@credo-ts/openid4vc 0.6.0-pr-2102-20241124110714 → 0.6.0-pr-2094-20241124155338
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/build/openid4vc-holder/OpenId4VcHolderApi.d.ts +7 -2
- package/build/openid4vc-holder/OpenId4VcHolderApi.js +5 -2
- package/build/openid4vc-holder/OpenId4VcHolderApi.js.map +1 -1
- package/build/openid4vc-holder/OpenId4vcSiopHolderService.d.ts +168 -2
- package/build/openid4vc-holder/OpenId4vcSiopHolderService.js +63 -5
- package/build/openid4vc-holder/OpenId4vcSiopHolderService.js.map +1 -1
- package/build/openid4vc-holder/OpenId4vcSiopHolderServiceOptions.d.ts +25 -2
- package/build/openid4vc-issuer/OpenId4VcIssuerModule.js +2 -0
- package/build/openid4vc-issuer/OpenId4VcIssuerModule.js.map +1 -1
- package/build/openid4vc-issuer/router/federationEndpoint.d.ts +2 -0
- package/build/openid4vc-issuer/router/federationEndpoint.js +89 -0
- package/build/openid4vc-issuer/router/federationEndpoint.js.map +1 -0
- package/build/openid4vc-verifier/OpenId4VcSiopVerifierService.d.ts +12 -3
- package/build/openid4vc-verifier/OpenId4VcSiopVerifierService.js +19 -4
- package/build/openid4vc-verifier/OpenId4VcSiopVerifierService.js.map +1 -1
- package/build/openid4vc-verifier/OpenId4VcVerifierModule.js +3 -0
- package/build/openid4vc-verifier/OpenId4VcVerifierModule.js.map +1 -1
- package/build/openid4vc-verifier/router/federationEndpoint.d.ts +2 -0
- package/build/openid4vc-verifier/router/federationEndpoint.js +118 -0
- package/build/openid4vc-verifier/router/federationEndpoint.js.map +1 -0
- package/build/openid4vc-verifier/router/index.d.ts +1 -0
- package/build/openid4vc-verifier/router/index.js +3 -1
- package/build/openid4vc-verifier/router/index.js.map +1 -1
- package/build/shared/models/OpenId4VcJwtIssuer.d.ts +4 -1
- package/build/shared/utils.d.ts +11 -3
- package/build/shared/utils.js +100 -8
- package/build/shared/utils.js.map +1 -1
- package/package.json +4 -3
|
@@ -1,5 +1,5 @@
|
|
|
1
1
|
import type { OpenId4VciResolvedCredentialOffer, OpenId4VciAuthCodeFlowOptions, OpenId4VciTokenRequestOptions as OpenId4VciRequestTokenOptions, OpenId4VciCredentialRequestOptions as OpenId4VciRequestCredentialOptions, OpenId4VciSendNotificationOptions, OpenId4VciRequestTokenResponse, OpenId4VciRetrieveAuthorizationCodeUsingPresentationOptions } from './OpenId4VciHolderServiceOptions';
|
|
2
|
-
import type { OpenId4VcSiopAcceptAuthorizationRequestOptions } from './OpenId4vcSiopHolderServiceOptions';
|
|
2
|
+
import type { OpenId4VcSiopAcceptAuthorizationRequestOptions, OpenId4VcSiopResolveAuthorizationRequestOptions, OpenId4VcSiopResolveTrustChainsOptions } from './OpenId4vcSiopHolderServiceOptions';
|
|
3
3
|
import { AgentContext, DifPresentationExchangeService, DifPexCredentialsForRequest } from '@credo-ts/core';
|
|
4
4
|
import { OpenId4VciMetadata } from '../shared';
|
|
5
5
|
import { OpenId4VciHolderService } from './OpenId4VciHolderService';
|
|
@@ -27,7 +27,7 @@ export declare class OpenId4VcHolderApi {
|
|
|
27
27
|
* @param requestJwtOrUri JWT or an SIOPv2 request URI
|
|
28
28
|
* @returns the resolved and verified authentication request.
|
|
29
29
|
*/
|
|
30
|
-
resolveSiopAuthorizationRequest(requestJwtOrUri: string): Promise<import("./OpenId4vcSiopHolderServiceOptions").OpenId4VcSiopResolvedAuthorizationRequest>;
|
|
30
|
+
resolveSiopAuthorizationRequest(requestJwtOrUri: string, options?: OpenId4VcSiopResolveAuthorizationRequestOptions): Promise<import("./OpenId4vcSiopHolderServiceOptions").OpenId4VcSiopResolvedAuthorizationRequest>;
|
|
31
31
|
/**
|
|
32
32
|
* Accepts the authentication request after it has been resolved and verified with {@link resolveSiopAuthorizationRequest}.
|
|
33
33
|
*
|
|
@@ -121,4 +121,9 @@ export declare class OpenId4VcHolderApi {
|
|
|
121
121
|
* Send a notification event to the credential issuer
|
|
122
122
|
*/
|
|
123
123
|
sendNotification(options: OpenId4VciSendNotificationOptions): Promise<void>;
|
|
124
|
+
resolveOpenIdFederationChains(options: OpenId4VcSiopResolveTrustChainsOptions): Promise<{
|
|
125
|
+
chain: Awaited<ReturnType<typeof import("@openid-federation/core").fetchEntityStatementChain>>;
|
|
126
|
+
leafEntityConfiguration: Awaited<ReturnType<typeof import("@openid-federation/core").fetchEntityConfiguration>>;
|
|
127
|
+
trustAnchorEntityConfiguration: Awaited<ReturnType<typeof import("@openid-federation/core").fetchEntityConfiguration>>;
|
|
128
|
+
}[]>;
|
|
124
129
|
}
|
|
@@ -48,8 +48,8 @@ let OpenId4VcHolderApi = class OpenId4VcHolderApi {
|
|
|
48
48
|
* @param requestJwtOrUri JWT or an SIOPv2 request URI
|
|
49
49
|
* @returns the resolved and verified authentication request.
|
|
50
50
|
*/
|
|
51
|
-
async resolveSiopAuthorizationRequest(requestJwtOrUri) {
|
|
52
|
-
return this.openId4VcSiopHolderService.resolveAuthorizationRequest(this.agentContext, requestJwtOrUri);
|
|
51
|
+
async resolveSiopAuthorizationRequest(requestJwtOrUri, options = {}) {
|
|
52
|
+
return this.openId4VcSiopHolderService.resolveAuthorizationRequest(this.agentContext, requestJwtOrUri, options);
|
|
53
53
|
}
|
|
54
54
|
/**
|
|
55
55
|
* Accepts the authentication request after it has been resolved and verified with {@link resolveSiopAuthorizationRequest}.
