@cef-ebsi/cli 1.3.2 → 1.5.0

package/dist/utils/Client.js

@@ -1,24 +1,16 @@
 import { exportJWK, generateKeyPair, importJWK, SignJWT } from "jose";
-import { encodePublicKey } from "./utils.js";
-export async function generateKeys(alg) {
-    const keys = await generateKeyPair(alg);
-    return {
-        publicKeyJwk: await exportJWK(keys.publicKey),
-        privateKeyJwk: await exportJWK(keys.privateKey),
-    };
-}
+import { encodePrivateKey, encodePublicKey } from "./utils.js";
 export class Client {
-    keys;
-    ethWallet;
-    hardwareWallet;
-    privateKeyHex;
-    did;
-    didVersion;
-    clientId;
     accreditationId;
     accreditationUrl;
-    proxyId;
+    clientId;
+    did;
+    didVersion;
+    ethWallet;
+    hardwareWallet;
     issuerState;
+    keys;
+    proxyId;
     constructor() {
         this.keys = {};
     }
@@ -26,26 +18,6 @@ export class Client {
         const { privateKeyJwk } = await generateKeys(alg);
         this.setJwk(alg, privateKeyJwk);
     }
-    setJwk(alg, privateKeyJwk) {
-        const publicKeyJwk = encodePublicKey({
-            key: privateKeyJwk,
-            format: "jwk",
-        });
-        const publicKeyPem = encodePublicKey({
-            key: publicKeyJwk,
-            alg,
-            sourceType: "publicJwk",
-            format: "pem",
-        });
-        this.keys[alg] = {
-            id: "",
-            kid: "",
-            privateKeyJwk,
-            publicKeyJwk,
-            publicKeyPem,
-            isHardwareWallet: false,
-        };
-    }
     generateDidDocument() {
         const context = [
             "https://www.w3.org/ns/did/v1",
@@ -53,35 +25,87 @@ export class Client {
         ];
         const didDocument = {
             "@context": context,
-            id: this.did,
-            verificationMethod: [],
-            authentication: [],
             assertionMethod: [],
+            authentication: [],
             capabilityInvocation: [],
+            id: this.did,
+            verificationMethod: [],
         };
-        Object.keys(this.keys).forEach((alg) => {
+        for (const alg of Object.keys(this.keys)) {
             const key = this.keys[alg];
             if (!key)
-                return;
+                continue;
             didDocument.verificationMethod.push({
-                id: key.kid,
-                type: "JsonWebKey2020",
                 controller: this.did,
+                id: key.kid,
                 publicKeyJwk: key.publicKeyJwk,
+                type: "JsonWebKey2020",
             });
             didDocument.authentication.push(key.kid);
             didDocument.assertionMethod.push(key.kid);
             didDocument.capabilityInvocation.push(key.kid);
-        });
+        }
         return didDocument;
     }
+    privateKeysBase64() {
+        const keys = [];
+        for (const alg of Object.keys(this.keys)) {
+            const key = this.keys[alg];
+            if (!key)
+                continue;
+            keys.push({
+                alg,
+                id: key.kid,
+                privateKeyJwk: key.privateKeyJwk,
+                publicKeyJwk: key.publicKeyJwk,
+                type: "JsonWebKey2020",
+            });
+        }
+        return Buffer.from(JSON.stringify(keys)).toString("base64");
+    }
+    setJwk(alg, privateKeyJwk) {
+        const publicKeyJwk = encodePublicKey({
+            format: "jwk",
+            key: privateKeyJwk,
+        });
+        const publicKeyPem = encodePublicKey({
+            alg,
+            format: "pem",
+            key: publicKeyJwk,
