@bsv/wallet-toolbox-client 1.1.62 → 1.2.2

package/out/src/wab-client/auth-method-interactors/PersonaIDInteractor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"PersonaIDInteractor.d.ts","sourceRoot":"","sources":["../../../../../src/wab-client/auth-method-interactors/PersonaIDInteractor.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,WAAW,EAAE,iBAAiB,EAAE,oBAAoB,EAAE,MAAM,wBAAwB,CAAA;AAEnH,qBAAa,mBAAoB,SAAQ,oBAAoB;IACpD,UAAU,SAAc;IAElB,SAAS,CAAC,SAAS,EAAE,MAAM,EAAE,eAAe,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,iBAAiB,CAAC;IAavG,YAAY,CACvB,SAAS,EAAE,MAAM,EACjB,eAAe,EAAE,MAAM,EACvB,OAAO,EAAE,WAAW,GACnB,OAAO,CAAC,oBAAoB,CAAC;CAYjC"}

package/out/src/wab-client/auth-method-interactors/PersonaIDInteractor.js

@@ -0,0 +1,36 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PersonaIDInteractor = void 0;
+const AuthMethodInteractor_1 = require("./AuthMethodInteractor");
+class PersonaIDInteractor extends AuthMethodInteractor_1.AuthMethodInteractor {
+    constructor() {
+        super(...arguments);
+        this.methodType = 'PersonaID';
+    }
+    async startAuth(serverUrl, presentationKey, payload) {
+        const res = await fetch(`${serverUrl}/auth/start`, {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({
+                methodType: this.methodType,
+                presentationKey,
+                payload
+            })
+        });
+        return res.json();
+    }
+    async completeAuth(serverUrl, presentationKey, payload) {
+        const res = await fetch(`${serverUrl}/auth/complete`, {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({
+                methodType: this.methodType,
+                presentationKey,
+                payload
+            })
+        });
+        return res.json();
+    }
+}
+exports.PersonaIDInteractor = PersonaIDInteractor;
+//# sourceMappingURL=PersonaIDInteractor.js.map

package/out/src/wab-client/auth-method-interactors/PersonaIDInteractor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"PersonaIDInteractor.js","sourceRoot":"","sources":["../../../../../src/wab-client/auth-method-interactors/PersonaIDInteractor.ts"],"names":[],"mappings":";;;AAAA,iEAAmH;AAEnH,MAAa,mBAAoB,SAAQ,2CAAoB;IAA7D;;QACS,eAAU,GAAG,WAAW,CAAA;IA+BjC,CAAC;IA7BQ,KAAK,CAAC,SAAS,CAAC,SAAiB,EAAE,eAAuB,EAAE,OAAoB;QACrF,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,SAAS,aAAa,EAAE;YACjD,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;YAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,UAAU,EAAE,IAAI,CAAC,UAAU;gBAC3B,eAAe;gBACf,OAAO;aACR,CAAC;SACH,CAAC,CAAA;QACF,OAAO,GAAG,CAAC,IAAI,EAAE,CAAA;IACnB,CAAC;IAEM,KAAK,CAAC,YAAY,CACvB,SAAiB,EACjB,eAAuB,EACvB,OAAoB;QAEpB,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,SAAS,gBAAgB,EAAE;YACpD,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;YAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,UAAU,EAAE,IAAI,CAAC,UAAU;gBAC3B,eAAe;gBACf,OAAO;aACR,CAAC;SACH,CAAC,CAAA;QACF,OAAO,GAAG,CAAC,IAAI,EAAE,CAAA;IACnB,CAAC;CACF;AAhCD,kDAgCC"}

package/out/src/wab-client/auth-method-interactors/TwilioPhoneInteractor.d.ts

@@ -0,0 +1,28 @@
+import { AuthMethodInteractor, AuthPayload, StartAuthResponse, CompleteAuthResponse } from './AuthMethodInteractor';
+/**
+ * TwilioPhoneInteractor
+ *
+ * A client-side class that knows how to call the WAB server for Twilio-based phone verification.
+ */
+export declare class TwilioPhoneInteractor extends AuthMethodInteractor {
+    methodType: string;
+    /**
+     * Start the Twilio phone verification on the server.
+     * - The server will send an SMS code to the user’s phone, using Twilio Verify.
+     * @param serverUrl         - The base URL of the WAB server (e.g. http://localhost:3000)
+     * @param presentationKey   - The 256-bit key the client is attempting to authenticate with
+     * @param payload           - { phoneNumber: string } (the phone number to verify)
+     * @returns                 - { success, message, data }
+     */
+    startAuth(serverUrl: string, presentationKey: string, payload: AuthPayload): Promise<StartAuthResponse>;
+    /**
+     * Complete the Twilio phone verification on the server.
+     * - The server will verify the code with Twilio Verify’s verificationChecks endpoint.
+     * @param serverUrl         - The base URL of the WAB server
+     * @param presentationKey   - The 256-bit key
+     * @param payload           - { phoneNumber: string, otp: string } (the code that was received via SMS)
+     * @returns                 - { success, message, presentationKey }
+     */
+    completeAuth(serverUrl: string, presentationKey: string, payload: AuthPayload): Promise<CompleteAuthResponse>;
+}
+//# sourceMappingURL=TwilioPhoneInteractor.d.ts.map

