+    decryptedFields;
+    constructor(type, serialNumber, subject, certifier, revocationOutpoint, fields, signature, keyring, decryptedFields) {
+        super(type, serialNumber, subject, certifier, revocationOutpoint, fields, signature);
+        this.keyring = keyring;
+        this.decryptedFields = decryptedFields;
+    }
+    /**
+     * Decrypts certificate fields using the provided keyring and verifier wallet
+     * @param {Wallet} verifierWallet - The wallet instance of the certificate's verifier, used to decrypt field keys.
+     * @returns {Promise<Record<CertificateFieldNameUnder50Bytes, string>>} - A promise that resolves to an object where each key is a field name and each value is the decrypted field value as a string.
+     * @throws {Error} Throws an error if any of the decryption operations fail, with a message indicating the failure context.
+     */
+    async decryptFields(verifierWallet) {
+        if (!this.keyring || Object.keys(this.keyring).length === 0) {
+            throw new Error('A keyring is required to decrypt certificate fields for the verifier.');
+        }
+        try {
+            const decryptedFields = {};
+            for (const fieldName in this.keyring) {
+                const { plaintext: fieldRevelationKey } = await verifierWallet.decrypt({
+                    ciphertext: Utils.toArray(this.keyring[fieldName], 'base64'),
+                    protocolID: [2, 'certificate field encryption'],
+                    keyID: `${this.serialNumber} ${fieldName}`,
+                    counterparty: this.subject
+                });
+                const fieldValue = new SymmetricKey(fieldRevelationKey).decrypt(Utils.toArray(this.fields[fieldName], 'base64'));
+                decryptedFields[fieldName] = Utils.toUTF8(fieldValue);
+            }
+            return decryptedFields;
+        }
+        catch (error) {
+            throw new Error(`Failed to decrypt certificate fields using keyring: ${error instanceof Error ? error.message : error}`);
+        }
+    }
+}
+//# sourceMappingURL=VerifiableCertificate.js.map

package/dist/esm/src/auth/certificates/VerifiableCertificate.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"VerifiableCertificate.js","sourceRoot":"","sources":["../../../../../src/auth/certificates/VerifiableCertificate.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,YAAY,EACZ,KAAK,EAON,MAAM,iBAAiB,CAAA;AACxB,OAAO,WAAW,MAAM,kBAAkB,CAAA;AAE1C;;;GAGG;AACH,MAAM,OAAO,qBAAsB,SAAQ,WAAW;IASpD,OAAO,CAAkD;IACzD,eAAe,CAAyD;IAExE,YACE,IAAkB,EAClB,YAA0B,EAC1B,OAAkB,EAClB,SAAoB,EACpB,kBAAkC,EAClC,MAAwD,EACxD,SAAqB,EACrB,OAA0D,EAC1D,eAAwE;QAExE,KAAK,CAAC,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE,SAAS,EAAE,kBAAkB,EAAE,MAAM,EAAE,SAAS,CAAC,CAAA;QACpF,IAAI,CAAC,OAAO,GAAG,OAAO,CAAA;QACtB,IAAI,CAAC,eAAe,GAAG,eAAe,CAAA;IACxC,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,aAAa,CAAC,cAAsB;QACxC,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC5D,MAAM,IAAI,KAAK,CAAC,uEAAuE,CAAC,CAAA;QAC1F,CAAC;QACD,IAAI,CAAC;YACH,MAAM,eAAe,GAAG,EAAE,CAAA;YAC1B,KAAK,MAAM,SAAS,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;gBACrC,MAAM,EAAE,SAAS,EAAE,kBAAkB,EAAE,GAAG,MAAM,cAAc,CAAC,OAAO,CAAC;oBACrE,UAAU,EAAE,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,QAAQ,CAAC;oBAC5D,UAAU,EAAE,CAAC,CAAC,EAAE,8BAA8B,CAAC;oBAC/C,KAAK,EAAE,GAAG,IAAI,CAAC,YAAY,IAAI,SAAS,EAAE;oBAC1C,YAAY,EAAE,IAAI,CAAC,OAAO;iBAC3B,CAAC,CAAA;gBAEF,MAAM,UAAU,GAAG,IAAI,YAAY,CAAC,kBAAkB,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,QAAQ,CAAC,CAAC,CAAA;gBAChH,eAAe,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC,UAAsB,CAAC,CAAA;YACnE,CAAC;YACD,OAAO,eAAe,CAAA;QACxB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CAAC,uDAAuD,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,EAAE,CAAC,CAAA;QAC1H,CAAC;IACH,CAAC;CACF"}

package/dist/esm/src/auth/certificates/index.js ADDED Viewed

@@ -0,0 +1,4 @@
+export { default as Certificate } from './Certificate.js';
+export * from './MasterCertificate.js';
+export * from './VerifiableCertificate.js';
+//# sourceMappingURL=index.js.map

package/dist/esm/src/auth/certificates/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../src/auth/certificates/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,IAAI,WAAW,EAAE,MAAM,kBAAkB,CAAA;AACzD,cAAc,wBAAwB,CAAA;AACtC,cAAc,4BAA4B,CAAA"}

package/dist/esm/src/auth/clients/AuthFetch.js ADDED Viewed

@@ -0,0 +1,409 @@
+import { Utils, Random, P2PKH, PublicKey } from '../../../mod.js';
+import { Peer } from '../Peer.js';
+import { SimplifiedFetchTransport } from '../transports/SimplifiedFetchTransport.js';
+import { SessionManager } from '../SessionManager.js';
+const PAYMENT_VERSION = '1.0';
+/**
+ * AuthFetch provides a lightweight fetch client for interacting with servers
+ * over a simplified HTTP transport mechanism. It integrates session management, peer communication,
+ * and certificate handling to enable secure and mutually-authenticated requests.