|
|
@@ -148,6 +148,9 @@ let OpenId4VcHolderApi = class OpenId4VcHolderApi {
|
|
|
148
148
|
async sendNotification(options) {
|
|
149
149
|
return this.openId4VciHolderService.sendNotification(this.agentContext, options);
|
|
150
150
|
}
|
|
151
|
+
async resolveOpenIdFederationChains(options) {
|
|
152
|
+
return this.openId4VcSiopHolderService.resolveOpenIdFederationChains(this.agentContext, options);
|
|
153
|
+
}
|
|
151
154
|
};
|
|
152
155
|
exports.OpenId4VcHolderApi = OpenId4VcHolderApi;
|
|
153
156
|
exports.OpenId4VcHolderApi = OpenId4VcHolderApi = __decorate([
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"OpenId4VcHolderApi.js","sourceRoot":"","sources":["../../src/openid4vc-holder/OpenId4VcHolderApi.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;
|
|
1
|
+
{"version":3,"file":"OpenId4VcHolderApi.js","sourceRoot":"","sources":["../../src/openid4vc-holder/OpenId4VcHolderApi.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;AAeA,yCAAsH;AAItH,uEAAmE;AACnE,6EAAyE;AAEzE;;GAEG;AAEI,IAAM,kBAAkB,GAAxB,MAAM,kBAAkB;IAC7B,YACU,YAA0B,EAC1B,uBAAgD,EAChD,0BAAsD,EACtD,8BAA8D;QAH9D,iBAAY,GAAZ,YAAY,CAAc;QAC1B,4BAAuB,GAAvB,uBAAuB,CAAyB;QAChD,+BAA0B,GAA1B,0BAA0B,CAA4B;QACtD,mCAA8B,GAA9B,8BAA8B,CAAgC;IACrE,CAAC;IAEJ;;;;;;;;;;;;;OAaG;IACI,KAAK,CAAC,+BAA+B,CAC1C,eAAuB,EACvB,UAA2D,EAAE;QAE7D,OAAO,IAAI,CAAC,0BAA0B,CAAC,2BAA2B,CAAC,IAAI,CAAC,YAAY,EAAE,eAAe,EAAE,OAAO,CAAC,CAAA;IACjH,CAAC;IAED;;;;;;;OAOG;IACI,KAAK,CAAC,8BAA8B,CAAC,OAAuD;QACjG,OAAO,MAAM,IAAI,CAAC,0BAA0B,CAAC,0BAA0B,CAAC,IAAI,CAAC,YAAY,EAAE,OAAO,CAAC,CAAA;IACrG,CAAC;IAED;;;OAGG;IACI,2BAA2B,CAAC,qBAAkD;QACnF,OAAO,IAAI,CAAC,8BAA8B,CAAC,2BAA2B,CAAC,qBAAqB,CAAC,CAAA;IAC/F,CAAC;IAEM,KAAK,CAAC,qBAAqB,CAAC,gBAAwB;QACzD,OAAO,MAAM,IAAI,CAAC,uBAAuB,CAAC,qBAAqB,CAAC,IAAI,CAAC,YAAY,EAAE,gBAAgB,CAAC,CAAA;IACtG,CAAC;IAED;;;;;;OAMG;IACI,KAAK,CAAC,sBAAsB,CAAC,eAAuB;QACzD,OAAO,MAAM,IAAI,CAAC,uBAAuB,CAAC,sBAAsB,CAAC,IAAI,CAAC,YAAY,EAAE,eAAe,CAAC,CAAA;IACtG,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;OAqBG;IACI,KAAK,CAAC,mCAAmC,CAC9C,uBAA0D,EAC1D,mBAAkD;QAElD,OAAO,MAAM,IAAI,CAAC,uBAAuB,CAAC,2BAA2B,CACnE,IAAI,CAAC,YAAY,EACjB,uBAAuB,EACvB,mBAAmB,CACpB,CAAA;IACH,CAAC;IAED;;;;OAIG;IACI,KAAK,CAAC,0CAA0C,CACrD,OAAoE;QAEpE,OAAO,MAAM,IAAI,CAAC,uBAAuB,CAAC,0CAA0C,CAAC,IAAI,CAAC,YAAY,EAAE,OAAO,CAAC,CAAA;IAClH,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,YAAY,CAAC,OAAsC;QAC9D,MAAM,EAAE,mBAAmB,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,kBAAkB,CACzF,IAAI,CAAC,YAAY,EACjB,OAAO,CACR,CAAA;QAED,OAAO;YACL,WAAW,EAAE,mBAAmB,CAAC,YAAY;YAC7C,MAAM,EAAE,mBAAmB,CAAC,OAAO;YACnC,IAAI;YACJ,mBAAmB;SACpB,CAAA;IACH,CAAC;IAED;;;OAGG;IACI,KAAK,CAAC,kBAAkB,CAAC,OAA2C;QACzE,MAAM,EAAE,uBAAuB,EAAE,MAAM,EAAE,WAAW,EAAE,IAAI,EAAE,QAAQ,KAAkC,OAAO,EAApC,wBAAwB,UAAK,OAAO,EAAvG,wEAA6F,CAAU,CAAA;QAE7G,OAAO,IAAI,CAAC,uBAAuB,CAAC,qBAAqB,CAAC,IAAI,CAAC,YAAY,EAAE;YAC3E,uBAAuB;YACvB,4BAA4B,EAAE,wBAAwB;YACtD,WAAW;YACX,MAAM;YACN,IAAI;YACJ,QAAQ;SACT,CAAC,CAAA;IACJ,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,gBAAgB,CAAC,OAA0C;QACtE,OAAO,IAAI,CAAC,uBAAuB,CAAC,gBAAgB,CAAC,IAAI,CAAC,YAAY,EAAE,OAAO,CAAC,CAAA;IAClF,CAAC;IAEM,KAAK,CAAC,6BAA6B,CAAC,OAA+C;QACxF,OAAO,IAAI,CAAC,0BAA0B,CAAC,6BAA6B,CAAC,IAAI,CAAC,YAAY,EAAE,OAAO,CAAC,CAAA;IAClG,CAAC;CACF,CAAA;AAxJY,gDAAkB;6BAAlB,kBAAkB;IAD9B,IAAA,iBAAU,GAAE;qCAGa,mBAAY;QACD,iDAAuB;QACpB,uDAA0B;QACtB,qCAA8B;GAL7D,kBAAkB,CAwJ9B"}
|
|
@@ -1,11 +1,12 @@
|
|
|
1
|
-
import type { OpenId4VcSiopAcceptAuthorizationRequestOptions, OpenId4VcSiopResolvedAuthorizationRequest } from './OpenId4vcSiopHolderServiceOptions';
|
|
1
|
+
import type { OpenId4VcSiopAcceptAuthorizationRequestOptions, OpenId4VcSiopFetchEntityConfigurationOptions, OpenId4VcSiopResolveAuthorizationRequestOptions, OpenId4VcSiopResolvedAuthorizationRequest, OpenId4VcSiopResolveTrustChainsOptions } from './OpenId4vcSiopHolderServiceOptions';
|
|
2
2
|
import type { AgentContext } from '@credo-ts/core';
|
|
3
3
|
import type { AuthorizationResponsePayload } from '@sphereon/did-auth-siop';
|
|
4
4
|
import { DifPresentationExchangeService } from '@credo-ts/core';
|
|
5
|
+
import { fetchEntityConfiguration as federationFetchEntityConfiguration } from '@openid-federation/core';
|
|
5
6
|
export declare class OpenId4VcSiopHolderService {