+            sourceType: "publicJwk",
+        });
+        let publicKeyHex = "";
+        let privateKeyHex = "";
+        if (["ES256", "ES256K"].includes(alg)) {
+            privateKeyHex = encodePrivateKey({
+                alg,
+                format: "hex",
+                key: privateKeyJwk,
+            });
+            publicKeyHex = encodePublicKey({
+                alg,
+                format: "hex",
+                key: publicKeyJwk,
+            });
+        }
+        this.keys[alg] = {
+            id: "",
+            isHardwareWallet: false,
+            kid: "",
+            ...(privateKeyHex && { privateKeyHex }),
+            privateKeyJwk,
+            ...(publicKeyHex && { publicKeyHex }),
+            publicKeyJwk,
+            publicKeyPem,
+        };
+    }
     async signJWT(payload, inputHeader, alg) {
         if (!this.keys[alg])
             throw new Error(`There is no key defined for alg ${alg}`);
         const header = {
             alg,
-            typ: "JWT",
             kid: this.keys[alg].kid,
+            typ: "JWT",
             ...(this.didVersion === 2 && {
                 jwk: this.keys[alg].publicKeyJwk,
             }),
@@ -98,37 +122,26 @@ export class Client {
             .sign(privateKey);
         return jwt;
     }
-    privateKeysBase64() {
-        const keys = [];
-        Object.keys(this.keys).forEach((alg) => {
-            const key = this.keys[alg];
-            if (!key)
-                return;
-            keys.push({
-                type: "JsonWebKey2020",
-                id: key.kid,
-                alg,
-                privateKeyJwk: key.privateKeyJwk,
-                publicKeyJwk: key.publicKeyJwk,
-            });
-        });
-        return Buffer.from(JSON.stringify(keys)).toString("base64");
-    }
     toJSON() {
         return {
-            keys: this.keys,
-            privateKeyHex: this.ethWallet?.privateKey ?? "",
-            publicKeyHex: this.ethWallet?.publicKey ?? "",
+            accreditationId: this.accreditationId,
+            accreditationUrl: this.accreditationUrl,
             address: this.ethWallet?.address ?? "",
+            clientId: this.clientId,
             did: this.did,
             didVersion: this.didVersion,
-            clientId: this.clientId,
-            proxyId: this.proxyId,
-            accreditationId: this.accreditationId,
-            accreditationUrl: this.accreditationUrl,
             issuerState: this.issuerState,
+            keys: this.keys,
+            proxyId: this.proxyId,
         };
     }
 }
+export async function generateKeys(alg) {
+    const keys = await generateKeyPair(alg);
+    return {
+        privateKeyJwk: await exportJWK(keys.privateKey),
+        publicKeyJwk: await exportJWK(keys.publicKey),
+    };
+}
 export default Client;
 //# sourceMappingURL=Client.js.map

package/dist/utils/Client.js.map

@@ -1 +1 @@
-{"version":3,"file":"Client.js","sourceRoot":"","sources":["../../src/utils/Client.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,SAAS,EAAY,eAAe,EAAE,SAAS,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAEhF,OAAO,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAY7C,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,GAAW;IAI5C,MAAM,IAAI,GAAG,MAAM,eAAe,CAAC,GAAG,CAAC,CAAC;IACxC,OAAO;QACL,YAAY,EAAE,MAAM,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC;QAC7C,aAAa,EAAE,MAAM,SAAS,CAAC,IAAI,CAAC,UAAU,CAAC;KAChD,CAAC;AACJ,CAAC;AAED,MAAM,OAAO,MAAM;IACjB,IAAI,CAKF;IAEF,SAAS,CAAgB;IAEzB,cAAc,CAAiB;IAE/B,aAAa,CAAS;IAEtB,GAAG,CAAS;IAEZ,UAAU,CAAS;IAEnB,QAAQ,CAAS;IAEjB,eAAe,CAAS;IAExB,gBAAgB,CAAS;IAEzB,OAAO,CAAS;IAEhB,WAAW,CAAS;IAEpB;QACE,IAAI,CAAC,IAAI,GAAG,EAAE,CAAC;IACjB,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,GAAQ;QACzB,MAAM,EAAE,aAAa,EAAE,GAAG,MAAM,YAAY,CAAC,GAAG,CAAC,CAAC;QAClD,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,aAAa,CAAC,CAAC;IAClC,CAAC;IAED,MAAM,CAAC,GAAQ,EAAE,aAAkB;QACjC,MAAM,YAAY,GAAG,eAAe,CAAC;YACnC,GAAG,EAAE,aAAa;YAClB,MAAM,EAAE,KAAK;SACd,CAAQ,CAAC;QACV,MAAM,YAAY,GAAG,eAAe,CAAC;YACnC,GAAG,EAAE,YAAY;YACjB,GAAG;YACH,UAAU,EAAE,WAAW;YACvB,MAAM,EAAE,KAAK;SACd,CAAW,CAAC;QAEb,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG;YACf,EAAE,EAAE,EAAE;YACN,GAAG,EAAE,EAAE;YACP,aAAa;YACb,YAAY;YACZ,YAAY;YACZ,gBAAgB,EAAE,KAAK;SACxB,CAAC;IACJ,CAAC;IAED,mBAAmB;QACjB,MAAM,OAAO,GAAG;YACd,8BAA8B;YAC9B,8CAA8C;SAC/C,CAAC;QACF,MAAM,WAAW,GAAG;YAClB,UAAU,EAAE,OAAO;YACnB,EAAE,EAAE,IAAI,CAAC,GAAG;YACZ,kBAAkB,EAAE,EAAE;YACtB,cAAc,EAAE,EAAE;YAClB,eAAe,EAAE,EAAE;YACnB,oBAAoB,EAAE,EAAE;SACzB,CAAC;QAEF,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;YACrC,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAe,CAAC;YACzC,IAAI,CAAC,GAAG;gBAAE,OAAO;YACjB,WAAW,CAAC,kBAAkB,CAAC,IAAI,CAAC;gBAClC,EAAE,EAAE,GAAG,CAAC,GAAG;gBACX,IAAI,EAAE,gBAAgB;gBACtB,UAAU,EAAE,IAAI,CAAC,GAAG;gBACpB,YAAY,EAAE,GAAG,CAAC,YAAY;aAC/B,CAAC,CAAC;YACH,WAAW,CAAC,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACzC,WAAW,CAAC,eAAe,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YAC1C,WAAW,CAAC,oBAAoB,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACjD,CAAC,CAAC,CAAC;QAEH,OAAO,WAAW,CAAC;IACrB,CAAC;IAED,KAAK,CAAC,OAAO,CACX,OAAsB,EACtB,WAA0B,EAC1B,GAAQ;QAER,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,mCAAmC,GAAG,EAAE,CAAC,CAAC;QAE5D,MAAM,MAAM,GAAG;YACb,GAAG;YACH,GAAG,EAAE,KAAK;YACV,GAAG,EAAE,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG;YACvB,GAAG,CAAC,IAAI,CAAC,UAAU,KAAK,CAAC,IAAI;gBAC3B,GAAG,EAAE,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,YAAY;aACjC,CAAC;YACF,GAAG,WAAW;SACf,CAAC;QAEF,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,gBAAgB,EAAE,CAAC;YACpC,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;YAC/D,OAAO,GAAG,CAAC;QACb,CAAC;QAED,MAAM,UAAU,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,aAAa,EAAE,GAAG,CAAC,CAAC;QACtE,MAAM,GAAG,GAAG,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC;aACnC,kBAAkB,CAAC,MAAM,CAAC;YAC3B,uBAAuB;aACtB,IAAI,CAAC,UAAU,CAAC,CAAC;QACpB,OAAO,GAAG,CAAC;IACb,CAAC;IAED,iBAAiB;QACf,MAAM,IAAI,GAAG,EAAE,CAAC;QAChB,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;YACrC,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAe,CAAC;YACzC,IAAI,CAAC,GAAG;gBAAE,OAAO;YACjB,IAAI,CAAC,IAAI,CAAC;gBACR,IAAI,EAAE,gBAAgB;gBACtB,EAAE,EAAE,GAAG,CAAC,GAAG;gBACX,GAAG;gBACH,aAAa,EAAE,GAAG,CAAC,aAAa;gBAChC,YAAY,EAAE,GAAG,CAAC,YAAY;aAC/B,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QACH,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM;QACJ,OAAO;YACL,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,aAAa,EAAE,IAAI,CAAC,SAAS,EAAE,UAAU,IAAI,EAAE;YAC/C,YAAY,EAAE,IAAI,CAAC,SAAS,EAAE,SAAS,IAAI,EAAE;YAC7C,OAAO,EAAE,IAAI,CAAC,SAAS,EAAE,OAAO,IAAI,EAAE;YACtC,GAAG,EAAE,IAAI,CAAC,GAAG;YACb,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,eAAe,EAAE,IAAI,CAAC,eAAe;YACrC,gBAAgB,EAAE,IAAI,CAAC,gBAAgB;YACvC,WAAW,EAAE,IAAI,CAAC,WAAW;SAC9B,CAAC;IACJ,CAAC;CACF;AAED,eAAe,MAAM,CAAC"}
