@credo-ts/openid4vc 0.4.1-alpha.157

package/build/openid4vc-issuer/repository/OpenId4VcCNonceStateManager.js

@@ -0,0 +1,99 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OpenId4VcCNonceStateManager = void 0;
+const core_1 = require("@credo-ts/core");
+const OpenId4VcIssuerModuleConfig_1 = require("../OpenId4VcIssuerModuleConfig");
+const OpenId4VcIssuanceSessionRepository_1 = require("./OpenId4VcIssuanceSessionRepository");
+class OpenId4VcCNonceStateManager {
+    constructor(agentContext, issuerId) {
+        this.agentContext = agentContext;
+        this.issuerId = issuerId;
+        this.openId4VcIssuanceSessionRepository = agentContext.dependencyManager.resolve(OpenId4VcIssuanceSessionRepository_1.OpenId4VcIssuanceSessionRepository);
+        this.openId4VcIssuerModuleConfig = agentContext.dependencyManager.resolve(OpenId4VcIssuerModuleConfig_1.OpenId4VcIssuerModuleConfig);
+    }
+    async set(cNonce, stateValue) {
+        // Just to make sure that the cNonce is the same as the id as that's what we use to query
+        if (cNonce !== stateValue.cNonce) {
+            throw new core_1.CredoError('Expected the id of the cNonce state to be equal to the cNonce');
+        }
+        if (!stateValue.preAuthorizedCode) {
+            throw new core_1.CredoError("Expected the stateValue to have a 'preAuthorizedCode' property");
+        }
+        // Record MUST exist (otherwise there's no issuance session active yet)
+        const record = await this.openId4VcIssuanceSessionRepository.getSingleByQuery(this.agentContext, {
+            // NOTE: once we support authorized flow, we need to add an $or for the issuer state as well
+            issuerId: this.issuerId,
+            preAuthorizedCode: stateValue.preAuthorizedCode,
+        });
+        // cNonce already matches, no need to update
+        if (record.cNonce === stateValue.cNonce) {
+            return;
+        }
+        const expiresAtDate = new Date(Date.now() + this.openId4VcIssuerModuleConfig.accessTokenEndpoint.cNonceExpiresInSeconds * 1000);
+        record.cNonce = stateValue.cNonce;
+        record.cNonceExpiresAt = expiresAtDate;
+        await this.openId4VcIssuanceSessionRepository.update(this.agentContext, record);
+    }
+    async get(cNonce) {
+        const record = await this.openId4VcIssuanceSessionRepository.findSingleByQuery(this.agentContext, {
+            issuerId: this.issuerId,
+            cNonce,
+        });
+        if (!record)
+            return undefined;
+        // NOTE: This should not happen as we query by the credential offer uri
+        // so it's mostly to make TS happy
+        if (!record.cNonce) {
+            throw new core_1.CredoError('No cNonce found on record.');
+        }
+        return {
+            cNonce: record.cNonce,
+            preAuthorizedCode: record.preAuthorizedCode,
+            createdAt: record.createdAt.getTime(),
+        };
+    }
+    async has(cNonce) {
+        const record = await this.openId4VcIssuanceSessionRepository.findSingleByQuery(this.agentContext, {
+            issuerId: this.issuerId,
+            cNonce,
+        });
+        return record !== undefined;
+    }
+    async delete(cNonce) {
+        const record = await this.openId4VcIssuanceSessionRepository.findSingleByQuery(this.agentContext, {
+            issuerId: this.issuerId,
+            cNonce,
+        });
+        if (!record)
+            return false;
+        // We only remove the cNonce from the record, we don't want to remove
+        // the whole issuance session.
+        record.cNonce = undefined;
+        record.cNonceExpiresAt = undefined;
+        await this.openId4VcIssuanceSessionRepository.update(this.agentContext, record);
+        return true;
+    }
+    async clearExpired() {
+        // FIXME: we should have a way to remove expired records
+        // or just not return the value in the get if the record is expired
+        throw new Error('Method not implemented.');
+    }
+    async clearAll() {
+        throw new Error('Method not implemented.');
+    }
+    async getAsserted(id) {
+        const state = await this.get(id);
+        if (!state) {
+            throw new core_1.CredoError(`No cNonce state found for id ${id}`);
+        }
+        return state;
+    }
+    async startCleanupRoutine() {
+        throw new Error('Method not implemented.');
+    }
+    async stopCleanupRoutine() {
+        throw new Error('Method not implemented.');
+    }
+}
+exports.OpenId4VcCNonceStateManager = OpenId4VcCNonceStateManager;
+//# sourceMappingURL=OpenId4VcCNonceStateManager.js.map

