npm - @credo-ts/core - Versions diffs - 0.6.0-pr-2392-20251010173905 → 0.6.0-pr-2457-20251016083534 - Mend

@credo-ts/core 0.6.0-pr-2392-20251010173905 → 0.6.0-pr-2457-20251016083534

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (985) hide show

package/build/modules/vc/jwt-vc/W3cJwtVerifiablePresentation.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cJwtVerifiablePresentation.d.ts","names":[],"sources":["../../../../src/modules/vc/jwt-vc/W3cJwtVerifiablePresentation.ts"],"sourcesContent":[],"mappings":";;;;;;;;;~~UAQiB~~,mCAAA;OACV;;cAGM,4BAAA;gBACU;;EALN,WAAA,CAAA,OAAA,EAQa,mCAPpB;EAGG,OAAA,iBAAA,CAAA,aAA4B,EAAA,MAAA,CAAA,EAUc,4BAVd;EAAA;;;;;;;;MA8DR,YAAA,CAAA,CAAA,EAhCJ,eAgCI;MAAA,aAAA,CAAA,CAAA,EAAA,MAAA;MAWL,OAAA,CAAA,CAAA,EAAY,CAAA,MAAA,GA3CI,UA2CJ,CAAA,EAAA;EAAK,IAAA,EAAA,CAAA,CAAA,EAAA,MAAA,GAAA,SAAA;;yBA3BzB,SAAA;8BAgBa,cAJd,0BAAA,GAIc;;;;;qBAWL,WAAA,CAAY"}
1	+ {"version":3,"file":"W3cJwtVerifiablePresentation.d.ts","names":[],"sources":["../../../../src/modules/vc/jwt-vc/W3cJwtVerifiablePresentation.ts"],"sourcesContent":[],"mappings":";;;;;;;;;UAOiB,mCAAA;OACV;;cAGM,4BAAA;gBACU;;EALN,WAAA,CAAA,OAAA,EAQa,mCAPpB;EAGG,OAAA,iBAAA,CAAA,aAA4B,EAAA,MAAA,CAAA,EAUc,4BAVd;EAAA;;;;;;;;MA8DR,YAAA,CAAA,CAAA,EAhCJ,eAgCI;MAAA,aAAA,CAAA,CAAA,EAAA,MAAA;MAWL,OAAA,CAAA,CAAA,EAAY,CAAA,MAAA,GA3CI,UA2CJ,CAAA,EAAA;EAAK,IAAA,EAAA,CAAA,CAAA,EAAA,MAAA,GAAA,SAAA;;yBA3BzB,SAAA;8BAgBa,cAJd,0BAAA,GAIc;;;;;qBAWL,WAAA,CAAY"}

package/build/modules/vc/jwt-vc/W3cJwtVerifiablePresentation.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cJwtVerifiablePresentation.mjs","names":[],"sources":["../../../../src/modules/vc/jwt-vc/W3cJwtVerifiablePresentation.ts"],"sourcesContent":["import ~~type~~ { ~~W3cPresentation~~ } from '~~../models~~'\n\nimport { ~~Jwt~~ } from '../../../~~crypto/jose/jwt/Jwt~~'\nimport { ~~CredoError~~ } from '~~../../../error~~'\nimport { ClaimFormat } from '../models'\n\nimport { getPresentationFromJwtPayload } from './presentationTransformer'\n\nexport interface W3cJwtVerifiablePresentationOptions {\n jwt: Jwt\n}\n\nexport class W3cJwtVerifiablePresentation {\n public readonly jwt: Jwt\n private _presentation: W3cPresentation\n\n public constructor(options: W3cJwtVerifiablePresentationOptions) {\n this.jwt = options.jwt\n\n this._presentation = getPresentationFromJwtPayload(this.jwt.payload)\n }\n\n public static fromSerializedJwt(serializedJwt: string) {\n const jwt = Jwt.fromSerializedJwt(serializedJwt)\n\n if (!jwt.payload.additionalClaims.nonce) {\n throw new CredoError(`JWT payload does not contain required claim 'nonce'`)\n }\n\n return new W3cJwtVerifiablePresentation({\n jwt,\n })\n }\n\n /*\n Get the W3cPresentation from the JWT payload. This does not include the JWT wrapper,\n * and thus is not suitable for sharing. If you need a JWT, use the `serializedJwt` property.\n \n All properties and getters from the `W3cPresentation` interface are implemented as getters\n * on the `W3cJwtVerifiablePresentation` class itself, so you can also use this directly\n * instead of accessing the inner `presentation` property.\n /\n public get presentation(): W3cPresentation {\n return this._presentation\n }\n\n public get serializedJwt(): string {\n return this.jwt.serializedJwt\n }\n\n //\n // Below all properties from the `W3cPresentation` interface are implemented as getters\n // this is to make the interface compatible with the W3cJsonLdVerifiablePresentation interface\n // which makes using the different classes interchangeably from a user point of view.\n // This is 'easier' than extending the W3cPresentation class as it means we have to create the\n // instance based on JSON, but also add custom properties.\n //\n\n public get context() {\n return this.presentation.context\n }\n\n public get id() {\n return this.presentation.id\n }\n\n public get type() {\n return this.presentation.type\n }\n\n public get holder() {\n return this.presentation.holder\n }\n\n public get verifiableCredential() {\n return this.presentation.verifiableCredential\n }\n\n public get holderId() {\n return this.presentation.holderId\n }\n\n /\n The {@link ClaimFormat} of the presentation. For JWT presentations this is always `jwt_vp`.\n /\n public get claimFormat(): ClaimFormat.JwtVp {\n return ClaimFormat.JwtVp\n }\n\n /\n Get the encoded variant of the W3C Verifiable Presentation. For JWT presentations this is\n * a JWT string.\n */\n public get encoded() {\n return this.serializedJwt\n }\n}\n"],"mappings":";;;;;;;;;;~~AAYA~~,IAAa,+BAAb,MAAa,6BAA6B;CAIxC,AAAO,YAAY,SAA8C;AAC/D,OAAK,MAAM,QAAQ;AAEnB,OAAK,gBAAgB,8BAA8B,KAAK,IAAI,QAAQ;;CAGtE,OAAc,kBAAkB,eAAuB;EACrD,MAAM,MAAM,IAAI,kBAAkB,cAAc;AAEhD,MAAI,CAAC,IAAI,QAAQ,iBAAiB,MAChC,OAAM,IAAI,WAAW,sDAAsD;AAG7E,SAAO,IAAI,6BAA6B,EACtC,KACD,CAAC;;;;;;;;;;CAWJ,IAAW,eAAgC;AACzC,SAAO,KAAK;;CAGd,IAAW,gBAAwB;AACjC,SAAO,KAAK,IAAI;;CAWlB,IAAW,UAAU;AACnB,SAAO,KAAK,aAAa;;CAG3B,IAAW,KAAK;AACd,SAAO,KAAK,aAAa;;CAG3B,IAAW,OAAO;AAChB,SAAO,KAAK,aAAa;;CAG3B,IAAW,SAAS;AAClB,SAAO,KAAK,aAAa;;CAG3B,IAAW,uBAAuB;AAChC,SAAO,KAAK,aAAa;;CAG3B,IAAW,WAAW;AACpB,SAAO,KAAK,aAAa;;;;;CAM3B,IAAW,cAAiC;AAC1C,SAAO,YAAY;;;;;;CAOrB,IAAW,UAAU;AACnB,SAAO,KAAK"}
1	+ {"version":3,"file":"W3cJwtVerifiablePresentation.mjs","names":[],"sources":["../../../../src/modules/vc/jwt-vc/W3cJwtVerifiablePresentation.ts"],"sourcesContent":["import { Jwt } from '../../../crypto/jose/jwt/Jwt'\nimport { CredoError } from '../../../error'\nimport type { W3cPresentation } from '../models'\nimport { ClaimFormat } from '../models'\n\nimport { getPresentationFromJwtPayload } from './presentationTransformer'\n\nexport interface W3cJwtVerifiablePresentationOptions {\n jwt: Jwt\n}\n\nexport class W3cJwtVerifiablePresentation {\n public readonly jwt: Jwt\n private _presentation: W3cPresentation\n\n public constructor(options: W3cJwtVerifiablePresentationOptions) {\n this.jwt = options.jwt\n\n this._presentation = getPresentationFromJwtPayload(this.jwt.payload)\n }\n\n public static fromSerializedJwt(serializedJwt: string) {\n const jwt = Jwt.fromSerializedJwt(serializedJwt)\n\n if (!jwt.payload.additionalClaims.nonce) {\n throw new CredoError(`JWT payload does not contain required claim 'nonce'`)\n }\n\n return new W3cJwtVerifiablePresentation({\n jwt,\n })\n }\n\n /*\n Get the W3cPresentation from the JWT payload. This does not include the JWT wrapper,\n * and thus is not suitable for sharing. If you need a JWT, use the `serializedJwt` property.\n \n All properties and getters from the `W3cPresentation` interface are implemented as getters\n * on the `W3cJwtVerifiablePresentation` class itself, so you can also use this directly\n * instead of accessing the inner `presentation` property.\n /\n public get presentation(): W3cPresentation {\n return this._presentation\n }\n\n public get serializedJwt(): string {\n return this.jwt.serializedJwt\n }\n\n //\n // Below all properties from the `W3cPresentation` interface are implemented as getters\n // this is to make the interface compatible with the W3cJsonLdVerifiablePresentation interface\n // which makes using the different classes interchangeably from a user point of view.\n // This is 'easier' than extending the W3cPresentation class as it means we have to create the\n // instance based on JSON, but also add custom properties.\n //\n\n public get context() {\n return this.presentation.context\n }\n\n public get id() {\n return this.presentation.id\n }\n\n public get type() {\n return this.presentation.type\n }\n\n public get holder() {\n return this.presentation.holder\n }\n\n public get verifiableCredential() {\n return this.presentation.verifiableCredential\n }\n\n public get holderId() {\n return this.presentation.holderId\n }\n\n /\n The {@link ClaimFormat} of the presentation. For JWT presentations this is always `jwt_vp`.\n /\n public get claimFormat(): ClaimFormat.JwtVp {\n return ClaimFormat.JwtVp\n }\n\n /\n Get the encoded variant of the W3C Verifiable Presentation. For JWT presentations this is\n * a JWT string.\n */\n public get encoded() {\n return this.serializedJwt\n }\n}\n"],"mappings":";;;;;;;;;;AAWA,IAAa,+BAAb,MAAa,6BAA6B;CAIxC,AAAO,YAAY,SAA8C;AAC/D,OAAK,MAAM,QAAQ;AAEnB,OAAK,gBAAgB,8BAA8B,KAAK,IAAI,QAAQ;;CAGtE,OAAc,kBAAkB,eAAuB;EACrD,MAAM,MAAM,IAAI,kBAAkB,cAAc;AAEhD,MAAI,CAAC,IAAI,QAAQ,iBAAiB,MAChC,OAAM,IAAI,WAAW,sDAAsD;AAG7E,SAAO,IAAI,6BAA6B,EACtC,KACD,CAAC;;;;;;;;;;CAWJ,IAAW,eAAgC;AACzC,SAAO,KAAK;;CAGd,IAAW,gBAAwB;AACjC,SAAO,KAAK,IAAI;;CAWlB,IAAW,UAAU;AACnB,SAAO,KAAK,aAAa;;CAG3B,IAAW,KAAK;AACd,SAAO,KAAK,aAAa;;CAG3B,IAAW,OAAO;AAChB,SAAO,KAAK,aAAa;;CAG3B,IAAW,SAAS;AAClB,SAAO,KAAK,aAAa;;CAG3B,IAAW,uBAAuB;AAChC,SAAO,KAAK,aAAa;;CAG3B,IAAW,WAAW;AACpB,SAAO,KAAK,aAAa;;;;;CAM3B,IAAW,cAAiC;AAC1C,SAAO,YAAY;;;;;;CAOrB,IAAW,UAAU;AACnB,SAAO,KAAK"}

package/build/modules/vc/jwt-vc/W3cV2JwtCredentialService.d.mts CHANGED Viewed

@@ -1,9 +1,9 @@
 import { W3cV2JwtVerifiableCredential } from "./W3cV2JwtVerifiableCredential.mjs";
-import { W3cV2JwtVerifiablePresentation } from "./W3cV2JwtVerifiablePresentation.mjs";
 import { W3cV2JwtSignCredentialOptions, W3cV2JwtSignPresentationOptions, W3cV2JwtVerifyCredentialOptions, W3cV2JwtVerifyPresentationOptions } from "../W3cV2CredentialServiceOptions.mjs";
 import { W3cV2VerifyCredentialResult, W3cV2VerifyPresentationResult } from "../models/W3cV2VerifyResult.mjs";
-import { AgentContext } from "../../../agent/context/AgentContext.mjs";
+import { W3cV2JwtVerifiablePresentation } from "./W3cV2JwtVerifiablePresentation.mjs";
 import { JwsService } from "../../../crypto/JwsService.mjs";
+import { AgentContext } from "../../../agent/context/AgentContext.mjs";
 //#region src/modules/vc/jwt-vc/W3cV2JwtCredentialService.d.ts

package/build/modules/vc/jwt-vc/W3cV2JwtCredentialService.d.ts CHANGED Viewed

@@ -1,9 +1,9 @@
 import { W3cV2JwtVerifiableCredential } from "./W3cV2JwtVerifiableCredential.js";
-import { W3cV2JwtVerifiablePresentation } from "./W3cV2JwtVerifiablePresentation.js";
 import { W3cV2JwtSignCredentialOptions, W3cV2JwtSignPresentationOptions, W3cV2JwtVerifyCredentialOptions, W3cV2JwtVerifyPresentationOptions } from "../W3cV2CredentialServiceOptions.js";
 import { W3cV2VerifyCredentialResult, W3cV2VerifyPresentationResult } from "../models/W3cV2VerifyResult.js";
-import { AgentContext } from "../../../agent/context/AgentContext.js";
+import { W3cV2JwtVerifiablePresentation } from "./W3cV2JwtVerifiablePresentation.js";
 import { JwsService } from "../../../crypto/JwsService.js";
+import { AgentContext } from "../../../agent/context/AgentContext.js";
 //#region src/modules/vc/jwt-vc/W3cV2JwtCredentialService.d.ts

package/build/modules/vc/jwt-vc/W3cV2JwtCredentialService.js CHANGED Viewed

@@ -6,9 +6,9 @@ require('../../../error/index.js');
 require('../../../plugins/index.js');
 const require_decorateMetadata = require('../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorateMetadata.js');
 const require_decorate = require('../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorate.js');
+const require_array = require('../../../utils/array.js');
 const require_MessageValidator = require('../../../utils/MessageValidator.js');
 const require_JsonTransformer = require('../../../utils/JsonTransformer.js');
-const require_array = require('../../../utils/array.js');
 const require_timestamp = require('../../../utils/timestamp.js');
 require('../../../utils/index.js');
 const require_JwtPayload = require('../../../crypto/jose/jwt/JwtPayload.js');
@@ -16,9 +16,9 @@ const require_JwsService = require('../../../crypto/JwsService.js');
 const require_keyDidMapping = require('../../dids/domain/key-type/keyDidMapping.js');
 const require_W3cV2JwtVerifiableCredential = require('./W3cV2JwtVerifiableCredential.js');
 require('../../../crypto/index.js');
-const require_W3cV2JwtVerifiablePresentation = require('./W3cV2JwtVerifiablePresentation.js');
 const require_utils = require('../../sd-jwt-vc/utils.js');
 const require_v2_jwt_utils = require('../v2-jwt-utils.js');
+const require_W3cV2JwtVerifiablePresentation = require('./W3cV2JwtVerifiablePresentation.js');
 let tsyringe = require("tsyringe");
 tsyringe = require_rolldown_runtime.__toESM(tsyringe);
@@ -75,7 +75,7 @@ let W3cV2JwtCredentialService = class W3cV2JwtCredentialService$1 {
 			}
 			const issuerVerificationMethod = await require_v2_jwt_utils.getVerificationMethodForJwt(agentContext, credential, ["assertionMethod"]);
 			const issuerPublicKey = require_keyDidMapping.getPublicJwkFromVerificationMethod(issuerVerificationMethod);
-			let signatureResult = void 0;
+			let signatureResult;
 			try {
 				signatureResult = await this.jwsService.verifyJws(agentContext, {
 					jws: credential.jwt.serializedJwt,
@@ -166,7 +166,7 @@ let W3cV2JwtCredentialService = class W3cV2JwtCredentialService$1 {
 			}
 			const proverVerificationMethod = await require_v2_jwt_utils.getVerificationMethodForJwt(agentContext, presentation, ["authentication"]);
 			const proverPublicKey = require_keyDidMapping.getPublicJwkFromVerificationMethod(proverVerificationMethod);
-			let signatureResult = void 0;
+			let signatureResult;
 			try {
 				signatureResult = await this.jwsService.verifyJws(agentContext, {
 					jws: presentation.jwt.serializedJwt,

package/build/modules/vc/jwt-vc/W3cV2JwtCredentialService.mjs CHANGED Viewed

@@ -5,9 +5,9 @@ import "../../../error/index.mjs";
 import { injectable } from "../../../plugins/index.mjs";
 import { __decorateMetadata } from "../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorateMetadata.mjs";
 import { __decorate } from "../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorate.mjs";
+import { asArray } from "../../../utils/array.mjs";
 import { MessageValidator } from "../../../utils/MessageValidator.mjs";
 import { JsonTransformer } from "../../../utils/JsonTransformer.mjs";
-import { asArray } from "../../../utils/array.mjs";
 import { nowInSeconds } from "../../../utils/timestamp.mjs";
 import "../../../utils/index.mjs";
 import { JwtPayload } from "../../../crypto/jose/jwt/JwtPayload.mjs";
@@ -15,9 +15,9 @@ import { JwsService } from "../../../crypto/JwsService.mjs";
 import { getPublicJwkFromVerificationMethod } from "../../dids/domain/key-type/keyDidMapping.mjs";
 import { W3cV2JwtVerifiableCredential } from "./W3cV2JwtVerifiableCredential.mjs";
 import "../../../crypto/index.mjs";
-import { W3cV2JwtVerifiablePresentation } from "./W3cV2JwtVerifiablePresentation.mjs";
 import { extractKeyFromHolderBinding } from "../../sd-jwt-vc/utils.mjs";
 import { extractHolderFromPresentationCredentials, getVerificationMethodForJwt, validateAndResolveVerificationMethod } from "../v2-jwt-utils.mjs";
+import { W3cV2JwtVerifiablePresentation } from "./W3cV2JwtVerifiablePresentation.mjs";
 //#region src/modules/vc/jwt-vc/W3cV2JwtCredentialService.ts
 var _ref;
@@ -72,7 +72,7 @@ let W3cV2JwtCredentialService = class W3cV2JwtCredentialService$1 {
 			}
 			const issuerVerificationMethod = await getVerificationMethodForJwt(agentContext, credential, ["assertionMethod"]);
 			const issuerPublicKey = getPublicJwkFromVerificationMethod(issuerVerificationMethod);
-			let signatureResult = void 0;
+			let signatureResult;
 			try {
 				signatureResult = await this.jwsService.verifyJws(agentContext, {
 					jws: credential.jwt.serializedJwt,
@@ -163,7 +163,7 @@ let W3cV2JwtCredentialService = class W3cV2JwtCredentialService$1 {
 			}
 			const proverVerificationMethod = await getVerificationMethodForJwt(agentContext, presentation, ["authentication"]);
 			const proverPublicKey = getPublicJwkFromVerificationMethod(proverVerificationMethod);
-			let signatureResult = void 0;
+			let signatureResult;
 			try {
 				signatureResult = await this.jwsService.verifyJws(agentContext, {
 					jws: presentation.jwt.serializedJwt,