package/out/src/wab-client/auth-method-interactors/TwilioPhoneInteractor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"TwilioPhoneInteractor.d.ts","sourceRoot":"","sources":["../../../../../src/wab-client/auth-method-interactors/TwilioPhoneInteractor.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,WAAW,EAAE,iBAAiB,EAAE,oBAAoB,EAAE,MAAM,wBAAwB,CAAA;AAEnH;;;;GAIG;AACH,qBAAa,qBAAsB,SAAQ,oBAAoB;IACtD,UAAU,SAAgB;IAEjC;;;;;;;OAOG;IACU,SAAS,CAAC,SAAS,EAAE,MAAM,EAAE,eAAe,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,iBAAiB,CAAC;IAqBpH;;;;;;;OAOG;IACU,YAAY,CACvB,SAAS,EAAE,MAAM,EACjB,eAAe,EAAE,MAAM,EACvB,OAAO,EAAE,WAAW,GACnB,OAAO,CAAC,oBAAoB,CAAC;CAoBjC"}

package/out/src/wab-client/auth-method-interactors/TwilioPhoneInteractor.js

@@ -0,0 +1,69 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.TwilioPhoneInteractor = void 0;
+const AuthMethodInteractor_1 = require("./AuthMethodInteractor");
+/**
+ * TwilioPhoneInteractor
+ *
+ * A client-side class that knows how to call the WAB server for Twilio-based phone verification.
+ */
+class TwilioPhoneInteractor extends AuthMethodInteractor_1.AuthMethodInteractor {
+    constructor() {
+        super(...arguments);
+        this.methodType = 'TwilioPhone';
+    }
+    /**
+     * Start the Twilio phone verification on the server.
+     * - The server will send an SMS code to the user’s phone, using Twilio Verify.
+     * @param serverUrl         - The base URL of the WAB server (e.g. http://localhost:3000)
+     * @param presentationKey   - The 256-bit key the client is attempting to authenticate with
+     * @param payload           - { phoneNumber: string } (the phone number to verify)
+     * @returns                 - { success, message, data }
+     */
+    async startAuth(serverUrl, presentationKey, payload) {
+        const res = await fetch(`${serverUrl}/auth/start`, {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({
+                methodType: this.methodType,
+                presentationKey,
+                payload
+            })
+        });
+        if (!res.ok) {
+            return {
+                success: false,
+                message: `HTTP error ${res.status}`
+            };
+        }
+        return res.json();
+    }
+    /**
+     * Complete the Twilio phone verification on the server.
+     * - The server will verify the code with Twilio Verify’s verificationChecks endpoint.
+     * @param serverUrl         - The base URL of the WAB server
+     * @param presentationKey   - The 256-bit key
+     * @param payload           - { phoneNumber: string, otp: string } (the code that was received via SMS)
+     * @returns                 - { success, message, presentationKey }
+     */
+    async completeAuth(serverUrl, presentationKey, payload) {
+        const res = await fetch(`${serverUrl}/auth/complete`, {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({
+                methodType: this.methodType,
+                presentationKey,
+                payload
+            })
+        });
+        if (!res.ok) {
+            return {
+                success: false,
+                message: `HTTP error ${res.status}`
+            };
+        }
+        return res.json();
+    }
+}
+exports.TwilioPhoneInteractor = TwilioPhoneInteractor;
+//# sourceMappingURL=TwilioPhoneInteractor.js.map

package/out/src/wab-client/auth-method-interactors/TwilioPhoneInteractor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"TwilioPhoneInteractor.js","sourceRoot":"","sources":["../../../../../src/wab-client/auth-method-interactors/TwilioPhoneInteractor.ts"],"names":[],"mappings":";;;AAAA,iEAAmH;AAEnH;;;;GAIG;AACH,MAAa,qBAAsB,SAAQ,2CAAoB;IAA/D;;QACS,eAAU,GAAG,aAAa,CAAA;IA+DnC,CAAC;IA7DC;;;;;;;OAOG;IACI,KAAK,CAAC,SAAS,CAAC,SAAiB,EAAE,eAAuB,EAAE,OAAoB;QACrF,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,SAAS,aAAa,EAAE;YACjD,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;YAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,UAAU,EAAE,IAAI,CAAC,UAAU;gBAC3B,eAAe;gBACf,OAAO;aACR,CAAC;SACH,CAAC,CAAA;QAEF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,OAAO,EAAE,cAAc,GAAG,CAAC,MAAM,EAAE;aACpC,CAAA;QACH,CAAC;QAED,OAAO,GAAG,CAAC,IAAI,EAAE,CAAA;IACnB,CAAC;IAED;;;;;;;OAOG;IACI,KAAK,CAAC,YAAY,CACvB,SAAiB,EACjB,eAAuB,EACvB,OAAoB;QAEpB,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,SAAS,gBAAgB,EAAE;YACpD,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;YAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,UAAU,EAAE,IAAI,CAAC,UAAU;gBAC3B,eAAe;gBACf,OAAO;aACR,CAAC;SACH,CAAC,CAAA;QAEF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,OAAO,EAAE,cAAc,GAAG,CAAC,MAAM,EAAE;aACpC,CAAA;QACH,CAAC;QAED,OAAO,GAAG,CAAC,IAAI,EAAE,CAAA;IACnB,CAAC;CACF;AAhED,sDAgEC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@bsv/wallet-toolbox-client",
-  "version": "1.1.62",
+  "version": "1.2.2",
   "description": "Client only Wallet Storage",
   "main": "./out/src/index.client.js",
   "types": "./out/src/index.client.d.ts",
@@ -20,7 +20,7 @@
   },
   "homepage": "https://github.com/bitcoin-sv/wallet-toolbox#readme",
   "dependencies": {
-    "@bsv/sdk": "^1.3.35",
+    "@bsv/sdk": "^1.4.0",
     "axios": "^0.29.0"
   }
 }