package/build/openid4vc-issuer/repository/OpenId4VcCNonceStateManager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"OpenId4VcCNonceStateManager.js","sourceRoot":"","sources":["../../../src/openid4vc-issuer/repository/OpenId4VcCNonceStateManager.ts"],"names":[],"mappings":";;;AAGA,yCAA2C;AAE3C,gFAA4E;AAE5E,6FAAyF;AAEzF,MAAa,2BAA2B;IAItC,YAA2B,YAA0B,EAAU,QAAgB;QAApD,iBAAY,GAAZ,YAAY,CAAc;QAAU,aAAQ,GAAR,QAAQ,CAAQ;QAC7E,IAAI,CAAC,kCAAkC,GAAG,YAAY,CAAC,iBAAiB,CAAC,OAAO,CAAC,uEAAkC,CAAC,CAAA;QACpH,IAAI,CAAC,2BAA2B,GAAG,YAAY,CAAC,iBAAiB,CAAC,OAAO,CAAC,yDAA2B,CAAC,CAAA;IACxG,CAAC;IAEM,KAAK,CAAC,GAAG,CAAC,MAAc,EAAE,UAAuB;QACtD,yFAAyF;QACzF,IAAI,MAAM,KAAK,UAAU,CAAC,MAAM,EAAE;YAChC,MAAM,IAAI,iBAAU,CAAC,+DAA+D,CAAC,CAAA;SACtF;QAED,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE;YACjC,MAAM,IAAI,iBAAU,CAAC,gEAAgE,CAAC,CAAA;SACvF;QAED,uEAAuE;QACvE,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kCAAkC,CAAC,gBAAgB,CAAC,IAAI,CAAC,YAAY,EAAE;YAC/F,4FAA4F;YAC5F,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,iBAAiB,EAAE,UAAU,CAAC,iBAAiB;SAChD,CAAC,CAAA;QAEF,4CAA4C;QAC5C,IAAI,MAAM,CAAC,MAAM,KAAK,UAAU,CAAC,MAAM,EAAE;YACvC,OAAM;SACP;QAED,MAAM,aAAa,GAAG,IAAI,IAAI,CAC5B,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,2BAA2B,CAAC,mBAAmB,CAAC,sBAAsB,GAAG,IAAI,CAChG,CAAA;QAED,MAAM,CAAC,MAAM,GAAG,UAAU,CAAC,MAAM,CAAA;QACjC,MAAM,CAAC,eAAe,GAAG,aAAa,CAAA;QACtC,MAAM,IAAI,CAAC,kCAAkC,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC,CAAA;IACjF,CAAC;IAEM,KAAK,CAAC,GAAG,CAAC,MAAc;QAC7B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kCAAkC,CAAC,iBAAiB,CAAC,IAAI,CAAC,YAAY,EAAE;YAChG,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM;SACP,CAAC,CAAA;QAEF,IAAI,CAAC,MAAM;YAAE,OAAO,SAAS,CAAA;QAE7B,uEAAuE;QACvE,kCAAkC;QAClC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE;YAClB,MAAM,IAAI,iBAAU,CAAC,4BAA4B,CAAC,CAAA;SACnD;QAED,OAAO;YACL,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,iBAAiB,EAAE,MAAM,CAAC,iBAAiB;YAC3C,SAAS,EAAE,MAAM,CAAC,SAAS,CAAC,OAAO,EAAE;SACtC,CAAA;IACH,CAAC;IAEM,KAAK,CAAC,GAAG,CAAC,MAAc;QAC7B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kCAAkC,CAAC,iBAAiB,CAAC,IAAI,CAAC,YAAY,EAAE;YAChG,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM;SACP,CAAC,CAAA;QAEF,OAAO,MAAM,KAAK,SAAS,CAAA;IAC7B,CAAC;IAEM,KAAK,CAAC,MAAM,CAAC,MAAc;QAChC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kCAAkC,CAAC,iBAAiB,CAAC,IAAI,CAAC,YAAY,EAAE;YAChG,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM;SACP,CAAC,CAAA;QAEF,IAAI,CAAC,MAAM;YAAE,OAAO,KAAK,CAAA;QAEzB,qEAAqE;QACrE,8BAA8B;QAC9B,MAAM,CAAC,MAAM,GAAG,SAAS,CAAA;QACzB,MAAM,CAAC,eAAe,GAAG,SAAS,CAAA;QAClC,MAAM,IAAI,CAAC,kCAAkC,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC,CAAA;QAC/E,OAAO,IAAI,CAAA;IACb,CAAC;IAEM,KAAK,CAAC,YAAY;QACvB,wDAAwD;QACxD,mEAAmE;QACnE,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;IAEM,KAAK,CAAC,QAAQ;QACnB,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;IAEM,KAAK,CAAC,WAAW,CAAC,EAAU;QACjC,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAA;QAEhC,IAAI,CAAC,KAAK,EAAE;YACV,MAAM,IAAI,iBAAU,CAAC,gCAAgC,EAAE,EAAE,CAAC,CAAA;SAC3D;QAED,OAAO,KAAK,CAAA;IACd,CAAC;IAEM,KAAK,CAAC,mBAAmB;QAC9B,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;IAEM,KAAK,CAAC,kBAAkB;QAC7B,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;CACF;AAjHD,kEAiHC"}

package/build/openid4vc-issuer/repository/OpenId4VcCredentialOfferSessionStateManager.d.ts

@@ -0,0 +1,21 @@
+import type { AgentContext } from '@credo-ts/core';
+import type { CredentialOfferSession, IStateManager } from '@sphereon/oid4vci-common';
+import { OpenId4VcIssuanceSessionState } from '../OpenId4VcIssuanceSessionState';
+import { OpenId4VcIssuanceSessionRecord } from './OpenId4VcIssuanceSessionRecord';
+export declare class OpenId4VcCredentialOfferSessionStateManager implements IStateManager<CredentialOfferSession> {
+    private agentContext;
+    private issuerId;
+    private openId4VcIssuanceSessionRepository;
+    private eventEmitter;
+    constructor(agentContext: AgentContext, issuerId: string);
+    set(preAuthorizedCode: string, stateValue: CredentialOfferSession): Promise<void>;
+    get(preAuthorizedCode: string): Promise<CredentialOfferSession | undefined>;
+    has(preAuthorizedCode: string): Promise<boolean>;
+    delete(preAuthorizedCode: string): Promise<boolean>;
+    clearExpired(): Promise<void>;
+    clearAll(): Promise<void>;
+    getAsserted(preAuthorizedCode: string): Promise<CredentialOfferSession>;
+    startCleanupRoutine(): Promise<void>;
+    stopCleanupRoutine(): Promise<void>;
+    protected emitStateChangedEvent(agentContext: AgentContext, issuanceSession: OpenId4VcIssuanceSessionRecord, previousState: OpenId4VcIssuanceSessionState | null): void;
+}

package/build/openid4vc-issuer/repository/OpenId4VcCredentialOfferSessionStateManager.js