+{"version":3,"file":"Client.js","sourceRoot":"","sources":["../../src/utils/Client.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,SAAS,EAAE,eAAe,EAAE,SAAS,EAAY,OAAO,EAAE,MAAM,MAAM,CAAC;AAIhF,OAAO,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAa/D,MAAM,OAAO,MAAM;IACjB,eAAe,CAAS;IAExB,gBAAgB,CAAS;IAEzB,QAAQ,CAAS;IAEjB,GAAG,CAAS;IAEZ,UAAU,CAAS;IAEnB,SAAS,CAAgB;IAEzB,cAAc,CAAiB;IAE/B,WAAW,CAAS;IAEpB,IAAI,CAKF;IAEF,OAAO,CAAS;IAEhB;QACE,IAAI,CAAC,IAAI,GAAG,EAAE,CAAC;IACjB,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,GAAQ;QACzB,MAAM,EAAE,aAAa,EAAE,GAAG,MAAM,YAAY,CAAC,GAAG,CAAC,CAAC;QAClD,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,aAAa,CAAC,CAAC;IAClC,CAAC;IAED,mBAAmB;QACjB,MAAM,OAAO,GAAG;YACd,8BAA8B;YAC9B,8CAA8C;SAC/C,CAAC;QACF,MAAM,WAAW,GAAG;YAClB,UAAU,EAAE,OAAO;YACnB,eAAe,EAAE,EAAE;YACnB,cAAc,EAAE,EAAE;YAClB,oBAAoB,EAAE,EAAE;YACxB,EAAE,EAAE,IAAI,CAAC,GAAG;YACZ,kBAAkB,EAAE,EAAE;SACvB,CAAC;QAEF,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACzC,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAe,CAAC;YACzC,IAAI,CAAC,GAAG;gBAAE,SAAS;YACnB,WAAW,CAAC,kBAAkB,CAAC,IAAI,CAAC;gBAClC,UAAU,EAAE,IAAI,CAAC,GAAG;gBACpB,EAAE,EAAE,GAAG,CAAC,GAAG;gBACX,YAAY,EAAE,GAAG,CAAC,YAAY;gBAC9B,IAAI,EAAE,gBAAgB;aACvB,CAAC,CAAC;YACH,WAAW,CAAC,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACzC,WAAW,CAAC,eAAe,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YAC1C,WAAW,CAAC,oBAAoB,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACjD,CAAC;QAED,OAAO,WAAW,CAAC;IACrB,CAAC;IAED,iBAAiB;QACf,MAAM,IAAI,GAAG,EAAE,CAAC;QAChB,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACzC,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAe,CAAC;YACzC,IAAI,CAAC,GAAG;gBAAE,SAAS;YACnB,IAAI,CAAC,IAAI,CAAC;gBACR,GAAG;gBACH,EAAE,EAAE,GAAG,CAAC,GAAG;gBACX,aAAa,EAAE,GAAG,CAAC,aAAa;gBAChC,YAAY,EAAE,GAAG,CAAC,YAAY;gBAC9B,IAAI,EAAE,gBAAgB;aACvB,CAAC,CAAC;QACL,CAAC;QACD,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,CAAC,GAAQ,EAAE,aAAkB;QACjC,MAAM,YAAY,GAAG,eAAe,CAAC;YACnC,MAAM,EAAE,KAAK;YACb,GAAG,EAAE,aAAa;SACnB,CAAQ,CAAC;QAEV,MAAM,YAAY,GAAG,eAAe,CAAC;YACnC,GAAG;YACH,MAAM,EAAE,KAAK;YACb,GAAG,EAAE,YAAY;YACjB,UAAU,EAAE,WAAW;SACxB,CAAW,CAAC;QAEb,IAAI,YAAY,GAAG,EAAE,CAAC;QACtB,IAAI,aAAa,GAAG,EAAE,CAAC;QAEvB,IAAI,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YACtC,aAAa,GAAG,gBAAgB,CAAC;gBAC/B,GAAG;gBACH,MAAM,EAAE,KAAK;gBACb,GAAG,EAAE,aAAa;aACnB,CAAW,CAAC;YACb,YAAY,GAAG,eAAe,CAAC;gBAC7B,GAAG;gBACH,MAAM,EAAE,KAAK;gBACb,GAAG,EAAE,YAAY;aAClB,CAAW,CAAC;QACf,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG;YACf,EAAE,EAAE,EAAE;YACN,gBAAgB,EAAE,KAAK;YACvB,GAAG,EAAE,EAAE;YACP,GAAG,CAAC,aAAa,IAAI,EAAE,aAAa,EAAE,CAAC;YACvC,aAAa;YACb,GAAG,CAAC,YAAY,IAAI,EAAE,YAAY,EAAE,CAAC;YACrC,YAAY;YACZ,YAAY;SACb,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,OAAO,CACX,OAAsB,EACtB,WAA0B,EAC1B,GAAQ;QAER,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,mCAAmC,GAAG,EAAE,CAAC,CAAC;QAE5D,MAAM,MAAM,GAAG;YACb,GAAG;YACH,GAAG,EAAE,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG;YACvB,GAAG,EAAE,KAAK;YACV,GAAG,CAAC,IAAI,CAAC,UAAU,KAAK,CAAC,IAAI;gBAC3B,GAAG,EAAE,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,YAAY;aACjC,CAAC;YACF,GAAG,WAAW;SACf,CAAC;QAEF,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,gBAAgB,EAAE,CAAC;YACpC,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;YAC/D,OAAO,GAAG,CAAC;QACb,CAAC;QAED,MAAM,UAAU,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,aAAa,EAAE,GAAG,CAAC,CAAC;QACtE,MAAM,GAAG,GAAG,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC;aACnC,kBAAkB,CAAC,MAAM,CAAC;YAC3B,uBAAuB;aACtB,IAAI,CAAC,UAAU,CAAC,CAAC;QACpB,OAAO,GAAG,CAAC;IACb,CAAC;IAED,MAAM;QACJ,OAAO;YACL,eAAe,EAAE,IAAI,CAAC,eAAe;YACrC,gBAAgB,EAAE,IAAI,CAAC,gBAAgB;YACvC,OAAO,EAAE,IAAI,CAAC,SAAS,EAAE,OAAO,IAAI,EAAE;YACtC,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,GAAG,EAAE,IAAI,CAAC,GAAG;YACb,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,OAAO,EAAE,IAAI,CAAC,OAAO;SACtB,CAAC;IACJ,CAAC;CACF;AAED,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,GAAW;IAI5C,MAAM,IAAI,GAAG,MAAM,eAAe,CAAC,GAAG,CAAC,CAAC;IACxC,OAAO;QACL,aAAa,EAAE,MAAM,SAAS,CAAC,IAAI,CAAC,UAAU,CAAC;QAC/C,YAAY,EAAE,MAAM,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC;KAC9C,CAAC;AACJ,CAAC;AAED,eAAe,MAAM,CAAC"}