package/build/modules/vc/jwt-vc/W3cV2JwtCredentialService.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cV2JwtCredentialService.mjs","names":["W3cV2JwtCredentialService","validationResults: W3cV2VerifyCredentialResult","credential: W3cV2JwtVerifiableCredential","signatureResult: VerifyJwsResult \| undefined","validationResults: W3cV2VerifyPresentationResult","presentation: W3cV2JwtVerifiablePresentation","credentialSubjectAuthentication: SingleValidationResult"],"sources":["../../../../src/modules/vc/jwt-vc/W3cV2JwtCredentialService.ts"],"sourcesContent":["import type { AgentContext } from '../../../agent/context'\nimport { JwsService, JwtPayload } from '../../../crypto'\nimport type { VerifyJwsResult } from '../../../crypto/JwsService'\nimport { CredoError } from '../../../error'\nimport { injectable } from '../../../plugins'\nimport { JsonTransformer, MessageValidator, asArray, nowInSeconds } from '../../../utils'\nimport { getPublicJwkFromVerificationMethod } from '../../dids/domain/key-type/keyDidMapping'\nimport { extractKeyFromHolderBinding } from '../../sd-jwt-vc/utils'\nimport type {\n W3cV2JwtSignCredentialOptions,\n W3cV2JwtSignPresentationOptions,\n W3cV2JwtVerifyCredentialOptions,\n W3cV2JwtVerifyPresentationOptions,\n} from '../W3cV2CredentialServiceOptions'\nimport type { SingleValidationResult, W3cV2VerifyCredentialResult, W3cV2VerifyPresentationResult } from '../models'\nimport {\n extractHolderFromPresentationCredentials,\n getVerificationMethodForJwt,\n validateAndResolveVerificationMethod,\n} from '../v2-jwt-utils'\nimport { W3cV2JwtVerifiableCredential } from './W3cV2JwtVerifiableCredential'\nimport { W3cV2JwtVerifiablePresentation } from './W3cV2JwtVerifiablePresentation'\n\n/*\n Supports signing and verifying W3C Verifiable Credentials and Presentations\n * secured with JSON Web Tokens (JWT).\n \n @see https://www.w3.org/TR/vc-data-model/\n * @see https://www.w3.org/TR/vc-jose-cose/#with-jose\n /\n@injectable()\nexport class W3cV2JwtCredentialService {\n private jwsService: JwsService\n\n public constructor(jwsService: JwsService) {\n this.jwsService = jwsService\n }\n\n /\n Signs a credential\n /\n public async signCredential(\n agentContext: AgentContext,\n options: W3cV2JwtSignCredentialOptions\n ): Promise<W3cV2JwtVerifiableCredential> {\n // Validate the instance\n MessageValidator.validateSync(options.credential)\n\n // The JWT payload is simply the credential\n const jwtPayload = new JwtPayload({\n additionalClaims: JsonTransformer.toJSON(options.credential),\n })\n\n // Add iat and cnf to the payload\n jwtPayload.iat = nowInSeconds()\n jwtPayload.additionalClaims.cnf = options.holder\n ? (await extractKeyFromHolderBinding(agentContext, options.holder)).cnf\n : undefined\n\n // Validate and resolve the verification method\n const publicJwk = await validateAndResolveVerificationMethod(agentContext, options.verificationMethod, [\n 'assertionMethod',\n ])\n\n // Sign the JWT\n const jwt = await this.jwsService.createJwsCompact(agentContext, {\n payload: jwtPayload,\n keyId: publicJwk.keyId,\n protectedHeaderOptions: {\n typ: 'vc+jwt',\n alg: options.alg,\n kid: options.verificationMethod,\n },\n })\n\n return W3cV2JwtVerifiableCredential.fromCompact(jwt)\n }\n\n /\n Verifies the signature(s) of a credential\n \n @param credential the credential to be verified\n * @returns the verification result\n /\n public async verifyCredential(\n agentContext: AgentContext,\n options: W3cV2JwtVerifyCredentialOptions\n ): Promise<W3cV2VerifyCredentialResult> {\n const validationResults: W3cV2VerifyCredentialResult = {\n isValid: false,\n validations: {},\n }\n\n try {\n let credential: W3cV2JwtVerifiableCredential\n try {\n // If instance is provided as input, we want to validate the credential.\n // Otherwise, it is done by the fromCompact method below\n if (options.credential instanceof W3cV2JwtVerifiableCredential) {\n options.credential.validate()\n }\n\n credential =\n options.credential instanceof W3cV2JwtVerifiableCredential\n ? options.credential\n : W3cV2JwtVerifiableCredential.fromCompact(options.credential)\n\n // Verify the JWT payload (verifies whether it's not expired, etc...)\n credential.jwt.payload.validate()\n\n validationResults.validations.dataModel = {\n isValid: true,\n }\n } catch (error) {\n validationResults.validations.dataModel = {\n isValid: false,\n error,\n }\n\n return validationResults\n }\n\n const issuerVerificationMethod = await getVerificationMethodForJwt(agentContext, credential, ['assertionMethod'])\n const issuerPublicKey = getPublicJwkFromVerificationMethod(issuerVerificationMethod)\n\n let signatureResult: VerifyJwsResult \| undefined = undefined\n try {\n // Verify the JWS signature\n signatureResult = await this.jwsService.verifyJws(agentContext, {\n jws: credential.jwt.serializedJwt,\n // We have pre-fetched the key based on the issuer/signer of the credential\n jwsSigner: {\n method: 'did',\n jwk: issuerPublicKey,\n didUrl: issuerVerificationMethod.id,\n },\n })\n\n if (!signatureResult.isValid) {\n validationResults.validations.signature = {\n isValid: false,\n error: new CredoError('Invalid JWS signature'),\n }\n } else {\n validationResults.validations.signature = {\n isValid: true,\n }\n }\n } catch (error) {\n validationResults.validations.signature = {\n isValid: false,\n error,\n }\n }\n\n // Validate whether the credential is signed with the 'issuer' id\n // NOTE: this uses the verificationMethod.controller. We may want to use the verificationMethod.id?\n if (credential.resolvedCredential.issuerId !== issuerVerificationMethod.controller) {\n validationResults.validations.issuerIsSigner = {\n isValid: false,\n error: new CredoError(\n `Credential is signed using verification method ${issuerVerificationMethod.id}, while the issuer of the credential is '${credential.resolvedCredential.issuerId}'`\n ),\n }\n } else {\n validationResults.validations.issuerIsSigner = {\n isValid: true,\n }\n }\n\n // Validate whether the `issuer` of the credential is also the signer\n const issuerIsSigner = signatureResult?.jwsSigners.some(\n (jwsSigner) => jwsSigner.jwk.fingerprint === issuerPublicKey.fingerprint\n )\n if (!issuerIsSigner) {\n validationResults.validations.issuerIsSigner = {\n isValid: false,\n error: new CredoError('Credential is not signed by the issuer of the credential'),\n }\n } else {\n validationResults.validations.issuerIsSigner = {\n isValid: true,\n }\n }\n\n validationResults.isValid = Object.values(validationResults.validations).every((v) => v.isValid)\n\n return validationResults\n } catch (error) {\n validationResults.error = error\n return validationResults\n }\n }\n\n /\n Signs a presentation including the credentials it includes\n \n @param presentation the presentation to be signed\n * @returns the signed presentation\n /\n public async signPresentation(\n agentContext: AgentContext,\n options: W3cV2JwtSignPresentationOptions\n ): Promise<W3cV2JwtVerifiablePresentation> {\n // Validate the instance\n MessageValidator.validateSync(options.presentation)\n\n // The JWT payload is simply the presentation\n const jwtPayload = new JwtPayload({\n additionalClaims: JsonTransformer.toJSON(options.presentation),\n })\n\n // Add the nonce and aud to the payload\n jwtPayload.additionalClaims.nonce = options.challenge\n jwtPayload.aud = options.domain\n\n const holder = await extractHolderFromPresentationCredentials(agentContext, options.presentation)\n\n // Sign JWT\n const jwt = await this.jwsService.createJwsCompact(agentContext, {\n payload: jwtPayload,\n keyId: holder.publicJwk.keyId,\n protectedHeaderOptions: {\n typ: 'vp+jwt',\n alg: holder.alg,\n kid: holder?.cnf?.kid,\n },\n })\n\n return W3cV2JwtVerifiablePresentation.fromCompact(jwt)\n }\n\n /\n Verifies a presentation including the credentials it includes\n \n @param presentation the presentation to be verified\n * @returns the verification result\n */\n public async verifyPresentation(\n agentContext: AgentContext,\n options: W3cV2JwtVerifyPresentationOptions\n ): Promise<W3cV2VerifyPresentationResult> {\n const validationResults: W3cV2VerifyPresentationResult = {\n isValid: false,\n validations: {},\n }\n\n try {\n let presentation: W3cV2JwtVerifiablePresentation\n try {\n // If instance is provided as input, we want to validate the presentation\n if (options.presentation instanceof W3cV2JwtVerifiablePresentation) {\n options.presentation.validate()\n }\n\n presentation =\n options.presentation instanceof W3cV2JwtVerifiablePresentation\n ? options.presentation\n : W3cV2JwtVerifiablePresentation.fromCompact(options.presentation)\n\n // Verify the JWT payload (verifies whether it's not expired, etc...)\n presentation.jwt.payload.validate()\n\n // Make sure challenge matches nonce\n if (options.challenge !== presentation.jwt.payload.additionalClaims.nonce) {\n throw new CredoError(`JWT payload 'nonce' does not match challenge '${options.challenge}'`)\n }\n\n const audArray = asArray(presentation.jwt.payload.aud)\n if (options.domain && !audArray.includes(options.domain)) {\n throw new CredoError(`JWT payload 'aud' does not include domain '${options.domain}'`)\n }\n\n validationResults.validations.dataModel = {\n isValid: true,\n }\n } catch (error) {\n validationResults.validations.dataModel = {\n isValid: false,\n error,\n }\n\n return validationResults\n }\n\n const proverVerificationMethod = await getVerificationMethodForJwt(agentContext, presentation, ['authentication'])\n const proverPublicKey = getPublicJwkFromVerificationMethod(proverVerificationMethod)\n\n let signatureResult: VerifyJwsResult \| undefined = undefined\n try {\n // Verify the JWS signature\n signatureResult = await this.jwsService.verifyJws(agentContext, {\n jws: presentation.jwt.serializedJwt,\n allowedJwsSignerMethods: ['did'],\n jwsSigner: {\n method: 'did',\n didUrl: proverVerificationMethod.id,\n jwk: proverPublicKey,\n },\n trustedCertificates: [],\n })\n\n if (!signatureResult.isValid) {\n validationResults.validations.presentationSignature = {\n isValid: false,\n error: new CredoError('Invalid JWS signature on presentation'),\n }\n } else {\n validationResults.validations.presentationSignature = {\n isValid: true,\n }\n }\n } catch (error) {\n validationResults.validations.presentationSignature = {\n isValid: false,\n error,\n }\n }\n\n // Validate whether the presentation is signed with the 'holder' id\n // NOTE: this uses the verificationMethod.controller. We may want to use the verificationMethod.id?\n if (\n presentation.resolvedPresentation.holderId &&\n proverVerificationMethod.controller !== presentation.resolvedPresentation.holderId\n ) {\n validationResults.validations.holderIsSigner = {\n isValid: false,\n error: new CredoError(\n `Presentation is signed using verification method ${proverVerificationMethod.id}, while the holder of the presentation is '${presentation.resolvedPresentation.holderId}'`\n ),\n }\n } else {\n // If no holderId is present, this validation passes by default as there can't be\n // a mismatch between the 'holder' property and the signer of the presentation.\n validationResults.validations.holderIsSigner = {\n isValid: true,\n }\n }\n\n // To keep things simple, we only support JWT VCs in JWT VPs for now\n const credentials = asArray(presentation.resolvedPresentation.verifiableCredential)\n\n // Verify all credentials in parallel, and await the result\n validationResults.validations.credentials = await Promise.all(\n credentials.map(async (credential) => {\n if (!(credential.envelopedCredential instanceof W3cV2JwtVerifiableCredential)) {\n return {\n isValid: false,\n error: new CredoError(\n 'Credential is not of format JWT. Presentations in JWT format can only contain credentials in JWT format.'\n ),\n validations: {},\n }\n }\n\n const credentialResult = await this.verifyCredential(agentContext, {\n credential: credential.envelopedCredential,\n })\n\n let credentialSubjectAuthentication: SingleValidationResult\n\n // Check whether any of the credentialSubjectIds for each credential is the same as the controller of the verificationMethod\n // This authenticates the presentation creator controls one of the credentialSubject ids.\n // NOTE: this doesn't take into account the case where the credentialSubject is no the holder. In the\n // future we can add support for other flows, but for now this is the most common use case.\n // TODO: should this be handled on a higher level? I don't really see it being handled in the jsonld lib\n // or in the did-jwt-vc lib (it seems they don't even verify the credentials itself), but we probably need some\n // more experience on the use cases before we loosen the restrictions (as it means we need to handle it on a higher layer).\n const credentialSubjectIds = credential.resolvedCredential.credentialSubjectIds\n const presentationAuthenticatesCredentialSubject = credentialSubjectIds.some(\n (subjectId) => proverVerificationMethod.controller === subjectId\n )\n\n if (credentialSubjectIds.length > 0 && !presentationAuthenticatesCredentialSubject) {\n credentialSubjectAuthentication = {\n isValid: false,\n error: new CredoError(\n 'Credential has one or more credentialSubject ids, but presentation does not authenticate credential subject'\n ),\n }\n } else {\n credentialSubjectAuthentication = {\n isValid: true,\n }\n }\n\n return {\n ...credentialResult,\n isValid: credentialResult.isValid && credentialSubjectAuthentication.isValid,\n validations: {\n ...credentialResult.validations,\n credentialSubjectAuthentication,\n },\n }\n })\n )\n\n // Deeply nested check whether all validations have passed\n validationResults.isValid = Object.values(validationResults.validations).every((v) =>\n Array.isArray(v) ? v.every((vv) => vv.isValid) : v.isValid\n )\n\n return validationResults\n } catch (error) {\n validationResults.error = error\n return validationResults\n }\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;AA+BO,sCAAMA,4BAA0B;CAGrC,AAAO,YAAY,YAAwB;AACzC,OAAK,aAAa;;;;;CAMpB,MAAa,eACX,cACA,SACuC;AAEvC,mBAAiB,aAAa,QAAQ,WAAW;EAGjD,MAAM,aAAa,IAAI,WAAW,EAChC,kBAAkB,gBAAgB,OAAO,QAAQ,WAAW,EAC7D,CAAC;AAGF,aAAW,MAAM,cAAc;AAC/B,aAAW,iBAAiB,MAAM,QAAQ,UACrC,MAAM,4BAA4B,cAAc,QAAQ,OAAO,EAAE,MAClE;EAGJ,MAAM,YAAY,MAAM,qCAAqC,cAAc,QAAQ,oBAAoB,CACrG,kBACD,CAAC;EAGF,MAAM,MAAM,MAAM,KAAK,WAAW,iBAAiB,cAAc;GAC/D,SAAS;GACT,OAAO,UAAU;GACjB,wBAAwB;IACtB,KAAK;IACL,KAAK,QAAQ;IACb,KAAK,QAAQ;IACd;GACF,CAAC;AAEF,SAAO,6BAA6B,YAAY,IAAI;;;;;;;;CAStD,MAAa,iBACX,cACA,SACsC;EACtC,MAAMC,oBAAiD;GACrD,SAAS;GACT,aAAa,EAAE;GAChB;AAED,MAAI;GACF,IAAIC;AACJ,OAAI;AAGF,QAAI,QAAQ,sBAAsB,6BAChC,SAAQ,WAAW,UAAU;AAG/B,iBACE,QAAQ,sBAAsB,+BAC1B,QAAQ,aACR,6BAA6B,YAAY,QAAQ,WAAW;AAGlE,eAAW,IAAI,QAAQ,UAAU;AAEjC,sBAAkB,YAAY,YAAY,EACxC,SAAS,MACV;YACM,OAAO;AACd,sBAAkB,YAAY,YAAY;KACxC,SAAS;KACT;KACD;AAED,WAAO;;GAGT,MAAM,2BAA2B,MAAM,4BAA4B,cAAc,YAAY,CAAC,kBAAkB,CAAC;GACjH,MAAM,kBAAkB,mCAAmC,yBAAyB;GAEpF,IAAIC,kBAA+C;AACnD,OAAI;AAEF,sBAAkB,MAAM,KAAK,WAAW,UAAU,cAAc;KAC9D,KAAK,WAAW,IAAI;KAEpB,WAAW;MACT,QAAQ;MACR,KAAK;MACL,QAAQ,yBAAyB;MAClC;KACF,CAAC;AAEF,QAAI,CAAC,gBAAgB,QACnB,mBAAkB,YAAY,YAAY;KACxC,SAAS;KACT,OAAO,IAAI,WAAW,wBAAwB;KAC/C;QAED,mBAAkB,YAAY,YAAY,EACxC,SAAS,MACV;YAEI,OAAO;AACd,sBAAkB,YAAY,YAAY;KACxC,SAAS;KACT;KACD;;AAKH,OAAI,WAAW,mBAAmB,aAAa,yBAAyB,WACtE,mBAAkB,YAAY,iBAAiB;IAC7C,SAAS;IACT,OAAO,IAAI,WACT,kDAAkD,yBAAyB,GAAG,2CAA2C,WAAW,mBAAmB,SAAS,GACjK;IACF;OAED,mBAAkB,YAAY,iBAAiB,EAC7C,SAAS,MACV;AAOH,OAAI,CAHmB,iBAAiB,WAAW,MAChD,cAAc,UAAU,IAAI,gBAAgB,gBAAgB,YAC9D,CAEC,mBAAkB,YAAY,iBAAiB;IAC7C,SAAS;IACT,OAAO,IAAI,WAAW,2DAA2D;IAClF;OAED,mBAAkB,YAAY,iBAAiB,EAC7C,SAAS,MACV;AAGH,qBAAkB,UAAU,OAAO,OAAO,kBAAkB,YAAY,CAAC,OAAO,MAAM,EAAE,QAAQ;AAEhG,UAAO;WACA,OAAO;AACd,qBAAkB,QAAQ;AAC1B,UAAO;;;;;;;;;CAUX,MAAa,iBACX,cACA,SACyC;AAEzC,mBAAiB,aAAa,QAAQ,aAAa;EAGnD,MAAM,aAAa,IAAI,WAAW,EAChC,kBAAkB,gBAAgB,OAAO,QAAQ,aAAa,EAC/D,CAAC;AAGF,aAAW,iBAAiB,QAAQ,QAAQ;AAC5C,aAAW,MAAM,QAAQ;EAEzB,MAAM,SAAS,MAAM,yCAAyC,cAAc,QAAQ,aAAa;EAGjG,MAAM,MAAM,MAAM,KAAK,WAAW,iBAAiB,cAAc;GAC/D,SAAS;GACT,OAAO,OAAO,UAAU;GACxB,wBAAwB;IACtB,KAAK;IACL,KAAK,OAAO;IACZ,KAAK,QAAQ,KAAK;IACnB;GACF,CAAC;AAEF,SAAO,+BAA+B,YAAY,IAAI;;;;;;;;CASxD,MAAa,mBACX,cACA,SACwC;EACxC,MAAMC,oBAAmD;GACvD,SAAS;GACT,aAAa,EAAE;GAChB;AAED,MAAI;GACF,IAAIC;AACJ,OAAI;AAEF,QAAI,QAAQ,wBAAwB,+BAClC,SAAQ,aAAa,UAAU;AAGjC,mBACE,QAAQ,wBAAwB,iCAC5B,QAAQ,eACR,+BAA+B,YAAY,QAAQ,aAAa;AAGtE,iBAAa,IAAI,QAAQ,UAAU;AAGnC,QAAI,QAAQ,cAAc,aAAa,IAAI,QAAQ,iBAAiB,MAClE,OAAM,IAAI,WAAW,iDAAiD,QAAQ,UAAU,GAAG;IAG7F,MAAM,WAAW,QAAQ,aAAa,IAAI,QAAQ,IAAI;AACtD,QAAI,QAAQ,UAAU,CAAC,SAAS,SAAS,QAAQ,OAAO,CACtD,OAAM,IAAI,WAAW,8CAA8C,QAAQ,OAAO,GAAG;AAGvF,sBAAkB,YAAY,YAAY,EACxC,SAAS,MACV;YACM,OAAO;AACd,sBAAkB,YAAY,YAAY;KACxC,SAAS;KACT;KACD;AAED,WAAO;;GAGT,MAAM,2BAA2B,MAAM,4BAA4B,cAAc,cAAc,CAAC,iBAAiB,CAAC;GAClH,MAAM,kBAAkB,mCAAmC,yBAAyB;GAEpF,IAAIF,kBAA+C;AACnD,OAAI;AAEF,sBAAkB,MAAM,KAAK,WAAW,UAAU,cAAc;KAC9D,KAAK,aAAa,IAAI;KACtB,yBAAyB,CAAC,MAAM;KAChC,WAAW;MACT,QAAQ;MACR,QAAQ,yBAAyB;MACjC,KAAK;MACN;KACD,qBAAqB,EAAE;KACxB,CAAC;AAEF,QAAI,CAAC,gBAAgB,QACnB,mBAAkB,YAAY,wBAAwB;KACpD,SAAS;KACT,OAAO,IAAI,WAAW,wCAAwC;KAC/D;QAED,mBAAkB,YAAY,wBAAwB,EACpD,SAAS,MACV;YAEI,OAAO;AACd,sBAAkB,YAAY,wBAAwB;KACpD,SAAS;KACT;KACD;;AAKH,OACE,aAAa,qBAAqB,YAClC,yBAAyB,eAAe,aAAa,qBAAqB,SAE1E,mBAAkB,YAAY,iBAAiB;IAC7C,SAAS;IACT,OAAO,IAAI,WACT,oDAAoD,yBAAyB,GAAG,6CAA6C,aAAa,qBAAqB,SAAS,GACzK;IACF;OAID,mBAAkB,YAAY,iBAAiB,EAC7C,SAAS,MACV;GAIH,MAAM,cAAc,QAAQ,aAAa,qBAAqB,qBAAqB;AAGnF,qBAAkB,YAAY,cAAc,MAAM,QAAQ,IACxD,YAAY,IAAI,OAAO,eAAe;AACpC,QAAI,EAAE,WAAW,+BAA+B,8BAC9C,QAAO;KACL,SAAS;KACT,OAAO,IAAI,WACT,2GACD;KACD,aAAa,EAAE;KAChB;IAGH,MAAM,mBAAmB,MAAM,KAAK,iBAAiB,cAAc,EACjE,YAAY,WAAW,qBACxB,CAAC;IAEF,IAAIG;IASJ,MAAM,uBAAuB,WAAW,mBAAmB;IAC3D,MAAM,6CAA6C,qBAAqB,MACrE,cAAc,yBAAyB,eAAe,UACxD;AAED,QAAI,qBAAqB,SAAS,KAAK,CAAC,2CACtC,mCAAkC;KAChC,SAAS;KACT,OAAO,IAAI,WACT,8GACD;KACF;QAED,mCAAkC,EAChC,SAAS,MACV;AAGH,WAAO;KACL,GAAG;KACH,SAAS,iBAAiB,WAAW,gCAAgC;KACrE,aAAa;MACX,GAAG,iBAAiB;MACpB;MACD;KACF;KACD,CACH;AAGD,qBAAkB,UAAU,OAAO,OAAO,kBAAkB,YAAY,CAAC,OAAO,MAC9E,MAAM,QAAQ,EAAE,GAAG,EAAE,OAAO,OAAO,GAAG,QAAQ,GAAG,EAAE,QACpD;AAED,UAAO;WACA,OAAO;AACd,qBAAkB,QAAQ;AAC1B,UAAO;;;;wCAvXZ,YAAY"}