@@ -0,0 +1,182 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OpenId4VcCredentialOfferSessionStateManager = void 0;
+const core_1 = require("@credo-ts/core");
+const oid4vci_common_1 = require("@sphereon/oid4vci-common");
+const OpenId4VcIssuanceSessionState_1 = require("../OpenId4VcIssuanceSessionState");
+const OpenId4VcIssuerEvents_1 = require("../OpenId4VcIssuerEvents");
+const OpenId4VcIssuanceSessionRecord_1 = require("./OpenId4VcIssuanceSessionRecord");
+const OpenId4VcIssuanceSessionRepository_1 = require("./OpenId4VcIssuanceSessionRepository");
+class OpenId4VcCredentialOfferSessionStateManager {
+    constructor(agentContext, issuerId) {
+        this.agentContext = agentContext;
+        this.issuerId = issuerId;
+        this.openId4VcIssuanceSessionRepository = agentContext.dependencyManager.resolve(OpenId4VcIssuanceSessionRepository_1.OpenId4VcIssuanceSessionRepository);
+        this.eventEmitter = agentContext.dependencyManager.resolve(core_1.EventEmitter);
+    }
+    async set(preAuthorizedCode, stateValue) {
+        var _a;
+        // Just to make sure that the preAuthorizedCode is the same as the id as that's what we use to query
+        // NOTE: once we support authorized flow, we need to also allow the id to be equal to issuer state
+        if (preAuthorizedCode !== stateValue.preAuthorizedCode) {
+            throw new core_1.CredoError('Expected the id of the credential offer state to be equal to the preAuthorizedCode');
+        }
+        if (!stateValue.preAuthorizedCode) {
+            throw new core_1.CredoError("Expected the stateValue to have a 'preAuthorizedCode' property");
+        }
+        // Record may already exist
+        let record = await this.openId4VcIssuanceSessionRepository.findSingleByQuery(this.agentContext, {
+            issuerId: this.issuerId,
+            preAuthorizedCode: stateValue.preAuthorizedCode,
+        });
+        const previousState = (_a = record === null || record === void 0 ? void 0 : record.state) !== null && _a !== void 0 ? _a : null;
+        let credentialOfferUri = stateValue.credentialOffer.credential_offer_uri;
+        if (!credentialOfferUri) {
+            throw new core_1.CredoError("Expected the stateValue to have a 'credentialOfferUri' property");
+        }
+        if (credentialOfferUri.includes('credential_offer_uri=')) {
+            // NOTE: it's a bit cumbersome, but the credential_offer_uri is the encoded uri. This seems
+            // odd to me, as this is the offer payload, which should only contain the hosted URI (I think
+            // this is a bug in OID4VCI). But for now we have to extract the uri from the payload.
+            credentialOfferUri = decodeURIComponent(credentialOfferUri.split('credential_offer_uri=')[1].split('=')[0]);
+        }
+        // NOTE: we don't use clientId at the moment, will become relevant when doing the authorized flow
+        if (record) {
+            record.issuanceMetadata = stateValue.credentialDataSupplierInput;
+            record.credentialOfferPayload = stateValue.credentialOffer.credential_offer;
+            record.userPin = stateValue.userPin;
+            record.preAuthorizedCode = stateValue.preAuthorizedCode;
+            record.errorMessage = stateValue.error;
+            record.credentialOfferUri = credentialOfferUri;
+            record.state = openId4VcIssuanceStateFromSphereon(stateValue.status);
+            await this.openId4VcIssuanceSessionRepository.update(this.agentContext, record);
+        }
+        else {
+            record = new OpenId4VcIssuanceSessionRecord_1.OpenId4VcIssuanceSessionRecord({
+                issuerId: this.issuerId,
+                preAuthorizedCode: stateValue.preAuthorizedCode,
+                issuanceMetadata: stateValue.credentialDataSupplierInput,
+                credentialOfferPayload: stateValue.credentialOffer.credential_offer,
+                credentialOfferUri,
+                userPin: stateValue.userPin,
+                errorMessage: stateValue.error,
+                state: openId4VcIssuanceStateFromSphereon(stateValue.status),
+            });
+            await this.openId4VcIssuanceSessionRepository.save(this.agentContext, record);
+        }
+        this.emitStateChangedEvent(this.agentContext, record, previousState);
+    }
+    async get(preAuthorizedCode) {
+        var _a, _b;
+        const record = await this.openId4VcIssuanceSessionRepository.findSingleByQuery(this.agentContext, {
+            issuerId: this.issuerId,
+            preAuthorizedCode,
+        });
+        if (!record)
+            return undefined;
+        // NOTE: This should not happen as we query by the preAuthorizedCode
+        // so it's mostly to make TS happy
+        if (!record.preAuthorizedCode) {
+            throw new core_1.CredoError("No 'preAuthorizedCode' found on record.");
+        }
+        if (!record.credentialOfferPayload) {
+            throw new core_1.CredoError("No 'credentialOfferPayload' found on record.");
+        }
+        return {
+            credentialOffer: {
+                credential_offer: record.credentialOfferPayload,
+                credential_offer_uri: record.credentialOfferUri,
+            },
+            status: sphereonIssueStatusFromOpenId4VcIssuanceState(record.state),
+            preAuthorizedCode: record.preAuthorizedCode,
+            credentialDataSupplierInput: record.issuanceMetadata,
+            error: record.errorMessage,
+            userPin: record.userPin,
+            createdAt: record.createdAt.getTime(),
+            lastUpdatedAt: (_b = (_a = record.updatedAt) === null || _a === void 0 ? void 0 : _a.getTime()) !== null && _b !== void 0 ? _b : record.createdAt.getTime(),
+        };
+    }
+    async has(preAuthorizedCode) {
+        const record = await this.openId4VcIssuanceSessionRepository.findSingleByQuery(this.agentContext, {
+            issuerId: this.issuerId,
+            preAuthorizedCode,
+        });
+        return record !== undefined;
+    }
+    async delete(preAuthorizedCode) {
+        const record = await this.openId4VcIssuanceSessionRepository.findSingleByQuery(this.agentContext, {
+            issuerId: this.issuerId,
+            preAuthorizedCode,
+        });
+        if (!record)
+            return false;
+        await this.openId4VcIssuanceSessionRepository.deleteById(this.agentContext, record.id);
+        return true;
+    }
+    async clearExpired() {
+        // FIXME: we should have a way to remove expired records
+        // or just not return the value in the get if the record is expired
+        throw new Error('Method not implemented.');
+    }
+    async clearAll() {
+        throw new Error('Method not implemented.');
+    }
+    async getAsserted(preAuthorizedCode) {
+        const state = await this.get(preAuthorizedCode);
+        if (!state) {
+            throw new core_1.CredoError(`No credential offer state found for id ${preAuthorizedCode}`);
+        }
+        return state;
+    }
+    async startCleanupRoutine() {
+        throw new Error('Method not implemented.');
+    }
+    async stopCleanupRoutine() {
+        throw new Error('Method not implemented.');
+    }
+    emitStateChangedEvent(agentContext, issuanceSession, previousState) {
+        this.eventEmitter.emit(agentContext, {
+            type: OpenId4VcIssuerEvents_1.OpenId4VcIssuerEvents.IssuanceSessionStateChanged,
+            payload: {
+                issuanceSession: issuanceSession.clone(),
+                previousState,
+            },
+        });
+    }
+}
+exports.OpenId4VcCredentialOfferSessionStateManager = OpenId4VcCredentialOfferSessionStateManager;
+function openId4VcIssuanceStateFromSphereon(stateValue) {
+    if (stateValue === oid4vci_common_1.IssueStatus.OFFER_CREATED)
+        return OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.OfferCreated;
+    if (stateValue === oid4vci_common_1.IssueStatus.OFFER_URI_RETRIEVED)
+        return OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.OfferUriRetrieved;
+    if (stateValue === oid4vci_common_1.IssueStatus.ACCESS_TOKEN_REQUESTED)
+        return OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.AccessTokenRequested;
+    if (stateValue === oid4vci_common_1.IssueStatus.ACCESS_TOKEN_CREATED)
+        return OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.AccessTokenCreated;
+    if (stateValue === oid4vci_common_1.IssueStatus.CREDENTIAL_REQUEST_RECEIVED)
+        return OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.CredentialRequestReceived;
+    if (stateValue === oid4vci_common_1.IssueStatus.CREDENTIAL_ISSUED)
+        return OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.CredentialIssued;
+    if (stateValue === oid4vci_common_1.IssueStatus.ERROR)
+        return OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.Error;
+    throw new core_1.CredoError(`Unknown state value: ${stateValue}`);
+}
+function sphereonIssueStatusFromOpenId4VcIssuanceState(state) {
+    if (state === OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.OfferCreated)
+        return oid4vci_common_1.IssueStatus.OFFER_CREATED;
+    if (state === OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.OfferUriRetrieved)
+        return oid4vci_common_1.IssueStatus.OFFER_URI_RETRIEVED;
+    if (state === OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.AccessTokenRequested)
+        return oid4vci_common_1.IssueStatus.ACCESS_TOKEN_REQUESTED;
+    if (state === OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.AccessTokenCreated)
+        return oid4vci_common_1.IssueStatus.ACCESS_TOKEN_CREATED;
+    if (state === OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.CredentialRequestReceived)
+        return oid4vci_common_1.IssueStatus.CREDENTIAL_REQUEST_RECEIVED;
+    if (state === OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.CredentialIssued)
+        return oid4vci_common_1.IssueStatus.CREDENTIAL_ISSUED;
+    if (state === OpenId4VcIssuanceSessionState_1.OpenId4VcIssuanceSessionState.Error)
+        return oid4vci_common_1.IssueStatus.ERROR;
+    throw new core_1.CredoError(`Unknown state value: ${state}`);
+}
+//# sourceMappingURL=OpenId4VcCredentialOfferSessionStateManager.js.map