package/dist/utils/HardwareWallet.js

@@ -1,48 +1,17 @@
 import * as asn1 from "asn1js";
-import * as pki from "pkijs";
-import crypto from "crypto";
-import { base64url } from "multiformats/bases/base64";
 import Joi from "joi";
-import { yellow, red } from "./print.js";
+import { base64url } from "multiformats/bases/base64";
+import crypto from "node:crypto";
+import * as pki from "pkijs";
+import { red, yellow } from "./print.js";
 import { askQuestion } from "./utils.js";
-function convertRawSignatureToDER(rawSignature) {
-    if (rawSignature.length !== 64) {
-        throw new Error("Raw signature must be 64 bytes (32 bytes for r and 32 bytes for s)");
-    }
-    // Split raw signature into r and s
-    const r = rawSignature.subarray(0, 32);
-    const s = rawSignature.subarray(32);
-    // Function to add leading zero if needed
-    function toDERInteger(value) {
-        if (value[0] & 0x80) {
-            // If the first byte is >= 0x80, prepend 0x00 to indicate a positive integer
-            return Buffer.concat([Buffer.from([0x00]), value]);
-        }
-        return value;
-    }
-    // Convert r and s to DER integers
-    const rDER = toDERInteger(r);
-    const sDER = toDERInteger(s);
-    // Create DER-encoded SEQUENCE containing the r and s values
-    const derSignature = Buffer.concat([
-        Buffer.from([0x30]), // ASN.1 SEQUENCE tag
-        Buffer.from([rDER.length + sDER.length + 4]), // Total length of SEQUENCE
-        Buffer.from([0x02]), // ASN.1 INTEGER tag for r
-        Buffer.from([rDER.length]), // Length of r
-        rDER, // r value
-        Buffer.from([0x02]), // ASN.1 INTEGER tag for s
-        Buffer.from([sDER.length]), // Length of s
-        sDER, // s value
-    ]);
-    return derSignature;
-}
 export class HardwareWallet {
     graphene;
     mod;
-    slots;
+    session;
     slot;
     slotNumber;
-    session;
+    slots;
     constructor(library) {
         this.loadGraphene()
             .then(() => {
@@ -52,69 +21,31 @@ export class HardwareWallet {
             console.warn("Failed to load graphene-pk11");
         });
     }
-    async loadGraphene() {
-        // eslint-disable-next-line import/no-extraneous-dependencies
-        this.graphene = await import("graphene-pk11");
-        if (!this.graphene) {
-            throw new Error("Failed to load graphene-pk11");
-        }
-    }
-    init() {
-        if (!this.mod) {
-            throw new Error("Hardware wallet cannot be used because the graphene-pk11 package was not loaded");
-        }
-        this.endSession();
-        this.mod.initialize();
-        this.slotNumber = 0;
-        // get slots
-        this.slots = this.mod.getSlots(true);
-        if (this.slots.length === 0) {
-            this.mod.finalize();
-            throw new Error("No slots found. Make sure your Ledger is unlocked and the OpenPGP app is open.");
-        }
-        this.slot = this.slots.items(this.slotNumber);
-        if (!(this.slot.flags & this.graphene.SlotFlag.TOKEN_PRESENT)) {
-            this.mod.finalize();