package/out/src/sdk/CertOps.d.ts

@@ -1,66 +0,0 @@
-import { Base64String, Certificate as BsvCertificate, CertificateFieldNameUnder50Bytes, GetPublicKeyArgs, GetPublicKeyResult, OriginatorDomainNameStringUnder250Bytes, PubKeyHex, WalletCertificate, WalletDecryptArgs, WalletDecryptResult, WalletEncryptArgs, WalletEncryptResult, WalletProtocol } from '@bsv/sdk';
-export interface CertOpsWallet {
-    getPublicKey(args: GetPublicKeyArgs, originator?: OriginatorDomainNameStringUnder250Bytes): Promise<GetPublicKeyResult>;
-    encrypt(args: WalletEncryptArgs, originator?: OriginatorDomainNameStringUnder250Bytes): Promise<WalletEncryptResult>;
-    decrypt(args: WalletDecryptArgs, originator?: OriginatorDomainNameStringUnder250Bytes): Promise<WalletDecryptResult>;
-}
-export declare class CertOps extends BsvCertificate {
-    wallet: CertOpsWallet;
-    _keyring?: Record<CertificateFieldNameUnder50Bytes, string>;
-    _encryptedFields?: Record<CertificateFieldNameUnder50Bytes, Base64String>;
-    _decryptedFields?: Record<CertificateFieldNameUnder50Bytes, string>;
-    constructor(wallet: CertOpsWallet, wc: WalletCertificate);
-    static fromCounterparty(wallet: CertOpsWallet, e: {
-        certificate: WalletCertificate;
-        keyring: Record<CertificateFieldNameUnder50Bytes, string>;
-        counterparty: PubKeyHex;
-    }): Promise<CertOps>;
-    static fromCertifier(wallet: CertOpsWallet, e: {
-        certificate: WalletCertificate;
-        keyring: Record<CertificateFieldNameUnder50Bytes, string>;
-    }): Promise<CertOps>;
-    static fromEncrypted(wallet: CertOpsWallet, wc: WalletCertificate, keyring: Record<CertificateFieldNameUnder50Bytes, string>): Promise<CertOps>;
-    static fromDecrypted(wallet: CertOpsWallet, wc: WalletCertificate): Promise<CertOps>;
-    static copyFields<T>(fields: Record<CertificateFieldNameUnder50Bytes, T>): Record<CertificateFieldNameUnder50Bytes, T>;
-    static getProtocolForCertificateFieldEncryption(serialNumber: string, fieldName: string): {
-        protocolID: WalletProtocol;
-        keyID: string;
-    };
-    exportForSubject(): {
-        certificate: WalletCertificate;
-        keyring: Record<CertificateFieldNameUnder50Bytes, string>;
-    };
-    toWalletCertificate(): WalletCertificate;
-    encryptFields(counterparty?: 'self' | PubKeyHex): Promise<{
-        fields: Record<CertificateFieldNameUnder50Bytes, string>;
-        keyring: Record<CertificateFieldNameUnder50Bytes, string>;
-    }>;
-    decryptFields(counterparty?: PubKeyHex, keyring?: Record<CertificateFieldNameUnder50Bytes, string>): Promise<Record<CertificateFieldNameUnder50Bytes, string>>;
-    exportForCounterparty(
-    /** The incoming counterparty is who they are to us. */
-    counterparty: PubKeyHex, fieldsToReveal: CertificateFieldNameUnder50Bytes[]): Promise<{
-        certificate: WalletCertificate;
-        keyring: Record<CertificateFieldNameUnder50Bytes, string>;
-        counterparty: PubKeyHex;
-    }>;
-    /**
-     * Creates a verifiable certificate structure for a specific verifier, allowing them access to specified fields.
-     * This method decrypts the master field keys for each field specified in `fieldsToReveal` and re-encrypts them
-     * for the verifier's identity key. The resulting certificate structure includes only the fields intended to be
-     * revealed and a verifier-specific keyring for field decryption.
-     *
-     * @param {PubKeyHex} verifierIdentityKey - The public identity key of the verifier who will receive access to the specified fields.
-     * @param {CertificateFieldNameUnder50Bytes[]} fieldsToReveal - An array of field names to be revealed to the verifier. Must be a subset of the certificate's fields.
-     * @returns {Promise<Record<CertificateFieldNameUnder50Bytes[], Base64String>} - A new certificate structure containing the original encrypted fields, the verifier-specific field decryption keyring, and essential certificate metadata.
-     * @throws {WERR_INVALID_PARAMETER} Throws an error if:
-     *   - fieldsToReveal is empty or a field in `fieldsToReveal` does not exist in the certificate.
-     *   - The decrypted master field key fails to decrypt the corresponding field (indicating an invalid key).
-     */
-    createKeyringForVerifier(verifierIdentityKey: PubKeyHex, fieldsToReveal: CertificateFieldNameUnder50Bytes[]): Promise<Record<CertificateFieldNameUnder50Bytes, Base64String>>;
-    /**
-     * encrypt plaintext field values for the subject
-     * update the signature using the certifier's private key.
-     */
-    encryptAndSignNewCertificate(): Promise<void>;
-}
-//# sourceMappingURL=CertOps.d.ts.map