|
|
6
7
|
private presentationExchangeService;
|
|
7
8
|
constructor(presentationExchangeService: DifPresentationExchangeService);
|
|
8
|
-
resolveAuthorizationRequest(agentContext: AgentContext, requestJwtOrUri: string): Promise<OpenId4VcSiopResolvedAuthorizationRequest>;
|
|
9
|
+
resolveAuthorizationRequest(agentContext: AgentContext, requestJwtOrUri: string, options?: OpenId4VcSiopResolveAuthorizationRequestOptions): Promise<OpenId4VcSiopResolvedAuthorizationRequest>;
|
|
9
10
|
acceptAuthorizationRequest(agentContext: AgentContext, options: OpenId4VcSiopAcceptAuthorizationRequestOptions): Promise<{
|
|
10
11
|
readonly ok: false;
|
|
11
12
|
readonly serverResponse: {
|
|
@@ -29,4 +30,169 @@ export declare class OpenId4VcSiopHolderService {
|
|
|
29
30
|
private getOpenIdTokenIssuerFromVerifiablePresentation;
|
|
30
31
|
private assertValidTokenIssuer;
|
|
31
32
|
private encryptJarmResponse;
|
|
33
|
+
resolveOpenIdFederationChains(agentContext: AgentContext, options: OpenId4VcSiopResolveTrustChainsOptions): Promise<{
|
|
34
|
+
chain: Awaited<ReturnType<typeof import("@openid-federation/core").fetchEntityStatementChain>>;
|
|
35
|
+
leafEntityConfiguration: Awaited<ReturnType<typeof federationFetchEntityConfiguration>>;
|
|
36
|
+
trustAnchorEntityConfiguration: Awaited<ReturnType<typeof federationFetchEntityConfiguration>>;
|
|
37
|
+
}[]>;
|
|
38
|
+
fetchOpenIdFederationEntityConfiguration(agentContext: AgentContext, options: OpenId4VcSiopFetchEntityConfigurationOptions): Promise<{
|
|
39
|
+
sub: string;
|
|
40
|
+
jwks: {
|
|
41
|
+
keys: import("zod").objectOutputType<{
|
|
42
|
+
kty: import("zod").ZodString;
|
|
43
|
+
kid: import("zod").ZodString;
|
|
44
|
+
use: import("zod").ZodOptional<import("zod").ZodString>;
|
|
45
|
+
key_ops: import("zod").ZodOptional<import("zod").ZodArray<import("zod").ZodString, "many">>;
|
|
46
|
+
alg: import("zod").ZodOptional<import("zod").ZodString>;
|
|
47
|
+
x5u: import("zod").ZodOptional<import("zod").ZodString>;
|
|
48
|
+
x5c: import("zod").ZodOptional<import("zod").ZodString>;
|
|
49
|
+
x5t: import("zod").ZodOptional<import("zod").ZodString>;
|
|
50
|
+
"x5t#S256": import("zod").ZodOptional<import("zod").ZodString>;
|
|
51
|
+
}, import("zod").ZodTypeAny, "passthrough">[];
|
|
52
|
+
};
|
|
53
|
+
iss: string;
|
|
54
|
+
iat: Date;
|
|
55
|
+
exp: Date;
|
|
56
|
+
authority_hints?: string[] | undefined;
|
|
57
|
+
metadata?: {
|
|
58
|
+
federation_entity?: {
|
|
59
|
+
jwks?: {
|
|
60
|
+
keys: import("zod").objectOutputType<{
|
|
61
|
+
kty: import("zod").ZodString;
|
|
62
|
+
kid: import("zod").ZodString;
|
|
63
|
+
use: import("zod").ZodOptional<import("zod").ZodString>;
|
|
64
|
+
key_ops: import("zod").ZodOptional<import("zod").ZodArray<import("zod").ZodString, "many">>;
|
|
65
|
+
alg: import("zod").ZodOptional<import("zod").ZodString>;
|
|
66
|
+
x5u: import("zod").ZodOptional<import("zod").ZodString>;
|
|
67
|
+
x5c: import("zod").ZodOptional<import("zod").ZodString>;
|
|
68
|
+
x5t: import("zod").ZodOptional<import("zod").ZodString>;
|
|
69
|
+
"x5t#S256": import("zod").ZodOptional<import("zod").ZodString>;
|
|
70
|
+
}, import("zod").ZodTypeAny, "passthrough">[];
|
|
71
|
+
} | undefined;
|
|
72
|
+
signed_jwks_uri?: string | undefined;
|
|
73
|
+
jwks_uri?: string | undefined;
|
|
74
|
+
organization_name?: string | undefined;
|
|
75
|
+
contacts?: string[] | undefined;
|
|
76
|
+
logo_uri?: string | undefined;
|
|
77
|
+
policy_uri?: string | undefined;
|
|
78
|
+
homepage_uri?: string | undefined;
|
|
79
|
+
federation_fetch_endpoint?: string | undefined;
|
|
80
|
+
federation_list_endpoint?: string | undefined;
|
|
81
|
+
federation_resolve_endpoint?: string | undefined;
|
|
82
|
+
federation_trust_mark_status_endpoint?: string | undefined;
|
|
83
|
+
federation_trust_mark_list_endpoint?: string | undefined;
|
|
84
|
+
federation_trust_mark_endpoint?: string | undefined;
|
|
85
|
+
federation_historical_keys_endpoint?: string | undefined;
|
|
86
|
+
} | undefined;
|
|
87
|
+
oauth_client?: {
|
|
88
|
+
[x: string]: any;
|
|
89
|
+
} | undefined;
|
|
90
|
+
oauth_resource?: {
|
|
91
|
+
[x: string]: any;
|
|
92
|
+
} | undefined;
|
|
93
|
+
openid_provider?: {
|
|
94