package/build/openid4vc-issuer/repository/OpenId4VcCredentialOfferSessionStateManager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"OpenId4VcCredentialOfferSessionStateManager.js","sourceRoot":"","sources":["../../../src/openid4vc-issuer/repository/OpenId4VcCredentialOfferSessionStateManager.ts"],"names":[],"mappings":";;;AAIA,yCAAyD;AACzD,6DAAsD;AAEtD,oFAAgF;AAChF,oEAAgE;AAEhE,qFAAiF;AACjF,6FAAyF;AAEzF,MAAa,2CAA2C;IAItD,YAA2B,YAA0B,EAAU,QAAgB;QAApD,iBAAY,GAAZ,YAAY,CAAc;QAAU,aAAQ,GAAR,QAAQ,CAAQ;QAC7E,IAAI,CAAC,kCAAkC,GAAG,YAAY,CAAC,iBAAiB,CAAC,OAAO,CAAC,uEAAkC,CAAC,CAAA;QACpH,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC,iBAAiB,CAAC,OAAO,CAAC,mBAAY,CAAC,CAAA;IAC1E,CAAC;IAEM,KAAK,CAAC,GAAG,CAAC,iBAAyB,EAAE,UAAkC;;QAC5E,oGAAoG;QACpG,kGAAkG;QAClG,IAAI,iBAAiB,KAAK,UAAU,CAAC,iBAAiB,EAAE;YACtD,MAAM,IAAI,iBAAU,CAAC,oFAAoF,CAAC,CAAA;SAC3G;QAED,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE;YACjC,MAAM,IAAI,iBAAU,CAAC,gEAAgE,CAAC,CAAA;SACvF;QAED,2BAA2B;QAC3B,IAAI,MAAM,GAAG,MAAM,IAAI,CAAC,kCAAkC,CAAC,iBAAiB,CAAC,IAAI,CAAC,YAAY,EAAE;YAC9F,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,iBAAiB,EAAE,UAAU,CAAC,iBAAiB;SAChD,CAAC,CAAA;QAEF,MAAM,aAAa,GAAG,MAAA,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,KAAK,mCAAI,IAAI,CAAA;QAE3C,IAAI,kBAAkB,GAAG,UAAU,CAAC,eAAe,CAAC,oBAAoB,CAAA;QACxE,IAAI,CAAC,kBAAkB,EAAE;YACvB,MAAM,IAAI,iBAAU,CAAC,iEAAiE,CAAC,CAAA;SACxF;QAED,IAAI,kBAAkB,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE;YACxD,2FAA2F;YAC3F,6FAA6F;YAC7F,sFAAsF;YACtF,kBAAkB,GAAG,kBAAkB,CAAC,kBAAkB,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;SAC5G;QAED,iGAAiG;QACjG,IAAI,MAAM,EAAE;YACV,MAAM,CAAC,gBAAgB,GAAG,UAAU,CAAC,2BAA2B,CAAA;YAChE,MAAM,CAAC,sBAAsB,GAAG,UAAU,CAAC,eAAe,CAAC,gBAAgB,CAAA;YAC3E,MAAM,CAAC,OAAO,GAAG,UAAU,CAAC,OAAO,CAAA;YACnC,MAAM,CAAC,iBAAiB,GAAG,UAAU,CAAC,iBAAiB,CAAA;YACvD,MAAM,CAAC,YAAY,GAAG,UAAU,CAAC,KAAK,CAAA;YACtC,MAAM,CAAC,kBAAkB,GAAG,kBAAkB,CAAA;YAC9C,MAAM,CAAC,KAAK,GAAG,kCAAkC,CAAC,UAAU,CAAC,MAAM,CAAC,CAAA;YACpE,MAAM,IAAI,CAAC,kCAAkC,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC,CAAA;SAChF;aAAM;YACL,MAAM,GAAG,IAAI,+DAA8B,CAAC;gBAC1C,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,iBAAiB,EAAE,UAAU,CAAC,iBAAiB;gBAC/C,gBAAgB,EAAE,UAAU,CAAC,2BAA2B;gBACxD,sBAAsB,EAAE,UAAU,CAAC,eAAe,CAAC,gBAAgB;gBACnE,kBAAkB;gBAClB,OAAO,EAAE,UAAU,CAAC,OAAO;gBAC3B,YAAY,EAAE,UAAU,CAAC,KAAK;gBAC9B,KAAK,EAAE,kCAAkC,CAAC,UAAU,CAAC,MAAM,CAAC;aAC7D,CAAC,CAAA;YAEF,MAAM,IAAI,CAAC,kCAAkC,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC,CAAA;SAC9E;QAED,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,EAAE,aAAa,CAAC,CAAA;IACtE,CAAC;IAEM,KAAK,CAAC,GAAG,CAAC,iBAAyB;;QACxC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kCAAkC,CAAC,iBAAiB,CAAC,IAAI,CAAC,YAAY,EAAE;YAChG,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,iBAAiB;SAClB,CAAC,CAAA;QAEF,IAAI,CAAC,MAAM;YAAE,OAAO,SAAS,CAAA;QAE7B,oEAAoE;QACpE,kCAAkC;QAClC,IAAI,CAAC,MAAM,CAAC,iBAAiB,EAAE;YAC7B,MAAM,IAAI,iBAAU,CAAC,yCAAyC,CAAC,CAAA;SAChE;QAED,IAAI,CAAC,MAAM,CAAC,sBAAsB,EAAE;YAClC,MAAM,IAAI,iBAAU,CAAC,8CAA8C,CAAC,CAAA;SACrE;QAED,OAAO;YACL,eAAe,EAAE;gBACf,gBAAgB,EAAE,MAAM,CAAC,sBAAsB;gBAC/C,oBAAoB,EAAE,MAAM,CAAC,kBAAkB;aAChD;YACD,MAAM,EAAE,6CAA6C,CAAC,MAAM,CAAC,KAAK,CAAC;YACnE,iBAAiB,EAAE,MAAM,CAAC,iBAAiB;YAC3C,2BAA2B,EAAE,MAAM,CAAC,gBAAgB;YACpD,KAAK,EAAE,MAAM,CAAC,YAAY;YAC1B,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,SAAS,EAAE,MAAM,CAAC,SAAS,CAAC,OAAO,EAAE;YACrC,aAAa,EAAE,MAAA,MAAA,MAAM,CAAC,SAAS,0CAAE,OAAO,EAAE,mCAAI,MAAM,CAAC,SAAS,CAAC,OAAO,EAAE;SACzE,CAAA;IACH,CAAC;IAEM,KAAK,CAAC,GAAG,CAAC,iBAAyB;QACxC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kCAAkC,CAAC,iBAAiB,CAAC,IAAI,CAAC,YAAY,EAAE;YAChG,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,iBAAiB;SAClB,CAAC,CAAA;QAEF,OAAO,MAAM,KAAK,SAAS,CAAA;IAC7B,CAAC;IAEM,KAAK,CAAC,MAAM,CAAC,iBAAyB;QAC3C,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kCAAkC,CAAC,iBAAiB,CAAC,IAAI,CAAC,YAAY,EAAE;YAChG,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,iBAAiB;SAClB,CAAC,CAAA;QAEF,IAAI,CAAC,MAAM;YAAE,OAAO,KAAK,CAAA;QAEzB,MAAM,IAAI,CAAC,kCAAkC,CAAC,UAAU,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC,EAAE,CAAC,CAAA;QACtF,OAAO,IAAI,CAAA;IACb,CAAC;IAEM,KAAK,CAAC,YAAY;QACvB,wDAAwD;QACxD,mEAAmE;QACnE,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;IAEM,KAAK,CAAC,QAAQ;QACnB,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;IAEM,KAAK,CAAC,WAAW,CAAC,iBAAyB;QAChD,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAA;QAE/C,IAAI,CAAC,KAAK,EAAE;YACV,MAAM,IAAI,iBAAU,CAAC,0CAA0C,iBAAiB,EAAE,CAAC,CAAA;SACpF;QAED,OAAO,KAAK,CAAA;IACd,CAAC;IAEM,KAAK,CAAC,mBAAmB;QAC9B,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;IAEM,KAAK,CAAC,kBAAkB;QAC7B,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;IAES,qBAAqB,CAC7B,YAA0B,EAC1B,eAA+C,EAC/C,aAAmD;QAEnD,IAAI,CAAC,YAAY,CAAC,IAAI,CAA4C,YAAY,EAAE;YAC9E,IAAI,EAAE,6CAAqB,CAAC,2BAA2B;YACvD,OAAO,EAAE;gBACP,eAAe,EAAE,eAAe,CAAC,KAAK,EAAE;gBACxC,aAAa;aACd;SACF,CAAC,CAAA;IACJ,CAAC;CACF;AAnKD,kGAmKC;AAED,SAAS,kCAAkC,CAAC,UAAuB;IACjE,IAAI,UAAU,KAAK,4BAAW,CAAC,aAAa;QAAE,OAAO,6DAA6B,CAAC,YAAY,CAAA;IAC/F,IAAI,UAAU,KAAK,4BAAW,CAAC,mBAAmB;QAAE,OAAO,6DAA6B,CAAC,iBAAiB,CAAA;IAC1G,IAAI,UAAU,KAAK,4BAAW,CAAC,sBAAsB;QAAE,OAAO,6DAA6B,CAAC,oBAAoB,CAAA;IAChH,IAAI,UAAU,KAAK,4BAAW,CAAC,oBAAoB;QAAE,OAAO,6DAA6B,CAAC,kBAAkB,CAAA;IAC5G,IAAI,UAAU,KAAK,4BAAW,CAAC,2BAA2B;QACxD,OAAO,6DAA6B,CAAC,yBAAyB,CAAA;IAChE,IAAI,UAAU,KAAK,4BAAW,CAAC,iBAAiB;QAAE,OAAO,6DAA6B,CAAC,gBAAgB,CAAA;IACvG,IAAI,UAAU,KAAK,4BAAW,CAAC,KAAK;QAAE,OAAO,6DAA6B,CAAC,KAAK,CAAA;IAEhF,MAAM,IAAI,iBAAU,CAAC,wBAAwB,UAAU,EAAE,CAAC,CAAA;AAC5D,CAAC;AAED,SAAS,6CAA6C,CAAC,KAAoC;IACzF,IAAI,KAAK,KAAK,6DAA6B,CAAC,YAAY;QAAE,OAAO,4BAAW,CAAC,aAAa,CAAA;IAC1F,IAAI,KAAK,KAAK,6DAA6B,CAAC,iBAAiB;QAAE,OAAO,4BAAW,CAAC,mBAAmB,CAAA;IACrG,IAAI,KAAK,KAAK,6DAA6B,CAAC,oBAAoB;QAAE,OAAO,4BAAW,CAAC,sBAAsB,CAAA;IAC3G,IAAI,KAAK,KAAK,6DAA6B,CAAC,kBAAkB;QAAE,OAAO,4BAAW,CAAC,oBAAoB,CAAA;IACvG,IAAI,KAAK,KAAK,6DAA6B,CAAC,yBAAyB;QAAE,OAAO,4BAAW,CAAC,2BAA2B,CAAA;IACrH,IAAI,KAAK,KAAK,6DAA6B,CAAC,gBAAgB;QAAE,OAAO,4BAAW,CAAC,iBAAiB,CAAA;IAClG,IAAI,KAAK,KAAK,6DAA6B,CAAC,KAAK;QAAE,OAAO,4BAAW,CAAC,KAAK,CAAA;IAE3E,MAAM,IAAI,iBAAU,CAAC,wBAAwB,KAAK,EAAE,CAAC,CAAA;AACvD,CAAC"}