1	+ {"version":3,"file":"W3cV2JwtCredentialService.mjs","names":["W3cV2JwtCredentialService","validationResults: W3cV2VerifyCredentialResult","credential: W3cV2JwtVerifiableCredential","signatureResult: VerifyJwsResult \| undefined","validationResults: W3cV2VerifyPresentationResult","presentation: W3cV2JwtVerifiablePresentation","credentialSubjectAuthentication: SingleValidationResult"],"sources":["../../../../src/modules/vc/jwt-vc/W3cV2JwtCredentialService.ts"],"sourcesContent":["import type { AgentContext } from '../../../agent/context'\nimport { JwsService, JwtPayload } from '../../../crypto'\nimport type { VerifyJwsResult } from '../../../crypto/JwsService'\nimport { CredoError } from '../../../error'\nimport { injectable } from '../../../plugins'\nimport { asArray, JsonTransformer, MessageValidator, nowInSeconds } from '../../../utils'\nimport { getPublicJwkFromVerificationMethod } from '../../dids/domain/key-type/keyDidMapping'\nimport { extractKeyFromHolderBinding } from '../../sd-jwt-vc/utils'\nimport type { SingleValidationResult, W3cV2VerifyCredentialResult, W3cV2VerifyPresentationResult } from '../models'\nimport {\n extractHolderFromPresentationCredentials,\n getVerificationMethodForJwt,\n validateAndResolveVerificationMethod,\n} from '../v2-jwt-utils'\nimport type {\n W3cV2JwtSignCredentialOptions,\n W3cV2JwtSignPresentationOptions,\n W3cV2JwtVerifyCredentialOptions,\n W3cV2JwtVerifyPresentationOptions,\n} from '../W3cV2CredentialServiceOptions'\nimport { W3cV2JwtVerifiableCredential } from './W3cV2JwtVerifiableCredential'\nimport { W3cV2JwtVerifiablePresentation } from './W3cV2JwtVerifiablePresentation'\n\n/*\n Supports signing and verifying W3C Verifiable Credentials and Presentations\n * secured with JSON Web Tokens (JWT).\n \n @see https://www.w3.org/TR/vc-data-model/\n * @see https://www.w3.org/TR/vc-jose-cose/#with-jose\n /\n@injectable()\nexport class W3cV2JwtCredentialService {\n private jwsService: JwsService\n\n public constructor(jwsService: JwsService) {\n this.jwsService = jwsService\n }\n\n /\n Signs a credential\n /\n public async signCredential(\n agentContext: AgentContext,\n options: W3cV2JwtSignCredentialOptions\n ): Promise<W3cV2JwtVerifiableCredential> {\n // Validate the instance\n MessageValidator.validateSync(options.credential)\n\n // The JWT payload is simply the credential\n const jwtPayload = new JwtPayload({\n additionalClaims: JsonTransformer.toJSON(options.credential),\n })\n\n // Add iat and cnf to the payload\n jwtPayload.iat = nowInSeconds()\n jwtPayload.additionalClaims.cnf = options.holder\n ? (await extractKeyFromHolderBinding(agentContext, options.holder)).cnf\n : undefined\n\n // Validate and resolve the verification method\n const publicJwk = await validateAndResolveVerificationMethod(agentContext, options.verificationMethod, [\n 'assertionMethod',\n ])\n\n // Sign the JWT\n const jwt = await this.jwsService.createJwsCompact(agentContext, {\n payload: jwtPayload,\n keyId: publicJwk.keyId,\n protectedHeaderOptions: {\n typ: 'vc+jwt',\n alg: options.alg,\n kid: options.verificationMethod,\n },\n })\n\n return W3cV2JwtVerifiableCredential.fromCompact(jwt)\n }\n\n /\n Verifies the signature(s) of a credential\n \n @param credential the credential to be verified\n * @returns the verification result\n /\n public async verifyCredential(\n agentContext: AgentContext,\n options: W3cV2JwtVerifyCredentialOptions\n ): Promise<W3cV2VerifyCredentialResult> {\n const validationResults: W3cV2VerifyCredentialResult = {\n isValid: false,\n validations: {},\n }\n\n try {\n let credential: W3cV2JwtVerifiableCredential\n try {\n // If instance is provided as input, we want to validate the credential.\n // Otherwise, it is done by the fromCompact method below\n if (options.credential instanceof W3cV2JwtVerifiableCredential) {\n options.credential.validate()\n }\n\n credential =\n options.credential instanceof W3cV2JwtVerifiableCredential\n ? options.credential\n : W3cV2JwtVerifiableCredential.fromCompact(options.credential)\n\n // Verify the JWT payload (verifies whether it's not expired, etc...)\n credential.jwt.payload.validate()\n\n validationResults.validations.dataModel = {\n isValid: true,\n }\n } catch (error) {\n validationResults.validations.dataModel = {\n isValid: false,\n error,\n }\n\n return validationResults\n }\n\n const issuerVerificationMethod = await getVerificationMethodForJwt(agentContext, credential, ['assertionMethod'])\n const issuerPublicKey = getPublicJwkFromVerificationMethod(issuerVerificationMethod)\n\n let signatureResult: VerifyJwsResult \| undefined\n try {\n // Verify the JWS signature\n signatureResult = await this.jwsService.verifyJws(agentContext, {\n jws: credential.jwt.serializedJwt,\n // We have pre-fetched the key based on the issuer/signer of the credential\n jwsSigner: {\n method: 'did',\n jwk: issuerPublicKey,\n didUrl: issuerVerificationMethod.id,\n },\n })\n\n if (!signatureResult.isValid) {\n validationResults.validations.signature = {\n isValid: false,\n error: new CredoError('Invalid JWS signature'),\n }\n } else {\n validationResults.validations.signature = {\n isValid: true,\n }\n }\n } catch (error) {\n validationResults.validations.signature = {\n isValid: false,\n error,\n }\n }\n\n // Validate whether the credential is signed with the 'issuer' id\n // NOTE: this uses the verificationMethod.controller. We may want to use the verificationMethod.id?\n if (credential.resolvedCredential.issuerId !== issuerVerificationMethod.controller) {\n validationResults.validations.issuerIsSigner = {\n isValid: false,\n error: new CredoError(\n `Credential is signed using verification method ${issuerVerificationMethod.id}, while the issuer of the credential is '${credential.resolvedCredential.issuerId}'`\n ),\n }\n } else {\n validationResults.validations.issuerIsSigner = {\n isValid: true,\n }\n }\n\n // Validate whether the `issuer` of the credential is also the signer\n const issuerIsSigner = signatureResult?.jwsSigners.some(\n (jwsSigner) => jwsSigner.jwk.fingerprint === issuerPublicKey.fingerprint\n )\n if (!issuerIsSigner) {\n validationResults.validations.issuerIsSigner = {\n isValid: false,\n error: new CredoError('Credential is not signed by the issuer of the credential'),\n }\n } else {\n validationResults.validations.issuerIsSigner = {\n isValid: true,\n }\n }\n\n validationResults.isValid = Object.values(validationResults.validations).every((v) => v.isValid)\n\n return validationResults\n } catch (error) {\n validationResults.error = error\n return validationResults\n }\n }\n\n /\n Signs a presentation including the credentials it includes\n \n @param presentation the presentation to be signed\n * @returns the signed presentation\n /\n public async signPresentation(\n agentContext: AgentContext,\n options: W3cV2JwtSignPresentationOptions\n ): Promise<W3cV2JwtVerifiablePresentation> {\n // Validate the instance\n MessageValidator.validateSync(options.presentation)\n\n // The JWT payload is simply the presentation\n const jwtPayload = new JwtPayload({\n additionalClaims: JsonTransformer.toJSON(options.presentation),\n })\n\n // Add the nonce and aud to the payload\n jwtPayload.additionalClaims.nonce = options.challenge\n jwtPayload.aud = options.domain\n\n const holder = await extractHolderFromPresentationCredentials(agentContext, options.presentation)\n\n // Sign JWT\n const jwt = await this.jwsService.createJwsCompact(agentContext, {\n payload: jwtPayload,\n keyId: holder.publicJwk.keyId,\n protectedHeaderOptions: {\n typ: 'vp+jwt',\n alg: holder.alg,\n kid: holder?.cnf?.kid,\n },\n })\n\n return W3cV2JwtVerifiablePresentation.fromCompact(jwt)\n }\n\n /\n Verifies a presentation including the credentials it includes\n \n @param presentation the presentation to be verified\n * @returns the verification result\n */\n public async verifyPresentation(\n agentContext: AgentContext,\n options: W3cV2JwtVerifyPresentationOptions\n ): Promise<W3cV2VerifyPresentationResult> {\n const validationResults: W3cV2VerifyPresentationResult = {\n isValid: false,\n validations: {},\n }\n\n try {\n let presentation: W3cV2JwtVerifiablePresentation\n try {\n // If instance is provided as input, we want to validate the presentation\n if (options.presentation instanceof W3cV2JwtVerifiablePresentation) {\n options.presentation.validate()\n }\n\n presentation =\n options.presentation instanceof W3cV2JwtVerifiablePresentation\n ? options.presentation\n : W3cV2JwtVerifiablePresentation.fromCompact(options.presentation)\n\n // Verify the JWT payload (verifies whether it's not expired, etc...)\n presentation.jwt.payload.validate()\n\n // Make sure challenge matches nonce\n if (options.challenge !== presentation.jwt.payload.additionalClaims.nonce) {\n throw new CredoError(`JWT payload 'nonce' does not match challenge '${options.challenge}'`)\n }\n\n const audArray = asArray(presentation.jwt.payload.aud)\n if (options.domain && !audArray.includes(options.domain)) {\n throw new CredoError(`JWT payload 'aud' does not include domain '${options.domain}'`)\n }\n\n validationResults.validations.dataModel = {\n isValid: true,\n }\n } catch (error) {\n validationResults.validations.dataModel = {\n isValid: false,\n error,\n }\n\n return validationResults\n }\n\n const proverVerificationMethod = await getVerificationMethodForJwt(agentContext, presentation, ['authentication'])\n const proverPublicKey = getPublicJwkFromVerificationMethod(proverVerificationMethod)\n\n let signatureResult: VerifyJwsResult \| undefined\n try {\n // Verify the JWS signature\n signatureResult = await this.jwsService.verifyJws(agentContext, {\n jws: presentation.jwt.serializedJwt,\n allowedJwsSignerMethods: ['did'],\n jwsSigner: {\n method: 'did',\n didUrl: proverVerificationMethod.id,\n jwk: proverPublicKey,\n },\n trustedCertificates: [],\n })\n\n if (!signatureResult.isValid) {\n validationResults.validations.presentationSignature = {\n isValid: false,\n error: new CredoError('Invalid JWS signature on presentation'),\n }\n } else {\n validationResults.validations.presentationSignature = {\n isValid: true,\n }\n }\n } catch (error) {\n validationResults.validations.presentationSignature = {\n isValid: false,\n error,\n }\n }\n\n // Validate whether the presentation is signed with the 'holder' id\n // NOTE: this uses the verificationMethod.controller. We may want to use the verificationMethod.id?\n if (\n presentation.resolvedPresentation.holderId &&\n proverVerificationMethod.controller !== presentation.resolvedPresentation.holderId\n ) {\n validationResults.validations.holderIsSigner = {\n isValid: false,\n error: new CredoError(\n `Presentation is signed using verification method ${proverVerificationMethod.id}, while the holder of the presentation is '${presentation.resolvedPresentation.holderId}'`\n ),\n }\n } else {\n // If no holderId is present, this validation passes by default as there can't be\n // a mismatch between the 'holder' property and the signer of the presentation.\n validationResults.validations.holderIsSigner = {\n isValid: true,\n }\n }\n\n // To keep things simple, we only support JWT VCs in JWT VPs for now\n const credentials = asArray(presentation.resolvedPresentation.verifiableCredential)\n\n // Verify all credentials in parallel, and await the result\n validationResults.validations.credentials = await Promise.all(\n credentials.map(async (credential) => {\n if (!(credential.envelopedCredential instanceof W3cV2JwtVerifiableCredential)) {\n return {\n isValid: false,\n error: new CredoError(\n 'Credential is not of format JWT. Presentations in JWT format can only contain credentials in JWT format.'\n ),\n validations: {},\n }\n }\n\n const credentialResult = await this.verifyCredential(agentContext, {\n credential: credential.envelopedCredential,\n })\n\n let credentialSubjectAuthentication: SingleValidationResult\n\n // Check whether any of the credentialSubjectIds for each credential is the same as the controller of the verificationMethod\n // This authenticates the presentation creator controls one of the credentialSubject ids.\n // NOTE: this doesn't take into account the case where the credentialSubject is no the holder. In the\n // future we can add support for other flows, but for now this is the most common use case.\n // TODO: should this be handled on a higher level? I don't really see it being handled in the jsonld lib\n // or in the did-jwt-vc lib (it seems they don't even verify the credentials itself), but we probably need some\n // more experience on the use cases before we loosen the restrictions (as it means we need to handle it on a higher layer).\n const credentialSubjectIds = credential.resolvedCredential.credentialSubjectIds\n const presentationAuthenticatesCredentialSubject = credentialSubjectIds.some(\n (subjectId) => proverVerificationMethod.controller === subjectId\n )\n\n if (credentialSubjectIds.length > 0 && !presentationAuthenticatesCredentialSubject) {\n credentialSubjectAuthentication = {\n isValid: false,\n error: new CredoError(\n 'Credential has one or more credentialSubject ids, but presentation does not authenticate credential subject'\n ),\n }\n } else {\n credentialSubjectAuthentication = {\n isValid: true,\n }\n }\n\n return {\n ...credentialResult,\n isValid: credentialResult.isValid && credentialSubjectAuthentication.isValid,\n validations: {\n ...credentialResult.validations,\n credentialSubjectAuthentication,\n },\n }\n })\n )\n\n // Deeply nested check whether all validations have passed\n validationResults.isValid = Object.values(validationResults.validations).every((v) =>\n Array.isArray(v) ? v.every((vv) => vv.isValid) : v.isValid\n )\n\n return validationResults\n } catch (error) {\n validationResults.error = error\n return validationResults\n }\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;AA+BO,sCAAMA,4BAA0B;CAGrC,AAAO,YAAY,YAAwB;AACzC,OAAK,aAAa;;;;;CAMpB,MAAa,eACX,cACA,SACuC;AAEvC,mBAAiB,aAAa,QAAQ,WAAW;EAGjD,MAAM,aAAa,IAAI,WAAW,EAChC,kBAAkB,gBAAgB,OAAO,QAAQ,WAAW,EAC7D,CAAC;AAGF,aAAW,MAAM,cAAc;AAC/B,aAAW,iBAAiB,MAAM,QAAQ,UACrC,MAAM,4BAA4B,cAAc,QAAQ,OAAO,EAAE,MAClE;EAGJ,MAAM,YAAY,MAAM,qCAAqC,cAAc,QAAQ,oBAAoB,CACrG,kBACD,CAAC;EAGF,MAAM,MAAM,MAAM,KAAK,WAAW,iBAAiB,cAAc;GAC/D,SAAS;GACT,OAAO,UAAU;GACjB,wBAAwB;IACtB,KAAK;IACL,KAAK,QAAQ;IACb,KAAK,QAAQ;IACd;GACF,CAAC;AAEF,SAAO,6BAA6B,YAAY,IAAI;;;;;;;;CAStD,MAAa,iBACX,cACA,SACsC;EACtC,MAAMC,oBAAiD;GACrD,SAAS;GACT,aAAa,EAAE;GAChB;AAED,MAAI;GACF,IAAIC;AACJ,OAAI;AAGF,QAAI,QAAQ,sBAAsB,6BAChC,SAAQ,WAAW,UAAU;AAG/B,iBACE,QAAQ,sBAAsB,+BAC1B,QAAQ,aACR,6BAA6B,YAAY,QAAQ,WAAW;AAGlE,eAAW,IAAI,QAAQ,UAAU;AAEjC,sBAAkB,YAAY,YAAY,EACxC,SAAS,MACV;YACM,OAAO;AACd,sBAAkB,YAAY,YAAY;KACxC,SAAS;KACT;KACD;AAED,WAAO;;GAGT,MAAM,2BAA2B,MAAM,4BAA4B,cAAc,YAAY,CAAC,kBAAkB,CAAC;GACjH,MAAM,kBAAkB,mCAAmC,yBAAyB;GAEpF,IAAIC;AACJ,OAAI;AAEF,sBAAkB,MAAM,KAAK,WAAW,UAAU,cAAc;KAC9D,KAAK,WAAW,IAAI;KAEpB,WAAW;MACT,QAAQ;MACR,KAAK;MACL,QAAQ,yBAAyB;MAClC;KACF,CAAC;AAEF,QAAI,CAAC,gBAAgB,QACnB,mBAAkB,YAAY,YAAY;KACxC,SAAS;KACT,OAAO,IAAI,WAAW,wBAAwB;KAC/C;QAED,mBAAkB,YAAY,YAAY,EACxC,SAAS,MACV;YAEI,OAAO;AACd,sBAAkB,YAAY,YAAY;KACxC,SAAS;KACT;KACD;;AAKH,OAAI,WAAW,mBAAmB,aAAa,yBAAyB,WACtE,mBAAkB,YAAY,iBAAiB;IAC7C,SAAS;IACT,OAAO,IAAI,WACT,kDAAkD,yBAAyB,GAAG,2CAA2C,WAAW,mBAAmB,SAAS,GACjK;IACF;OAED,mBAAkB,YAAY,iBAAiB,EAC7C,SAAS,MACV;AAOH,OAAI,CAHmB,iBAAiB,WAAW,MAChD,cAAc,UAAU,IAAI,gBAAgB,gBAAgB,YAC9D,CAEC,mBAAkB,YAAY,iBAAiB;IAC7C,SAAS;IACT,OAAO,IAAI,WAAW,2DAA2D;IAClF;OAED,mBAAkB,YAAY,iBAAiB,EAC7C,SAAS,MACV;AAGH,qBAAkB,UAAU,OAAO,OAAO,kBAAkB,YAAY,CAAC,OAAO,MAAM,EAAE,QAAQ;AAEhG,UAAO;WACA,OAAO;AACd,qBAAkB,QAAQ;AAC1B,UAAO;;;;;;;;;CAUX,MAAa,iBACX,cACA,SACyC;AAEzC,mBAAiB,aAAa,QAAQ,aAAa;EAGnD,MAAM,aAAa,IAAI,WAAW,EAChC,kBAAkB,gBAAgB,OAAO,QAAQ,aAAa,EAC/D,CAAC;AAGF,aAAW,iBAAiB,QAAQ,QAAQ;AAC5C,aAAW,MAAM,QAAQ;EAEzB,MAAM,SAAS,MAAM,yCAAyC,cAAc,QAAQ,aAAa;EAGjG,MAAM,MAAM,MAAM,KAAK,WAAW,iBAAiB,cAAc;GAC/D,SAAS;GACT,OAAO,OAAO,UAAU;GACxB,wBAAwB;IACtB,KAAK;IACL,KAAK,OAAO;IACZ,KAAK,QAAQ,KAAK;IACnB;GACF,CAAC;AAEF,SAAO,+BAA+B,YAAY,IAAI;;;;;;;;CASxD,MAAa,mBACX,cACA,SACwC;EACxC,MAAMC,oBAAmD;GACvD,SAAS;GACT,aAAa,EAAE;GAChB;AAED,MAAI;GACF,IAAIC;AACJ,OAAI;AAEF,QAAI,QAAQ,wBAAwB,+BAClC,SAAQ,aAAa,UAAU;AAGjC,mBACE,QAAQ,wBAAwB,iCAC5B,QAAQ,eACR,+BAA+B,YAAY,QAAQ,aAAa;AAGtE,iBAAa,IAAI,QAAQ,UAAU;AAGnC,QAAI,QAAQ,cAAc,aAAa,IAAI,QAAQ,iBAAiB,MAClE,OAAM,IAAI,WAAW,iDAAiD,QAAQ,UAAU,GAAG;IAG7F,MAAM,WAAW,QAAQ,aAAa,IAAI,QAAQ,IAAI;AACtD,QAAI,QAAQ,UAAU,CAAC,SAAS,SAAS,QAAQ,OAAO,CACtD,OAAM,IAAI,WAAW,8CAA8C,QAAQ,OAAO,GAAG;AAGvF,sBAAkB,YAAY,YAAY,EACxC,SAAS,MACV;YACM,OAAO;AACd,sBAAkB,YAAY,YAAY;KACxC,SAAS;KACT;KACD;AAED,WAAO;;GAGT,MAAM,2BAA2B,MAAM,4BAA4B,cAAc,cAAc,CAAC,iBAAiB,CAAC;GAClH,MAAM,kBAAkB,mCAAmC,yBAAyB;GAEpF,IAAIF;AACJ,OAAI;AAEF,sBAAkB,MAAM,KAAK,WAAW,UAAU,cAAc;KAC9D,KAAK,aAAa,IAAI;KACtB,yBAAyB,CAAC,MAAM;KAChC,WAAW;MACT,QAAQ;MACR,QAAQ,yBAAyB;MACjC,KAAK;MACN;KACD,qBAAqB,EAAE;KACxB,CAAC;AAEF,QAAI,CAAC,gBAAgB,QACnB,mBAAkB,YAAY,wBAAwB;KACpD,SAAS;KACT,OAAO,IAAI,WAAW,wCAAwC;KAC/D;QAED,mBAAkB,YAAY,wBAAwB,EACpD,SAAS,MACV;YAEI,OAAO;AACd,sBAAkB,YAAY,wBAAwB;KACpD,SAAS;KACT;KACD;;AAKH,OACE,aAAa,qBAAqB,YAClC,yBAAyB,eAAe,aAAa,qBAAqB,SAE1E,mBAAkB,YAAY,iBAAiB;IAC7C,SAAS;IACT,OAAO,IAAI,WACT,oDAAoD,yBAAyB,GAAG,6CAA6C,aAAa,qBAAqB,SAAS,GACzK;IACF;OAID,mBAAkB,YAAY,iBAAiB,EAC7C,SAAS,MACV;GAIH,MAAM,cAAc,QAAQ,aAAa,qBAAqB,qBAAqB;AAGnF,qBAAkB,YAAY,cAAc,MAAM,QAAQ,IACxD,YAAY,IAAI,OAAO,eAAe;AACpC,QAAI,EAAE,WAAW,+BAA+B,8BAC9C,QAAO;KACL,SAAS;KACT,OAAO,IAAI,WACT,2GACD;KACD,aAAa,EAAE;KAChB;IAGH,MAAM,mBAAmB,MAAM,KAAK,iBAAiB,cAAc,EACjE,YAAY,WAAW,qBACxB,CAAC;IAEF,IAAIG;IASJ,MAAM,uBAAuB,WAAW,mBAAmB;IAC3D,MAAM,6CAA6C,qBAAqB,MACrE,cAAc,yBAAyB,eAAe,UACxD;AAED,QAAI,qBAAqB,SAAS,KAAK,CAAC,2CACtC,mCAAkC;KAChC,SAAS;KACT,OAAO,IAAI,WACT,8GACD;KACF;QAED,mCAAkC,EAChC,SAAS,MACV;AAGH,WAAO;KACL,GAAG;KACH,SAAS,iBAAiB,WAAW,gCAAgC;KACrE,aAAa;MACX,GAAG,iBAAiB;MACpB;MACD;KACF;KACD,CACH;AAGD,qBAAkB,UAAU,OAAO,OAAO,kBAAkB,YAAY,CAAC,OAAO,MAC9E,MAAM,QAAQ,EAAE,GAAG,EAAE,OAAO,OAAO,GAAG,QAAQ,GAAG,EAAE,QACpD;AAED,UAAO;WACA,OAAO;AACd,qBAAkB,QAAQ;AAC1B,UAAO;;;;wCAvXZ,YAAY"}