+ *
+ * Additionally, it automatically handles 402 Payment Required responses by creating
+ * and sending BSV payment transactions when necessary.
+ */
+export class AuthFetch {
+    sessionManager;
+    wallet;
+    callbacks = {};
+    certificatesReceived = [];
+    requestedCertificates;
+    peers = {};
+    /**
+    * Constructs a new SimplifiedFetch instance.
+    * @param wallet - The wallet instance for signing and authentication.
+    * @param requestedCertificates - Optional set of certificates to request from peers.
+    */
+    constructor(wallet, requestedCertificates, sessionManager) {
+        this.wallet = wallet;
+        this.requestedCertificates = requestedCertificates;
+        this.sessionManager = sessionManager || new SessionManager();
+    }
+    /**
+     * Mutually authenticates and sends a HTTP request to a server.
+     *
+     * 1) Attempt the request.
+     * 2) If 402 Payment Required, automatically create and send payment.
+     * 3) Return the final response.
+     *
+     * @param url - The URL to send the request to.
+     * @param config - Configuration options for the request, including method, headers, and body.
+     * @returns A promise that resolves with the server's response, structured as a Response-like object.
+     *
+     * @throws Will throw an error if unsupported headers are used or other validation fails.
+     */
+    async fetch(url, config = {}) {
+        if (config.retryCounter) {
+            if (config.retryCounter <= 0) {
+                throw new Error('Request failed after maximum number of retries.');
+            }
+            config.retryCounter--;
+        }
+        const response = await new Promise(async (resolve, reject) => {
+            try {
+                // Apply defaults
+                const { method = 'GET', headers = {}, body } = config;
+                // Extract a base url
+                const parsedUrl = new URL(url);
+                const baseURL = parsedUrl.origin;
+                // Create a new transport for this base url if needed
+                let peerToUse;
+                if (!this.peers[baseURL]) {
+                    // Create a peer for the request
+                    const newTransport = new SimplifiedFetchTransport(baseURL);
+                    peerToUse = {
+                        peer: new Peer(this.wallet, newTransport, this.requestedCertificates, this.sessionManager)
+                    };
+                    this.peers[baseURL] = peerToUse;
+                    const callbackId = this.peers[baseURL].peer.listenForCertificatesReceived((senderPublicKey, certs) => {
+                        this.certificatesReceived.push(...certs);
+                        // peerToUse.peer.stopListeningForCertificatesReceived()
+                    });
+                }
+                else {
+                    // Check if there's a session associated with this baseURL
+                    if (this.peers[baseURL].supportsMutualAuth === false) {
+                        // Use standard fetch if mutual authentication is not supported
+                        try {
+                            const response = await this.handleFetchAndValidate(url, config, this.peers[baseURL]);
+                            resolve(response);
+                        }
+                        catch (error) {
+                            reject(error);
+                        }
+                    }
+                    peerToUse = this.peers[baseURL];
+                }
+                // Serialize the simplified fetch request.
+                const requestNonce = Random(32);
+                const requestNonceAsBase64 = Utils.toBase64(requestNonce);
+                const writer = await this.serializeRequest(method, headers, body, parsedUrl, requestNonce);
+                // Setup general message listener to resolve requests once a response is received
+                this.callbacks[requestNonceAsBase64] = { resolve, reject };
+                const listenerId = peerToUse.peer.listenForGeneralMessages((senderPublicKey, payload) => {
+                    // Create a reader
+                    const responseReader = new Utils.Reader(payload);
+                    // Deserialize first 32 bytes of payload
+                    const responseNonceAsBase64 = Utils.toBase64(responseReader.read(32));
+                    if (responseNonceAsBase64 === requestNonceAsBase64) {
+                        peerToUse.peer.stopListeningForGeneralMessages(listenerId);
+                        // Save the identity key for the peer for future requests, since we have it here.