-            throw new Error(`Slot ${this.slotNumber} is not initialized`);
-        }
-        this.session = this.slot.open(this.graphene.SessionFlag.RW_SESSION |
-            this.graphene.SessionFlag.SERIAL_SESSION);
+    static verify2(message, signature, publicKeyJwk) {
+        const derFormatSig = convertRawSignatureToDER(signature);
+        const isValid = crypto.verify("sha256", Buffer.from(message), {
+            format: "jwk",
+            key: publicKeyJwk,
+        }, derFormatSig);
+        return isValid;
     }
-    async login(userType, loginMessage) {
-        let attemptsLeft = 3;
-        const isAdmin = userType === "admin";
-        let pin = "";
-        let validPin = false;
-        let loginMsg = isAdmin ? "Enter admin pin: " : "Enter pin: ";
-        if (loginMessage)
-            loginMsg = loginMessage;
-        while (!validPin) {
-            try {
-                pin = await askQuestion(loginMsg, true);
-                this.session.login(pin, isAdmin ? this.graphene.UserType.SO : this.graphene.UserType.USER);
-                validPin = true;
-            }
-            catch (error) {
-                validPin = false;
-                if (error instanceof Error) {
-                    if (error.message === "CKR_PIN_LEN_RANGE") {
-                        red("Invalid PIN length");
-                    }
-                    else if (error.message === "CKR_USER_NOT_LOGGED_IN") {
-                        attemptsLeft -= 1;
-                        red(`Invalid PIN. You have ${attemptsLeft} attempts before the PIN is locked`);
-                    }
-                    else if (error.message === "CKR_PIN_LOCKED") {
-                        throw new Error(`The PIN is locked. If you want to reset it, open OpenPGP app, go to "Settings" > "Reset" and select "YES"`);
-                    }
-                    else if (error.message === "CKR_GENERAL_ERROR") {
-                        throw new Error(`Hardware wallet error. Make sure your Ledger is unlocked and the OpenPGP app is open`);
-                    }
-                    throw error;
-                }
-            }
+    static verifyJwt(jwt, publicKeyJwk) {
+        const jwtParts = jwt.split(".");
+        if (jwtParts.length !== 3)
+            throw new Error("Invalid JWT format");
+        const [headerBase64url, payloadBase64url, signatureBase64url] = jwtParts;
+        const message = `${headerBase64url}.${payloadBase64url}`;
+        const headerString = Buffer.from(base64url.baseDecode(headerBase64url)).toString();
+        const payloadString = Buffer.from(base64url.baseDecode(payloadBase64url)).toString();
+        const signature = Buffer.from(base64url.baseDecode(signatureBase64url));
+        const result = HardwareWallet.verify2(message, signature, publicKeyJwk);
+        if (!result) {
+            throw new Error("Invalid signature");
         }
-        return pin;
+        return {
+            header: JSON.parse(headerString),
+            payload: JSON.parse(payloadString),
+        };
     }
     endSession() {
         try {
@@ -130,49 +61,6 @@ export class HardwareWallet {
             // empty
         }
     }
-    async setPin(user) {
-        Joi.assert(user, Joi.string().valid("user", "admin"));
-        this.init();
-        const pin = await this.login(user, `Enter current pin for ${user}: `);
-        const newPin = await askQuestion("Enter new pin: ", true);
-        try {
-            this.session.setPin(pin, newPin);
-            this.endSession();
-            yellow(user === "user"
-                ? "New pin configured!"