package/build/modules/vc/jwt-vc/W3cV2JwtVerifiableCredential.d.mts CHANGED Viewed

@@ -1,6 +1,6 @@
 import { ClaimFormat } from "../models/ClaimFormat.mjs";
-import { Jwt } from "../../../crypto/jose/jwt/Jwt.mjs";
 import { W3cV2Credential } from "../models/credential/W3cV2Credential.mjs";
+import { Jwt } from "../../../crypto/jose/jwt/Jwt.mjs";
 //#region src/modules/vc/jwt-vc/W3cV2JwtVerifiableCredential.d.ts
 interface W3cV2JwtVerifiableCredentialOptions {

package/build/modules/vc/jwt-vc/W3cV2JwtVerifiableCredential.d.ts CHANGED Viewed

@@ -1,6 +1,6 @@
 import { ClaimFormat } from "../models/ClaimFormat.js";
-import { Jwt } from "../../../crypto/jose/jwt/Jwt.js";
 import { W3cV2Credential } from "../models/credential/W3cV2Credential.js";
+import { Jwt } from "../../../crypto/jose/jwt/Jwt.js";
 //#region src/modules/vc/jwt-vc/W3cV2JwtVerifiableCredential.d.ts
 interface W3cV2JwtVerifiableCredentialOptions {