package/out/src/sdk/CertOps.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"CertOps.d.ts","sourceRoot":"","sources":["../../../../src/sdk/CertOps.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,YAAY,EACZ,WAAW,IAAI,cAAc,EAC7B,gCAAgC,EAChC,gBAAgB,EAChB,kBAAkB,EAClB,uCAAuC,EACvC,SAAS,EACT,iBAAiB,EACjB,iBAAiB,EACjB,mBAAmB,EACnB,iBAAiB,EACjB,mBAAmB,EAEnB,cAAc,EACf,MAAM,UAAU,CAAA;AAKjB,MAAM,WAAW,aAAa;IAC5B,YAAY,CACV,IAAI,EAAE,gBAAgB,EACtB,UAAU,CAAC,EAAE,uCAAuC,GACnD,OAAO,CAAC,kBAAkB,CAAC,CAAA;IAC9B,OAAO,CAAC,IAAI,EAAE,iBAAiB,EAAE,UAAU,CAAC,EAAE,uCAAuC,GAAG,OAAO,CAAC,mBAAmB,CAAC,CAAA;IACpH,OAAO,CAAC,IAAI,EAAE,iBAAiB,EAAE,UAAU,CAAC,EAAE,uCAAuC,GAAG,OAAO,CAAC,mBAAmB,CAAC,CAAA;CACrH;AAED,qBAAa,OAAQ,SAAQ,cAAc;IAMhC,MAAM,EAAE,aAAa;IAL9B,QAAQ,CAAC,EAAE,MAAM,CAAC,gCAAgC,EAAE,MAAM,CAAC,CAAA;IAC3D,gBAAgB,CAAC,EAAE,MAAM,CAAC,gCAAgC,EAAE,YAAY,CAAC,CAAA;IACzE,gBAAgB,CAAC,EAAE,MAAM,CAAC,gCAAgC,EAAE,MAAM,CAAC,CAAA;gBAG1D,MAAM,EAAE,aAAa,EAC5B,EAAE,EAAE,iBAAiB;WAKV,gBAAgB,CAC3B,MAAM,EAAE,aAAa,EACrB,CAAC,EAAE;QACD,WAAW,EAAE,iBAAiB,CAAA;QAC9B,OAAO,EAAE,MAAM,CAAC,gCAAgC,EAAE,MAAM,CAAC,CAAA;QACzD,YAAY,EAAE,SAAS,CAAA;KACxB,GACA,OAAO,CAAC,OAAO,CAAC;WAUN,aAAa,CACxB,MAAM,EAAE,aAAa,EACrB,CAAC,EAAE;QACD,WAAW,EAAE,iBAAiB,CAAA;QAC9B,OAAO,EAAE,MAAM,CAAC,gCAAgC,EAAE,MAAM,CAAC,CAAA;KAC1D,GACA,OAAO,CAAC,OAAO,CAAC;WAON,aAAa,CACxB,MAAM,EAAE,aAAa,EACrB,EAAE,EAAE,iBAAiB,EACrB,OAAO,EAAE,MAAM,CAAC,gCAAgC,EAAE,MAAM,CAAC,GACxD,OAAO,CAAC,OAAO,CAAC;WASN,aAAa,CAAC,MAAM,EAAE,aAAa,EAAE,EAAE,EAAE,iBAAiB,GAAG,OAAO,CAAC,OAAO,CAAC;IAO1F,MAAM,CAAC,UAAU,CAAC,CAAC,EACjB,MAAM,EAAE,MAAM,CAAC,gCAAgC,EAAE,CAAC,CAAC,GAClD,MAAM,CAAC,gCAAgC,EAAE,CAAC,CAAC;IAM9C,MAAM,CAAC,wCAAwC,CAC7C,YAAY,EAAE,MAAM,EACpB,SAAS,EAAE,MAAM,GAChB;QAAE,UAAU,EAAE,cAAc,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE;IAOhD,gBAAgB,IAAI;QAClB,WAAW,EAAE,iBAAiB,CAAA;QAC9B,OAAO,EAAE,MAAM,CAAC,gCAAgC,EAAE,MAAM,CAAC,CAAA;KAC1D;IAQD,mBAAmB,IAAI,iBAAiB;IAQlC,aAAa,CAAC,YAAY,GAAE,MAAM,GAAG,SAAkB,GAAG,OAAO,CAAC;QACtE,MAAM,EAAE,MAAM,CAAC,gCAAgC,EAAE,MAAM,CAAC,CAAA;QACxD,OAAO,EAAE,MAAM,CAAC,gCAAgC,EAAE,MAAM,CAAC,CAAA;KAC1D,CAAC;IAuBI,aAAa,CACjB,YAAY,CAAC,EAAE,SAAS,EACxB,OAAO,CAAC,EAAE,MAAM,CAAC,gCAAgC,EAAE,MAAM,CAAC,GACzD,OAAO,CAAC,MAAM,CAAC,gCAAgC,EAAE,MAAM,CAAC,CAAC;IA2BtD,qBAAqB;IACzB,uDAAuD;IACvD,YAAY,EAAE,SAAS,EACvB,cAAc,EAAE,gCAAgC,EAAE,GACjD,OAAO,CAAC;QACT,WAAW,EAAE,iBAAiB,CAAA;QAC9B,OAAO,EAAE,MAAM,CAAC,gCAAgC,EAAE,MAAM,CAAC,CAAA;QACzD,YAAY,EAAE,SAAS,CAAA;KACxB,CAAC;IAaF;;;;;;;;;;;;OAYG;IACG,wBAAwB,CAC5B,mBAAmB,EAAE,SAAS,EAC9B,cAAc,EAAE,gCAAgC,EAAE,GACjD,OAAO,CAAC,MAAM,CAAC,gCAAgC,EAAE,YAAY,CAAC,CAAC;IAuClE;;;OAGG;IACG,4BAA4B,IAAI,OAAO,CAAC,IAAI,CAAC;CASpD"}