|
+
client_registration_types_supported: ("automatic" | "explicit")[];
|
|
95
|
+
jwks?: {
|
|
96
|
+
keys: import("zod").objectOutputType<{
|
|
97
|
+
kty: import("zod").ZodString;
|
|
98
|
+
kid: import("zod").ZodString;
|
|
99
|
+
use: import("zod").ZodOptional<import("zod").ZodString>;
|
|
100
|
+
key_ops: import("zod").ZodOptional<import("zod").ZodArray<import("zod").ZodString, "many">>;
|
|
101
|
+
alg: import("zod").ZodOptional<import("zod").ZodString>;
|
|
102
|
+
x5u: import("zod").ZodOptional<import("zod").ZodString>;
|
|
103
|
+
x5c: import("zod").ZodOptional<import("zod").ZodString>;
|
|
104
|
+
x5t: import("zod").ZodOptional<import("zod").ZodString>;
|
|
105
|
+
"x5t#S256": import("zod").ZodOptional<import("zod").ZodString>;
|
|
106
|
+
}, import("zod").ZodTypeAny, "passthrough">[];
|
|
107
|
+
} | undefined;
|
|
108
|
+
signed_jwks_uri?: string | undefined;
|
|
109
|
+
jwks_uri?: string | undefined;
|
|
110
|
+
organization_name?: string | undefined;
|
|
111
|
+
contacts?: string[] | undefined;
|
|
112
|
+
logo_uri?: string | undefined;
|
|
113
|
+
policy_uri?: string | undefined;
|
|
114
|
+
homepage_uri?: string | undefined;
|
|
115
|
+
federation_registration_endpoint?: string | undefined;
|
|
116
|
+
request_authentication_methods_supported?: {
|
|
117
|
+
authorization_endpoint?: string[] | undefined;
|
|
118
|
+
pushed_authorization_request_endpoint?: string[] | undefined;
|
|
119
|
+
} | undefined;
|
|
120
|
+
request_authentication_signing_alg_values_supported?: string[] | undefined;
|
|
121
|
+
} | undefined;
|
|
122
|
+
openid_relying_party?: {
|
|
123
|
+
client_registration_types: ("automatic" | "explicit")[];
|
|
124
|
+
jwks?: {
|
|
125
|
+
keys: import("zod").objectOutputType<{
|
|
126
|
+
kty: import("zod").ZodString;
|
|
127
|
+
kid: import("zod").ZodString;
|
|
128
|
+
use: import("zod").ZodOptional<import("zod").ZodString>;
|
|
129
|
+
key_ops: import("zod").ZodOptional<import("zod").ZodArray<import("zod").ZodString, "many">>;
|
|
130
|
+
alg: import("zod").ZodOptional<import("zod").ZodString>;
|
|
131
|
+
x5u: import("zod").ZodOptional<import("zod").ZodString>;
|
|
132
|
+
x5c: import("zod").ZodOptional<import("zod").ZodString>;
|
|
133
|
+
x5t: import("zod").ZodOptional<import("zod").ZodString>;
|
|
134
|
+
"x5t#S256": import("zod").ZodOptional<import("zod").ZodString>;
|
|
135
|
+
}, import("zod").ZodTypeAny, "passthrough">[];
|
|
136
|
+
} | undefined;
|
|
137
|
+
signed_jwks_uri?: string | undefined;
|
|
138
|
+
jwks_uri?: string | undefined;
|
|
139
|
+
organization_name?: string | undefined;
|
|
140
|
+
contacts?: string[] | undefined;
|
|
141
|
+
logo_uri?: string | undefined;
|
|
142
|
+
policy_uri?: string | undefined;
|
|
143
|
+
homepage_uri?: string | undefined;
|
|
144
|
+
} | undefined;
|
|
145
|
+
oauth_authorization_server?: {
|
|
146
|
+
[x: string]: any;
|
|
147
|
+
} | undefined;
|
|
148
|
+
} | undefined;
|
|
149
|
+
metadata_policy?: ({
|
|
150
|
+
[x: string]: any;
|
|
151
|
+
} & {
|
|
152
|
+
[k: string]: unknown;
|
|
153
|
+
}) | undefined;
|
|
154
|
+
constraints?: {
|
|
155
|
+
max_path_length?: number | undefined;
|
|
156
|
+
naming_constraints?: {
|
|
157
|
+
permitted?: string[] | undefined;
|
|
158
|
+
excluded?: string[] | undefined;
|
|
159
|
+
} | undefined;
|
|
160
|
+
allowed_entity_types?: string[] | undefined;
|
|
161
|
+
} | undefined;
|
|
162
|
+
crit?: string[] | undefined;
|
|
163
|
+
metadata_policy_crit?: string[] | undefined;
|
|
164
|
+
trust_marks?: {
|
|
165
|
+
id: string;
|
|
166
|
+
trust_mark: {
|
|
167
|
+
header: Record<string | number, unknown>;
|
|
168
|
+
claims: {
|
|
169
|
+
sub: string;
|
|
170
|
+
iss: string;
|
|
171
|
+
id: string;
|
|
172
|
+
iat: Date;
|
|
173
|
+
exp?: Date | undefined;
|
|
174
|
+
ref?: string | undefined;
|
|
175
|
+
};
|
|
176
|
+
signature: Uint8Array;
|
|
177
|
+
};
|
|
178
|
+
}[] | undefined;
|
|
179
|
+
trust_mark_issuers?: Record<string, string[]> | undefined;
|
|
180
|
+
trust_mark_owners?: Record<string, {
|
|
181
|
+
sub: string;
|
|
182
|
+
jwks: {
|
|
183
|
+
keys: import("zod").objectOutputType<{
|
|
184
|
+
kty: import("zod").ZodString;
|
|
185
|
+
kid: import("zod").ZodString;
|
|
186
|
+