+                        this.peers[baseURL].identityKey = senderPublicKey;
+                        this.peers[baseURL].supportsMutualAuth = true;
+                        // Status code
+                        const statusCode = responseReader.readVarIntNum();
+                        // Headers
+                        const responseHeaders = {};
+                        const nHeaders = responseReader.readVarIntNum();
+                        if (nHeaders > 0) {
+                            for (let i = 0; i < nHeaders; i++) {
+                                const nHeaderKeyBytes = responseReader.readVarIntNum();
+                                const headerKeyBytes = responseReader.read(nHeaderKeyBytes);
+                                const headerKey = Utils.toUTF8(headerKeyBytes);
+                                const nHeaderValueBytes = responseReader.readVarIntNum();
+                                const headerValueBytes = responseReader.read(nHeaderValueBytes);
+                                const headerValue = Utils.toUTF8(headerValueBytes);
+                                responseHeaders[headerKey] = headerValue;
+                            }
+                        }
+                        // Add back the server identity key header
+                        responseHeaders['x-bsv-auth-identity-key'] = senderPublicKey;
+                        // Body
+                        let responseBody;
+                        const responseBodyBytes = responseReader.readVarIntNum();
+                        if (responseBodyBytes > 0) {
+                            responseBody = responseReader.read(responseBodyBytes);
+                        }
+                        // Create the Response object
+                        const responseValue = new Response(responseBody ? new Uint8Array(responseBody) : null, {
+                            status: statusCode,
+                            statusText: `${statusCode}`,
+                            headers: new Headers(responseHeaders)
+                        });
+                        // Resolve or reject the correct request with the response data
+                        this.callbacks[requestNonceAsBase64].resolve(responseValue);
+                        // Clean up
+                        delete this.callbacks[requestNonceAsBase64];
+                    }
+                });
+                // Send the request, now that all listeners are set up
+                await peerToUse.peer.toPeer(writer.toArray(), peerToUse.identityKey).catch(async (error) => {
+                    if (error.message.includes('HTTP server failed to authenticate')) {
+                        try {
+                            const response = await this.handleFetchAndValidate(url, config, peerToUse);
+                            resolve(response);
+                        }
+                        catch (fetchError) {
+                            reject(fetchError);
+                        }
+                    }
+                    else {
+                        reject(error);
+                    }
+                });
+            }
+            catch (e) {
+                reject(e);
+            }
+        });
+        // Check if server requires payment to access the requested route
+        if (response.status === 402) {
+            // Create and attach a payment, then retry
+            return await this.handlePaymentAndRetry(url, config, response);
+        }
+        return response;
+    }
+    /**
+     * Request Certificates from a Peer
+     * @param baseUrl
+     * @param certificatesToRequest
+     */
+    async sendCertificateRequest(baseUrl, certificatesToRequest) {
+        const parsedUrl = new URL(baseUrl);
+        const baseURL = parsedUrl.origin;
+        let peerToUse;
+        if (this.peers[baseURL]) {
+            peerToUse = { peer: this.peers[baseURL].peer };
+        }
+        else {
+            const newTransport = new SimplifiedFetchTransport(baseURL);
+            peerToUse = {
+                peer: new Peer(this.wallet, newTransport, this.requestedCertificates, this.sessionManager)
+            };
+            this.peers[baseURL] = peerToUse;
+        }
+        // Return a promise that resolves when certificates are received
+        return new Promise(async (resolve, reject) => {
+            // Set up the listener before making the request
+            const callbackId = peerToUse.peer.listenForCertificatesReceived((_senderPublicKey, certs) => {
+                peerToUse.peer.stopListeningForCertificatesReceived(callbackId);
+                this.certificatesReceived.push(...certs);
+                resolve(certs);
+            });
+            try {
+                // Initiate the certificate request
+                await peerToUse.peer.requestCertificates(certificatesToRequest, peerToUse.identityKey);
+            }
+            catch (err) {
+                peerToUse.peer.stopListeningForCertificatesReceived(callbackId);
+                reject(err);
+            }
+        });
+    }
+    /**
+     * Return any certificates we've collected thus far, then clear them out.
+     */
+    consumeReceivedCertificates() {
+        return this.certificatesReceived.splice(0);
+    }
+    /**
+     * Serializes the HTTP request to be sent over the Transport.
+     *
+     * @param method - The HTTP method (e.g., 'GET', 'POST') for the request.
+     * @param headers - A record of HTTP headers to include in the request.
+     * @param body - The body of the request, if applicable (e.g., for POST/PUT requests).
+     * @param parsedUrl - The parsed URL object containing the full request URL.
+     * @param requestNonce - A unique random nonce to ensure request integrity.
+     * @returns A promise that resolves to a `Writer` containing the serialized request.
+     *
+     * @throws Will throw an error if unsupported headers are used or serialization fails.
+     */
+    async serializeRequest(method, headers, body, parsedUrl, requestNonce) {
+        const writer = new Utils.Writer();
+        // Write request nonce
+        writer.write(requestNonce);
+        // Method length
+        writer.writeVarIntNum(method.length);
+        // Method
+        writer.write(Utils.toArray(method));
+        // Handle pathname (e.g. /path/to/resource)
+        if (parsedUrl.pathname.length > 0) {
+            // Pathname length
+            const pathnameAsArray = Utils.toArray(parsedUrl.pathname);
+            writer.writeVarIntNum(pathnameAsArray.length);
+            // Pathname
+            writer.write(pathnameAsArray);
+        }
+        else {
+            writer.writeVarIntNum(-1);
+        }
+        // Handle search params (e.g. ?q=hello)
+        if (parsedUrl.search.length > 0) {
+            // search length
+            const searchAsArray = Utils.toArray(parsedUrl.search);
+            writer.writeVarIntNum(searchAsArray.length);
+            // search
+            writer.write(searchAsArray);
+        }
+        else {
+            writer.writeVarIntNum(-1);
+        }
+        // Construct headers to send / sign:
+        // - Custom headers prefixed with x-bsv are included
+        // - x-bsv-auth headers are not allowed
+        // - content-type and authorization are signed by client
+        const includedHeaders = [];
+        for (let [k, v] of Object.entries(headers)) {
+            k = k.toLowerCase(); // We will always sign lower-case header keys
+            if (k.startsWith('x-bsv-') || k === 'content-type' || k === 'authorization') {
+                if (k.startsWith('x-bsv-auth')) {
+                    throw new Error('No BSV auth headers allowed here!');
+                }
+                includedHeaders.push([k, v]);
+            }
+            else {
+                throw new Error('Unsupported header in the simplified fetch implementation. Only content-type, authorization, and x-bsv-* headers are supported.');
+            }
+        }
+        // nHeaders
+        writer.writeVarIntNum(includedHeaders.length);
+        for (let i = 0; i < includedHeaders.length; i++) {
+            // headerKeyLength
+            const headerKeyAsArray = Utils.toArray(includedHeaders[i][0], 'utf8');
+            writer.writeVarIntNum(headerKeyAsArray.length);
+            // headerKey
+            writer.write(headerKeyAsArray);
+            // headerValueLength
+            const headerValueAsArray = Utils.toArray(includedHeaders[i][1], 'utf8');
+            writer.writeVarIntNum(headerValueAsArray.length);
+            // headerValue
+            writer.write(headerValueAsArray);
+        }
+        // Handle body
+        if (body) {
+            const reqBody = await this.normalizeBodyToNumberArray(body); // Use the utility function
+            writer.writeVarIntNum(reqBody.length);
+            writer.write(reqBody);
+        }
+        else {
+            writer.writeVarIntNum(-1); // No body
+        }
+        return writer;
+    }
+    /**
+     * Handles a non-authenticated fetch requests and validates that the server is not claiming to be authenticated.