package/out/src/sdk/CertOps.js

@@ -1,190 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.CertOps = void 0;
-const sdk_1 = require("@bsv/sdk");
-const index_client_1 = require("../index.client");
-const sdk_2 = require("@bsv/sdk");
-const WERR_errors_1 = require("./WERR_errors");
-class CertOps extends sdk_1.Certificate {
-    constructor(wallet, wc) {
-        super(wc.type, wc.serialNumber, wc.subject, wc.certifier, wc.revocationOutpoint, wc.fields, wc.signature);
-        this.wallet = wallet;
-    }
-    static async fromCounterparty(wallet, e) {
-        const c = new CertOps(wallet, e.certificate);
-        // confirm cert verifies and decrypts.
-        await c.verify();
-        await c.decryptFields(e.counterparty, e.keyring);
-        // un-decrypt
-        c.fields = c._encryptedFields;
-        return c;
-    }
-    static async fromCertifier(wallet, e) {
-        return await CertOps.fromCounterparty(wallet, {
-            counterparty: e.certificate.certifier,
-            ...e
-        });
-    }
-    static async fromEncrypted(wallet, wc, keyring) {
-        const c = new CertOps(wallet, wc);
-        c._keyring = keyring;
-        c._encryptedFields = this.copyFields(c.fields);
-        c._decryptedFields = await c.decryptFields();
-        await c.verify();
-        return c;
-    }
-    static async fromDecrypted(wallet, wc) {
-        const c = new CertOps(wallet, wc);
-        ({ fields: c._encryptedFields, keyring: c._keyring } = await c.encryptFields());
-        c._decryptedFields = await c.decryptFields();
-        return c;
-    }
-    static copyFields(fields) {
-        const copy = {};
-        for (const [n, v] of Object.entries(fields))
-            copy[n] = v;
-        return copy;
-    }
-    static getProtocolForCertificateFieldEncryption(serialNumber, fieldName) {
-        return {
-            protocolID: [2, 'certificate field encryption'],
-            keyID: `${serialNumber} ${fieldName}`
-        };
-    }
-    exportForSubject() {
-        if (!this._keyring || !this._encryptedFields || !this.signature || this.signature.length === 0)
-            throw new WERR_errors_1.WERR_INVALID_OPERATION(`Certificate must be encrypted and signed prior to export.`);
-        const certificate = this.toWalletCertificate();
-        const keyring = this._keyring;
-        return { certificate, keyring };
-    }
-    toWalletCertificate() {
-        const wc = {
-            signature: '',
-            ...this
-        };
-        return wc;
-    }
-    async encryptFields(counterparty = 'self') {
-        const fields = this._decryptedFields || this.fields;
-        const encryptedFields = {};
-        const keyring = {};
-        for (const fieldName of Object.keys(fields)) {
-            const fieldSymmetricKey = sdk_2.SymmetricKey.fromRandom();
-            const encryptedFieldValue = fieldSymmetricKey.encrypt(sdk_2.Utils.toArray(this.fields[fieldName], 'utf8'));
-            encryptedFields[fieldName] = sdk_2.Utils.toBase64(encryptedFieldValue);
-            const encryptedFieldKey = await this.wallet.encrypt({
-                plaintext: fieldSymmetricKey.toArray(),
-                counterparty,
-                ...CertOps.getProtocolForCertificateFieldEncryption(this.serialNumber, fieldName)
-            });
-            keyring[fieldName] = sdk_2.Utils.toBase64(encryptedFieldKey.ciphertext);
-        }
-        this._keyring = keyring;
-        this._decryptedFields = fields;
-        this.fields = this._encryptedFields = encryptedFields;
-        return { fields: encryptedFields, keyring };
-    }
-    async decryptFields(counterparty, keyring) {
-        keyring || (keyring = this._keyring);
-        const fields = this._encryptedFields || this.fields;
-        const decryptedFields = {};
-        if (!keyring)
-            throw new index_client_1.sdk.WERR_INVALID_PARAMETER('keyring', 'valid');
-        try {
-            for (const fieldName of Object.keys(keyring)) {
-                const { plaintext: fieldRevelationKey } = await this.wallet.decrypt({
-                    ciphertext: sdk_2.Utils.toArray(keyring[fieldName], 'base64'),
-                    counterparty: counterparty || this.subject,
-                    ...CertOps.getProtocolForCertificateFieldEncryption(this.serialNumber, fieldName)
-                });
-                const fieldValue = new sdk_2.SymmetricKey(fieldRevelationKey).decrypt(sdk_2.Utils.toArray(fields[fieldName], 'base64'));
-                decryptedFields[fieldName] = sdk_2.Utils.toUTF8(fieldValue);
-            }
-            this._keyring = keyring;
-            this._encryptedFields = fields;
-            this.fields = this._decryptedFields = decryptedFields;
-            return decryptedFields;
-        }
-        catch (eu) {