package/build/modules/vc/jwt-vc/credentialTransformer.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"credentialTransformer.mjs","names":["payloadOptions: JwtPayloadOptions"],"sources":["../../../../src/modules/vc/jwt-vc/credentialTransformer.ts"],"sourcesContent":["import ~~type~~ { ~~JwtPayloadOptions~~ } from '~~../../../crypto/jose/jwt~~'\n\nimport { ~~isObject~~ } from '~~class-validator~~'\n\nimport { JwtPayload } from '../../../crypto/jose/jwt'\nimport { CredoError } from '../../../error'\nimport { isJsonObject } from '../../../types'\nimport { JsonTransformer } from '../../../utils'\nimport { W3cCredential } from '../models/credential/W3cCredential'\nimport { w3cDate } from '../util'\n\nexport function getJwtPayloadFromCredential(credential: W3cCredential) {\n const vc = JsonTransformer.toJSON(credential)\n\n const payloadOptions: JwtPayloadOptions = {\n additionalClaims: {\n vc,\n },\n }\n\n // Extract `nbf` and remove issuance date from vc\n const issuanceDate = Date.parse(credential.issuanceDate)\n if (Number.isNaN(issuanceDate)) {\n throw new CredoError('JWT VCs must have a valid issuance date')\n }\n payloadOptions.nbf = Math.floor(issuanceDate / 1000)\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vc.issuanceDate\n\n // Extract `exp` and remove expiration date from vc\n if (credential.expirationDate) {\n const expirationDate = Date.parse(credential.expirationDate)\n if (!Number.isNaN(expirationDate)) {\n payloadOptions.exp = Math.floor(expirationDate / 1000)\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vc.expirationDate\n }\n }\n\n // Extract `iss` and remove issuer id from vc\n payloadOptions.iss = credential.issuerId\n if (typeof vc.issuer === 'string') {\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vc.issuer\n } else if (typeof vc.issuer === 'object') {\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vc.issuer.id\n if (Object.keys(vc.issuer).length === 0) {\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vc.issuer\n }\n }\n\n // Extract `jti` and remove id from vc\n if (credential.id) {\n payloadOptions.jti = credential.id\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vc.id\n }\n\n if (Array.isArray(credential.credentialSubject) && credential.credentialSubject.length !== 1) {\n throw new CredoError('JWT VCs must have exactly one credential subject')\n }\n\n // Extract `sub` and remove credential subject id from vc\n const [credentialSubjectId] = credential.credentialSubjectIds\n if (credentialSubjectId) {\n payloadOptions.sub = credentialSubjectId\n\n if (Array.isArray(vc.credentialSubject)) {\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vc.credentialSubject[0].id\n } else {\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vc.credentialSubject?.id\n }\n }\n\n return new JwtPayload(payloadOptions)\n}\n\nexport function getCredentialFromJwtPayload(jwtPayload: JwtPayload) {\n if (!('vc' in jwtPayload.additionalClaims) \|\| !isJsonObject(jwtPayload.additionalClaims.vc)) {\n throw new CredoError(\"JWT does not contain a valid 'vc' claim\")\n }\n\n const jwtVc = jwtPayload.additionalClaims.vc\n\n if (!jwtPayload.nbf \|\| !jwtPayload.iss) {\n throw new CredoError(\"JWT does not contain valid 'nbf' and 'iss' claims\")\n }\n\n if (Array.isArray(jwtVc.credentialSubject) && jwtVc.credentialSubject.length !== 1) {\n throw new CredoError('JWT VCs must have exactly one credential subject')\n }\n\n if (Array.isArray(jwtVc.credentialSubject) && !isObject(jwtVc.credentialSubject[0])) {\n throw new CredoError('JWT VCs must have a credential subject of type object')\n }\n\n const credentialSubject = Array.isArray(jwtVc.credentialSubject)\n ? jwtVc.credentialSubject[0]\n : jwtVc.credentialSubject\n if (!isJsonObject(credentialSubject)) {\n throw new CredoError('JWT VC does not have a valid credential subject')\n }\n const subjectWithId = jwtPayload.sub ? { ...credentialSubject, id: jwtPayload.sub } : credentialSubject\n\n // Validate vc.id and jti\n if (jwtVc.id && jwtPayload.jti !== jwtVc.id) {\n throw new CredoError('JWT jti and vc.id do not match')\n }\n\n // Validate vc.issuer and iss\n if (\n (typeof jwtVc.issuer === 'string' && jwtPayload.iss !== jwtVc.issuer) \|\|\n (isJsonObject(jwtVc.issuer) && jwtVc.issuer.id && jwtPayload.iss !== jwtVc.issuer.id)\n ) {\n throw new CredoError('JWT iss and vc.issuer(.id) do not match')\n }\n\n // Validate vc.issuanceDate and nbf\n if (jwtVc.issuanceDate) {\n if (typeof jwtVc.issuanceDate !== 'string') {\n throw new CredoError('JWT vc.issuanceDate must be a string')\n }\n\n const issuanceDate = Date.parse(jwtVc.issuanceDate) / 1000\n if (jwtPayload.nbf !== issuanceDate) {\n throw new CredoError('JWT nbf and vc.issuanceDate do not match')\n }\n }\n\n // Validate vc.expirationDate and exp\n if (jwtVc.expirationDate) {\n if (typeof jwtVc.expirationDate !== 'string') {\n throw new CredoError('JWT vc.expirationDate must be a string')\n }\n\n const expirationDate = Date.parse(jwtVc.expirationDate) / 1000\n if (expirationDate !== jwtPayload.exp) {\n throw new CredoError('JWT exp and vc.expirationDate do not match')\n }\n }\n\n // Validate vc.credentialSubject.id and sub\n if (\n (isJsonObject(jwtVc.credentialSubject) &&\n jwtVc.credentialSubject.id &&\n jwtPayload.sub !== jwtVc.credentialSubject.id) \|\|\n (Array.isArray(jwtVc.credentialSubject) &&\n isJsonObject(jwtVc.credentialSubject[0]) &&\n jwtVc.credentialSubject[0].id &&\n jwtPayload.sub !== jwtVc.credentialSubject[0].id)\n ) {\n throw new CredoError('JWT sub and vc.credentialSubject.id do not match')\n }\n\n // Create a verifiable credential structure that is compatible with the VC data model\n const dataModelVc = {\n ...jwtVc,\n issuanceDate: w3cDate(jwtPayload.nbf * 1000),\n expirationDate: jwtPayload.exp ? w3cDate(jwtPayload.exp * 1000) : undefined,\n issuer: typeof jwtVc.issuer === 'object' ? { ...jwtVc.issuer, id: jwtPayload.iss } : jwtPayload.iss,\n id: jwtPayload.jti,\n credentialSubject: Array.isArray(jwtVc.credentialSubject) ? [subjectWithId] : subjectWithId,\n }\n\n const vcInstance = JsonTransformer.fromJSON(dataModelVc, W3cCredential)\n\n return vcInstance\n}\n"],"mappings":";;;;;;;;;;;;;;~~AAWA~~,SAAgB,4BAA4B,YAA2B;CACrE,MAAM,KAAK,gBAAgB,OAAO,WAAW;CAE7C,MAAMA,iBAAoC,EACxC,kBAAkB,EAChB,IACD,EACF;CAGD,MAAM,eAAe,KAAK,MAAM,WAAW,aAAa;AACxD,KAAI,OAAO,MAAM,aAAa,CAC5B,OAAM,IAAI,WAAW,0CAA0C;AAEjE,gBAAe,MAAM,KAAK,MAAM,eAAe,IAAK;AAEpD,QAAO,GAAG;AAGV,KAAI,WAAW,gBAAgB;EAC7B,MAAM,iBAAiB,KAAK,MAAM,WAAW,eAAe;AAC5D,MAAI,CAAC,OAAO,MAAM,eAAe,EAAE;AACjC,kBAAe,MAAM,KAAK,MAAM,iBAAiB,IAAK;AAEtD,UAAO,GAAG;;;AAKd,gBAAe,MAAM,WAAW;AAChC,KAAI,OAAO,GAAG,WAAW,SAEvB,QAAO,GAAG;UACD,OAAO,GAAG,WAAW,UAAU;AAExC,SAAO,GAAG,OAAO;AACjB,MAAI,OAAO,KAAK,GAAG,OAAO,CAAC,WAAW,EAEpC,QAAO,GAAG;;AAKd,KAAI,WAAW,IAAI;AACjB,iBAAe,MAAM,WAAW;AAEhC,SAAO,GAAG;;AAGZ,KAAI,MAAM,QAAQ,WAAW,kBAAkB,IAAI,WAAW,kBAAkB,WAAW,EACzF,OAAM,IAAI,WAAW,mDAAmD;CAI1E,MAAM,CAAC,uBAAuB,WAAW;AACzC,KAAI,qBAAqB;AACvB,iBAAe,MAAM;AAErB,MAAI,MAAM,QAAQ,GAAG,kBAAkB,CAErC,QAAO,GAAG,kBAAkB,GAAG;MAG/B,QAAO,GAAG,mBAAmB;;AAIjC,QAAO,IAAI,WAAW,eAAe;;AAGvC,SAAgB,4BAA4B,YAAwB;AAClE,KAAI,EAAE,QAAQ,WAAW,qBAAqB,CAAC,aAAa,WAAW,iBAAiB,GAAG,CACzF,OAAM,IAAI,WAAW,0CAA0C;CAGjE,MAAM,QAAQ,WAAW,iBAAiB;AAE1C,KAAI,CAAC,WAAW,OAAO,CAAC,WAAW,IACjC,OAAM,IAAI,WAAW,oDAAoD;AAG3E,KAAI,MAAM,QAAQ,MAAM,kBAAkB,IAAI,MAAM,kBAAkB,WAAW,EAC/E,OAAM,IAAI,WAAW,mDAAmD;AAG1E,KAAI,MAAM,QAAQ,MAAM,kBAAkB,IAAI,CAAC,SAAS,MAAM,kBAAkB,GAAG,CACjF,OAAM,IAAI,WAAW,wDAAwD;CAG/E,MAAM,oBAAoB,MAAM,QAAQ,MAAM,kBAAkB,GAC5D,MAAM,kBAAkB,KACxB,MAAM;AACV,KAAI,CAAC,aAAa,kBAAkB,CAClC,OAAM,IAAI,WAAW,kDAAkD;CAEzE,MAAM,gBAAgB,WAAW,MAAM;EAAE,GAAG;EAAmB,IAAI,WAAW;EAAK,GAAG;AAGtF,KAAI,MAAM,MAAM,WAAW,QAAQ,MAAM,GACvC,OAAM,IAAI,WAAW,iCAAiC;AAIxD,KACG,OAAO,MAAM,WAAW,YAAY,WAAW,QAAQ,MAAM,UAC7D,aAAa,MAAM,OAAO,IAAI,MAAM,OAAO,MAAM,WAAW,QAAQ,MAAM,OAAO,GAElF,OAAM,IAAI,WAAW,0CAA0C;AAIjE,KAAI,MAAM,cAAc;AACtB,MAAI,OAAO,MAAM,iBAAiB,SAChC,OAAM,IAAI,WAAW,uCAAuC;EAG9D,MAAM,eAAe,KAAK,MAAM,MAAM,aAAa,GAAG;AACtD,MAAI,WAAW,QAAQ,aACrB,OAAM,IAAI,WAAW,2CAA2C;;AAKpE,KAAI,MAAM,gBAAgB;AACxB,MAAI,OAAO,MAAM,mBAAmB,SAClC,OAAM,IAAI,WAAW,yCAAyC;AAIhE,MADuB,KAAK,MAAM,MAAM,eAAe,GAAG,QACnC,WAAW,IAChC,OAAM,IAAI,WAAW,6CAA6C;;AAKtE,KACG,aAAa,MAAM,kBAAkB,IACpC,MAAM,kBAAkB,MACxB,WAAW,QAAQ,MAAM,kBAAkB,MAC5C,MAAM,QAAQ,MAAM,kBAAkB,IACrC,aAAa,MAAM,kBAAkB,GAAG,IACxC,MAAM,kBAAkB,GAAG,MAC3B,WAAW,QAAQ,MAAM,kBAAkB,GAAG,GAEhD,OAAM,IAAI,WAAW,mDAAmD;CAI1E,MAAM,cAAc;EAClB,GAAG;EACH,cAAc,QAAQ,WAAW,MAAM,IAAK;EAC5C,gBAAgB,WAAW,MAAM,QAAQ,WAAW,MAAM,IAAK,GAAG;EAClE,QAAQ,OAAO,MAAM,WAAW,WAAW;GAAE,GAAG,MAAM;GAAQ,IAAI,WAAW;GAAK,GAAG,WAAW;EAChG,IAAI,WAAW;EACf,mBAAmB,MAAM,QAAQ,MAAM,kBAAkB,GAAG,CAAC,cAAc,GAAG;EAC/E;AAID,QAFmB,gBAAgB,SAAS,aAAa,cAAc"}
1	+ {"version":3,"file":"credentialTransformer.mjs","names":["payloadOptions: JwtPayloadOptions"],"sources":["../../../../src/modules/vc/jwt-vc/credentialTransformer.ts"],"sourcesContent":["import { isObject } from 'class-validator'\nimport type { JwtPayloadOptions } from '../../../crypto/jose/jwt'\n\nimport { JwtPayload } from '../../../crypto/jose/jwt'\nimport { CredoError } from '../../../error'\nimport { isJsonObject } from '../../../types'\nimport { JsonTransformer } from '../../../utils'\nimport { W3cCredential } from '../models/credential/W3cCredential'\nimport { w3cDate } from '../util'\n\nexport function getJwtPayloadFromCredential(credential: W3cCredential) {\n const vc = JsonTransformer.toJSON(credential)\n\n const payloadOptions: JwtPayloadOptions = {\n additionalClaims: {\n vc,\n },\n }\n\n // Extract `nbf` and remove issuance date from vc\n const issuanceDate = Date.parse(credential.issuanceDate)\n if (Number.isNaN(issuanceDate)) {\n throw new CredoError('JWT VCs must have a valid issuance date')\n }\n payloadOptions.nbf = Math.floor(issuanceDate / 1000)\n // biome-ignore lint/performance/noDelete: no explanation\n delete vc.issuanceDate\n\n // Extract `exp` and remove expiration date from vc\n if (credential.expirationDate) {\n const expirationDate = Date.parse(credential.expirationDate)\n if (!Number.isNaN(expirationDate)) {\n payloadOptions.exp = Math.floor(expirationDate / 1000)\n // biome-ignore lint/performance/noDelete: no explanation\n delete vc.expirationDate\n }\n }\n\n // Extract `iss` and remove issuer id from vc\n payloadOptions.iss = credential.issuerId\n if (typeof vc.issuer === 'string') {\n // biome-ignore lint/performance/noDelete: no explanation\n delete vc.issuer\n } else if (typeof vc.issuer === 'object') {\n // biome-ignore lint/performance/noDelete: no explanation\n delete vc.issuer.id\n if (Object.keys(vc.issuer).length === 0) {\n // biome-ignore lint/performance/noDelete: no explanation\n delete vc.issuer\n }\n }\n\n // Extract `jti` and remove id from vc\n if (credential.id) {\n payloadOptions.jti = credential.id\n // biome-ignore lint/performance/noDelete: no explanation\n delete vc.id\n }\n\n if (Array.isArray(credential.credentialSubject) && credential.credentialSubject.length !== 1) {\n throw new CredoError('JWT VCs must have exactly one credential subject')\n }\n\n // Extract `sub` and remove credential subject id from vc\n const [credentialSubjectId] = credential.credentialSubjectIds\n if (credentialSubjectId) {\n payloadOptions.sub = credentialSubjectId\n\n if (Array.isArray(vc.credentialSubject)) {\n // biome-ignore lint/performance/noDelete: no explanation\n delete vc.credentialSubject[0].id\n } else {\n // biome-ignore lint/performance/noDelete: no explanation\n delete vc.credentialSubject?.id\n }\n }\n\n return new JwtPayload(payloadOptions)\n}\n\nexport function getCredentialFromJwtPayload(jwtPayload: JwtPayload) {\n if (!('vc' in jwtPayload.additionalClaims) \|\| !isJsonObject(jwtPayload.additionalClaims.vc)) {\n throw new CredoError(\"JWT does not contain a valid 'vc' claim\")\n }\n\n const jwtVc = jwtPayload.additionalClaims.vc\n\n if (!jwtPayload.nbf \|\| !jwtPayload.iss) {\n throw new CredoError(\"JWT does not contain valid 'nbf' and 'iss' claims\")\n }\n\n if (Array.isArray(jwtVc.credentialSubject) && jwtVc.credentialSubject.length !== 1) {\n throw new CredoError('JWT VCs must have exactly one credential subject')\n }\n\n if (Array.isArray(jwtVc.credentialSubject) && !isObject(jwtVc.credentialSubject[0])) {\n throw new CredoError('JWT VCs must have a credential subject of type object')\n }\n\n const credentialSubject = Array.isArray(jwtVc.credentialSubject)\n ? jwtVc.credentialSubject[0]\n : jwtVc.credentialSubject\n if (!isJsonObject(credentialSubject)) {\n throw new CredoError('JWT VC does not have a valid credential subject')\n }\n const subjectWithId = jwtPayload.sub ? { ...credentialSubject, id: jwtPayload.sub } : credentialSubject\n\n // Validate vc.id and jti\n if (jwtVc.id && jwtPayload.jti !== jwtVc.id) {\n throw new CredoError('JWT jti and vc.id do not match')\n }\n\n // Validate vc.issuer and iss\n if (\n (typeof jwtVc.issuer === 'string' && jwtPayload.iss !== jwtVc.issuer) \|\|\n (isJsonObject(jwtVc.issuer) && jwtVc.issuer.id && jwtPayload.iss !== jwtVc.issuer.id)\n ) {\n throw new CredoError('JWT iss and vc.issuer(.id) do not match')\n }\n\n // Validate vc.issuanceDate and nbf\n if (jwtVc.issuanceDate) {\n if (typeof jwtVc.issuanceDate !== 'string') {\n throw new CredoError('JWT vc.issuanceDate must be a string')\n }\n\n const issuanceDate = Date.parse(jwtVc.issuanceDate) / 1000\n if (jwtPayload.nbf !== issuanceDate) {\n throw new CredoError('JWT nbf and vc.issuanceDate do not match')\n }\n }\n\n // Validate vc.expirationDate and exp\n if (jwtVc.expirationDate) {\n if (typeof jwtVc.expirationDate !== 'string') {\n throw new CredoError('JWT vc.expirationDate must be a string')\n }\n\n const expirationDate = Date.parse(jwtVc.expirationDate) / 1000\n if (expirationDate !== jwtPayload.exp) {\n throw new CredoError('JWT exp and vc.expirationDate do not match')\n }\n }\n\n // Validate vc.credentialSubject.id and sub\n if (\n (isJsonObject(jwtVc.credentialSubject) &&\n jwtVc.credentialSubject.id &&\n jwtPayload.sub !== jwtVc.credentialSubject.id) \|\|\n (Array.isArray(jwtVc.credentialSubject) &&\n isJsonObject(jwtVc.credentialSubject[0]) &&\n jwtVc.credentialSubject[0].id &&\n jwtPayload.sub !== jwtVc.credentialSubject[0].id)\n ) {\n throw new CredoError('JWT sub and vc.credentialSubject.id do not match')\n }\n\n // Create a verifiable credential structure that is compatible with the VC data model\n const dataModelVc = {\n ...jwtVc,\n issuanceDate: w3cDate(jwtPayload.nbf * 1000),\n expirationDate: jwtPayload.exp ? w3cDate(jwtPayload.exp * 1000) : undefined,\n issuer: typeof jwtVc.issuer === 'object' ? { ...jwtVc.issuer, id: jwtPayload.iss } : jwtPayload.iss,\n id: jwtPayload.jti,\n credentialSubject: Array.isArray(jwtVc.credentialSubject) ? [subjectWithId] : subjectWithId,\n }\n\n const vcInstance = JsonTransformer.fromJSON(dataModelVc, W3cCredential)\n\n return vcInstance\n}\n"],"mappings":";;;;;;;;;;;;;;AAUA,SAAgB,4BAA4B,YAA2B;CACrE,MAAM,KAAK,gBAAgB,OAAO,WAAW;CAE7C,MAAMA,iBAAoC,EACxC,kBAAkB,EAChB,IACD,EACF;CAGD,MAAM,eAAe,KAAK,MAAM,WAAW,aAAa;AACxD,KAAI,OAAO,MAAM,aAAa,CAC5B,OAAM,IAAI,WAAW,0CAA0C;AAEjE,gBAAe,MAAM,KAAK,MAAM,eAAe,IAAK;AAEpD,QAAO,GAAG;AAGV,KAAI,WAAW,gBAAgB;EAC7B,MAAM,iBAAiB,KAAK,MAAM,WAAW,eAAe;AAC5D,MAAI,CAAC,OAAO,MAAM,eAAe,EAAE;AACjC,kBAAe,MAAM,KAAK,MAAM,iBAAiB,IAAK;AAEtD,UAAO,GAAG;;;AAKd,gBAAe,MAAM,WAAW;AAChC,KAAI,OAAO,GAAG,WAAW,SAEvB,QAAO,GAAG;UACD,OAAO,GAAG,WAAW,UAAU;AAExC,SAAO,GAAG,OAAO;AACjB,MAAI,OAAO,KAAK,GAAG,OAAO,CAAC,WAAW,EAEpC,QAAO,GAAG;;AAKd,KAAI,WAAW,IAAI;AACjB,iBAAe,MAAM,WAAW;AAEhC,SAAO,GAAG;;AAGZ,KAAI,MAAM,QAAQ,WAAW,kBAAkB,IAAI,WAAW,kBAAkB,WAAW,EACzF,OAAM,IAAI,WAAW,mDAAmD;CAI1E,MAAM,CAAC,uBAAuB,WAAW;AACzC,KAAI,qBAAqB;AACvB,iBAAe,MAAM;AAErB,MAAI,MAAM,QAAQ,GAAG,kBAAkB,CAErC,QAAO,GAAG,kBAAkB,GAAG;MAG/B,QAAO,GAAG,mBAAmB;;AAIjC,QAAO,IAAI,WAAW,eAAe;;AAGvC,SAAgB,4BAA4B,YAAwB;AAClE,KAAI,EAAE,QAAQ,WAAW,qBAAqB,CAAC,aAAa,WAAW,iBAAiB,GAAG,CACzF,OAAM,IAAI,WAAW,0CAA0C;CAGjE,MAAM,QAAQ,WAAW,iBAAiB;AAE1C,KAAI,CAAC,WAAW,OAAO,CAAC,WAAW,IACjC,OAAM,IAAI,WAAW,oDAAoD;AAG3E,KAAI,MAAM,QAAQ,MAAM,kBAAkB,IAAI,MAAM,kBAAkB,WAAW,EAC/E,OAAM,IAAI,WAAW,mDAAmD;AAG1E,KAAI,MAAM,QAAQ,MAAM,kBAAkB,IAAI,CAAC,SAAS,MAAM,kBAAkB,GAAG,CACjF,OAAM,IAAI,WAAW,wDAAwD;CAG/E,MAAM,oBAAoB,MAAM,QAAQ,MAAM,kBAAkB,GAC5D,MAAM,kBAAkB,KACxB,MAAM;AACV,KAAI,CAAC,aAAa,kBAAkB,CAClC,OAAM,IAAI,WAAW,kDAAkD;CAEzE,MAAM,gBAAgB,WAAW,MAAM;EAAE,GAAG;EAAmB,IAAI,WAAW;EAAK,GAAG;AAGtF,KAAI,MAAM,MAAM,WAAW,QAAQ,MAAM,GACvC,OAAM,IAAI,WAAW,iCAAiC;AAIxD,KACG,OAAO,MAAM,WAAW,YAAY,WAAW,QAAQ,MAAM,UAC7D,aAAa,MAAM,OAAO,IAAI,MAAM,OAAO,MAAM,WAAW,QAAQ,MAAM,OAAO,GAElF,OAAM,IAAI,WAAW,0CAA0C;AAIjE,KAAI,MAAM,cAAc;AACtB,MAAI,OAAO,MAAM,iBAAiB,SAChC,OAAM,IAAI,WAAW,uCAAuC;EAG9D,MAAM,eAAe,KAAK,MAAM,MAAM,aAAa,GAAG;AACtD,MAAI,WAAW,QAAQ,aACrB,OAAM,IAAI,WAAW,2CAA2C;;AAKpE,KAAI,MAAM,gBAAgB;AACxB,MAAI,OAAO,MAAM,mBAAmB,SAClC,OAAM,IAAI,WAAW,yCAAyC;AAIhE,MADuB,KAAK,MAAM,MAAM,eAAe,GAAG,QACnC,WAAW,IAChC,OAAM,IAAI,WAAW,6CAA6C;;AAKtE,KACG,aAAa,MAAM,kBAAkB,IACpC,MAAM,kBAAkB,MACxB,WAAW,QAAQ,MAAM,kBAAkB,MAC5C,MAAM,QAAQ,MAAM,kBAAkB,IACrC,aAAa,MAAM,kBAAkB,GAAG,IACxC,MAAM,kBAAkB,GAAG,MAC3B,WAAW,QAAQ,MAAM,kBAAkB,GAAG,GAEhD,OAAM,IAAI,WAAW,mDAAmD;CAI1E,MAAM,cAAc;EAClB,GAAG;EACH,cAAc,QAAQ,WAAW,MAAM,IAAK;EAC5C,gBAAgB,WAAW,MAAM,QAAQ,WAAW,MAAM,IAAK,GAAG;EAClE,QAAQ,OAAO,MAAM,WAAW,WAAW;GAAE,GAAG,MAAM;GAAQ,IAAI,WAAW;GAAK,GAAG,WAAW;EAChG,IAAI,WAAW;EACf,mBAAmB,MAAM,QAAQ,MAAM,kBAAkB,GAAG,CAAC,cAAc,GAAG;EAC/E;AAID,QAFmB,gBAAgB,SAAS,aAAa,cAAc"}

package/build/modules/vc/jwt-vc/index.js CHANGED Viewed

@@ -1,7 +1,7 @@
-const require_W3cJwtVerifiableCredential = require('./W3cJwtVerifiableCredential.js');
 const require_W3cV2JwtVerifiableCredential = require('./W3cV2JwtVerifiableCredential.js');
+const require_W3cJwtVerifiableCredential = require('./W3cJwtVerifiableCredential.js');
 const require_W3cJwtVerifiablePresentation = require('./W3cJwtVerifiablePresentation.js');
 const require_W3cJwtCredentialService = require('./W3cJwtCredentialService.js');
 const require_W3cV2JwtVerifiablePresentation = require('./W3cV2JwtVerifiablePresentation.js');

package/build/modules/vc/jwt-vc/index.mjs CHANGED Viewed

@@ -1,7 +1,7 @@
-import { W3cJwtVerifiableCredential } from "./W3cJwtVerifiableCredential.mjs";
 import { W3cV2JwtVerifiableCredential } from "./W3cV2JwtVerifiableCredential.mjs";
+import { W3cJwtVerifiableCredential } from "./W3cJwtVerifiableCredential.mjs";
 import { W3cJwtVerifiablePresentation } from "./W3cJwtVerifiablePresentation.mjs";
 import { W3cJwtCredentialService } from "./W3cJwtCredentialService.mjs";
 import { W3cV2JwtVerifiablePresentation } from "./W3cV2JwtVerifiablePresentation.mjs";

package/build/modules/vc/jwt-vc/presentationTransformer.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"presentationTransformer.mjs","names":["payloadOptions: JwtPayloadOptions"],"sources":["../../../../src/modules/vc/jwt-vc/presentationTransformer.ts"],"sourcesContent":["import type { JwtPayloadOptions } from '../../../crypto/jose/jwt'\nimport ~~type~~ { ~~W3cJsonPresentation~~ } from '~~../models~~/~~presentation~~/~~W3cJsonPresentation~~'\n\nimport { ~~JwtPayload~~ } from '../../../~~crypto/jose/jwt~~'\nimport { ~~CredoError~~ } from '../../../~~error~~'\nimport { ~~isJsonObject~~ } from '../../../~~types~~'\nimport { ~~JsonTransformer~~ } from '~~../../../utils~~'\nimport { W3cPresentation } from '../models/presentation/W3cPresentation'\n\nexport function getJwtPayloadFromPresentation(presentation: W3cPresentation) {\n const vp = JsonTransformer.toJSON(presentation) as Partial<W3cJsonPresentation>\n\n const payloadOptions: JwtPayloadOptions = {\n additionalClaims: {\n vp,\n },\n }\n\n // Extract `iss` and remove holder id from vp\n if (presentation.holderId) {\n payloadOptions.iss = presentation.holderId\n\n if (typeof vp.holder === 'string') {\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vp.holder\n } else if (typeof vp.holder === 'object') {\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vp.holder.id\n if (Object.keys(vp.holder).length === 0) {\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vp.holder\n }\n }\n }\n\n // Extract `jti` and remove id from vp\n if (presentation.id) {\n payloadOptions.jti = presentation.id\n // biome-ignore lint/performance/noDelete: <explanation>\n delete vp.id\n }\n\n return new JwtPayload(payloadOptions)\n}\n\nexport function getPresentationFromJwtPayload(jwtPayload: JwtPayload) {\n if (!('vp' in jwtPayload.additionalClaims) \|\| !isJsonObject(jwtPayload.additionalClaims.vp)) {\n throw new CredoError(\"JWT does not contain a valid 'vp' claim\")\n }\n\n const jwtVp = jwtPayload.additionalClaims.vp\n\n // Validate vp.id and jti\n if (jwtVp.id && jwtPayload.jti !== jwtVp.id) {\n throw new CredoError('JWT jti and vp.id do not match')\n }\n\n // Validate vp.holder and iss\n if (\n (typeof jwtVp.holder === 'string' && jwtPayload.iss !== jwtVp.holder) \|\|\n (isJsonObject(jwtVp.holder) && jwtVp.holder.id && jwtPayload.iss !== jwtVp.holder.id)\n ) {\n throw new CredoError('JWT iss and vp.holder(.id) do not match')\n }\n\n const dataModelVp = {\n ...jwtVp,\n id: jwtPayload.jti,\n holder: jwtPayload.iss,\n }\n\n const vpInstance = JsonTransformer.fromJSON(dataModelVp, W3cPresentation)\n\n return vpInstance\n}\n"],"mappings":";;;;;;;;;;;;~~AASA~~,SAAgB,8BAA8B,cAA+B;CAC3E,MAAM,KAAK,gBAAgB,OAAO,aAAa;CAE/C,MAAMA,iBAAoC,EACxC,kBAAkB,EAChB,IACD,EACF;AAGD,KAAI,aAAa,UAAU;AACzB,iBAAe,MAAM,aAAa;AAElC,MAAI,OAAO,GAAG,WAAW,SAEvB,QAAO,GAAG;WACD,OAAO,GAAG,WAAW,UAAU;AAExC,UAAO,GAAG,OAAO;AACjB,OAAI,OAAO,KAAK,GAAG,OAAO,CAAC,WAAW,EAEpC,QAAO,GAAG;;;AAMhB,KAAI,aAAa,IAAI;AACnB,iBAAe,MAAM,aAAa;AAElC,SAAO,GAAG;;AAGZ,QAAO,IAAI,WAAW,eAAe;;AAGvC,SAAgB,8BAA8B,YAAwB;AACpE,KAAI,EAAE,QAAQ,WAAW,qBAAqB,CAAC,aAAa,WAAW,iBAAiB,GAAG,CACzF,OAAM,IAAI,WAAW,0CAA0C;CAGjE,MAAM,QAAQ,WAAW,iBAAiB;AAG1C,KAAI,MAAM,MAAM,WAAW,QAAQ,MAAM,GACvC,OAAM,IAAI,WAAW,iCAAiC;AAIxD,KACG,OAAO,MAAM,WAAW,YAAY,WAAW,QAAQ,MAAM,UAC7D,aAAa,MAAM,OAAO,IAAI,MAAM,OAAO,MAAM,WAAW,QAAQ,MAAM,OAAO,GAElF,OAAM,IAAI,WAAW,0CAA0C;CAGjE,MAAM,cAAc;EAClB,GAAG;EACH,IAAI,WAAW;EACf,QAAQ,WAAW;EACpB;AAID,QAFmB,gBAAgB,SAAS,aAAa,gBAAgB"}
1	+ {"version":3,"file":"presentationTransformer.mjs","names":["payloadOptions: JwtPayloadOptions"],"sources":["../../../../src/modules/vc/jwt-vc/presentationTransformer.ts"],"sourcesContent":["import type { JwtPayloadOptions } from '../../../crypto/jose/jwt'\nimport { JwtPayload } from '../../../crypto/jose/jwt'\nimport { CredoError } from '../../../error'\nimport { isJsonObject } from '../../../types'\nimport { JsonTransformer } from '../../../utils'\nimport type { W3cJsonPresentation } from '../models/presentation/W3cJsonPresentation'\nimport { W3cPresentation } from '../models/presentation/W3cPresentation'\n\nexport function getJwtPayloadFromPresentation(presentation: W3cPresentation) {\n const vp = JsonTransformer.toJSON(presentation) as Partial<W3cJsonPresentation>\n\n const payloadOptions: JwtPayloadOptions = {\n additionalClaims: {\n vp,\n },\n }\n\n // Extract `iss` and remove holder id from vp\n if (presentation.holderId) {\n payloadOptions.iss = presentation.holderId\n\n if (typeof vp.holder === 'string') {\n // biome-ignore lint/performance/noDelete: no explanation\n delete vp.holder\n } else if (typeof vp.holder === 'object') {\n // biome-ignore lint/performance/noDelete: no explanation\n delete vp.holder.id\n if (Object.keys(vp.holder).length === 0) {\n // biome-ignore lint/performance/noDelete: no explanation\n delete vp.holder\n }\n }\n }\n\n // Extract `jti` and remove id from vp\n if (presentation.id) {\n payloadOptions.jti = presentation.id\n // biome-ignore lint/performance/noDelete: no explanation\n delete vp.id\n }\n\n return new JwtPayload(payloadOptions)\n}\n\nexport function getPresentationFromJwtPayload(jwtPayload: JwtPayload) {\n if (!('vp' in jwtPayload.additionalClaims) \|\| !isJsonObject(jwtPayload.additionalClaims.vp)) {\n throw new CredoError(\"JWT does not contain a valid 'vp' claim\")\n }\n\n const jwtVp = jwtPayload.additionalClaims.vp\n\n // Validate vp.id and jti\n if (jwtVp.id && jwtPayload.jti !== jwtVp.id) {\n throw new CredoError('JWT jti and vp.id do not match')\n }\n\n // Validate vp.holder and iss\n if (\n (typeof jwtVp.holder === 'string' && jwtPayload.iss !== jwtVp.holder) \|\|\n (isJsonObject(jwtVp.holder) && jwtVp.holder.id && jwtPayload.iss !== jwtVp.holder.id)\n ) {\n throw new CredoError('JWT iss and vp.holder(.id) do not match')\n }\n\n const dataModelVp = {\n ...jwtVp,\n id: jwtPayload.jti,\n holder: jwtPayload.iss,\n }\n\n const vpInstance = JsonTransformer.fromJSON(dataModelVp, W3cPresentation)\n\n return vpInstance\n}\n"],"mappings":";;;;;;;;;;;;AAQA,SAAgB,8BAA8B,cAA+B;CAC3E,MAAM,KAAK,gBAAgB,OAAO,aAAa;CAE/C,MAAMA,iBAAoC,EACxC,kBAAkB,EAChB,IACD,EACF;AAGD,KAAI,aAAa,UAAU;AACzB,iBAAe,MAAM,aAAa;AAElC,MAAI,OAAO,GAAG,WAAW,SAEvB,QAAO,GAAG;WACD,OAAO,GAAG,WAAW,UAAU;AAExC,UAAO,GAAG,OAAO;AACjB,OAAI,OAAO,KAAK,GAAG,OAAO,CAAC,WAAW,EAEpC,QAAO,GAAG;;;AAMhB,KAAI,aAAa,IAAI;AACnB,iBAAe,MAAM,aAAa;AAElC,SAAO,GAAG;;AAGZ,QAAO,IAAI,WAAW,eAAe;;AAGvC,SAAgB,8BAA8B,YAAwB;AACpE,KAAI,EAAE,QAAQ,WAAW,qBAAqB,CAAC,aAAa,WAAW,iBAAiB,GAAG,CACzF,OAAM,IAAI,WAAW,0CAA0C;CAGjE,MAAM,QAAQ,WAAW,iBAAiB;AAG1C,KAAI,MAAM,MAAM,WAAW,QAAQ,MAAM,GACvC,OAAM,IAAI,WAAW,iCAAiC;AAIxD,KACG,OAAO,MAAM,WAAW,YAAY,WAAW,QAAQ,MAAM,UAC7D,aAAa,MAAM,OAAO,IAAI,MAAM,OAAO,MAAM,WAAW,QAAQ,MAAM,OAAO,GAElF,OAAM,IAAI,WAAW,0CAA0C;CAGjE,MAAM,cAAc;EAClB,GAAG;EACH,IAAI,WAAW;EACf,QAAQ,WAAW;EACpB;AAID,QAFmB,gBAAgB,SAAS,aAAa,gBAAgB"}

