@connectid-tools/rp-nodejs-sdk 4.2.1 → 5.0.1

package/types.d.ts

@@ -1,4 +1,7 @@
-import { IdTokenClaims, TokenSet } from 'openid-client';
+import { IdTokenClaims } from './model/claims.js';
+export type { IdTokenClaims, AddressClaim, VerifiedClaims } from './model/claims.js';
+export type { CallbackParams } from './model/callback-params.js';
+export type { TokenResponse } from './model/token-response.js';
 export type RelyingPartyClientSdkConfig = {
     data: {
         ca_pem?: string;
@@ -20,35 +23,7 @@ export type RelyingPartyClientSdkConfig = {
         log_level: 'debug' | 'info';
         enable_auto_compliance_verification: boolean;
         purpose?: string;
-        cache_ttl?: number;
-        client: {
-            client_id: string;
-            organisation_id: string;
-            jwks_uri: string;
-            redirect_uris: string[];
-            organisation_name: string;
-            organisation_number: string;
-            software_description: string;
-            software_roles: string[];
-            application_type: 'web';
-            grant_types: ['client_credentials', 'authorization_code', 'implicit'];
-            id_token_signed_response_alg: 'PS256';
-            post_logout_redirect_uris: [];
-            require_auth_time: false;
-            response_types: ['code id_token', 'code'];
-            subject_type: 'public';
-            token_endpoint_auth_method: 'private_key_jwt';
-            token_endpoint_auth_signing_alg: 'PS256';
-            introspection_endpoint_auth_method: 'private_key_jwt';
-            revocation_endpoint_auth_method: 'private_key_jwt';
-            request_object_signing_alg: 'PS256';
-            require_signed_request_object: true;
-            require_pushed_authorization_requests: true;
-            authorization_signed_response_alg: 'PS256';
-            tls_client_certificate_bound_access_tokens: true;
-            backchannel_user_code_parameter: false;
-            scope: 'openid';
-        };
+        client_id: string;
     };
 };
 export type Participant = {
@@ -152,9 +127,63 @@ export type ClaimsRequest = {
         };
     };
 };
-export type ConsolidatedTokenSet = TokenSet & {
+/**
+ * Consolidated Token Set
+ *
+ * Represents a complete token response with additional helper methods.
+ * Combines token response data with parsed ID token claims.
+ */
+export interface ConsolidatedTokenSet {
+    /**
+     * The access token issued by the authorization server.
+     */
+    readonly access_token?: string;
+    /**
+     * The type of token issued (typically "Bearer").
+     */
+    readonly token_type?: string;
+    /**
+     * The lifetime in seconds of the access token.
+     */
+    readonly expires_in?: number;
+    /**
+     * The refresh token for obtaining new access tokens.
+     */
+    readonly refresh_token?: string;
+    /**
+     * The scope of the access token.
+     */
+    readonly scope?: string;
+    /**
+     * The ID token as a JWT string.
+     */
+    readonly id_token?: string;
+    /**
+     * The x-fapi-interaction-id from the token response.
+     */
+    readonly xFapiInteractionId: string;
+    /**
+     * Checks if the access token has expired.
+     *
+     * @returns true if the token is expired, false otherwise
+     */
+    expired(): boolean;
+    /**
+     * Returns the parsed ID token claims.
+     *
+     * @returns Parsed ID token claims
+     */
+    claims(): IdTokenClaims;
+    /**
+     * Returns consolidated claims with verified_claims merged into top level.
+     *
+     * This is useful for accessing extended claims directly without
+     * navigating the verified_claims structure.
+     *
+     * @returns Consolidated claims object
+     */
     consolidatedClaims(): IdTokenClaims;
-};
+}
 export type CertificationFilter = {
     profileVariant: string;
     profileType: string;

package/utils/request-utils.d.ts

@@ -1,2 +1,2 @@
-import { PushAuthorisationRequestParams } from '../types';
+import { PushAuthorisationRequestParams } from '../types.js';
 export declare const generatePushAuthorisationRequestParams: () => PushAuthorisationRequestParams;

package/utils/request-utils.js

@@ -1,8 +1,8 @@
-import { generators } from 'openid-client';
+import { PkceHelper } from '../crypto/pkce-helper.js';
 export const generatePushAuthorisationRequestParams = () => {
-    const state = generators.state();
-    const nonce = generators.nonce();
-    const codeVerifier = generators.codeVerifier();
-    const codeChallenge = generators.codeChallenge(codeVerifier);
+    const state = PkceHelper.generateState();
+    const nonce = PkceHelper.generateNonce();
+    const codeVerifier = PkceHelper.generateCodeVerifier();
+    const codeChallenge = PkceHelper.generateCodeChallenge(codeVerifier);
     return { state, nonce, codeVerifier, codeChallenge };
 };

package/utils/user-agent.d.ts

@@ -1,2 +1,2 @@
-export declare const packageJsonVersion = "4.2.1";
+export declare const packageJsonVersion = "5.0.1";
 export declare const buildUserAgent: (clientId: string) => string;

package/utils/user-agent.js

@@ -1,4 +1,4 @@
 import { getSystemInformation } from './system-information.js';
 // important: Update this every time the package version changes
-export const packageJsonVersion = '4.2.1';
+export const packageJsonVersion = '5.0.1';
 export const buildUserAgent = (clientId) => `cid-rp-nodejs-sdk/${packageJsonVersion} ${getSystemInformation()} +${clientId}`;