package/build/openid4vc-issuer/repository/OpenId4VcCredentialOfferUriStateManager.d.ts

@@ -0,0 +1,17 @@
+import type { AgentContext } from '@credo-ts/core';
+import type { IStateManager, URIState } from '@sphereon/oid4vci-common';
+export declare class OpenId4VcCredentialOfferUriStateManager implements IStateManager<URIState> {
+    private agentContext;
+    private issuerId;
+    private openId4VcIssuanceSessionRepository;
+    constructor(agentContext: AgentContext, issuerId: string);
+    set(uri: string, stateValue: URIState): Promise<void>;
+    get(uri: string): Promise<URIState | undefined>;
+    has(uri: string): Promise<boolean>;
+    delete(): Promise<boolean>;
+    clearExpired(): Promise<void>;
+    clearAll(): Promise<void>;
+    getAsserted(id: string): Promise<URIState>;
+    startCleanupRoutine(): Promise<void>;
+    stopCleanupRoutine(): Promise<void>;
+}

package/build/openid4vc-issuer/repository/OpenId4VcCredentialOfferUriStateManager.js

@@ -0,0 +1,68 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OpenId4VcCredentialOfferUriStateManager = void 0;
+const core_1 = require("@credo-ts/core");
+const OpenId4VcIssuanceSessionRepository_1 = require("./OpenId4VcIssuanceSessionRepository");
+class OpenId4VcCredentialOfferUriStateManager {
+    constructor(agentContext, issuerId) {
+        this.agentContext = agentContext;
+        this.issuerId = issuerId;
+        this.openId4VcIssuanceSessionRepository = agentContext.dependencyManager.resolve(OpenId4VcIssuanceSessionRepository_1.OpenId4VcIssuanceSessionRepository);
+    }
+    async set(uri, stateValue) {
+        // Just to make sure that the uri is the same as the id as that's what we use to query
+        if (uri !== stateValue.uri) {
+            throw new core_1.CredoError('Expected the uri of the uri state to be equal to the id');
+        }
+        // NOTE: we're currently not ding anything here, as we store the uri in the record
+        // when the credential offer session is stored.
+    }
+    async get(uri) {
+        const record = await this.openId4VcIssuanceSessionRepository.findSingleByQuery(this.agentContext, {
+            issuerId: this.issuerId,
+            credentialOfferUri: uri,
+        });
+        if (!record)
+            return undefined;
+        return {
+            preAuthorizedCode: record.preAuthorizedCode,
+            uri: record.credentialOfferUri,
+            createdAt: record.createdAt.getTime(),
+        };
+    }
+    async has(uri) {
+        const record = await this.openId4VcIssuanceSessionRepository.findSingleByQuery(this.agentContext, {
+            issuerId: this.issuerId,
+            credentialOfferUri: uri,
+        });
+        return record !== undefined;
+    }
+    async delete() {
+        // NOTE: we're not doing anything here as the uri is stored in the credential offer session
+        // Not sure how to best handle this, but for now we just don't delete it
+        return false;
+    }
+    async clearExpired() {
+        // FIXME: we should have a way to remove expired records
+        // or just not return the value in the get if the record is expired
+        throw new Error('Method not implemented.');
+    }
+    async clearAll() {
+        throw new Error('Method not implemented.');
+    }
+    async getAsserted(id) {
+        const state = await this.get(id);
+        if (!state) {
+            throw new core_1.CredoError(`No uri state found for id ${id}`);
+        }
+        return state;
+    }
+    async startCleanupRoutine() {
+        throw new Error('Method not implemented.');
+    }
+    async stopCleanupRoutine() {
+        throw new Error('Method not implemented.');
+    }
+}
+exports.OpenId4VcCredentialOfferUriStateManager = OpenId4VcCredentialOfferUriStateManager;
+//# sourceMappingURL=OpenId4VcCredentialOfferUriStateManager.js.map

package/build/openid4vc-issuer/repository/OpenId4VcCredentialOfferUriStateManager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"OpenId4VcCredentialOfferUriStateManager.js","sourceRoot":"","sources":["../../../src/openid4vc-issuer/repository/OpenId4VcCredentialOfferUriStateManager.ts"],"names":[],"mappings":";;;AAGA,yCAA2C;AAE3C,6FAAyF;AAEzF,MAAa,uCAAuC;IAGlD,YAA2B,YAA0B,EAAU,QAAgB;QAApD,iBAAY,GAAZ,YAAY,CAAc;QAAU,aAAQ,GAAR,QAAQ,CAAQ;QAC7E,IAAI,CAAC,kCAAkC,GAAG,YAAY,CAAC,iBAAiB,CAAC,OAAO,CAAC,uEAAkC,CAAC,CAAA;IACtH,CAAC;IAEM,KAAK,CAAC,GAAG,CAAC,GAAW,EAAE,UAAoB;QAChD,sFAAsF;QACtF,IAAI,GAAG,KAAK,UAAU,CAAC,GAAG,EAAE;YAC1B,MAAM,IAAI,iBAAU,CAAC,yDAAyD,CAAC,CAAA;SAChF;QAED,kFAAkF;QAClF,+CAA+C;IACjD,CAAC;IAEM,KAAK,CAAC,GAAG,CAAC,GAAW;QAC1B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kCAAkC,CAAC,iBAAiB,CAAC,IAAI,CAAC,YAAY,EAAE;YAChG,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,kBAAkB,EAAE,GAAG;SACxB,CAAC,CAAA;QAEF,IAAI,CAAC,MAAM;YAAE,OAAO,SAAS,CAAA;QAE7B,OAAO;YACL,iBAAiB,EAAE,MAAM,CAAC,iBAAiB;YAC3C,GAAG,EAAE,MAAM,CAAC,kBAAkB;YAC9B,SAAS,EAAE,MAAM,CAAC,SAAS,CAAC,OAAO,EAAE;SACtC,CAAA;IACH,CAAC;IAEM,KAAK,CAAC,GAAG,CAAC,GAAW;QAC1B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kCAAkC,CAAC,iBAAiB,CAAC,IAAI,CAAC,YAAY,EAAE;YAChG,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,kBAAkB,EAAE,GAAG;SACxB,CAAC,CAAA;QAEF,OAAO,MAAM,KAAK,SAAS,CAAA;IAC7B,CAAC;IAEM,KAAK,CAAC,MAAM;QACjB,2FAA2F;QAC3F,wEAAwE;QACxE,OAAO,KAAK,CAAA;IACd,CAAC;IAEM,KAAK,CAAC,YAAY;QACvB,wDAAwD;QACxD,mEAAmE;QACnE,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;IAEM,KAAK,CAAC,QAAQ;QACnB,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;IAEM,KAAK,CAAC,WAAW,CAAC,EAAU;QACjC,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAA;QAEhC,IAAI,CAAC,KAAK,EAAE;YACV,MAAM,IAAI,iBAAU,CAAC,6BAA6B,EAAE,EAAE,CAAC,CAAA;SACxD;QAED,OAAO,KAAK,CAAA;IACd,CAAC;IAEM,KAAK,CAAC,mBAAmB;QAC9B,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;IAEM,KAAK,CAAC,kBAAkB;QAC7B,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;IAC5C,CAAC;CACF;AA1ED,0FA0EC"}