-            const e = index_client_1.sdk.WalletError.fromUnknown(eu);
-            throw e;
-        }
-    }
-    async exportForCounterparty(
-    /** The incoming counterparty is who they are to us. */
-    counterparty, fieldsToReveal) {
-        if (!this._keyring || !this._encryptedFields || !this.signature || this.signature.length === 0)
-            throw new WERR_errors_1.WERR_INVALID_OPERATION(`Certificate must be encrypted and signed prior to export.`);
-        const certificate = this.toWalletCertificate();
-        const keyring = await this.createKeyringForVerifier(counterparty, fieldsToReveal);
-        // The exported counterparty is who we are to them...
-        return {
-            certificate,
-            keyring,
-            counterparty: await (0, index_client_1.getIdentityKey)(this.wallet)
-        };
-    }
-    /**
-     * Creates a verifiable certificate structure for a specific verifier, allowing them access to specified fields.
-     * This method decrypts the master field keys for each field specified in `fieldsToReveal` and re-encrypts them
-     * for the verifier's identity key. The resulting certificate structure includes only the fields intended to be
-     * revealed and a verifier-specific keyring for field decryption.
-     *
-     * @param {PubKeyHex} verifierIdentityKey - The public identity key of the verifier who will receive access to the specified fields.
-     * @param {CertificateFieldNameUnder50Bytes[]} fieldsToReveal - An array of field names to be revealed to the verifier. Must be a subset of the certificate's fields.
-     * @returns {Promise<Record<CertificateFieldNameUnder50Bytes[], Base64String>} - A new certificate structure containing the original encrypted fields, the verifier-specific field decryption keyring, and essential certificate metadata.
-     * @throws {WERR_INVALID_PARAMETER} Throws an error if:
-     *   - fieldsToReveal is empty or a field in `fieldsToReveal` does not exist in the certificate.
-     *   - The decrypted master field key fails to decrypt the corresponding field (indicating an invalid key).
-     */
-    async createKeyringForVerifier(verifierIdentityKey, fieldsToReveal) {
-        if (!this._keyring || !this._encryptedFields)
-            throw new index_client_1.sdk.WERR_INVALID_OPERATION(`certificate must be encrypted`);
-        if (!Array.isArray(fieldsToReveal) || fieldsToReveal.some(n => this._encryptedFields[n] === undefined))
-            throw new index_client_1.sdk.WERR_INVALID_PARAMETER('fieldsToReveal', `an array of certificate field names`);
-        const fieldRevelationKeyring = {};
-        for (const fieldName of fieldsToReveal) {
-            // Create a keyID
-            const encryptedFieldKey = this._keyring[fieldName];
-            const protocol = CertOps.getProtocolForCertificateFieldEncryption(this.serialNumber, fieldName);
-            // Decrypt the master field key
-            const { plaintext: fieldKey } = await this.wallet.decrypt({
-                ciphertext: sdk_2.Utils.toArray(encryptedFieldKey, 'base64'),
-                counterparty: this.certifier,
-                ...protocol
-            });
-            // Verify that derived key actually decrypts requested field
-            try {
-                new sdk_2.SymmetricKey(fieldKey).decrypt(sdk_2.Utils.toArray(this.fields[fieldName], 'base64'));
-            }
-            catch (_) {
-                throw new index_client_1.sdk.WERR_INTERNAL(`unable to decrypt field "${fieldName}" using derived field key.`);
-            }
-            // Encrypt derived fieldRevelationKey for verifier
-            const { ciphertext: encryptedFieldRevelationKey } = await this.wallet.encrypt({
-                plaintext: fieldKey,
-                counterparty: verifierIdentityKey,
-                ...protocol
-            });
-            // Add encryptedFieldRevelationKey to fieldRevelationKeyring
-            fieldRevelationKeyring[fieldName] = sdk_2.Utils.toBase64(encryptedFieldRevelationKey);
-        }
-        // Return the field revelation keyring which can be used to create a verifiable certificate for a verifier.
-        return fieldRevelationKeyring;
-    }
-    /**
-     * encrypt plaintext field values for the subject
-     * update the signature using the certifier's private key.
-     */
-    async encryptAndSignNewCertificate() {
-        if ((await (0, index_client_1.getIdentityKey)(this.wallet)) !== this.certifier)
-            throw new index_client_1.sdk.WERR_INVALID_PARAMETER('wallet', 'the certifier for new certificate issuance.');
-        await this.encryptFields(this.subject);
-        await this.sign(this.wallet);
-        // Confirm the signed certificate verifies:
-        await this.verify();
-    }
-}
-exports.CertOps = CertOps;
-//# sourceMappingURL=CertOps.js.map