+     */
+    async handleFetchAndValidate(url, config, peerToUse) {
+        const response = await fetch(url, config);
+        response.headers.forEach(header => {
+            if (header.toLocaleLowerCase().startsWith('x-bsv')) {
+                throw new Error('The server is trying to claim it has been authenticated when it has not!');
+            }
+        });
+        if (response.ok) {
+            peerToUse.supportsMutualAuth = false;
+            return response;
+        }
+        else {
+            throw new Error(`Request failed with status: ${response.status}`);
+        }
+    }
+    /**
+     * If we get 402 Payment Required, we build a transaction via wallet.createAction()
+     * and re-attempt the request with an x-bsv-payment header.
+     */
+    async handlePaymentAndRetry(url, config = {}, originalResponse) {
+        // Make sure the server is using the correct payment version
+        const paymentVersion = originalResponse.headers.get('x-bsv-payment-version');
+        if (!paymentVersion || paymentVersion !== PAYMENT_VERSION) {
+            throw new Error(`Unsupported x-bsv-payment-version response header. Client version: ${PAYMENT_VERSION}, Server version: ${paymentVersion}`);
+        }
+        // Get required headers from the 402 response
+        const satoshisRequiredHeader = originalResponse.headers.get('x-bsv-payment-satoshis-required');
+        if (!satoshisRequiredHeader) {
+            throw new Error('Missing x-bsv-payment-satoshis-required response header.');
+        }
+        const satoshisRequired = parseInt(satoshisRequiredHeader);
+        if (isNaN(satoshisRequired) || satoshisRequired <= 0) {
+            throw new Error('Invalid x-bsv-payment-satoshis-required response header value.');
+        }
+        const serverIdentityKey = originalResponse.headers.get('x-bsv-auth-identity-key');
+        if (!serverIdentityKey) {
+            throw new Error('Missing x-bsv-auth-identity-key response header.');
+        }
+        const derivationPrefix = originalResponse.headers.get('x-bsv-payment-derivation-prefix');
+        if (!derivationPrefix) {
+            throw new Error('Missing x-bsv-payment-derivation-prefix response header.');
+        }
+        // Create a random suffix for the derivation path
+        const derivationSuffix = Utils.toBase64(Random(10));
+        // Derive the script hex from the server identity key
+        const { publicKey: derivedPublicKey } = await this.wallet.getPublicKey({
+            protocolID: [2, 'wallet payment'],
+            keyID: `${derivationPrefix} ${derivationSuffix}`,
+            counterparty: serverIdentityKey
+        });
+        const lockingScript = new P2PKH().lock(PublicKey.fromString(derivedPublicKey).toHash()).toHex();
+        // Create the payment transaction using createAction
+        const { tx } = await this.wallet.createAction({
+            description: `Payment for request to ${new URL(url).origin}`,
+            outputs: [{
+                    satoshis: satoshisRequired,
+                    lockingScript,
+                    outputDescription: 'HTTP request payment'
+                }]
+        });
+        // Attach the payment to the request headers
+        config.headers = config.headers || {};
+        config.headers['x-bsv-payment'] = JSON.stringify({
+            derivationPrefix,
+            transaction: Utils.toBase64(tx)
+        });
+        config.retryCounter ??= 3;
+        // Re-attempt request with payment attached
+        return this.fetch(url, config);
+    }
+    async normalizeBodyToNumberArray(body) {
+        // 1. Null / undefined
+        if (body == null) {
+            return [];
+        }
+        // 2. number[]
+        if (Array.isArray(body) && body.every((item) => typeof item === 'number')) {
+            return body; // Return the array as is
+        }
+        // 3. string
+        if (typeof body === 'string') {
+            return Utils.toArray(body, 'utf8');
+        }
+        // 4. ArrayBuffer / TypedArrays
+        if (body instanceof ArrayBuffer || ArrayBuffer.isView(body)) {