-                : "New pin configured for admin!");
-        }
-        catch (error) {
-            if (error instanceof Error) {
-                if (error.message === "CKR_PIN_LEN_RANGE") {
-                    throw new Error("Invalid PIN length");
-                }
-                else if (error.message === "CKR_GENERAL_ERROR") {
-                    throw new Error(`Hardware wallet error. Make sure your Ledger is unlocked and the OpenPGP app is open`);
-                }
-                else {
-                    throw error;
-                }
-            }
-        }
-    }
-    getInfo() {
-        this.init();
-        const info = {
-            slot: this.slotNumber,
-            description: this.slot.slotDescription,
-            serial: this.slot.getToken().serialNumber,
-            password: {
-                min: this.slot.getToken().minPinLen,
-                max: this.slot.getToken().maxPinLen,
-            },
-            isHardware: Boolean(this.slot.flags & this.graphene.SlotFlag.HW_SLOT),
-            isRemovable: Boolean(this.slot.flags & this.graphene.SlotFlag.REMOVABLE_DEVICE),
-            isInitialized: Boolean(this.slot.flags & this.graphene.SlotFlag.TOKEN_PRESENT),
-        };
-        this.endSession();
-        return info;
-    }
     async generateKeys() {
         this.init();
         await this.login("admin");
@@ -218,6 +106,23 @@ export class HardwareWallet {
         yellow("Key pair generated successfully!");
         this.endSession();
     }
+    getInfo() {
+        this.init();
+        const info = {
+            description: this.slot.slotDescription,
+            isHardware: Boolean(this.slot.flags & this.graphene.SlotFlag.HW_SLOT),
+            isInitialized: Boolean(this.slot.flags & this.graphene.SlotFlag.TOKEN_PRESENT),
+            isRemovable: Boolean(this.slot.flags & this.graphene.SlotFlag.REMOVABLE_DEVICE),
+            password: {
+                max: this.slot.getToken().maxPinLen,
+                min: this.slot.getToken().minPinLen,
+            },
+            serial: this.slot.getToken().serialNumber,
+            slot: this.slotNumber,
+        };
+        this.endSession();
+        return info;
+    }
     getPublicKey() {
         this.init();
         const publicKeys = this.session.find({
@@ -241,6 +146,100 @@ export class HardwareWallet {
         this.endSession();
         return { kty: "EC", ...publicKeyDecoded.toJSON() };
     }
+    init() {
+        if (!this.mod) {
+            throw new Error("Hardware wallet cannot be used because the graphene-pk11 package was not loaded");
+        }
+        this.endSession();
+        this.mod.initialize();
+        this.slotNumber = 0;
+        // get slots
+        this.slots = this.mod.getSlots(true);
+        if (this.slots.length === 0) {
+            this.mod.finalize();
+            throw new Error("No slots found. Make sure your Ledger is unlocked and the OpenPGP app is open.");
+        }
+        this.slot = this.slots.items(this.slotNumber);
+        if (!(this.slot.flags & this.graphene.SlotFlag.TOKEN_PRESENT)) {
+            this.mod.finalize();
+            throw new Error(`Slot ${this.slotNumber} is not initialized`);
+        }
+        this.session = this.slot.open(this.graphene.SessionFlag.RW_SESSION |
+            this.graphene.SessionFlag.SERIAL_SESSION);
+    }
+    async loadGraphene() {
+        this.graphene = await import("graphene-pk11");
+        if (!this.graphene) {
+            throw new Error("Failed to load graphene-pk11");
+        }
+    }
+    async login(userType, loginMessage) {
+        let attemptsLeft = 3;
+        const isAdmin = userType === "admin";
+        let pin = "";
+        let validPin = false;
+        let loginMsg = isAdmin ? "Enter admin pin: " : "Enter pin: ";
+        if (loginMessage)
+            loginMsg = loginMessage;
+        while (!validPin) {
+            try {
+                pin = await askQuestion(loginMsg, true);
+                this.session.login(pin, isAdmin ? this.graphene.UserType.SO : this.graphene.UserType.USER);
+                validPin = true;
+            }
+            catch (error) {
+                validPin = false;
+                if (error instanceof Error) {
+                    switch (error.message) {
+                        case "CKR_PIN_LEN_RANGE": {
+                            red("Invalid PIN length");
+                            break;
+                        }
+                        case "CKR_USER_NOT_LOGGED_IN": {
+                            attemptsLeft -= 1;
+                            red(`Invalid PIN. You have ${attemptsLeft} attempts before the PIN is locked`);
+                            break;
+                        }
+                        case "CKR_PIN_LOCKED": {
+                            throw new Error(`The PIN is locked. If you want to reset it, open OpenPGP app, go to "Settings" > "Reset" and select "YES"`);
+                        }
+                        case "CKR_GENERAL_ERROR": {
+                            throw new Error(`Hardware wallet error. Make sure your Ledger is unlocked and the OpenPGP app is open`);
+                        }
+                        // No default
+                    }
+                    throw error;
+                }
+            }
+        }
+        return pin;
+    }
+    async setPin(user) {
+        Joi.assert(user, Joi.string().valid("user", "admin"));
+        this.init();
+        const pin = await this.login(user, `Enter current pin for ${user}: `);
+        const newPin = await askQuestion("Enter new pin: ", true);
+        try {
+            this.session.setPin(pin, newPin);
+            this.endSession();
+            yellow(user === "user"
+                ? "New pin configured!"