use: import("zod").ZodOptional<import("zod").ZodString>;
|
|
187
|
+
key_ops: import("zod").ZodOptional<import("zod").ZodArray<import("zod").ZodString, "many">>;
|
|
188
|
+
alg: import("zod").ZodOptional<import("zod").ZodString>;
|
|
189
|
+
x5u: import("zod").ZodOptional<import("zod").ZodString>;
|
|
190
|
+
x5c: import("zod").ZodOptional<import("zod").ZodString>;
|
|
191
|
+
x5t: import("zod").ZodOptional<import("zod").ZodString>;
|
|
192
|
+
"x5t#S256": import("zod").ZodOptional<import("zod").ZodString>;
|
|
193
|
+
}, import("zod").ZodTypeAny, "passthrough">[];
|
|
194
|
+
};
|
|
195
|
+
}> | undefined;
|
|
196
|
+
source_endpoint?: string | undefined;
|
|
197
|
+
}>;
|
|
32
198
|
}
|
|
@@ -11,6 +11,7 @@ var __metadata = (this && this.__metadata) || function (k, v) {
|
|
|
11
11
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
12
12
|
exports.OpenId4VcSiopHolderService = void 0;
|
|
13
13
|
const core_1 = require("@credo-ts/core");
|
|
14
|
+
const core_2 = require("@openid-federation/core");
|
|
14
15
|
const did_auth_siop_1 = require("@sphereon/did-auth-siop");
|
|
15
16
|
const transform_1 = require("../shared/transform");
|
|
16
17
|
const utils_1 = require("../shared/utils");
|
|
@@ -18,9 +19,11 @@ let OpenId4VcSiopHolderService = class OpenId4VcSiopHolderService {
|
|
|
18
19
|
constructor(presentationExchangeService) {
|
|
19
20
|
this.presentationExchangeService = presentationExchangeService;
|
|
20
21
|
}
|
|
21
|
-
async resolveAuthorizationRequest(agentContext, requestJwtOrUri) {
|
|
22
|
-
var _a, _b;
|
|
23
|
-
const openidProvider = await this.getOpenIdProvider(agentContext
|
|
22
|
+
async resolveAuthorizationRequest(agentContext, requestJwtOrUri, options = {}) {
|
|
23
|
+
var _a, _b, _c;
|
|
24
|
+
const openidProvider = await this.getOpenIdProvider(agentContext, {
|
|
25
|
+
federation: options.federation,
|
|
26
|
+
});
|
|
24
27
|
// parsing happens automatically in verifyAuthorizationRequest
|
|
25
28
|
const verifiedAuthorizationRequest = await openidProvider.verifyAuthorizationRequest(requestJwtOrUri);
|
|
26
29
|
agentContext.config.logger.debug(`verified SIOP Authorization Request for issuer '${verifiedAuthorizationRequest.issuer}'`);
|
|
@@ -30,6 +33,30 @@ let OpenId4VcSiopHolderService = class OpenId4VcSiopHolderService {
|
|
|
30
33
|
throw new core_1.CredoError('Only a single presentation definition is supported.');
|
|
31
34
|
}
|
|
32
35
|
const presentationDefinition = (_b = (_a = verifiedAuthorizationRequest.presentationDefinitions) === null || _a === void 0 ? void 0 : _a[0]) === null || _b === void 0 ? void 0 : _b.definition;
|
|
36
|
+
if (verifiedAuthorizationRequest.clientIdScheme === 'entity_id') {
|
|
37
|
+
const clientId = await verifiedAuthorizationRequest.authorizationRequest.getMergedProperty('client_id');
|
|
38
|
+
if (!clientId) {
|
|
39
|
+
throw new core_1.CredoError("Unable to extract 'client_id' from authorization request");
|
|
40
|
+
}
|
|
41
|
+
const jwsService = agentContext.dependencyManager.resolve(core_1.JwsService);
|
|
42
|
+
const entityConfiguration = await (0, core_2.fetchEntityConfiguration)({
|
|
43
|
+
entityId: clientId,
|
|
44
|
+
verifyJwtCallback: async ({ jwt, jwk }) => {
|
|
45
|
+
const res = await jwsService.verifyJws(agentContext, {
|
|
46
|
+
jws: jwt,
|
|
47
|
+
jwkResolver: () => (0, core_1.getJwkFromJson)(jwk),
|
|
48
|
+
});
|
|
49
|
+
return res.isValid;
|
|
50
|
+
},
|
|
51
|
+
});
|
|
52
|
+
if (!entityConfiguration)
|
|
53
|
+
throw new core_1.CredoError(`Unable to fetch entity configuration for entityId '${clientId}'`);
|
|
54
|
+
const openidRelyingPartyMetadata = (_c = entityConfiguration.metadata) === null || _c === void 0 ? void 0 : _c.openid_relying_party;
|
|
55
|
+
// When the metadata is present in the federation we want to use that instead of what is passed with the request
|
|
56
|
+
if (openidRelyingPartyMetadata) {
|
|
57
|
+
verifiedAuthorizationRequest.authorizationRequestPayload.client_metadata = openidRelyingPartyMetadata;
|
|
58
|
+
}
|
|
59
|
+
}
|
|
33
60
|
return {
|
|
34
61
|
authorizationRequest: verifiedAuthorizationRequest,
|
|
35
62
|
// Parameters related to DIF Presentation Exchange
|
|
@@ -168,7 +195,7 @@ let OpenId4VcSiopHolderService = class OpenId4VcSiopHolderService {