+            const typedArray = body instanceof ArrayBuffer ? new Uint8Array(body) : new Uint8Array(body.buffer);
+            return Array.from(typedArray);
+        }
+        // 5. Blob
+        if (body instanceof Blob) {
+            const arrayBuffer = await body.arrayBuffer();
+            return Array.from(new Uint8Array(arrayBuffer));
+        }
+        // 6. FormData
+        if (body instanceof FormData) {
+            const entries = [];
+            body.forEach((value, key) => {
+                entries.push([key, value.toString()]);
+            });
+            const urlEncoded = new URLSearchParams(entries).toString();
+            return Utils.toArray(urlEncoded, 'utf8');
+        }
+        // 7. URLSearchParams
+        if (body instanceof URLSearchParams) {
+            return Utils.toArray(body.toString(), 'utf8');
+        }
+        // 8. ReadableStream
+        if (body instanceof ReadableStream) {
+            throw new Error('ReadableStream cannot be directly converted to number[].');
+        }
+        // 9. Fallback
+        throw new Error('Unsupported body type in this SimplifiedFetch implementation.');
+    }
+}
+//# sourceMappingURL=AuthFetch.js.map

package/dist/esm/src/auth/clients/AuthFetch.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"AuthFetch.js","sourceRoot":"","sources":["../../../../../src/auth/clients/AuthFetch.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS,EAAU,MAAM,iBAAiB,CAAA;AACzE,OAAO,EAAE,IAAI,EAAE,MAAM,YAAY,CAAA;AACjC,OAAO,EAAE,wBAAwB,EAAE,MAAM,2CAA2C,CAAA;AACpF,OAAO,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAA;AAarD,MAAM,eAAe,GAAG,KAAK,CAAA;AAE7B;;;;;;;GAOG;AACH,MAAM,OAAO,SAAS;IACZ,cAAc,CAAgB;IAC9B,MAAM,CAAQ;IACd,SAAS,GAA4D,EAAE,CAAA;IACvE,oBAAoB,GAA4B,EAAE,CAAA;IAClD,qBAAqB,CAA0B;IACvD,KAAK,GAA6B,EAAE,CAAA;IAEpC;;;;MAIE;IACF,YAAY,MAAc,EAAE,qBAA+C,EAAE,cAA+B;QAC1G,IAAI,CAAC,MAAM,GAAG,MAAM,CAAA;QACpB,IAAI,CAAC,qBAAqB,GAAG,qBAAqB,CAAA;QAClD,IAAI,CAAC,cAAc,GAAG,cAAc,IAAI,IAAI,cAAc,EAAE,CAAA;IAC9D,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,KAAK,CAAC,KAAK,CAAC,GAAW,EAAE,SAAwC,EAAE;QACjE,IAAI,MAAM,CAAC,YAAY,EAAE,CAAC;YACxB,IAAI,MAAM,CAAC,YAAY,IAAI,CAAC,EAAE,CAAC;gBAC7B,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAA;YACpE,CAAC;YACD,MAAM,CAAC,YAAY,EAAE,CAAA;QACvB,CAAC;QACD,MAAM,QAAQ,GAAG,MAAM,IAAI,OAAO,CAAW,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,EAAE;YACrE,IAAI,CAAC;gBACH,iBAAiB;gBACjB,MAAM,EAAE,MAAM,GAAG,KAAK,EAAE,OAAO,GAAG,EAAE,EAAE,IAAI,EAAE,GAAG,MAAM,CAAA;gBAErD,qBAAqB;gBACrB,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAA;gBAC9B,MAAM,OAAO,GAAG,SAAS,CAAC,MAAM,CAAA;gBAEhC,qDAAqD;gBACrD,IAAI,SAAmB,CAAA;gBACvB,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;oBACzB,gCAAgC;oBAChC,MAAM,YAAY,GAAG,IAAI,wBAAwB,CAAC,OAAO,CAAC,CAAA;oBAC1D,SAAS,GAAG;wBACV,IAAI,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,YAAY,EAAE,IAAI,CAAC,qBAAqB,EAAE,IAAI,CAAC,cAAc,CAAC;qBAC3F,CAAA;oBACD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,SAAS,CAAA;oBAC/B,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC,eAAuB,EAAE,KAA8B,EAAE,EAAE;wBACpI,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,CAAA;wBACxC,wDAAwD;oBAC1D,CAAC,CAAC,CAAA;gBACJ,CAAC;qBAAM,CAAC;oBACN,0DAA0D;oBAC1D,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,kBAAkB,KAAK,KAAK,EAAE,CAAC;wBACrD,+DAA+D;wBAC/D,IAAI,CAAC;4BACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAA;4BACpF,OAAO,CAAC,QAAQ,CAAC,CAAA;wBACnB,CAAC;wBAAC,OAAO,KAAK,EAAE,CAAC;4BACf,MAAM,CAAC,KAAK,CAAC,CAAA;wBACf,CAAC;oBACH,CAAC;oBACD,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;gBACjC,CAAC;gBAED,0CAA0C;gBAC1C,MAAM,YAAY,GAAG,MAAM,CAAC,EAAE,CAAC,CAAA;gBAC/B,MAAM,oBAAoB,GAAG,KAAK,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAA;gBAEzD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,gBAAgB,CACxC,MAAM,EACN,OAAO,EACP,IAAI,EACJ,SAAS,EACT,YAAY,CACb,CAAA;gBAED,iFAAiF;gBACjF,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC,GAAG,EAAE,OAAO,EAAE,MAAM,EAAE,CAAA;gBAC1D,MAAM,UAAU,GAAG,SAAS,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC,eAAuB,EAAE,OAAiB,EAAE,EAAE;oBACxG,kBAAkB;oBAClB,MAAM,cAAc,GAAG,IAAI,