package/out/src/sdk/CertOps.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"CertOps.js","sourceRoot":"","sources":["../../../../src/sdk/CertOps.ts"],"names":[],"mappings":";;;AAAA,kCAeiB;AACjB,kDAAqD;AACrD,kCAA8C;AAC9C,+CAAsD;AAWtD,MAAa,OAAQ,SAAQ,iBAAc;IAKzC,YACS,MAAqB,EAC5B,EAAqB;QAErB,KAAK,CAAC,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,EAAE,EAAE,CAAC,OAAO,EAAE,EAAE,CAAC,SAAS,EAAE,EAAE,CAAC,kBAAkB,EAAE,EAAE,CAAC,MAAM,EAAE,EAAE,CAAC,SAAS,CAAC,CAAA;QAHlG,WAAM,GAAN,MAAM,CAAe;IAI9B,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,gBAAgB,CAC3B,MAAqB,EACrB,CAIC;QAED,MAAM,CAAC,GAAG,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC,WAAW,CAAC,CAAA;QAC5C,sCAAsC;QACtC,MAAM,CAAC,CAAC,MAAM,EAAE,CAAA;QAChB,MAAM,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,YAAY,EAAE,CAAC,CAAC,OAAO,CAAC,CAAA;QAChD,aAAa;QACb,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,gBAAiB,CAAA;QAC9B,OAAO,CAAC,CAAA;IACV,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,aAAa,CACxB,MAAqB,EACrB,CAGC;QAED,OAAO,MAAM,OAAO,CAAC,gBAAgB,CAAC,MAAM,EAAE;YAC5C,YAAY,EAAE,CAAC,CAAC,WAAW,CAAC,SAAS;YACrC,GAAG,CAAC;SACL,CAAC,CAAA;IACJ,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,aAAa,CACxB,MAAqB,EACrB,EAAqB,EACrB,OAAyD;QAEzD,MAAM,CAAC,GAAG,IAAI,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAA;QACjC,CAAC,CAAC,QAAQ,GAAG,OAAO,CAAA;QACpB,CAAC,CAAC,gBAAgB,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,MAAM,CAAC,CAAA;QAC9C,CAAC,CAAC,gBAAgB,GAAG,MAAM,CAAC,CAAC,aAAa,EAAE,CAAA;QAC5C,MAAM,CAAC,CAAC,MAAM,EAAE,CAAA;QAChB,OAAO,CAAC,CAAA;IACV,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,aAAa,CAAC,MAAqB,EAAE,EAAqB;QACrE,MAAM,CAAC,GAAG,IAAI,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAChC;QAAA,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC,gBAAgB,EAAE,OAAO,EAAE,CAAC,CAAC,QAAQ,EAAE,GAAG,MAAM,CAAC,CAAC,aAAa,EAAE,CAAC,CAAA;QAChF,CAAC,CAAC,gBAAgB,GAAG,MAAM,CAAC,CAAC,aAAa,EAAE,CAAA;QAC5C,OAAO,CAAC,CAAA;IACV,CAAC;IAED,MAAM,CAAC,UAAU,CACf,MAAmD;QAEnD,MAAM,IAAI,GAAgD,EAAE,CAAA;QAC5D,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC;YAAE,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAA;QACxD,OAAO,IAAI,CAAA;IACb,CAAC;IAED,MAAM,CAAC,wCAAwC,CAC7C,YAAoB,EACpB,SAAiB;QAEjB,OAAO;YACL,UAAU,EAAE,CAAC,CAAC,EAAE,8BAA8B,CAAC;YAC/C,KAAK,EAAE,GAAG,YAAY,IAAI,SAAS,EAAE;SACtC,CAAA;IACH,CAAC;IAED,gBAAgB;QAId,IAAI,CAAC,IAAI,CAAC,QAAQ,IAAI,CAAC,IAAI,CAAC,gBAAgB,IAAI,CAAC,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,SAAS,CAAC,MAAM,KAAK,CAAC;YAC5F,MAAM,IAAI,oCAAsB,CAAC,2DAA2D,CAAC,CAAA;QAC/F,MAAM,WAAW,GAAG,IAAI,CAAC,mBAAmB,EAAE,CAAA;QAC9C,MAAM,OAAO,GAAG,IAAI,CAAC,QAAS,CAAA;QAC9B,OAAO,EAAE,WAAW,EAAE,OAAO,EAAE,CAAA;IACjC,CAAC;IAED,mBAAmB;QACjB,MAAM,EAAE,GAAsB;YAC5B,SAAS,EAAE,EAAE;YACb,GAAG,IAAI;SACR,CAAA;QACD,OAAO,EAAE,CAAA;IACX,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,eAAmC,MAAM;QAI3D,MAAM,MAAM,GAAqD,IAAI,CAAC,gBAAgB,IAAI,IAAI,CAAC,MAAM,CAAA;QACrG,MAAM,eAAe,GAA2D,EAAE,CAAA;QAClF,MAAM,OAAO,GAA2D,EAAE,CAAA;QAE1E,KAAK,MAAM,SAAS,IAAI,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;YAC5C,MAAM,iBAAiB,GAAG,kBAAY,CAAC,UAAU,EAAE,CAAA;YACnD,MAAM,mBAAmB,GAAG,iBAAiB,CAAC,OAAO,CAAC,WAAK,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC,CAAC,CAAA;YACpG,eAAe,CAAC,SAAS,CAAC,GAAG,WAAK,CAAC,QAAQ,CAAC,mBAA+B,CAAC,CAAA;YAE5E,MAAM,iBAAiB,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC;gBAClD,SAAS,EAAE,iBAAiB,CAAC,OAAO,EAAE;gBACtC,YAAY;gBACZ,GAAG,OAAO,CAAC,wCAAwC,CAAC,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC;aAClF,CAAC,CAAA;YACF,OAAO,CAAC,SAAS,CAAC,GAAG,WAAK,CAAC,QAAQ,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAA;QACnE,CAAC;QACD,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAA;QACvB,IAAI,CAAC,gBAAgB,GAAG,MAAM,CAAA;QAC9B,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,gBAAgB,GAAG,eAAe