package/build/modules/vc/models/credential/W3cCredential.d.mts CHANGED Viewed

@@ -1,8 +1,8 @@
-import { W3cCredentialSubject, W3cCredentialSubjectOptions } from "./W3cCredentialSubject.mjs";
-import { W3cIssuer, W3cIssuerOptions } from "./W3cIssuer.mjs";
+import { JsonObject, SingleOrArray } from "../../../../types.mjs";
 import { W3cCredentialSchema } from "./W3cCredentialSchema.mjs";
 import { W3cCredentialStatus } from "./W3cCredentialStatus.mjs";
-import { JsonObject, SingleOrArray } from "../../../../types.mjs";
+import { W3cCredentialSubject, W3cCredentialSubjectOptions } from "./W3cCredentialSubject.mjs";
+import { W3cIssuer, W3cIssuerOptions } from "./W3cIssuer.mjs";
 //#region src/modules/vc/models/credential/W3cCredential.d.ts
 interface W3cCredentialOptions {

package/build/modules/vc/models/credential/W3cCredential.d.mts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cCredential.d.mts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredential.ts"],"sourcesContent":[],"mappings":";;;;;;;~~UAiBiB~~,oBAAA;YACL,eAAe;EADV,EAAA,CAAA,EAAA,MAAA;EAAoB,IAAA,EAG7B,KAH6B,CAAA,MAAA,CAAA;QACV,EAAA,MAAA,GAGR,gBAHQ;cAAf,EAAA,MAAA;gBAEJ,CAAA,EAAA,MAAA;mBACW,EAGE,aAHF,CAGgB,2BAHhB,CAAA;kBAGgB,CAAA,EACd,mBADc;kBAAd,CAAA,EAEA,aAFA,CAEc,mBAFd,CAAA;;AAEc,cAGtB,aAAA,CAHsB;aAAd,CAAA,OAAA,EAIS,oBAJT;EAAa,OAAA,EAoCf,KApCe,CAAA,MAAA,GAoCA,UApCA,CAAA;EAGrB,EAAA,CAAA,EAAA,MAAA;EAAa,IAAA,EAwCV,KAxCU,CAAA,MAAA,CAAA;QACI,EAAA,MAAA,GA2CH,SA3CG;cAgCI,EAAA,MAAA;gBAAf,CAAA,EAAA,MAAA;mBAOH,EAea,aAfb,CAe2B,oBAf3B,CAAA;kBAIW,CAAA,EAiBC,aAjBD,CAiBe,mBAjBf,CAAA;kBAWgB,CAAA,EAYf,mBAZe;MAAd,QAAA,CAAA,CAAA,EAAA,MAAA;MAMa,mBAAA,CAAA,CAAA,EAAA,MAAA,EAAA;MAAd,oBAAA,CAAA,CAAA,EAAA,MAAA,EAAA;MAMA,QAAA,CAAA,CAAA,EA0BH,KA1BG,CAAA,MAAA,GA0BY,UA1BZ,CAAA;SA0BY,QAAA,CAAA,IAAA,EAIT,MAJS,CAAA,MAAA,EAAA,OAAA,CAAA,CAAA,EAIc,aAJd"}
1	+ {"version":3,"file":"W3cCredential.d.mts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredential.ts"],"sourcesContent":[],"mappings":";;;;;;;UAciB,oBAAA;YACL,eAAe;EADV,EAAA,CAAA,EAAA,MAAA;EAAoB,IAAA,EAG7B,KAH6B,CAAA,MAAA,CAAA;QACV,EAAA,MAAA,GAGR,gBAHQ;cAAf,EAAA,MAAA;gBAEJ,CAAA,EAAA,MAAA;mBACW,EAGE,aAHF,CAGgB,2BAHhB,CAAA;kBAGgB,CAAA,EACd,mBADc;kBAAd,CAAA,EAEA,aAFA,CAEc,mBAFd,CAAA;;AAEc,cAGtB,aAAA,CAHsB;aAAd,CAAA,OAAA,EAIS,oBAJT;EAAa,OAAA,EAoCf,KApCe,CAAA,MAAA,GAoCA,UApCA,CAAA;EAGrB,EAAA,CAAA,EAAA,MAAA;EAAa,IAAA,EAwCV,KAxCU,CAAA,MAAA,CAAA;QACI,EAAA,MAAA,GA2CH,SA3CG;cAgCI,EAAA,MAAA;gBAAf,CAAA,EAAA,MAAA;mBAOH,EAea,aAfb,CAe2B,oBAf3B,CAAA;kBAIW,CAAA,EAiBC,aAjBD,CAiBe,mBAjBf,CAAA;kBAWgB,CAAA,EAYf,mBAZe;MAAd,QAAA,CAAA,CAAA,EAAA,MAAA;MAMa,mBAAA,CAAA,CAAA,EAAA,MAAA,EAAA;MAAd,oBAAA,CAAA,CAAA,EAAA,MAAA,EAAA;MAMA,QAAA,CAAA,CAAA,EA0BH,KA1BG,CAAA,MAAA,GA0BY,UA1BZ,CAAA;SA0BY,QAAA,CAAA,IAAA,EAIT,MAJS,CAAA,MAAA,EAAA,OAAA,CAAA,CAAA,EAIc,aAJd"}

package/build/modules/vc/models/credential/W3cCredential.d.ts CHANGED Viewed

@@ -1,8 +1,8 @@
-import { W3cCredentialSubject, W3cCredentialSubjectOptions } from "./W3cCredentialSubject.js";
-import { W3cIssuer, W3cIssuerOptions } from "./W3cIssuer.js";
+import { JsonObject, SingleOrArray } from "../../../../types.js";
 import { W3cCredentialSchema } from "./W3cCredentialSchema.js";
 import { W3cCredentialStatus } from "./W3cCredentialStatus.js";
-import { JsonObject, SingleOrArray } from "../../../../types.js";
+import { W3cCredentialSubject, W3cCredentialSubjectOptions } from "./W3cCredentialSubject.js";
+import { W3cIssuer, W3cIssuerOptions } from "./W3cIssuer.js";
 //#region src/modules/vc/models/credential/W3cCredential.d.ts
 interface W3cCredentialOptions {

package/build/modules/vc/models/credential/W3cCredential.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cCredential.d.ts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredential.ts"],"sourcesContent":[],"mappings":";;;;;;;~~AAiBiB~~,UAAA,oBAAA,CAAoB;EAAA,OAAA,CAAA,EACzB,KADyB,CAAA,MAAA,GACV,UADU,CAAA;KACV,EAAA,MAAA;MAAf,EAEJ,KAFI,CAAA,MAAA,CAAA;QAEJ,EAAA,MAAA,GACW,gBADX;cACW,EAAA,MAAA;gBAGgB,CAAA,EAAA,MAAA;mBAAd,EAAA,aAAA,CAAc,2BAAd,CAAA;kBACA,CAAA,EAAA,mBAAA;kBACc,CAAA,EAAd,aAAc,CAAA,mBAAA,CAAA;;AAAD,cAGrB,aAAA,CAHqB;EAGrB,WAAA,CAAA,OAAa,EACI,oBADJ;EAAA,OAAA,EAiCP,KAjCO,CAAA,MAAA,GAiCQ,UAjCR,CAAA;KACI,EAAA,MAAA;MAgCI,EAOlB,KAPkB,CAAA,MAAA,CAAA;QAAf,EAAA,MAAA,GAWQ,SAXR;cAOH,EAAA,MAAA;gBAIW,CAAA,EAAA,MAAA;mBAWgB,EAAd,aAAc,CAAA,oBAAA,CAAA;kBAAd,CAAA,EAMD,aANC,CAMa,mBANb,CAAA;kBAMa,CAAA,EAMd,mBANc;MAAd,QAAA,CAAA,CAAA,EAAA,MAAA;MAMA,mBAAA,CAAA,CAAA,EAAA,MAAA,EAAA;MA0BY,oBAAA,CAAA,CAAA,EAAA,MAAA,EAAA;MAAf,QAAA,CAAA,CAAA,EAAA,KAAA,CAAA,MAAA,GAAe,UAAf,CAAA;SAIM,QAAA,CAAA,IAAA,EAAA,MAAA,CAAA,MAAA,EAAA,OAAA,CAAA,CAAA,EAAuB,aAAvB"}
1	+ {"version":3,"file":"W3cCredential.d.ts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredential.ts"],"sourcesContent":[],"mappings":";;;;;;;AAciB,UAAA,oBAAA,CAAoB;EAAA,OAAA,CAAA,EACzB,KADyB,CAAA,MAAA,GACV,UADU,CAAA;KACV,EAAA,MAAA;MAAf,EAEJ,KAFI,CAAA,MAAA,CAAA;QAEJ,EAAA,MAAA,GACW,gBADX;cACW,EAAA,MAAA;gBAGgB,CAAA,EAAA,MAAA;mBAAd,EAAA,aAAA,CAAc,2BAAd,CAAA;kBACA,CAAA,EAAA,mBAAA;kBACc,CAAA,EAAd,aAAc,CAAA,mBAAA,CAAA;;AAAD,cAGrB,aAAA,CAHqB;EAGrB,WAAA,CAAA,OAAa,EACI,oBADJ;EAAA,OAAA,EAiCP,KAjCO,CAAA,MAAA,GAiCQ,UAjCR,CAAA;KACI,EAAA,MAAA;MAgCI,EAOlB,KAPkB,CAAA,MAAA,CAAA;QAAf,EAAA,MAAA,GAWQ,SAXR;cAOH,EAAA,MAAA;gBAIW,CAAA,EAAA,MAAA;mBAWgB,EAAd,aAAc,CAAA,oBAAA,CAAA;kBAAd,CAAA,EAMD,aANC,CAMa,mBANb,CAAA;kBAMa,CAAA,EAMd,mBANc;MAAd,QAAA,CAAA,CAAA,EAAA,MAAA;MAMA,mBAAA,CAAA,CAAA,EAAA,MAAA,EAAA;MA0BY,oBAAA,CAAA,CAAA,EAAA,MAAA,EAAA;MAAf,QAAA,CAAA,CAAA,EAAA,KAAA,CAAA,MAAA,GAAe,UAAf,CAAA;SAIM,QAAA,CAAA,IAAA,EAAA,MAAA,CAAA,MAAA,EAAA,OAAA,CAAA,CAAA,EAAuB,aAAvB"}

package/build/modules/vc/models/credential/W3cCredential.js CHANGED Viewed

@@ -3,8 +3,8 @@
 const require_rolldown_runtime = require('../../../../_virtual/rolldown_runtime.js');
 const require_decorateMetadata = require('../../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorateMetadata.js');
 const require_decorate = require('../../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorate.js');
-const require_JsonTransformer = require('../../../../utils/JsonTransformer.js');
 const require_array = require('../../../../utils/array.js');
+const require_JsonTransformer = require('../../../../utils/JsonTransformer.js');
 const require_validators = require('../../../../utils/validators.js');
 require('../../../../utils/index.js');
 const require_constants = require('../../constants.js');

package/build/modules/vc/models/credential/W3cCredential.mjs CHANGED Viewed

@@ -2,8 +2,8 @@
 import { __decorateMetadata } from "../../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorateMetadata.mjs";
 import { __decorate } from "../../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorate.mjs";
-import { JsonTransformer } from "../../../../utils/JsonTransformer.mjs";
 import { asArray, mapSingleOrArray } from "../../../../utils/array.mjs";
+import { JsonTransformer } from "../../../../utils/JsonTransformer.mjs";
 import { IsInstanceOrArrayOfInstances, IsUri } from "../../../../utils/validators.mjs";
 import "../../../../utils/index.mjs";
 import { CREDENTIALS_CONTEXT_V1_URL } from "../../constants.mjs";