+                : "New pin configured for admin!");
+        }
+        catch (error) {
+            if (error instanceof Error) {
+                if (error.message === "CKR_PIN_LEN_RANGE") {
+                    throw new Error("Invalid PIN length");
+                }
+                else if (error.message === "CKR_GENERAL_ERROR") {
+                    throw new Error(`Hardware wallet error. Make sure your Ledger is unlocked and the OpenPGP app is open`);
+                }
+                else {
+                    throw error;
+                }
+            }
+        }
+    }
     async sign(message) {
         this.init();
         await this.login("user");
@@ -290,32 +289,37 @@ export class HardwareWallet {
         this.endSession();
         return isValid;
     }
-    static verify2(message, signature, publicKeyJwk) {
-        const derFormatSig = convertRawSignatureToDER(signature);
-        const isValid = crypto.verify("sha256", Buffer.from(message), {
-            format: "jwk",
-            key: publicKeyJwk,
-        }, derFormatSig);
-        return isValid;
+}
+function convertRawSignatureToDER(rawSignature) {
+    if (rawSignature.length !== 64) {
+        throw new Error("Raw signature must be 64 bytes (32 bytes for r and 32 bytes for s)");
     }
-    static verifyJwt(jwt, publicKeyJwk) {
-        const jwtParts = jwt.split(".");
-        if (jwtParts.length !== 3)
-            throw new Error("Invalid JWT format");
-        const [headerBase64url, payloadBase64url, signatureBase64url] = jwtParts;
-        const message = `${headerBase64url}.${payloadBase64url}`;
-        const headerString = Buffer.from(base64url.baseDecode(headerBase64url)).toString();
-        const payloadString = Buffer.from(base64url.baseDecode(payloadBase64url)).toString();
-        const signature = Buffer.from(base64url.baseDecode(signatureBase64url));
-        const result = HardwareWallet.verify2(message, signature, publicKeyJwk);
-        if (!result) {
-            throw new Error("Invalid signature");
-        }
-        return {
-            header: JSON.parse(headerString),
-            payload: JSON.parse(payloadString),
-        };
+    // Split raw signature into r and s
+    const r = rawSignature.subarray(0, 32);
+    const s = rawSignature.subarray(32);
+    // Convert r and s to DER integers
+    const rDER = toDERInteger(r);
+    const sDER = toDERInteger(s);
+    // Create DER-encoded SEQUENCE containing the r and s values
+    const derSignature = Buffer.concat([
+        Buffer.from([0x30]), // ASN.1 SEQUENCE tag
+        Buffer.from([rDER.length + sDER.length + 4]), // Total length of SEQUENCE
+        Buffer.from([0x02]), // ASN.1 INTEGER tag for r
+        Buffer.from([rDER.length]), // Length of r
+        rDER, // r value
+        Buffer.from([0x02]), // ASN.1 INTEGER tag for s
+        Buffer.from([sDER.length]), // Length of s
+        sDER, // s value
+    ]);
+    return derSignature;
+}
+// Function to add leading zero if needed
+function toDERInteger(value) {
+    if (value[0] & 0x80) {
+        // If the first byte is >= 0x80, prepend 0x00 to indicate a positive integer
+        return Buffer.concat([Buffer.from([0x00]), value]);
     }
+    return value;
 }
 export default HardwareWallet;
 //# sourceMappingURL=HardwareWallet.js.map