,CAAA;QACrD,OAAO,EAAE,MAAM,EAAE,eAAe,EAAE,OAAO,EAAE,CAAA;IAC7C,CAAC;IAED,KAAK,CAAC,aAAa,CACjB,YAAwB,EACxB,OAA0D;QAE1D,OAAO,KAAP,OAAO,GAAK,IAAI,CAAC,QAAQ,EAAA;QACzB,MAAM,MAAM,GAA2D,IAAI,CAAC,gBAAgB,IAAI,IAAI,CAAC,MAAM,CAAA;QAC3G,MAAM,eAAe,GAAqD,EAAE,CAAA;QAC5E,IAAI,CAAC,OAAO;YAAE,MAAM,IAAI,kBAAG,CAAC,sBAAsB,CAAC,SAAS,EAAE,OAAO,CAAC,CAAA;QAEtE,IAAI,CAAC;YACH,KAAK,MAAM,SAAS,IAAI,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC7C,MAAM,EAAE,SAAS,EAAE,kBAAkB,EAAE,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC;oBAClE,UAAU,EAAE,WAAK,CAAC,OAAO,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,QAAQ,CAAC;oBACvD,YAAY,EAAE,YAAY,IAAI,IAAI,CAAC,OAAO;oBAC1C,GAAG,OAAO,CAAC,wCAAwC,CAAC,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC;iBAClF,CAAC,CAAA;gBAEF,MAAM,UAAU,GAAG,IAAI,kBAAY,CAAC,kBAAkB,CAAC,CAAC,OAAO,CAAC,WAAK,CAAC,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,QAAQ,CAAC,CAAC,CAAA;gBAC3G,eAAe,CAAC,SAAS,CAAC,GAAG,WAAK,CAAC,MAAM,CAAC,UAAsB,CAAC,CAAA;YACnE,CAAC;YACD,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAA;YACvB,IAAI,CAAC,gBAAgB,GAAG,MAAM,CAAA;YAC9B,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,gBAAgB,GAAG,eAAe,CAAA;YACrD,OAAO,eAAe,CAAA;QACxB,CAAC;QAAC,OAAO,EAAW,EAAE,CAAC;YACrB,MAAM,CAAC,GAAG,kBAAG,CAAC,WAAW,CAAC,WAAW,CAAC,EAAE,CAAC,CAAA;YACzC,MAAM,CAAC,CAAA;QACT,CAAC;IACH,CAAC;IAED,KAAK,CAAC,qBAAqB;IACzB,uDAAuD;IACvD,YAAuB,EACvB,cAAkD;QAMlD,IAAI,CAAC,IAAI,CAAC,QAAQ,IAAI,CAAC,IAAI,CAAC,gBAAgB,IAAI,CAAC,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,SAAS,CAAC,MAAM,KAAK,CAAC;YAC5F,MAAM,IAAI,oCAAsB,CAAC,2DAA2D,CAAC,CAAA;QAC/F,MAAM,WAAW,GAAG,IAAI,CAAC,mBAAmB,EAAE,CAAA;QAC9C,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,wBAAwB,CAAC,YAAY,EAAE,cAAc,CAAC,CAAA;QACjF,qDAAqD;QACrD,OAAO;YACL,WAAW;YACX,OAAO;YACP,YAAY,EAAE,MAAM,IAAA,6BAAc,EAAC,IAAI,CAAC,MAAM,CAAC;SAChD,CAAA;IACH,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,KAAK,CAAC,wBAAwB,CAC5B,mBAA8B,EAC9B,cAAkD;QAElD,IAAI,CAAC,IAAI,CAAC,QAAQ,IAAI,CAAC,IAAI,CAAC,gBAAgB;YAAE,MAAM,IAAI,kBAAG,CAAC,sBAAsB,CAAC,+BAA+B,CAAC,CAAA;QACnH,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC,IAAI,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,gBAAiB,CAAC,CAAC,CAAC,KAAK,SAAS,CAAC;YACrG,MAAM,IAAI,kBAAG,CAAC,sBAAsB,CAAC,gBAAgB,EAAE,qCAAqC,CAAC,CAAA;QAC/F,MAAM,sBAAsB,GAAG,EAAE,CAAA;QACjC,KAAK,MAAM,SAAS,IAAI,cAAc,EAAE,CAAC;YACvC,iBAAiB;YACjB,MAAM,iBAAiB,GAAG,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAA;YAClD,MAAM,QAAQ,GAAG,OAAO,CAAC,wCAAwC,CAAC,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC,CAAA;YAE/F,+BAA+B;YAC/B,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC;gBACxD,UAAU,EAAE,WAAK,CAAC,OAAO,CAAC,iBAAiB,EAAE,QAAQ,CAAC;gBACtD,YAAY,EAAE,IAAI,CAAC,SAAS;gBAC5B,GAAG,QAAQ;aACZ,CAAC,CAAA;YAEF,4DAA4D;YAC5D,IAAI,CAAC;gBACH,IAAI,kBAAY,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,WAAK,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,QAAQ,CAAC,CAAC,CAAA;YACrF,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,MAAM,IAAI,kBAAG,CAAC,aAAa,CAAC,4BAA4B,SAAS,4BAA4B,CAAC,CAAA;YAChG,CAAC;YAED,kDAAkD;YAClD,MAAM,EAAE,UAAU,EAAE,2BAA2B,EAAE,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC;gBAC5E,SAAS,EAAE,QAAQ;gBACnB,YAAY,EAAE,mBAAmB;gBACjC,GAAG,QAAQ;aACZ,CAAC,CAAA;YAEF,4DAA4D;YAC5D,sBAAsB,CAAC,SAAS,CAAC,GAAG,WAAK,CAAC,QAAQ,CAAC,2BAA2B,CAAC,CAAA;QACjF,CAAC;QAED,2GAA2G;QAC3G,OAAO,sBAAsB,CAAA;IAC/B,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,4BAA4B;QAChC,IAAI,CAAC,MAAM,IAAA,6BAAc,EAAC,IAAI,CAAC,MAAM,CAAC,CAAC,KAAK,IAAI,CAAC,SAAS;YACxD,MAAM,IAAI,kBAAG,CAAC,sBAAsB,CAAC,QAAQ,EAAE,6CAA6C,CAAC,CAAA;QAE/F,MAAM,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;QACtC,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,MAAoC,CAAC,CAAA;QAC1D,2CAA2C;QAC3C,MAAM,IAAI,CAAC,MAAM,EAAE,CAAA;IACrB,CAAC;CACF;AApPD,0BAoPC"}