package/build/modules/vc/models/credential/W3cCredential.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cCredential.mjs","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredential.ts"],"sourcesContent":["import ~~type~~ { ~~JsonObject~~, ~~SingleOrArray~~ } from '~~../../../../types~~'\nimport ~~type~~ { ~~W3cCredentialSubjectOptions~~ } ~~from './W3cCredentialSubject'\nimport type { W3cIssuerOptions } from './W3cIssuer'\n\nimport { Expose~~, ~~Type~~ } from 'class-~~transformer~~'\nimport { ~~IsInstance~~, ~~IsOptional,~~ ~~IsRFC3339, ValidateNested~~ } from '~~class-validator~~'\n\nimport { ~~JsonTransformer~~, ~~asArray~~, mapSingleOrArray } from '../../../../utils'\nimport { IsInstanceOrArrayOfInstances, IsUri } from '../../../../utils/validators'\nimport { CREDENTIALS_CONTEXT_V1_URL } from '../../constants'\nimport { IsCredentialJsonLdContext, IsCredentialType } from '../../validators'\n\nimport { W3cCredentialSchema } from './W3cCredentialSchema'\nimport { W3cCredentialStatus } from './W3cCredentialStatus'\nimport { IsW3cCredentialSubject, W3cCredentialSubject, W3cCredentialSubjectTransformer } from './W3cCredentialSubject'\nimport { IsW3cIssuer, W3cIssuer, W3cIssuerTransformer } from './W3cIssuer'\n\nexport interface W3cCredentialOptions {\n context?: Array<string \| JsonObject>\n id?: string\n type: Array<string>\n issuer: string \| W3cIssuerOptions\n issuanceDate: string\n expirationDate?: string\n credentialSubject: SingleOrArray<W3cCredentialSubjectOptions>\n credentialStatus?: W3cCredentialStatus\n credentialSchema?: SingleOrArray<W3cCredentialSchema>\n}\n\nexport class W3cCredential {\n public constructor(options: W3cCredentialOptions) {\n if (options) {\n this.context = options.context ?? [CREDENTIALS_CONTEXT_V1_URL]\n this.id = options.id\n this.type = options.type \|\| ['VerifiableCredential']\n this.issuer =\n typeof options.issuer === 'string' \|\| options.issuer instanceof W3cIssuer\n ? options.issuer\n : new W3cIssuer(options.issuer)\n this.issuanceDate = options.issuanceDate\n this.expirationDate = options.expirationDate\n this.credentialSubject = mapSingleOrArray(options.credentialSubject, (subject) =>\n subject instanceof W3cCredentialSubject ? subject : new W3cCredentialSubject(subject)\n )\n\n if (options.credentialStatus) {\n this.credentialStatus =\n options.credentialStatus instanceof W3cCredentialStatus\n ? options.credentialStatus\n : new W3cCredentialStatus(options.credentialStatus)\n }\n\n if (options.credentialSchema) {\n this.credentialSchema = mapSingleOrArray(options.credentialSchema, (schema) =>\n schema instanceof W3cCredentialSchema ? schema : new W3cCredentialSchema(schema)\n )\n }\n }\n }\n\n @Expose({ name: '@context' })\n @IsCredentialJsonLdContext()\n public context!: Array<string \| JsonObject>\n\n @IsOptional()\n @IsUri()\n public id?: string\n\n @IsCredentialType()\n public type!: Array<string>\n\n @W3cIssuerTransformer()\n @IsW3cIssuer()\n public issuer!: string \| W3cIssuer\n\n @IsRFC3339()\n public issuanceDate!: string\n\n @IsRFC3339()\n @IsOptional()\n public expirationDate?: string\n\n @IsW3cCredentialSubject({ each: true })\n @W3cCredentialSubjectTransformer()\n public credentialSubject!: SingleOrArray<W3cCredentialSubject>\n\n @IsOptional()\n @Type(() => W3cCredentialSchema)\n @ValidateNested({ each: true })\n @IsInstanceOrArrayOfInstances({ classType: W3cCredentialSchema, allowEmptyArray: true })\n public credentialSchema?: SingleOrArray<W3cCredentialSchema>\n\n @IsOptional()\n @Type(() => W3cCredentialStatus)\n @ValidateNested({ each: true })\n @IsInstance(W3cCredentialStatus)\n public credentialStatus?: W3cCredentialStatus\n\n public get issuerId(): string {\n return this.issuer instanceof W3cIssuer ? this.issuer.id : this.issuer\n }\n\n public get credentialSchemaIds(): string[] {\n if (!this.credentialSchema) return []\n\n if (Array.isArray(this.credentialSchema)) {\n return this.credentialSchema.map((credentialSchema) => credentialSchema.id)\n }\n\n return [this.credentialSchema.id]\n }\n\n public get credentialSubjectIds(): string[] {\n if (Array.isArray(this.credentialSubject)) {\n return this.credentialSubject\n .map((credentialSubject) => credentialSubject.id)\n .filter((v): v is string => v !== undefined)\n }\n\n return this.credentialSubject.id ? [this.credentialSubject.id] : []\n }\n\n public get contexts(): Array<string \| JsonObject> {\n return asArray(this.context)\n }\n\n public static fromJson(json: Record<string, unknown>) {\n return JsonTransformer.fromJSON(json, W3cCredential)\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;~~AA6BA~~,IAAa,gBAAb,MAAa,cAAc;CACzB,AAAO,YAAY,SAA+B;AAChD,MAAI,SAAS;AACX,QAAK,UAAU,QAAQ,WAAW,CAAC,2BAA2B;AAC9D,QAAK,KAAK,QAAQ;AAClB,QAAK,OAAO,QAAQ,QAAQ,CAAC,uBAAuB;AACpD,QAAK,SACH,OAAO,QAAQ,WAAW,YAAY,QAAQ,kBAAkB,YAC5D,QAAQ,SACR,IAAI,UAAU,QAAQ,OAAO;AACnC,QAAK,eAAe,QAAQ;AAC5B,QAAK,iBAAiB,QAAQ;AAC9B,QAAK,oBAAoB,iBAAiB,QAAQ,oBAAoB,YACpE,mBAAmB,uBAAuB,UAAU,IAAI,qBAAqB,QAAQ,CACtF;AAED,OAAI,QAAQ,iBACV,MAAK,mBACH,QAAQ,4BAA4B,sBAChC,QAAQ,mBACR,IAAI,oBAAoB,QAAQ,iBAAiB;AAGzD,OAAI,QAAQ,iBACV,MAAK,mBAAmB,iBAAiB,QAAQ,mBAAmB,WAClE,kBAAkB,sBAAsB,SAAS,IAAI,oBAAoB,OAAO,CACjF;;;CA2CP,IAAW,WAAmB;AAC5B,SAAO,KAAK,kBAAkB,YAAY,KAAK,OAAO,KAAK,KAAK;;CAGlE,IAAW,sBAAgC;AACzC,MAAI,CAAC,KAAK,iBAAkB,QAAO,EAAE;AAErC,MAAI,MAAM,QAAQ,KAAK,iBAAiB,CACtC,QAAO,KAAK,iBAAiB,KAAK,qBAAqB,iBAAiB,GAAG;AAG7E,SAAO,CAAC,KAAK,iBAAiB,GAAG;;CAGnC,IAAW,uBAAiC;AAC1C,MAAI,MAAM,QAAQ,KAAK,kBAAkB,CACvC,QAAO,KAAK,kBACT,KAAK,sBAAsB,kBAAkB,GAAG,CAChD,QAAQ,MAAmB,MAAM,OAAU;AAGhD,SAAO,KAAK,kBAAkB,KAAK,CAAC,KAAK,kBAAkB,GAAG,GAAG,EAAE;;CAGrE,IAAW,WAAuC;AAChD,SAAO,QAAQ,KAAK,QAAQ;;CAG9B,OAAc,SAAS,MAA+B;AACpD,SAAO,gBAAgB,SAAS,MAAM,cAAc;;;;CAnErD,OAAO,EAAE,MAAM,YAAY,CAAC;CAC5B,2BAA2B;;;;CAG3B,YAAY;CACZ,OAAO;;;YAGP,kBAAkB;;CAGlB,sBAAsB;CACtB,aAAa;;;YAGb,WAAW;;CAGX,WAAW;CACX,YAAY;;;;CAGZ,uBAAuB,EAAE,MAAM,MAAM,CAAC;CACtC,iCAAiC;;;;CAGjC,YAAY;CACZ,WAAW,oBAAoB;CAC/B,eAAe,EAAE,MAAM,MAAM,CAAC;CAC9B,6BAA6B;EAAE,WAAW;EAAqB,iBAAiB;EAAM,CAAC;;;;CAGvF,YAAY;CACZ,WAAW,oBAAoB;CAC/B,eAAe,EAAE,MAAM,MAAM,CAAC;CAC9B,WAAW,oBAAoB"}
1	+ {"version":3,"file":"W3cCredential.mjs","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredential.ts"],"sourcesContent":["import { Expose, Type } from 'class-transformer'\nimport { IsInstance, IsOptional, IsRFC3339, ValidateNested } from 'class-validator'\nimport type { JsonObject, SingleOrArray } from '../../../../types'\nimport { asArray, JsonTransformer, mapSingleOrArray } from '../../../../utils'\nimport { IsInstanceOrArrayOfInstances, IsUri } from '../../../../utils/validators'\nimport { CREDENTIALS_CONTEXT_V1_URL } from '../../constants'\nimport { IsCredentialJsonLdContext, IsCredentialType } from '../../validators'\nimport { W3cCredentialSchema } from './W3cCredentialSchema'\nimport { W3cCredentialStatus } from './W3cCredentialStatus'\nimport type { W3cCredentialSubjectOptions } from './W3cCredentialSubject'\nimport { IsW3cCredentialSubject, W3cCredentialSubject, W3cCredentialSubjectTransformer } from './W3cCredentialSubject'\nimport type { W3cIssuerOptions } from './W3cIssuer'\nimport { IsW3cIssuer, W3cIssuer, W3cIssuerTransformer } from './W3cIssuer'\n\nexport interface W3cCredentialOptions {\n context?: Array<string \| JsonObject>\n id?: string\n type: Array<string>\n issuer: string \| W3cIssuerOptions\n issuanceDate: string\n expirationDate?: string\n credentialSubject: SingleOrArray<W3cCredentialSubjectOptions>\n credentialStatus?: W3cCredentialStatus\n credentialSchema?: SingleOrArray<W3cCredentialSchema>\n}\n\nexport class W3cCredential {\n public constructor(options: W3cCredentialOptions) {\n if (options) {\n this.context = options.context ?? [CREDENTIALS_CONTEXT_V1_URL]\n this.id = options.id\n this.type = options.type \|\| ['VerifiableCredential']\n this.issuer =\n typeof options.issuer === 'string' \|\| options.issuer instanceof W3cIssuer\n ? options.issuer\n : new W3cIssuer(options.issuer)\n this.issuanceDate = options.issuanceDate\n this.expirationDate = options.expirationDate\n this.credentialSubject = mapSingleOrArray(options.credentialSubject, (subject) =>\n subject instanceof W3cCredentialSubject ? subject : new W3cCredentialSubject(subject)\n )\n\n if (options.credentialStatus) {\n this.credentialStatus =\n options.credentialStatus instanceof W3cCredentialStatus\n ? options.credentialStatus\n : new W3cCredentialStatus(options.credentialStatus)\n }\n\n if (options.credentialSchema) {\n this.credentialSchema = mapSingleOrArray(options.credentialSchema, (schema) =>\n schema instanceof W3cCredentialSchema ? schema : new W3cCredentialSchema(schema)\n )\n }\n }\n }\n\n @Expose({ name: '@context' })\n @IsCredentialJsonLdContext()\n public context!: Array<string \| JsonObject>\n\n @IsOptional()\n @IsUri()\n public id?: string\n\n @IsCredentialType()\n public type!: Array<string>\n\n @W3cIssuerTransformer()\n @IsW3cIssuer()\n public issuer!: string \| W3cIssuer\n\n @IsRFC3339()\n public issuanceDate!: string\n\n @IsRFC3339()\n @IsOptional()\n public expirationDate?: string\n\n @IsW3cCredentialSubject({ each: true })\n @W3cCredentialSubjectTransformer()\n public credentialSubject!: SingleOrArray<W3cCredentialSubject>\n\n @IsOptional()\n @Type(() => W3cCredentialSchema)\n @ValidateNested({ each: true })\n @IsInstanceOrArrayOfInstances({ classType: W3cCredentialSchema, allowEmptyArray: true })\n public credentialSchema?: SingleOrArray<W3cCredentialSchema>\n\n @IsOptional()\n @Type(() => W3cCredentialStatus)\n @ValidateNested({ each: true })\n @IsInstance(W3cCredentialStatus)\n public credentialStatus?: W3cCredentialStatus\n\n public get issuerId(): string {\n return this.issuer instanceof W3cIssuer ? this.issuer.id : this.issuer\n }\n\n public get credentialSchemaIds(): string[] {\n if (!this.credentialSchema) return []\n\n if (Array.isArray(this.credentialSchema)) {\n return this.credentialSchema.map((credentialSchema) => credentialSchema.id)\n }\n\n return [this.credentialSchema.id]\n }\n\n public get credentialSubjectIds(): string[] {\n if (Array.isArray(this.credentialSubject)) {\n return this.credentialSubject\n .map((credentialSubject) => credentialSubject.id)\n .filter((v): v is string => v !== undefined)\n }\n\n return this.credentialSubject.id ? [this.credentialSubject.id] : []\n }\n\n public get contexts(): Array<string \| JsonObject> {\n return asArray(this.context)\n }\n\n public static fromJson(json: Record<string, unknown>) {\n return JsonTransformer.fromJSON(json, W3cCredential)\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;AA0BA,IAAa,gBAAb,MAAa,cAAc;CACzB,AAAO,YAAY,SAA+B;AAChD,MAAI,SAAS;AACX,QAAK,UAAU,QAAQ,WAAW,CAAC,2BAA2B;AAC9D,QAAK,KAAK,QAAQ;AAClB,QAAK,OAAO,QAAQ,QAAQ,CAAC,uBAAuB;AACpD,QAAK,SACH,OAAO,QAAQ,WAAW,YAAY,QAAQ,kBAAkB,YAC5D,QAAQ,SACR,IAAI,UAAU,QAAQ,OAAO;AACnC,QAAK,eAAe,QAAQ;AAC5B,QAAK,iBAAiB,QAAQ;AAC9B,QAAK,oBAAoB,iBAAiB,QAAQ,oBAAoB,YACpE,mBAAmB,uBAAuB,UAAU,IAAI,qBAAqB,QAAQ,CACtF;AAED,OAAI,QAAQ,iBACV,MAAK,mBACH,QAAQ,4BAA4B,sBAChC,QAAQ,mBACR,IAAI,oBAAoB,QAAQ,iBAAiB;AAGzD,OAAI,QAAQ,iBACV,MAAK,mBAAmB,iBAAiB,QAAQ,mBAAmB,WAClE,kBAAkB,sBAAsB,SAAS,IAAI,oBAAoB,OAAO,CACjF;;;CA2CP,IAAW,WAAmB;AAC5B,SAAO,KAAK,kBAAkB,YAAY,KAAK,OAAO,KAAK,KAAK;;CAGlE,IAAW,sBAAgC;AACzC,MAAI,CAAC,KAAK,iBAAkB,QAAO,EAAE;AAErC,MAAI,MAAM,QAAQ,KAAK,iBAAiB,CACtC,QAAO,KAAK,iBAAiB,KAAK,qBAAqB,iBAAiB,GAAG;AAG7E,SAAO,CAAC,KAAK,iBAAiB,GAAG;;CAGnC,IAAW,uBAAiC;AAC1C,MAAI,MAAM,QAAQ,KAAK,kBAAkB,CACvC,QAAO,KAAK,kBACT,KAAK,sBAAsB,kBAAkB,GAAG,CAChD,QAAQ,MAAmB,MAAM,OAAU;AAGhD,SAAO,KAAK,kBAAkB,KAAK,CAAC,KAAK,kBAAkB,GAAG,GAAG,EAAE;;CAGrE,IAAW,WAAuC;AAChD,SAAO,QAAQ,KAAK,QAAQ;;CAG9B,OAAc,SAAS,MAA+B;AACpD,SAAO,gBAAgB,SAAS,MAAM,cAAc;;;;CAnErD,OAAO,EAAE,MAAM,YAAY,CAAC;CAC5B,2BAA2B;;;;CAG3B,YAAY;CACZ,OAAO;;;YAGP,kBAAkB;;CAGlB,sBAAsB;CACtB,aAAa;;;YAGb,WAAW;;CAGX,WAAW;CACX,YAAY;;;;CAGZ,uBAAuB,EAAE,MAAM,MAAM,CAAC;CACtC,iCAAiC;;;;CAGjC,YAAY;CACZ,WAAW,oBAAoB;CAC/B,eAAe,EAAE,MAAM,MAAM,CAAC;CAC9B,6BAA6B;EAAE,WAAW;EAAqB,iBAAiB;EAAM,CAAC;;;;CAGvF,YAAY;CACZ,WAAW,oBAAoB;CAC/B,eAAe,EAAE,MAAM,MAAM,CAAC;CAC9B,WAAW,oBAAoB"}

package/build/modules/vc/models/credential/W3cCredentialSubject.d.mts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cCredentialSubject.d.mts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredentialSubject.ts"],"sourcesContent":[],"mappings":";;;;;;~~UAWiB~~,2BAAA;EAAA,EAAA,CAAA,EAAA,MAAA;EAMJ,MAAA,CAAA,EAHF,MAGE,CAAA,MAAA,EAAoB,OAAA,CAAA;;AACH,cADjB,oBAAA,CACiB;~~aAaZ~~,CAAA,OAAA,~~EAbY~~,~~2BAaZ~~;EAAM,EAAA,CAAA,EAAA,MAAA;EAGR,MAAA,CAAA,EAHE,MAGF,CAAA,MAAA,EAAA,OAAA,CAAA;AA8BhB;AAAsC,iBA9BtB,+BAAA,CAAA,CA8BsB,EA9BS,iBA8BT;AAAqB,iBAA3C,sBAAA,CAA2C,iBAAA,CAAA,EAAA,iBAAA,CAAA,EAAoB,iBAApB"}
1	+ {"version":3,"file":"W3cCredentialSubject.d.mts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredentialSubject.ts"],"sourcesContent":[],"mappings":";;;;;;UAUiB,2BAAA;EAAA,EAAA,CAAA,EAAA,MAAA;EAMJ,MAAA,CAAA,EAHF,MAGE,CAAA,MAAA,EAAoB,OAAA,CAAA;;AACH,cADjB,oBAAA,CACiB;aAcZ,CAAA,OAAA,EAdY,2BAcZ;EAAM,EAAA,CAAA,EAAA,MAAA;EAGR,MAAA,CAAA,EAHE,MAGF,CAAA,MAAA,EAAA,OAAA,CAAA;AA8BhB;AAAsC,iBA9BtB,+BAAA,CAAA,CA8BsB,EA9BS,iBA8BT;AAAqB,iBAA3C,sBAAA,CAA2C,iBAAA,CAAA,EAAA,iBAAA,CAAA,EAAoB,iBAApB"}

package/build/modules/vc/models/credential/W3cCredentialSubject.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cCredentialSubject.d.ts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredentialSubject.ts"],"sourcesContent":[],"mappings":";;;;;;~~AAWA~~;AAMa,UANI,2BAAA,CAMgB;EAAA,EAAA,CAAA,EAAA,MAAA;QACH,CAAA,EAJnB,MAImB,CAAA,MAAA,EAAA,OAAA,CAAA;;~~AAaN~~,~~cAdX~~,oBAAA,~~CAcW~~;EAGR,WAAA,CAAA,OAAA,~~EAhBc~~,~~2BAgBiB~~;EA8B/B,EAAA,CAAA,EAAA,MAAA;EAAsB,MAAA,CAAA,EAjCpB,MAiCoB,CAAA,MAAA,EAAA,OAAA,CAAA;;AAAyC,iBA9B/D,+BAAA,CAAA,CA8B+D,EA9BhC,iBA8BgC;AAAiB,iBAAhF,sBAAA,CAAgF,iBAAA,CAAA,EAArC,iBAAqC,CAAA,EAAjB,iBAAiB"}
1	+ {"version":3,"file":"W3cCredentialSubject.d.ts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredentialSubject.ts"],"sourcesContent":[],"mappings":";;;;;;AAUA;AAMa,UANI,2BAAA,CAMgB;EAAA,EAAA,CAAA,EAAA,MAAA;QACH,CAAA,EAJnB,MAImB,CAAA,MAAA,EAAA,OAAA,CAAA;;AAcN,cAfX,oBAAA,CAeW;EAGR,WAAA,CAAA,OAAA,EAjBc,2BAiBiB;EA8B/B,EAAA,CAAA,EAAA,MAAA;EAAsB,MAAA,CAAA,EAjCpB,MAiCoB,CAAA,MAAA,EAAA,OAAA,CAAA;;AAAyC,iBA9B/D,+BAAA,CAAA,CA8B+D,EA9BhC,iBA8BgC;AAAiB,iBAAhF,sBAAA,CAAgF,iBAAA,CAAA,EAArC,iBAAqC,CAAA,EAAjB,iBAAiB"}