package/build/openid4vc-issuer/repository/OpenId4VcIssuanceSessionRecord.d.ts

@@ -0,0 +1,84 @@
+import type { OpenId4VciCredentialOfferPayload } from '../../shared';
+import type { OpenId4VcIssuanceSessionState } from '../OpenId4VcIssuanceSessionState';
+import type { RecordTags, TagsBase } from '@credo-ts/core';
+import { BaseRecord } from '@credo-ts/core';
+export type OpenId4VcIssuanceSessionRecordTags = RecordTags<OpenId4VcIssuanceSessionRecord>;
+export type DefaultOpenId4VcIssuanceSessionRecordTags = {
+    issuerId: string;
+    cNonce?: string;
+    preAuthorizedCode?: string;
+    state: OpenId4VcIssuanceSessionState;
+    credentialOfferUri: string;
+};
+export interface OpenId4VcIssuanceSessionRecordProps {
+    id?: string;
+    createdAt?: Date;
+    tags?: TagsBase;
+    issuerId: string;
+    cNonce?: string;
+    cNonceExpiresAt?: Date;
+    preAuthorizedCode?: string;
+    userPin?: string;
+    credentialOfferUri: string;
+    credentialOfferPayload: OpenId4VciCredentialOfferPayload;
+    issuanceMetadata?: Record<string, unknown>;
+    state: OpenId4VcIssuanceSessionState;
+    errorMessage?: string;
+}
+export declare class OpenId4VcIssuanceSessionRecord extends BaseRecord<DefaultOpenId4VcIssuanceSessionRecordTags> {
+    static readonly type = "OpenId4VcIssuanceSessionRecord";
+    readonly type = "OpenId4VcIssuanceSessionRecord";
+    /**
+     * The id of the issuer that this session is for.
+     */
+    issuerId: string;
+    /**
+     * The state of the issuance session.
+     */
+    state: OpenId4VcIssuanceSessionState;
+    /**
+     * cNonce that should be used in the credential request by the holder.
+     */
+    cNonce?: string;
+    /**
+     * The time at which the cNonce expires.
+     */
+    cNonceExpiresAt?: Date;
+    /**
+     * Pre authorized code used for the issuance session. Only used when a pre-authorized credential
+     * offer is created.
+     */
+    preAuthorizedCode?: string;
+    /**
+     * Optional user pin that needs to be provided by the user in the access token request.
+     */
+    userPin?: string;
+    /**
+     * User-defined metadata that will be provided to the credential request to credential mapper
+     * to allow to retrieve the needed credential input data. Can be the credential data itself,
+     * or some other data that is needed to retrieve the credential data.
+     */
+    issuanceMetadata?: Record<string, unknown>;
+    /**
+     * The credential offer that was used to create the issuance session.
+     */
+    credentialOfferPayload: OpenId4VciCredentialOfferPayload;
+    /**
+     * URI of the credential offer. This is the url that cn can be used to retrieve
+     * the credential offer
+     */
+    credentialOfferUri: string;
+    /**
+     * Optional error message of the error that occurred during the issuance session. Will be set when state is {@link OpenId4VcIssuanceSessionState.Error}
+     */
+    errorMessage?: string;
+    constructor(props: OpenId4VcIssuanceSessionRecordProps);
+    assertState(expectedStates: OpenId4VcIssuanceSessionState | OpenId4VcIssuanceSessionState[]): void;
+    getTags(): {
+        issuerId: string;
+        cNonce: string | undefined;
+        credentialOfferUri: string;
+        preAuthorizedCode: string | undefined;
+        state: OpenId4VcIssuanceSessionState;
+    };
+}

package/build/openid4vc-issuer/repository/OpenId4VcIssuanceSessionRecord.js

@@ -0,0 +1,58 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OpenId4VcIssuanceSessionRecord = void 0;
+const core_1 = require("@credo-ts/core");
+class OpenId4VcIssuanceSessionRecord extends core_1.BaseRecord {
+    constructor(props) {
+        var _a, _b, _c;
+        super();
+        this.type = OpenId4VcIssuanceSessionRecord.type;
+        if (props) {
+            this.id = (_a = props.id) !== null && _a !== void 0 ? _a : core_1.utils.uuid();
+            this.createdAt = (_b = props.createdAt) !== null && _b !== void 0 ? _b : new Date();
+            this._tags = (_c = props.tags) !== null && _c !== void 0 ? _c : {};
+            this.issuerId = props.issuerId;
+            this.cNonce = props.cNonce;
+            this.cNonceExpiresAt = props.cNonceExpiresAt;
+            this.userPin = props.userPin;
+            this.preAuthorizedCode = props.preAuthorizedCode;
+            this.credentialOfferUri = props.credentialOfferUri;
+            this.credentialOfferPayload = props.credentialOfferPayload;
+            this.issuanceMetadata = props.issuanceMetadata;
+            this.state = props.state;
+            this.errorMessage = props.errorMessage;
+        }
+    }
+    assertState(expectedStates) {
+        if (!Array.isArray(expectedStates)) {
+            expectedStates = [expectedStates];
+        }
+        if (!expectedStates.includes(this.state)) {
+            throw new core_1.CredoError(`OpenId4VcIssuanceSessionRecord is in invalid state ${this.state}. Valid states are: ${expectedStates.join(', ')}.`);
+        }
+    }
+    getTags() {
+        return Object.assign(Object.assign({}, this._tags), { issuerId: this.issuerId, cNonce: this.cNonce, credentialOfferUri: this.credentialOfferUri, preAuthorizedCode: this.preAuthorizedCode, state: this.state });
+    }
+}
+OpenId4VcIssuanceSessionRecord.type = 'OpenId4VcIssuanceSessionRecord';
+__decorate([
+    (0, core_1.DateTransformer)(),
+    __metadata("design:type", Date
+    /**
+     * Pre authorized code used for the issuance session. Only used when a pre-authorized credential
+     * offer is created.
+     */
+    )
+], OpenId4VcIssuanceSessionRecord.prototype, "cNonceExpiresAt", void 0);
+exports.OpenId4VcIssuanceSessionRecord = OpenId4VcIssuanceSessionRecord;
+//# sourceMappingURL=OpenId4VcIssuanceSessionRecord.js.map

package/build/openid4vc-issuer/repository/OpenId4VcIssuanceSessionRecord.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"OpenId4VcIssuanceSessionRecord.js","sourceRoot":"","sources":["../../../src/openid4vc-issuer/repository/OpenId4VcIssuanceSessionRecord.ts"],"names":[],"mappings":";;;;;;;;;;;;AAIA,yCAA+E;AAiC/E,MAAa,8BAA+B,SAAQ,iBAAqD;IA2DvG,YAAmB,KAA0C;;QAC3D,KAAK,EAAE,CAAA;QA1DO,SAAI,GAAG,8BAA8B,CAAC,IAAI,CAAA;QA4DxD,IAAI,KAAK,EAAE;YACT,IAAI,CAAC,EAAE,GAAG,MAAA,KAAK,CAAC,EAAE,mCAAI,YAAK,CAAC,IAAI,EAAE,CAAA;YAClC,IAAI,CAAC,SAAS,GAAG,MAAA,KAAK,CAAC,SAAS,mCAAI,IAAI,IAAI,EAAE,CAAA;YAC9C,IAAI,CAAC,KAAK,GAAG,MAAA,KAAK,CAAC,IAAI,mCAAI,EAAE,CAAA;YAE7B,IAAI,CAAC,QAAQ,GAAG,KAAK,CAAC,QAAQ,CAAA;YAC9B,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC,MAAM,CAAA;YAC1B,IAAI,CAAC,eAAe,GAAG,KAAK,CAAC,eAAe,CAAA;YAC5C,IAAI,CAAC,OAAO,GAAG,KAAK,CAAC,OAAO,CAAA;YAC5B,IAAI,CAAC,iBAAiB,GAAG,KAAK,CAAC,iBAAiB,CAAA;YAChD,IAAI,CAAC,kBAAkB,GAAG,KAAK,CAAC,kBAAkB,CAAA;YAClD,IAAI,CAAC,sBAAsB,GAAG,KAAK,CAAC,sBAAsB,CAAA;YAC1D,IAAI,CAAC,gBAAgB,GAAG,KAAK,CAAC,gBAAgB,CAAA;YAC9C,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC,KAAK,CAAA;YACxB,IAAI,CAAC,YAAY,GAAG,KAAK,CAAC,YAAY,CAAA;SACvC;IACH,CAAC;IAEM,WAAW,CAAC,cAA+E;QAChG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC,EAAE;YAClC,cAAc,GAAG,CAAC,cAAc,CAAC,CAAA;SAClC;QAED,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE;YACxC,MAAM,IAAI,iBAAU,CAClB,sDAAsD,IAAI,CAAC,KAAK,uBAAuB,cAAc,CAAC,IAAI,CACxG,IAAI,CACL,GAAG,CACL,CAAA;SACF;IACH,CAAC;IAEM,OAAO;QACZ,uCACK,IAAI,CAAC,KAAK,KACb,QAAQ,EAAE,IAAI,CAAC,QAAQ,EACvB,MAAM,EAAE,IAAI,CAAC,MAAM,EACnB,kBAAkB,EAAE,IAAI,CAAC,kBAAkB,EAC3C,iBAAiB,EAAE,IAAI,CAAC,iBAAiB,EACzC,KAAK,EAAE,IAAI,CAAC,KAAK,IAClB;IACH,CAAC;;AAtGsB,mCAAI,GAAG,gCAAgC,CAAA;AAqB9D;IAAC,IAAA,sBAAe,GAAE;8BACO,IAAI;IAE7B;;;OAGG;;uEAL0B;AAvB/B,wEAwGC"}

package/build/openid4vc-issuer/repository/OpenId4VcIssuanceSessionRepository.d.ts

@@ -0,0 +1,5 @@
+import { Repository, StorageService, EventEmitter } from '@credo-ts/core';
+import { OpenId4VcIssuanceSessionRecord } from './OpenId4VcIssuanceSessionRecord';
+export declare class OpenId4VcIssuanceSessionRepository extends Repository<OpenId4VcIssuanceSessionRecord> {
+    constructor(storageService: StorageService<OpenId4VcIssuanceSessionRecord>, eventEmitter: EventEmitter);
+}

package/build/openid4vc-issuer/repository/OpenId4VcIssuanceSessionRepository.js

@@ -0,0 +1,29 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OpenId4VcIssuanceSessionRepository = void 0;
+const core_1 = require("@credo-ts/core");
+const OpenId4VcIssuanceSessionRecord_1 = require("./OpenId4VcIssuanceSessionRecord");
+let OpenId4VcIssuanceSessionRepository = class OpenId4VcIssuanceSessionRepository extends core_1.Repository {
+    constructor(storageService, eventEmitter) {
+        super(OpenId4VcIssuanceSessionRecord_1.OpenId4VcIssuanceSessionRecord, storageService, eventEmitter);
+    }
+};
+OpenId4VcIssuanceSessionRepository = __decorate([
+    (0, core_1.injectable)(),
+    __param(0, (0, core_1.inject)(core_1.InjectionSymbols.StorageService)),
+    __metadata("design:paramtypes", [Object, core_1.EventEmitter])
+], OpenId4VcIssuanceSessionRepository);
+exports.OpenId4VcIssuanceSessionRepository = OpenId4VcIssuanceSessionRepository;
+//# sourceMappingURL=OpenId4VcIssuanceSessionRepository.js.map

package/build/openid4vc-issuer/repository/OpenId4VcIssuanceSessionRepository.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"OpenId4VcIssuanceSessionRepository.js","sourceRoot":"","sources":["../../../src/openid4vc-issuer/repository/OpenId4VcIssuanceSessionRepository.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,yCAA+G;AAE/G,qFAAiF;AAG1E,IAAM,kCAAkC,GAAxC,MAAM,kCAAmC,SAAQ,iBAA0C;IAChG,YAC2C,cAA8D,EACvG,YAA0B;QAE1B,KAAK,CAAC,+DAA8B,EAAE,cAAc,EAAE,YAAY,CAAC,CAAA;IACrE,CAAC;CACF,CAAA;AAPY,kCAAkC;IAD9C,IAAA,iBAAU,GAAE;IAGR,WAAA,IAAA,aAAM,EAAC,uBAAgB,CAAC,cAAc,CAAC,CAAA;6CAC1B,mBAAY;GAHjB,kCAAkC,CAO9C;AAPY,gFAAkC"}

package/build/openid4vc-issuer/repository/OpenId4VcIssuerRecord.d.ts

@@ -0,0 +1,37 @@
+import type { OpenId4VciCredentialSupportedWithId, OpenId4VciIssuerMetadataDisplay } from '../../shared';
+import type { RecordTags, TagsBase } from '@credo-ts/core';
+import { BaseRecord } from '@credo-ts/core';
+export type OpenId4VcIssuerRecordTags = RecordTags<OpenId4VcIssuerRecord>;
+export type DefaultOpenId4VcIssuerRecordTags = {
+    issuerId: string;
+};
+export interface OpenId4VcIssuerRecordProps {
+    id?: string;
+    createdAt?: Date;
+    tags?: TagsBase;
+    issuerId: string;
+    /**
+     * The fingerprint (multibase encoded) of the public key used to sign access tokens for
+     * this issuer.
+     */
+    accessTokenPublicKeyFingerprint: string;
+    credentialsSupported: OpenId4VciCredentialSupportedWithId[];
+    display?: OpenId4VciIssuerMetadataDisplay[];
+}
+/**
+ * For OID4VC you need to expos metadata files. Each issuer needs to host this metadata. This is not the case for DIDComm where we can just have one /didcomm endpoint.
+ * So we create a record per openid issuer/verifier that you want, and each tenant can create multiple issuers/verifiers which have different endpoints
+ * and metadata files
+ * */
+export declare class OpenId4VcIssuerRecord extends BaseRecord<DefaultOpenId4VcIssuerRecordTags> {
+    static readonly type = "OpenId4VcIssuerRecord";
+    readonly type = "OpenId4VcIssuerRecord";
+    issuerId: string;
+    accessTokenPublicKeyFingerprint: string;
+    credentialsSupported: OpenId4VciCredentialSupportedWithId[];
+    display?: OpenId4VciIssuerMetadataDisplay[];
+    constructor(props: OpenId4VcIssuerRecordProps);
+    getTags(): {
+        issuerId: string;
+    };
+}