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,CAAA;oBAChD,wCAAwC;oBACxC,MAAM,qBAAqB,GAAG,KAAK,CAAC,QAAQ,CAAC,cAAc,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAA;oBACrE,IAAI,qBAAqB,KAAK,oBAAoB,EAAE,CAAC;wBACnD,SAAS,CAAC,IAAI,CAAC,+BAA+B,CAAC,UAAU,CAAC,CAAA;wBAE1D,iFAAiF;wBACjF,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,WAAW,GAAG,eAAe,CAAA;wBACjD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,kBAAkB,GAAG,IAAI,CAAA;wBAE7C,cAAc;wBACd,MAAM,UAAU,GAAG,cAAc,CAAC,aAAa,EAAE,CAAA;wBAEjD,UAAU;wBACV,MAAM,eAAe,GAAG,EAAE,CAAA;wBAC1B,MAAM,QAAQ,GAAG,cAAc,CAAC,aAAa,EAAE,CAAA;wBAC/C,IAAI,QAAQ,GAAG,CAAC,EAAE,CAAC;4BACjB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,EAAE,CAAC,EAAE,EAAE,CAAC;gCAClC,MAAM,eAAe,GAAG,cAAc,CAAC,aAAa,EAAE,CAAA;gCACtD,MAAM,cAAc,GAAG,cAAc,CAAC,IAAI,CAAC,eAAe,CAAC,CAAA;gCAC3D,MAAM,SAAS,GAAG,KAAK,CAAC,MAAM,CAAC,cAAc,CAAC,CAAA;gCAC9C,MAAM,iBAAiB,GAAG,cAAc,CAAC,aAAa,EAAE,CAAA;gCACxD,MAAM,gBAAgB,GAAG,cAAc,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAA;gCAC/D,MAAM,WAAW,GAAG,KAAK,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAA;gCAClD,eAAe,CAAC,SAAS,CAAC,GAAG,WAAW,CAAA;4BAC1C,CAAC;wBACH,CAAC;wBAED,0CAA0C;wBAC1C,eAAe,CAAC,yBAAyB,CAAC,GAAG,eAAe,CAAA;wBAE5D,OAAO;wBACP,IAAI,YAAY,CAAA;wBAChB,MAAM,iBAAiB,GAAG,cAAc,CAAC,aAAa,EAAE,CAAA;wBACxD,IAAI,iBAAiB,GAAG,CAAC,EAAE,CAAC;4BAC1B,YAAY,GAAG,cAAc,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAA;wBACvD,CAAC;wBAED,6BAA6B;wBAC7B,MAAM,aAAa,GAAG,IAAI,QAAQ,CAChC,YAAY,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE;4BACpD,MAAM,EAAE,UAAU;4BAClB,UAAU,EAAE,GAAG,UAAU,EAAE;4BAC3B,OAAO,EAAE,IAAI,OAAO,CAAC,eAAe,CAAC;yBACtC,CAAC,CAAA;wBAEF,+DAA+D;wBAC/D,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC,CAAC,OAAO,CAAC,aAAa,CAAC,CAAA;wBAE3D,WAAW;wBACX,OAAO,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC,CAAA;oBAC7C,CAAC;gBACH,CAAC,CAAC,CAAA;gBAEF,sDAAsD;gBACtD,MAAM,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE,EAAE,SAAS,CAAC,WAAW,CAAC,CAAC,KAAK,CAAC,KAAK,EAAC,KAAK,EAAC,EAAE;oBACvF,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,oCAAoC,CAAC,EAAE,CAAC;wBACjE,IAAI,CAAC;4BACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,GAAG,EAAE,MAAM,EAAE,SAAS,CAAC,CAAA;4BAC1E,OAAO,CAAC,QAAQ,CAAC,CAAA;wBACnB,CAAC;wBAAC,OAAO,UAAU,EAAE,CAAC;4BACpB,MAAM,CAAC,UAAU,CAAC,CAAA;wBACpB,CAAC;oBACH,CAAC;yBAAM,CAAC;wBACN,MAAM,CAAC,KAAK,CAAC,CAAA;oBACf,CAAC;gBACH,CAAC,CAAC,CAAA;YACJ,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,MAAM,CAAC,CAAC,CAAC,CAAA;YACX,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,iEAAiE;QACjE,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;YAC5B,0CAA0C;YAC1C,OAAO,MAAM,IAAI,CAAC,qBAAqB,CAAC,GAAG,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAA;QAChE,CAAC;QAED,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,sBAAsB,CAAC,OAAe,EAAE,qBAA8C;QAC1F,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,CAAA;QAClC,MAAM,OAAO,GAAG,SAAS,CAAC,MAAM,CAAA;QAEhC,IAAI,SAA+C,CAAA;QACnD,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;YACxB,SAAS,GAAG,EAAE,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,CAAA;QAChD,CAAC;aAAM,CAAC;YACN,MAAM,YAAY,GAAG,IAAI,wBAAwB,CAAC,OAAO,CAAC,CAAA;YAC1D,SAAS,GAAG;gBACV,IAAI,EAAE,IAAI,IAAI,CACZ,IAAI,CAAC,MAAM,EACX,YAAY,EACZ,IAAI,CAAC,qBAAqB,EAC1B,IAAI,CAAC,cAAc,CACpB;aACF,CAAA;YACD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,SAAS,CAAA;QACjC,CAAC;QAED,gEAAgE;QAChE,OAAO,IAAI,OAAO,CAA0B,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,EAAE;YACpE,gDAAgD;YAChD,MAAM,UAAU,GAAG,SAAS,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC,gBAAwB,EAAE,KAA8B,EAAE,EAAE;gBAC3H,SAAS,CAAC,IAAI,CAAC,oCAAoC,CAAC,UAAU,CAAC,CAAA;gBAC/D,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,CAAA;gBACxC,OAAO,CAAC,KAAK,CAAC,CAAA;YAChB,CAAC,CAAC,CAAA;YAEF,IAAI,CAAC;gBACH,mCAAmC;gBACnC,MAAM,SAAS,CAAC,IAAI,CAAC,mBAAmB,CAAC,qBAAqB,EAAE,SAAS,CAAC,WAAW,CAAC,CAAA;YACxF,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,SAAS,CAAC,IAAI,CAAC,oCAAoC,CAAC,UAAU,CAAC,CAAA;gBAC/D,MAAM,CAAC,GAAG,CAAC,CAAA;YACb,CAAC;QACH,CAAC,CAAC,CAAA;IACJ,CAAC;IAED;;OAEG;IACI,2BAA2B;QAChC,OAAO,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAAC,CAAC,CAAC,CAAA;IAC5C,CAAC;IAED;;;;;;;;;;;OAWG;IACK,KAAK,CAAC,gBAAgB,CAC5B,MAAc,EACd,OAA+B,EAC/B,IAAS,EACT,SAAc,EACd,YAAsB;QAEtB,MAAM,MAAM,GAAG,IAAI,KAAK,CAAC,MAAM,EAAE,CAAA;QACjC,sBAAsB;QACtB,MAAM,CAAC,KAAK,CAAC,YAAY,CAAC,CAAA;QAC1B,gBAAgB;QAChB,MAAM,CAAC,cAAc,CAAC,MAAM,CAAC,MAAM,CAAC,CAAA;QACpC,SAAS;QACT,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAA;QAEnC,2CAA2C;QAC3C,IAAI,SAAS,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAClC,kBAAkB;YAClB,MAAM,eAAe,GAAG,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAA;YACzD,MAAM,CAAC,cAAc,CAAC,eAAe,CAAC,MAAM,CAAC,CAAA;YAC7C,WAAW;YACX,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAA;QAC/B,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAA;QAC3B,CAAC;QAED,uCAAuC;QACvC,IAAI,SAAS,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAChC,gBAAgB;YAChB,MAAM,aAAa,GAAG,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,MAAM,CAAC,CAAA;YACrD,MAAM,CAAC,cAAc,CAAC,aAAa,CAAC,MAAM,CAAC,CAAA;YAC3C,SAAS;YACT,MAAM,CAAC,KAAK,CAAC,aAAa,CAAC,CAAA;QAC7B,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAA;QAC3B,CAAC;QAED,oCAAoC;QACpC,oDAAoD;QACpD,uCAAuC;QACvC,wDAAwD;QACxD,MAAM,eAAe,GAAuB,EAAE,CAAA;QAC9C,KAAK,IAAI,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;YAC3C,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,CAAA,CAAC,6CAA6C;YACjE,IAAI,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,cAAc,IAAI,CAAC,KAAK,eAAe,EAAE,CAAC;gBAC5E,IAAI,CAAC,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;oBAC/B,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAA;gBACtD,CAAC;gBACD,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAA;YAC9B,CAAC;iBAAM,CAAC;gBACN,MAAM,IAAI,KAAK,CAAC,iIAAiI,CAAC,CAAA;YACpJ,CAAC;QACH,CAAC;QAED,WAAW;QACX,MAAM,CAAC,cAAc,CAAC,eAAe,CAAC,MAAM,CAAC,CAAA;QAC7C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,eAAe,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAChD,kBAAkB;YAClB,MAAM,gBAAgB,GAAG,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,CAAA;YACrE,MAAM,CAAC,cAAc,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAA;YAC9C,YAAY;YACZ,MAAM,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAA;YAC9B,oBAAoB;YACpB,MAAM,kBAAkB,GAAG,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,CAAA;YACvE,MAAM,CAAC,cAAc,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAA;YAChD,cAAc;YACd,MAAM,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAA;QAClC,CAAC;QAED,cAAc;QACd,IAAI,IAAI,EAAE,CAAC;YACT,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,0BAA0B,CAAC,IAAI,CAAC,CAAA,CAAC,2BAA2B;YACvF,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,MAAM,CAAC,CAAA;YACrC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;QACvB,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAA,CAAC,UAAU;QACtC,CAAC;QACD,OAAO,MAAM,CAAA;IACf,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,sBAAsB,CAAC,GAAW,EAAE,MAAmB,EAAE,SAAmB;QACxF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,MAAM,CAAC,CAAA;QACzC,QAAQ,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;YAChC,IAAI,MAAM,CAAC,iBAAiB,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;gBACnD,MAAM,IAAI,KAAK,CAAC,0EAA0E,CAAC,CAAA;YAC7F,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,IAAI,QAAQ,CAAC,EAAE,EAAE,CAAC;YAChB,SAAS,CAAC,kBAAkB,GAAG,KAAK,CAAA;YACpC,OAAO,QAAQ,CAAA;QACjB,CAAC;aAAM,CAAC;YACN,MAAM,IAAI,KAAK,CAAC,+BAA+B,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAA;QACnE,CAAC;IACH,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,qBAAqB,CACjC,GAAW,EACX,SAAwC,EAAE,EAC1C,gBAA0B;QAE1B,4DAA4D;QAC5D,MAAM,cAAc,GAAG,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAA;QAC5E,IAAI,CAAC,cAAc,IAAI,cAAc,KAAK,eAAe,EAAE,CAAC;YAC1D,MAAM,IAAI,KAAK,CAAC,sEAAsE,eAAe,qBAAqB,cAAc,EAAE,CAAC,CAAA;QAC7I,CAAC;QAED,6CAA6C;QAC7C,MAAM,sBAAsB,GAAG,gBAAgB,CAAC,OAAO,CAAC,GAAG,CACzD,iCAAiC,CAClC,CAAA;QACD,IAAI,CAAC,sBAAsB,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAA;QAC7E,CAAC;QACD,MAAM,gBAAgB,GAAG,QAAQ,CAAC,sBAAsB,CAAC,CAAA;QACzD,IAAI,KAAK,CAAC,gBAAgB,CAAC,IAAI,gBAAgB,IAAI,CAAC,EAAE,CAAC;YACrD,MAAM,IAAI,KAAK,CAAC,gEAAgE,CAAC,CAAA;QACnF,CAAC;QAED,MAAM,iBAAiB,GAAG,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAA;QACjF,IAAI,CAAC,iBAAiB,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAA;QACrE,CAAC;QAED,MAAM,gBAAgB,GAAG,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,iCAAiC,CAAC,CAAA;QACxF,IAAI,CAAC,gBAAgB,EAAE,CAAC;YACtB,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAA;QAC7E,CAAC;QAED,iDAAiD;QACjD,MAAM,gBAAgB,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAA;QAEnD,qDAAqD;QACrD,MAAM,EAAE,SAAS,EAAE,gBAAgB,EAAE,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC;YACrE,UAAU,EAAE,CAAC,CAAC,EAAE,gBAAgB,CAAC;YACjC,KAAK,EAAE,GAAG,gBAAgB,IAAI,gBAAgB,EAAE;YAChD,YAAY,EAAE,iBAAiB;SAChC,CAAC,CAAA;QACF,MAAM,aAAa,GAAG,IAAI,KAAK,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,gBAAgB,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,KAAK,EAAE,CAAA;QAE/F,oDAAoD;QACpD,MAAM,EAAE,EAAE,EAAE,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC;YAC5C,WAAW,EAAE,0BAA0B,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE;YAC5D,OAAO,EAAE,CAAC;oBACR,QAAQ,EAAE,gBAAgB;oBAC1B,aAAa;oBACb,iBAAiB,EAAE,sBAAsB;iBAC1C,CAAC;SACH,CAAC,CAAA;QAEF,4CAA4C;QAC5C,MAAM,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,IAAI,EAAE,CAAA;QACrC,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC;YAC/C,gBAAgB;YAChB,WAAW,EAAE,KAAK,CAAC,QAAQ,CAAC,EAAE,CAAC;SAChC,CAAC,CAAA;QACF,MAAM,CAAC,YAAY,KAAK,CAAC,CAAA;QAEzB,2CAA2C;QAC3C,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,MAAM,CAAC,CAAA;IAChC,CAAC;IAEO,KAAK,CAAC,0BAA0B,CAAC,IAAiC;QACxE,sBAAsB;QACtB,IAAI,IAAI,IAAI,IAAI,EAAE,CAAC;YACjB,OAAO,EAAE,CAAA;QACX,CAAC;QAED,cAAc;QACd,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,OAAO,IAAI,KAAK,QAAQ,CAAC,EAAE,CAAC;YAC1E,OAAO,IAAI,CAAA,CAAC,yBAAyB;QACvC,CAAC;QAED,YAAY;QACZ,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,MAAM,CAAC,CAAA;QACpC,CAAC;QAED,+BAA+B;QAC/B,IAAI,IAAI,YAAY,WAAW,IAAI,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC;YAC5D,MAAM,UAAU,GAAG,IAAI,YAAY,WAAW,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;YACnG,OAAO,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAA;QAC/B,CAAC;QAED,UAAU;QACV,IAAI,IAAI,YAAY,IAAI,EAAE,CAAC;YACzB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;YAC5C,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,UAAU,CAAC,WAAW,CAAC,CAAC,CAAA;QAChD,CAAC;QAED,cAAc;QACd,IAAI,IAAI,YAAY,QAAQ,EAAE,CAAC;YAC7B,MAAM,OAAO,GAAuB,EAAE,CAAA;YACtC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;gBAC1B,OAAO,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAA;YACvC,CAAC,CAAC,CAAA;YACF,MAAM,UAAU,GAAG,IAAI,eAAe,CAAC,OAAO,CAAC,CAAC,QAAQ,EAAE,CAAA;YAC1D,OAAO,KAAK,CAAC,OAAO,CAAC,UAAU,EAAE,MAAM,CAAC,CAAA;QAC1C,CAAC;QAED,qBAAqB;QACrB,IAAI,IAAI,YAAY,eAAe,EAAE,CAAC;YACpC,OAAO,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,QAAQ,EAAE,EAAE,MAAM,CAAC,CAAA;QAC/C,CAAC;QAED,oBAAoB;QACpB,IAAI,IAAI,YAAY,cAAc,EAAE,CAAC;YACnC,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAA;QAC7E,CAAC;QAED,cAAc;QACd,MAAM,IAAI,KAAK,CAAC,+DAA+D,CAAC,CAAA;IAClF,CAAC;CACF"}

package/dist/esm/src/auth/clients/index.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export * from './AuthFetch.js';
2	+ //# sourceMappingURL=index.js.map

package/dist/esm/src/auth/clients/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../src/auth/clients/index.ts"],"names":[],"mappings":"AAAA,cAAc,gBAAgB,CAAA"}

package/dist/esm/src/auth/index.js CHANGED Viewed

@@ -1,2 +1,8 @@
-export { default as Certificate } from './Certificate.js';
+export * from './certificates/index.js';
+export * from './Peer.js';
+export * from './SessionManager.js';
+export * from './types.js';
+export * from './utils/index.js';
+export * from './clients/index.js';
+export * from './transports/index.js';
 //# sourceMappingURL=index.js.map

package/dist/esm/src/auth/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/auth/index.ts"],"names":[],"mappings":"AAAA,~~OAAO~~,~~EAAE~~,~~OAAO~~,~~IAAI~~,WAAW,~~EAAE~~,~~MAAM~~,kBAAkB,CAAA"}
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/auth/index.ts"],"names":[],"mappings":"AAAA,cAAc,yBAAyB,CAAA;AACvC,cAAc,WAAW,CAAA;AACzB,cAAc,qBAAqB,CAAA;AACnC,cAAc,YAAY,CAAA;AAC1B,cAAc,kBAAkB,CAAA;AAChC,cAAc,oBAAoB,CAAA;AAClC,cAAc,uBAAuB,CAAA"}