package/build/modules/vc/models/credential/W3cCredentialSubject.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cCredentialSubject.mjs","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredentialSubject.ts"],"sourcesContent":["import ~~type~~ { ~~ValidationOptions~~ } from 'class-~~validator~~'\n\nimport { ~~Transform,~~ ~~TransformationType~~ } from 'class-~~transformer~~'\nimport { ~~IsOptional~~, ~~ValidateBy~~, ~~buildMessage~~, ~~isInstance~~ } from 'class-validator'\n\nimport { CredoError } from '../../../../error'\n\n/*\n @see https://www.w3.org/TR/vc-data-model/#credential-subject\n */\n\nexport interface W3cCredentialSubjectOptions {\n id?: string\n // note claims must not contain an id field\n claims?: Record<string, unknown>\n}\n\nexport class W3cCredentialSubject {\n public constructor(options: W3cCredentialSubjectOptions) {\n if (options) {\n this.id = options.id\n\n const { id, ...claims } = options.claims ?? {}\n this.claims = Object.keys(claims).length > 0 ? claims : undefined\n }\n }\n\n @IsOptional()\n public id?: string\n\n @IsOptional()\n public claims?: Record<string, unknown>\n}\n\nexport function W3cCredentialSubjectTransformer() {\n return Transform(({ value, type }: { value: W3cCredentialSubjectOptions; type: TransformationType }) => {\n if (type === TransformationType.PLAIN_TO_CLASS) {\n const vToClass = (v: unknown) => {\n if (!v \|\| typeof v !== 'object') throw new CredoError('Invalid credential subject')\n if (isInstance(v, W3cCredentialSubject)) return v\n const { id, ...claims } = v as Record<string, unknown>\n if (id !== undefined && typeof id !== 'string') throw new CredoError('Invalid credential subject id')\n return new W3cCredentialSubject({ id, claims })\n }\n\n if (Array.isArray(value) && value.length === 0) {\n throw new CredoError('At least one credential subject is required')\n }\n\n return Array.isArray(value) ? value.map(vToClass) : vToClass(value)\n }\n if (type === TransformationType.CLASS_TO_PLAIN) {\n const vToJson = (v: unknown) => {\n if (v instanceof W3cCredentialSubject) return v.id ? { ...v.claims, id: v.id } : { ...v.claims }\n return v\n }\n\n return Array.isArray(value) ? value.map(vToJson) : vToJson(value)\n }\n // PLAIN_TO_PLAIN\n return value\n })\n}\n\nexport function IsW3cCredentialSubject(validationOptions?: ValidationOptions): PropertyDecorator {\n return ValidateBy(\n {\n name: 'IsW3cCredentialSubject',\n validator: {\n validate: (value): boolean => {\n return isInstance(value, W3cCredentialSubject)\n },\n defaultMessage: buildMessage(\n (eachPrefix) =>\n `${eachPrefix}$property must be an object or an array of objects with an optional id property`,\n validationOptions\n ),\n },\n },\n validationOptions\n )\n}\n"],"mappings":";;;;;;;;;;;~~AAiBA~~,IAAa,uBAAb,MAAkC;CAChC,AAAO,YAAY,SAAsC;AACvD,MAAI,SAAS;AACX,QAAK,KAAK,QAAQ;~~GAElB~~,MAAM,EAAE,GAAI,GAAG,WAAW,QAAQ,UAAU,EAAE;AAC9C,QAAK,SAAS,OAAO,KAAK,OAAO,CAAC,SAAS,IAAI,SAAS;;;;YAI3D,YAAY;YAGZ,YAAY;AAIf,SAAgB,kCAAkC;AAChD,QAAO,WAAW,EAAE,OAAO,WAA6E;AACtG,MAAI,SAAS,mBAAmB,gBAAgB;GAC9C,MAAM,YAAY,MAAe;AAC/B,QAAI,CAAC,KAAK,OAAO,MAAM,SAAU,OAAM,IAAI,WAAW,6BAA6B;AACnF,QAAI,WAAW,GAAG,qBAAqB,CAAE,QAAO;IAChD,MAAM,EAAE,GAAI,GAAG,WAAW;AAC1B,QAAI,OAAO,UAAa,OAAO,OAAO,SAAU,OAAM,IAAI,WAAW,gCAAgC;AACrG,WAAO,IAAI,qBAAqB;KAAE;KAAI;KAAQ,CAAC;;AAGjD,OAAI,MAAM,QAAQ,MAAM,IAAI,MAAM,WAAW,EAC3C,OAAM,IAAI,WAAW,8CAA8C;AAGrE,UAAO,MAAM,QAAQ,MAAM,GAAG,MAAM,IAAI,SAAS,GAAG,SAAS,MAAM;;AAErE,MAAI,SAAS,mBAAmB,gBAAgB;GAC9C,MAAM,WAAW,MAAe;AAC9B,QAAI,aAAa,qBAAsB,QAAO,EAAE,KAAK;KAAE,GAAG,EAAE;KAAQ,IAAI,EAAE;KAAI,GAAG,EAAE,GAAG,EAAE,QAAQ;AAChG,WAAO;;AAGT,UAAO,MAAM,QAAQ,MAAM,GAAG,MAAM,IAAI,QAAQ,GAAG,QAAQ,MAAM;;AAGnE,SAAO;GACP;;AAGJ,SAAgB,uBAAuB,mBAA0D;AAC/F,QAAO,WACL;EACE,MAAM;EACN,WAAW;GACT,WAAW,UAAmB;AAC5B,WAAO,WAAW,OAAO,qBAAqB;;GAEhD,gBAAgB,cACb,eACC,GAAG,WAAW,kFAChB,kBACD;GACF;EACF,EACD,kBACD"}
1	+ {"version":3,"file":"W3cCredentialSubject.mjs","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cCredentialSubject.ts"],"sourcesContent":["import { Transform, TransformationType } from 'class-transformer'\nimport type { ValidationOptions } from 'class-validator'\nimport { buildMessage, IsOptional, isInstance, ValidateBy } from 'class-validator'\n\nimport { CredoError } from '../../../../error'\n\n/*\n @see https://www.w3.org/TR/vc-data-model/#credential-subject\n */\n\nexport interface W3cCredentialSubjectOptions {\n id?: string\n // note claims must not contain an id field\n claims?: Record<string, unknown>\n}\n\nexport class W3cCredentialSubject {\n public constructor(options: W3cCredentialSubjectOptions) {\n if (options) {\n this.id = options.id\n\n // biome-ignore lint/correctness/noUnusedVariables: no explanation\n const { id, ...claims } = options.claims ?? {}\n this.claims = Object.keys(claims).length > 0 ? claims : undefined\n }\n }\n\n @IsOptional()\n public id?: string\n\n @IsOptional()\n public claims?: Record<string, unknown>\n}\n\nexport function W3cCredentialSubjectTransformer() {\n return Transform(({ value, type }: { value: W3cCredentialSubjectOptions; type: TransformationType }) => {\n if (type === TransformationType.PLAIN_TO_CLASS) {\n const vToClass = (v: unknown) => {\n if (!v \|\| typeof v !== 'object') throw new CredoError('Invalid credential subject')\n if (isInstance(v, W3cCredentialSubject)) return v\n const { id, ...claims } = v as Record<string, unknown>\n if (id !== undefined && typeof id !== 'string') throw new CredoError('Invalid credential subject id')\n return new W3cCredentialSubject({ id, claims })\n }\n\n if (Array.isArray(value) && value.length === 0) {\n throw new CredoError('At least one credential subject is required')\n }\n\n return Array.isArray(value) ? value.map(vToClass) : vToClass(value)\n }\n if (type === TransformationType.CLASS_TO_PLAIN) {\n const vToJson = (v: unknown) => {\n if (v instanceof W3cCredentialSubject) return v.id ? { ...v.claims, id: v.id } : { ...v.claims }\n return v\n }\n\n return Array.isArray(value) ? value.map(vToJson) : vToJson(value)\n }\n // PLAIN_TO_PLAIN\n return value\n })\n}\n\nexport function IsW3cCredentialSubject(validationOptions?: ValidationOptions): PropertyDecorator {\n return ValidateBy(\n {\n name: 'IsW3cCredentialSubject',\n validator: {\n validate: (value): boolean => {\n return isInstance(value, W3cCredentialSubject)\n },\n defaultMessage: buildMessage(\n (eachPrefix) =>\n `${eachPrefix}$property must be an object or an array of objects with an optional id property`,\n validationOptions\n ),\n },\n },\n validationOptions\n )\n}\n"],"mappings":";;;;;;;;;;;AAgBA,IAAa,uBAAb,MAAkC;CAChC,AAAO,YAAY,SAAsC;AACvD,MAAI,SAAS;AACX,QAAK,KAAK,QAAQ;GAGlB,MAAM,EAAE,GAAI,GAAG,WAAW,QAAQ,UAAU,EAAE;AAC9C,QAAK,SAAS,OAAO,KAAK,OAAO,CAAC,SAAS,IAAI,SAAS;;;;YAI3D,YAAY;YAGZ,YAAY;AAIf,SAAgB,kCAAkC;AAChD,QAAO,WAAW,EAAE,OAAO,WAA6E;AACtG,MAAI,SAAS,mBAAmB,gBAAgB;GAC9C,MAAM,YAAY,MAAe;AAC/B,QAAI,CAAC,KAAK,OAAO,MAAM,SAAU,OAAM,IAAI,WAAW,6BAA6B;AACnF,QAAI,WAAW,GAAG,qBAAqB,CAAE,QAAO;IAChD,MAAM,EAAE,GAAI,GAAG,WAAW;AAC1B,QAAI,OAAO,UAAa,OAAO,OAAO,SAAU,OAAM,IAAI,WAAW,gCAAgC;AACrG,WAAO,IAAI,qBAAqB;KAAE;KAAI;KAAQ,CAAC;;AAGjD,OAAI,MAAM,QAAQ,MAAM,IAAI,MAAM,WAAW,EAC3C,OAAM,IAAI,WAAW,8CAA8C;AAGrE,UAAO,MAAM,QAAQ,MAAM,GAAG,MAAM,IAAI,SAAS,GAAG,SAAS,MAAM;;AAErE,MAAI,SAAS,mBAAmB,gBAAgB;GAC9C,MAAM,WAAW,MAAe;AAC9B,QAAI,aAAa,qBAAsB,QAAO,EAAE,KAAK;KAAE,GAAG,EAAE;KAAQ,IAAI,EAAE;KAAI,GAAG,EAAE,GAAG,EAAE,QAAQ;AAChG,WAAO;;AAGT,UAAO,MAAM,QAAQ,MAAM,GAAG,MAAM,IAAI,QAAQ,GAAG,QAAQ,MAAM;;AAGnE,SAAO;GACP;;AAGJ,SAAgB,uBAAuB,mBAA0D;AAC/F,QAAO,WACL;EACE,MAAM;EACN,WAAW;GACT,WAAW,UAAmB;AAC5B,WAAO,WAAW,OAAO,qBAAqB;;GAEhD,gBAAgB,cACb,eACC,GAAG,WAAW,kFAChB,kBACD;GACF;EACF,EACD,kBACD"}

package/build/modules/vc/models/credential/W3cIssuer.d.mts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cIssuer.d.mts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cIssuer.ts"],"sourcesContent":[],"mappings":";;;;;;;~~AAYiB~~,UAAA,gBAAA,CAAgB;EAIpB,EAAA,EAAA,MAAA;AAab;AAiBgB,cA9BH,SAAA,CA8Bc;EAAA,WAAA,CAAA,OAAA,EA7BG,gBA6BH;MAAqB,MAAA;;AAAqC,iBAjBrE,oBAAA,CAAA,CAiBqE,EAjBjD,iBAiBiD;iBAArE,WAAA,qBAAgC,oBAAoB"}
1	+ {"version":3,"file":"W3cIssuer.d.mts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cIssuer.ts"],"sourcesContent":[],"mappings":";;;;;;;AAWiB,UAAA,gBAAA,CAAgB;EAIpB,EAAA,EAAA,MAAA;AAab;AAiBgB,cA9BH,SAAA,CA8Bc;EAAA,WAAA,CAAA,OAAA,EA7BG,gBA6BH;MAAqB,MAAA;;AAAqC,iBAjBrE,oBAAA,CAAA,CAiBqE,EAjBjD,iBAiBiD;iBAArE,WAAA,qBAAgC,oBAAoB"}

package/build/modules/vc/models/credential/W3cIssuer.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cIssuer.d.ts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cIssuer.ts"],"sourcesContent":[],"mappings":";;;;;;~~AAYA~~;AAIA;AAagB,UAjBC,gBAAA,CAiBmB;EAiBpB,EAAA,EAAA,MAAA;;AAAgC,cA9BnC,SAAA,CA8BmC;aAAoB,CAAA,OAAA,EA7BtC,gBA6BsC;EAAiB,EAAA,EAAA,MAAA;;iBAjBrE,oBAAA,CAAA,GAAoB;iBAiBpB,WAAA,qBAAgC,oBAAoB"}
1	+ {"version":3,"file":"W3cIssuer.d.ts","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cIssuer.ts"],"sourcesContent":[],"mappings":";;;;;;AAWA;AAIA;AAagB,UAjBC,gBAAA,CAiBmB;EAiBpB,EAAA,EAAA,MAAA;;AAAgC,cA9BnC,SAAA,CA8BmC;aAAoB,CAAA,OAAA,EA7BtC,gBA6BsC;EAAiB,EAAA,EAAA,MAAA;;iBAjBrE,oBAAA,CAAA,GAAoB;iBAiBpB,WAAA,qBAAgC,oBAAoB"}

package/build/modules/vc/models/credential/W3cIssuer.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"W3cIssuer.mjs","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cIssuer.ts"],"sourcesContent":["import ~~type~~ { ~~ValidationOptions~~ } from 'class-~~validator~~'\n\nimport { ~~Transform,~~ ~~TransformationType, instanceToPlain, plainToInstance~~ } from 'class-~~transformer~~'\nimport { ~~ValidateBy,~~ buildMessage, isInstance, isString } from 'class-validator'\n\nimport { IsUri, isUri } from '../../../../utils/validators'\n\n/*\n TODO: check how to support arbitrary data in class\n * @see https://www.w3.org/TR/vc-data-model/#credential-subject\n */\n\nexport interface W3cIssuerOptions {\n id: string\n}\n\nexport class W3cIssuer {\n public constructor(options: W3cIssuerOptions) {\n if (options) {\n this.id = options.id\n }\n }\n\n @IsUri()\n public id!: string\n}\n\n// Custom transformers\n\nexport function W3cIssuerTransformer() {\n return Transform(({ value, type }: { value: string \| W3cIssuerOptions; type: TransformationType }) => {\n if (type === TransformationType.PLAIN_TO_CLASS) {\n if (isString(value)) return value\n return plainToInstance(W3cIssuer, value)\n }\n if (type === TransformationType.CLASS_TO_PLAIN) {\n if (isString(value)) return value\n return instanceToPlain(value)\n }\n // PLAIN_TO_PLAIN\n return value\n })\n}\n\n// Custom validators\n\nexport function IsW3cIssuer(validationOptions?: ValidationOptions): PropertyDecorator {\n return ValidateBy(\n {\n name: 'IsW3cIssuer',\n validator: {\n validate: (value): boolean => {\n if (typeof value === 'string') {\n return isUri(value)\n }\n if (isInstance(value, W3cIssuer)) {\n return isUri(value.id)\n }\n return false\n },\n defaultMessage: buildMessage(\n (eachPrefix) => `${eachPrefix}$property must be an URI or an object with an id property which is an URI`,\n validationOptions\n ),\n },\n },\n validationOptions\n )\n}\n"],"mappings":";;;;;;;;;~~AAgBA~~,IAAa,YAAb,MAAuB;CACrB,AAAO,YAAY,SAA2B;AAC5C,MAAI,QACF,MAAK,KAAK,QAAQ;;;YAIrB,OAAO;AAMV,SAAgB,uBAAuB;AACrC,QAAO,WAAW,EAAE,OAAO,WAA2E;AACpG,MAAI,SAAS,mBAAmB,gBAAgB;AAC9C,OAAI,SAAS,MAAM,CAAE,QAAO;AAC5B,UAAO,gBAAgB,WAAW,MAAM;;AAE1C,MAAI,SAAS,mBAAmB,gBAAgB;AAC9C,OAAI,SAAS,MAAM,CAAE,QAAO;AAC5B,UAAO,gBAAgB,MAAM;;AAG/B,SAAO;GACP;;AAKJ,SAAgB,YAAY,mBAA0D;AACpF,QAAO,WACL;EACE,MAAM;EACN,WAAW;GACT,WAAW,UAAmB;AAC5B,QAAI,OAAO,UAAU,SACnB,QAAO,MAAM,MAAM;AAErB,QAAI,WAAW,OAAO,UAAU,CAC9B,QAAO,MAAM,MAAM,GAAG;AAExB,WAAO;;GAET,gBAAgB,cACb,eAAe,GAAG,WAAW,4EAC9B,kBACD;GACF;EACF,EACD,kBACD"}
1	+ {"version":3,"file":"W3cIssuer.mjs","names":[],"sources":["../../../../../src/modules/vc/models/credential/W3cIssuer.ts"],"sourcesContent":["import { instanceToPlain, plainToInstance, Transform, TransformationType } from 'class-transformer'\nimport type { ValidationOptions } from 'class-validator'\nimport { buildMessage, isInstance, isString, ValidateBy } from 'class-validator'\n\nimport { IsUri, isUri } from '../../../../utils/validators'\n\n/*\n TODO: check how to support arbitrary data in class\n * @see https://www.w3.org/TR/vc-data-model/#credential-subject\n */\n\nexport interface W3cIssuerOptions {\n id: string\n}\n\nexport class W3cIssuer {\n public constructor(options: W3cIssuerOptions) {\n if (options) {\n this.id = options.id\n }\n }\n\n @IsUri()\n public id!: string\n}\n\n// Custom transformers\n\nexport function W3cIssuerTransformer() {\n return Transform(({ value, type }: { value: string \| W3cIssuerOptions; type: TransformationType }) => {\n if (type === TransformationType.PLAIN_TO_CLASS) {\n if (isString(value)) return value\n return plainToInstance(W3cIssuer, value)\n }\n if (type === TransformationType.CLASS_TO_PLAIN) {\n if (isString(value)) return value\n return instanceToPlain(value)\n }\n // PLAIN_TO_PLAIN\n return value\n })\n}\n\n// Custom validators\n\nexport function IsW3cIssuer(validationOptions?: ValidationOptions): PropertyDecorator {\n return ValidateBy(\n {\n name: 'IsW3cIssuer',\n validator: {\n validate: (value): boolean => {\n if (typeof value === 'string') {\n return isUri(value)\n }\n if (isInstance(value, W3cIssuer)) {\n return isUri(value.id)\n }\n return false\n },\n defaultMessage: buildMessage(\n (eachPrefix) => `${eachPrefix}$property must be an URI or an object with an id property which is an URI`,\n validationOptions\n ),\n },\n },\n validationOptions\n )\n}\n"],"mappings":";;;;;;;;;AAeA,IAAa,YAAb,MAAuB;CACrB,AAAO,YAAY,SAA2B;AAC5C,MAAI,QACF,MAAK,KAAK,QAAQ;;;YAIrB,OAAO;AAMV,SAAgB,uBAAuB;AACrC,QAAO,WAAW,EAAE,OAAO,WAA2E;AACpG,MAAI,SAAS,mBAAmB,gBAAgB;AAC9C,OAAI,SAAS,MAAM,CAAE,QAAO;AAC5B,UAAO,gBAAgB,WAAW,MAAM;;AAE1C,MAAI,SAAS,mBAAmB,gBAAgB;AAC9C,OAAI,SAAS,MAAM,CAAE,QAAO;AAC5B,UAAO,gBAAgB,MAAM;;AAG/B,SAAO;GACP;;AAKJ,SAAgB,YAAY,mBAA0D;AACpF,QAAO,WACL;EACE,MAAM;EACN,WAAW;GACT,WAAW,UAAmB;AAC5B,QAAI,OAAO,UAAU,SACnB,QAAO,MAAM,MAAM;AAErB,QAAI,WAAW,OAAO,UAAU,CAC9B,QAAO,MAAM,MAAM,GAAG;AAExB,WAAO;;GAET,gBAAgB,cACb,eAAe,GAAG,WAAW,4EAC9B,kBACD;GACF;EACF,EACD,kBACD"}

package/build/modules/vc/models/credential/W3cV2Credential.d.mts CHANGED Viewed

@@ -1,3 +1,4 @@
+import { JsonObject, SingleOrArray } from "../../../../types.mjs";
 import { W3cV2CredentialSchema, W3cV2CredentialSchemaOptions } from "./W3cV2CredentialSchema.mjs";
 import { W3cV2CredentialStatus, W3cV2CredentialStatusOptions } from "./W3cV2CredentialStatus.mjs";
 import { W3cV2CredentialSubject, W3cV2CredentialSubjectOptions } from "./W3cV2CredentialSubject.mjs";
@@ -7,7 +8,6 @@ import { W3cV2JsonCredential } from "./W3cV2JsonCredential.mjs";
 import { W3cV2LocalizedValue, W3cV2LocalizedValueOptions } from "./W3cV2LocalizedValue.mjs";
 import { W3cV2RefreshService, W3cV2RefreshServiceOptions } from "./W3cV2RefreshService.mjs";
 import { W3cV2TermsOfUse, W3cV2TermsOfUseOptions } from "./W3cV2TermsOfUse.mjs";
-import { JsonObject, SingleOrArray } from "../../../../types.mjs";
 //#region src/modules/vc/models/credential/W3cV2Credential.d.ts
 interface W3cV2CredentialOptions {

package/build/modules/vc/models/credential/W3cV2Credential.d.ts CHANGED Viewed

@@ -1,3 +1,4 @@
+import { JsonObject, SingleOrArray } from "../../../../types.js";
 import { W3cV2CredentialSchema, W3cV2CredentialSchemaOptions } from "./W3cV2CredentialSchema.js";
 import { W3cV2CredentialStatus, W3cV2CredentialStatusOptions } from "./W3cV2CredentialStatus.js";
 import { W3cV2CredentialSubject, W3cV2CredentialSubjectOptions } from "./W3cV2CredentialSubject.js";
@@ -7,7 +8,6 @@ import { W3cV2JsonCredential } from "./W3cV2JsonCredential.js";
 import { W3cV2LocalizedValue, W3cV2LocalizedValueOptions } from "./W3cV2LocalizedValue.js";
 import { W3cV2RefreshService, W3cV2RefreshServiceOptions } from "./W3cV2RefreshService.js";
 import { W3cV2TermsOfUse, W3cV2TermsOfUseOptions } from "./W3cV2TermsOfUse.js";
-import { JsonObject, SingleOrArray } from "../../../../types.js";
 //#region src/modules/vc/models/credential/W3cV2Credential.d.ts
 interface W3cV2CredentialOptions {

package/build/modules/vc/models/credential/W3cV2Credential.js CHANGED Viewed

@@ -3,8 +3,8 @@
 const require_rolldown_runtime = require('../../../../_virtual/rolldown_runtime.js');
 const require_decorateMetadata = require('../../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorateMetadata.js');
 const require_decorate = require('../../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorate.js');
-const require_JsonTransformer = require('../../../../utils/JsonTransformer.js');
 const require_array = require('../../../../utils/array.js');
+const require_JsonTransformer = require('../../../../utils/JsonTransformer.js');
 const require_validators = require('../../../../utils/validators.js');
 require('../../../../utils/index.js');
 const require_constants = require('../../constants.js');

package/build/modules/vc/models/credential/W3cV2Credential.mjs CHANGED Viewed

@@ -2,8 +2,8 @@
 import { __decorateMetadata } from "../../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorateMetadata.mjs";
 import { __decorate } from "../../../../_virtual/_@oxc-project_runtime@0.94.0/helpers/decorate.mjs";
-import { JsonTransformer } from "../../../../utils/JsonTransformer.mjs";
 import { asArray, mapSingleOrArray } from "../../../../utils/array.mjs";
+import { JsonTransformer } from "../../../../utils/JsonTransformer.mjs";
 import { IsInstanceOrArrayOfInstances, IsNever, IsStringOrInstanceOrArrayOfInstances, IsUri } from "../../../../utils/validators.mjs";
 import "../../../../utils/index.mjs";
 import { CREDENTIALS_CONTEXT_V2_URL } from "../../constants.mjs";