|
|
|
168
195
|
presentationDuringIssuanceSession: responseJson === null || responseJson === void 0 ? void 0 : responseJson.presentation_during_issuance_session,
|
|
169
196
|
};
|
|
170
197
|
}
|
|
171
|
-
async getOpenIdProvider(agentContext) {
|
|
198
|
+
async getOpenIdProvider(agentContext, options = {}) {
|
|
172
199
|
const builder = did_auth_siop_1.OP.builder()
|
|
173
200
|
.withExpiresIn(6000)
|
|
174
201
|
.withIssuer(did_auth_siop_1.ResponseIss.SELF_ISSUED_V2)
|
|
@@ -179,7 +206,9 @@ let OpenId4VcSiopHolderService = class OpenId4VcSiopHolderService {
|
|
|
179
206
|
did_auth_siop_1.SupportedVersion.SIOPv2_D12_OID4VP_D20,
|
|
180
207
|
])
|
|
181
208
|
.withCreateJwtCallback((0, utils_1.getCreateJwtCallback)(agentContext))
|
|
182
|
-
.withVerifyJwtCallback((0, utils_1.getVerifyJwtCallback)(agentContext
|
|
209
|
+
.withVerifyJwtCallback((0, utils_1.getVerifyJwtCallback)(agentContext, {
|
|
210
|
+
federation: options.federation,
|
|
211
|
+
}))
|
|
183
212
|
.withHasher(core_1.Hasher.hash);
|
|
184
213
|
const openidProvider = builder.build();
|
|
185
214
|
return openidProvider;
|
|
@@ -293,6 +322,35 @@ let OpenId4VcSiopHolderService = class OpenId4VcSiopHolderService {
|
|
|
293
322
|
});
|
|
294
323
|
return jwe;
|
|
295
324
|
}
|
|
325
|
+
async resolveOpenIdFederationChains(agentContext, options) {
|
|
326
|
+
const jwsService = agentContext.dependencyManager.resolve(core_1.JwsService);
|
|
327
|
+
const { entityId, trustAnchorEntityIds } = options;
|
|
328
|
+
return (0, core_2.resolveTrustChains)({
|
|
329
|
+
entityId,
|
|
330
|
+
trustAnchorEntityIds,
|
|
331
|
+
verifyJwtCallback: async ({ jwt, jwk }) => {
|
|
332
|
+
const res = await jwsService.verifyJws(agentContext, {
|
|
333
|
+
jws: jwt,
|
|
334
|
+
jwkResolver: () => (0, core_1.getJwkFromJson)(jwk),
|
|
335
|
+
});
|
|
336
|
+
return res.isValid;
|
|
337
|
+
},
|
|
338
|
+
});
|
|
339
|
+
}
|
|
340
|
+
async fetchOpenIdFederationEntityConfiguration(agentContext, options) {
|
|
341
|
+
const jwsService = agentContext.dependencyManager.resolve(core_1.JwsService);
|
|
342
|
+
const { entityId } = options;
|
|
343
|
+
return (0, core_2.fetchEntityConfiguration)({
|
|
344
|
+
entityId,
|
|
345
|
+
verifyJwtCallback: async ({ jwt, jwk }) => {
|
|
346
|
+
const res = await jwsService.verifyJws(agentContext, {
|
|
347
|
+
jws: jwt,
|
|
348
|
+
jwkResolver: () => (0, core_1.getJwkFromJson)(jwk),
|
|
349
|
+
});
|
|
350
|
+
return res.isValid;
|
|
351
|
+
},
|
|
352
|
+
});
|
|
353
|
+
}
|
|
296
354
|
};
|
|
297
355
|
exports.OpenId4VcSiopHolderService = OpenId4VcSiopHolderService;
|
|
298
356
|
exports.OpenId4VcSiopHolderService = OpenId4VcSiopHolderService = __decorate([
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"OpenId4vcSiopHolderService.js","sourceRoot":"","sources":["../../src/openid4vc-holder/OpenId4vcSiopHolderService.ts"],"names":[],"mappings":";;;;;;;;;;;;AAaA,yCAeuB;AACvB,2DAAwH;AAExH,mDAAuE;AACvE,2CAA0G;AAGnG,IAAM,0BAA0B,GAAhC,MAAM,0BAA0B;IACrC,YAA2B,2BAA2D;QAA3D,gCAA2B,GAA3B,2BAA2B,CAAgC;IAAG,CAAC;IAEnF,KAAK,CAAC,2BAA2B,CACtC,YAA0B,EAC1B,eAAuB;;QAEvB,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,YAAY,CAAC,CAAA;QAEjE,8DAA8D;QAC9D,MAAM,4BAA4B,GAAG,MAAM,cAAc,CAAC,0BAA0B,CAAC,eAAe,CAAC,CAAA;QAErG,YAAY,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAC9B,mDAAmD,4BAA4B,CAAC,MAAM,GAAG,CAC1F,CAAA;QACD,YAAY,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,oBAAoB,eAAe,GAAG,CAAC,CAAA;QAExE,IACE,4BAA4B,CAAC,uBAAuB;YACpD,4BAA4B,CAAC,uBAAuB,CAAC,MAAM,GAAG,CAAC,EAC/D,CAAC;YACD,MAAM,IAAI,iBAAU,CAAC,qDAAqD,CAAC,CAAA;QAC7E,CAAC;QAED,MAAM,sBAAsB,GAAG,MAAA,MAAA,4BAA4B,CAAC,uBAAuB,0CAAG,CAAC,CAAC,0CAAE,UAAU,CAAA;QAEpG,OAAO;YACL,oBAAoB,EAAE,4BAA4B;YAElD,kDAAkD;YAClD,oBAAoB,EAAE,sBAAsB;gBAC1C,CAAC,CAAC;oBACE,UAAU,EAAE,sBAAsB;oBAClC,qBAAqB,EAAE,MAAM,IAAI,CAAC,2BAA2B,CAAC,wBAAwB,CACpF,YAAY,EACZ,sBAAsB,CACvB;iBACF;gBACH,CAAC,CAAC,SAAS;SACd,CAAA;IACH,CAAC;IAEM,KAAK,CAAC,0BAA0B,CACrC,YAA0B,EAC1B,OAAuD;;QAEvD,MAAM,EAAE,oBAAoB,EAAE,oBAAoB,EAAE,GAAG,OAAO,CAAA;QAC9D,IAAI,iBAAiB,GAAG,OAAO,CAAC,iBAAiB,CAAA;QACjD,IAAI,2BAA2B,GAAiD,SAAS,CAAA;QAEzF,MAAM,YAAY,GAAG,MAAM,oBAAoB,CAAC,oBAAoB,CAAC,oBAAoB,CAAC,4BAAY,CAAC,QAAQ,CAAC,CAAA;QAChH,MAAM,0BAA0B,GAAG,MAAM,YAAY,CAAC,MAAM,CAAC,aAAa,EAAE,CAAA;QAE5E,oCAAoC;QACpC,IAAI,oBAAoB,CAAC,uBAAuB,IAAI,oBAAoB,CAAC,uBAAuB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5G,IAAI,CAAC,oBAAoB,EAAE,CAAC;gBAC1B,MAAM,IAAI,iBAAU,CAClB,mIAAmI,CACpI,CAAA;YACH,CAAC;YAED,MAAM,KAAK,GAAG,MAAM,oBAAoB,CAAC,oBAAoB,CAAC,iBAAiB,CAAS,OAAO,CAAC,CAAA;YAChG,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,MAAM,IAAI,iBAAU,CAAC,sDAAsD,CAAC,CAAA;YAC9E,CAAC;YAED,MAAM,QAAQ,GAAG,MAAM,oBAAoB,CAAC,oBAAoB,CAAC,iBAAiB,CAAS,WAAW,CAAC,CAAA;YACvG,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACd,MAAM,IAAI,iBAAU,CAAC,0DAA0D,CAAC,CAAA;YAClF,CAAC;YAED,MAAM,WAAW,GACf,MAAA,CAAC,MAAM,oBAAoB,CAAC,oBAAoB,CAAC,iBAAiB,CAAS,cAAc,CAAC,CAAC,mCAC3F,CAAC,MAAM,oBAAoB,CAAC,oBAAoB,CAAC,iBAAiB,CAAS,cAAc,CAAC,CAAC,CAAA;YAC7F,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjB,MAAM,IAAI,iBAAU,CAAC,6DAA6D,CAAC,CAAA;YACrF,CAAC;YAED,MAAM,EAAE,uBAAuB,EAAE,sBAAsB,EAAE,GACvD,MAAM,IAAI,CAAC,2BAA2B,CAAC,kBAAkB,CAAC,YAAY,EAAE;gBACtE,6BAA6B,EAAE,oBAAoB,CAAC,WAAW;gBAC/D,sBAAsB,EAAE,oBAAoB,CAAC,uBAAuB,CAAC,CAAC,CAAC,CAAC,UAAU;gBAClF,SAAS,EAAE,KAAK;gBAChB,MAAM,EAAE,QAAQ;gBAChB,8BAA8B,EAAE,gDAAyC,CAAC,QAAQ;gBAClF,SAAS,EAAE;oBACT,kBAAkB,EAAE,0BAA0B;oBAC9C,WAAW;iBACZ;aACF,CAAC,CAAA;YAEJ,2BAA2B,GAAG;gBAC5B,uBAAuB,EAAE,uBAAuB,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,IAAA,6CAAiC,EAAC,EAAE,CAAC,CAAC;gBACnG,sBAAsB;gBACtB,eAAe,EAAE,+BAAe,CAAC,sBAAsB;aACxD,CAAA;YAED,IAAI,YAAY,IAAI,CAAC,iBAAiB,EAAE,CAAC;gBACvC,iBAAiB,GAAG,IAAI,CAAC,8CAA8C,CAAC,uBAAuB,CAAC,CAAC,CAAC,CAAC,CAAA;YACrG,CAAC;QACH,CAAC;aAAM,IAAI,OAAO,CAAC,oBAAoB,EAAE,CAAC;YACxC,MAAM,IAAI,iBAAU,CAClB,4GAA4G,CAC7G,CAAA;QACH,CAAC;QAED,IAAI,YAAY,EAAE,CAAC;YACjB,IAAI,CAAC,iBAAiB,EAAE,CAAC;gBACvB,MAAM,IAAI,iBAAU,CAClB,oJAAoJ,CACrJ,CAAA;YACH,CAAC;YAED,IAAI,CAAC,sBAAsB,CAAC,oBAAoB,EAAE,iBAAiB,CAAC,CAAA;QACtE,CAAC;QAED,MAAM,SAAS,GACb,YAAY,IAAI,iBAAiB;YAC/B,CAAC,CAAC,MAAM,IAAA,oCAA4B,EAAC,YAAY,EAAE,iBAAiB,CAAC;YACrE,CAAC,CAAC,SAAS,CAAA;QAEf,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,YAAY,CAAC,CAAA;QACjE,MAAM,sCAAsC,GAAG,MAAM,cAAc,CAAC,2BAA2B,CAC7F,oBAAoB,EACpB;YACE,SAAS;YACT,oBAAoB,EAAE,2BAA2B;YACjD,+FAA+F;YAC/F,QAAQ,EAAE,oBAAoB,CAAC,2BAA2B,CAAC,SAAS;SACrE,CACF,CAAA;QAED,MAAM,6BAA6B,GAAG,CAAC,0BAAkC,EAAE,EAAE;YAC3E,OAAO,KAAK,EAAE,IAGb,EAAE,EAAE;;gBACH,MAAM,EAAE,4BAA4B,EAAE,oBAAoB,EAAE,GAAG,IAAI,CAAA;gBAEnE,MAAM,GAAG,GAAG,MAAM,kBAAE,CAAC,gCAAgC,CAAC,oBAAoB,CAAC,eAAe,CAAC,CAAA;gBAC3F,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,CAAC;oBACb,MAAM,IAAI,iBAAU,CAAC,qBAAqB,CAAC,CAAA;gBAC7C,CAAC;gBAED,MAAM,iBAAiB,GAAG,kBAAE,CAAC,oBAAoB,CAAC;oBAChD,eAAe,EAAE,oBAAoB,CAAC,eAAe;oBACrD,eAAe,EAAE;wBACf,6CAA6C,EAAE,CAAC,SAAS,CAAC;wBAC1D,6CAA6C,EAAE,CAAC,SAAS,CAAC;qBAC3D;iBACF,CAAC,CAAA;gBAEF,IAAI,iBAAiB,CAAC,IAAI,KAAK,WAAW,EAAE,CAAC;oBAC3C,MAAM,IAAI,iBAAU,CAAC,8CAA8C,CAAC,CAAA;gBACtE,CAAC;gBAED,2DAA2D;gBAC3D,MAAM,KAAK,GAAG,MAAA,oBAAoB,CAAC,OAAO,0CAAE,KAAK,CAAA;gBACjD,IAAI,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;oBACxC,MAAM,IAAI,iBAAU,CAAC,gDAAgD,CAAC,CAAA;gBACxE,CAAC;gBAED,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAAC,YAAY,EAAE;oBACvD,OAAO,EAAE,GAAc;oBACvB,OAAO,EAAE,4BAA4B;oBACrC,yBAAyB,EAAE,KAAK;oBAChC,GAAG,EAAE,iBAAiB,CAAC,eAAe,CAAC,oCAAoC;oBAC3E,GAAG,EAAE,iBAAiB,CAAC,eAAe,CAAC,oCAAoC;oBAC3E,0BAA0B;iBAC3B,CAAC,CAAA;gBAEF,OAAO,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAA;YAC1B,CAAC,CAAA;QACH,CAAC,CAAA;QACD,MAAM,QAAQ,GAAG,MAAM,cAAc,CAAC,2BAA2B,CAC/D,sCAAsC,EACtC,6BAA6B,CAAC,0BAA0B,CAAC,CAC1D,CAAA;QACD,MAAM,YAAY,GAAG,MAAM,QAAQ;aAChC,KAAK,EAAE;aACP,IAAI,EAAE;aACN,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,CAAA;QACpB,MAAM,YAAY,GAAG,CAAC,MAAM,QAAQ;aACjC,KAAK,EAAE;aACP,IAAI,EAAE;aACN,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,CAAmC,CAAA;QAEvD,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,cAAc,EAAE;oBACd,MAAM,EAAE,QAAQ,CAAC,MAAM;oBACvB,IAAI,EAAE,YAAY,aAAZ,YAAY,cAAZ,YAAY,GAAI,YAAY;iBACnC;gBACD,iBAAiB,EAAE,sCAAsC,CAAC,QAAQ,CAAC,OAAO;aAClE,CAAA;QACZ,CAAC;QAED,OAAO;YACL,EAAE,EAAE,IAAI;YACR,cAAc,EAAE;gBACd,MAAM,EAAE,QAAQ,CAAC,MAAM;gBACvB,IAAI,EAAE,YAAY,aAAZ,YAAY,cAAZ,YAAY,GAAI,EAAE;aACzB;YACD,iBAAiB,EAAE,sCAAsC,CAAC,QAAQ,CAAC,OAAO;YAE1E,WAAW,EAAE,YAAY,aAAZ,YAAY,uBAAZ,YAAY,CAAE,YAAkC;YAC7D,iCAAiC,EAAE,YAAY,aAAZ,YAAY,uBAAZ,YAAY,CAAE,oCAA0D;SACnG,CAAA;IACZ,CAAC;IAEO,KAAK,CAAC,iBAAiB,CAAC,YAA0B;QACxD,MAAM,OAAO,GAAG,kBAAE,CAAC,OAAO,EAAE;aACzB,aAAa,CAAC,IAAI,CAAC;aACnB,UAAU,CAAC,2BAAW,CAAC,cAAc,CAAC;aACtC,gBAAgB,CAAC,4BAAY,CAAC,IAAI,CAAC;aACnC,qBAAqB,CAAC;YACrB,gCAAgB,CAAC,UAAU;YAC3B,gCAAgB,CAAC,qBAAqB;YACtC,gCAAgB,CAAC,qBAAqB;SACvC,CAAC;aACD,qBAAqB,CAAC,IAAA,4BAAoB,EAAC,YAAY,CAAC,CAAC;aACzD,qBAAqB,CAAC,IAAA,4BAAoB,EAAC,YAAY,CAAC,CAAC;aACzD,UAAU,CAAC,aAAM,CAAC,IAAI,CAAC,CAAA;QAE1B,MAAM,cAAc,GAAG,OAAO,CAAC,KAAK,EAAE,CAAA;QAEtC,OAAO,cAAc,CAAA;IACvB,CAAC;IAEO,8CAA8C,CACpD,sBAA8C;QAE9C,IAAI,iBAAqC,CAAA;QAEzC,IAAI,sBAAsB,YAAY,sCAA+B,EAAE,CAAC;YACtE,MAAM,CAAC,UAAU,CAAC,GAAG,IAAA,cAAO,EAAC,sBAAsB,CAAC,KAAK,CAAC,CAAA;YAC1D,IAAI,CAAC,UAAU;gBAAE,MAAM,IAAI,iBAAU,CAAC,kDAAkD,CAAC,CAAA;YAEzF,IAAI,CAAC,UAAU,CAAC,kBAAkB,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;gBACtD,MAAM,IAAI,iBAAU,CAClB,iIAAiI,CAClI,CAAA;YACH,CAAC;YAED,iBAAiB,GAAG;gBAClB,MAAM,EAAE,KAAK;gBACb,MAAM,EAAE,UAAU,CAAC,kBAAkB;aACtC,CAAA;QACH,CAAC;aAAM,IAAI,sBAAsB,YAAY,mCAA4B,EAAE,CAAC;YAC1E,MAAM,GAAG,GAAG,sBAAsB,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAA;YAEjD,IAAI,CAAC,GAAG;gBAAE,MAAM,IAAI,iBAAU,CAAC,kEAAkE,CAAC,CAAA;YAClG,IAAI,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,sBAAsB,CAAC,YAAY,CAAC,QAAQ,EAAE,CAAC;gBACxE,iBAAiB,GAAG;oBAClB,MAAM,EAAE,GAAG,sBAAsB,CAAC,YAAY,CAAC,QAAQ,GAAG,GAAG,EAAE;oBAC/D,MAAM,EAAE,KAAK;iBACd,CAAA;YACH,CAAC;iBAAM,IAAI,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;gBAClC,iBAAiB,GAAG;oBAClB,MAAM,EAAE,GAAG;oBACX,MAAM,EAAE,KAAK;iBACd,CAAA;YACH,CAAC;iBAAM,CAAC;gBACN,MAAM,IAAI,iBAAU,CAClB,4IAA4I,CAC7I,CAAA;YACH,CAAC;QACH,CAAC;aAAM,IAAI,sBAAsB,YAAY,yBAAkB,EAAE,CAAC;YAChE,MAAM,IAAI,iBAAU,CAAC,qDAAqD,CAAC,CAAA;QAC7E,CAAC;aAAM,CAAC;YACN,MAAM,GAAG,GAAG,sBAAsB,CAAC,OAAO,CAAC,GAAG,CAAA;YAC9C,qFAAqF;YACrF,IACE,CAAC,GAAG;gBACJ,OAAO,GAAG,KAAK,QAAQ;gBACvB,CAAC,CAAC,KAAK,IAAI,GAAG,CAAC;gBACf,OAAO,GAAG,CAAC,GAAG,KAAK,QAAQ;gBAC3B,CAAC,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC;gBAC3B,CAAC,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,EACtB,CAAC;gBACD,MAAM,IAAI,iBAAU,CAClB,+LAA+L,CAChM,CAAA;YACH,CAAC;YAED,iBAAiB,GAAG;gBAClB,MAAM,EAAE,GAAG,CAAC,GAAG;gBACf,MAAM,EAAE,KAAK;aACd,CAAA;QACH,CAAC;QAED,OAAO,iBAAiB,CAAA;IAC1B,CAAC;IAEO,sBAAsB,CAC5B,oBAAkD,EAClD,iBAAqC;QAErC,MAAM,2BAA2B,GAAG,oBAAoB,CAAC,2BAA2B,CAAC,8BAA8B,CAAA;QACnH,IAAI,CAAC,2BAA2B,EAAE,CAAC;YACjC,MAAM,IAAI,iBAAU,CAClB,gHAAgH,CACjH,CAAA;QACH,CAAC;QAED,IAAI,yBAAyB,GAAa,EAAE,CAAA;QAC5C,IAAI,iBAAiB,CAAC,MAAM,KAAK,KAAK,EAAE,CAAC;YACvC,MAAM,SAAS,GAAG,IAAA,eAAQ,EAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;YAEpD,8DAA8D;YAC9D,yBAAyB,GAAG,CAAC,OAAO,SAAS,CAAC,MAAM,EAAE,EAAE,KAAK,CAAC,CAAA;QAChE,CAAC;aAAM,IAAI,iBAAiB,CAAC,MAAM,KAAK,KAAK,EAAE,CAAC;YAC9C,yBAAyB,GAAG,CAAC,sCAAsC,CAAC,CAAA;QACtE,CAAC;aAAM,CAAC;YACN,MAAM,IAAI,iBAAU,CAAC,uEAAuE,CAAC,CAAA;QAC/F,CAAC;QAED,+EAA+E;QAC/E,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,2BAA2B,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,EAAE,CAAC;YAChG,MAAM,IAAI,iBAAU,CAClB;gBACE,uEAAuE;gBACvE,oCAAoC,2BAA2B,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG;aAC9E,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAA;QACH,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,mBAAmB,CAC/B,YAA0B,EAC1B,OAOC;QAED,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,OAAO,CAAA;QACpC,MAAM,GAAG,GAAG,IAAA,qBAAc,EAAC,OAAO,CAAC,CAAA;QACnC,MAAM,GAAG,GAAG,GAAG,CAAC,GAAG,CAAA;QAEnB,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,6BAA6B,EAAE,CAAC;YACvD,MAAM,IAAI,iBAAU,CAClB,sIAAsI,CACvI,CAAA;QACH,CAAC;QAED,IAAI,OAAO,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;YAC9B,MAAM,IAAI,iBAAU,CAAC,yEAAyE,CAAC,CAAA;QACjG,CAAC;QAED,IAAI,OAAO,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;YAC9B,MAAM,IAAI,iBAAU,CAAC,yEAAyE,CAAC,CAAA;QACjG,CAAC;QAED,IAAI,GAAG,CAAC,OAAO,KAAK,cAAO,CAAC,IAAI,EAAE,CAAC;YACjC,MAAM,IAAI,iBAAU,CAAC,SAAS,cAAO,CAAC,IAAI,sDAAsD,CAAC,CAAA;QACnG,CAAC;QAED,MAAM,IAAI,GAAG,aAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAA;QACjD,MAAM,GAAG,GAAG,MAAM,YAAY,CAAC,MAAM,CAAC,6BAA6B,CAAC;YAClE,IAAI;YACJ,YAAY,EAAE,GAAG;YACjB,MAAM,EAAE;gBACN,GAAG,EAAE,OAAO,CAAC,GAAG;aACjB;YACD,mBAAmB,EAAE,OAAO,CAAC,GAAG;YAChC,GAAG,EAAE,wBAAiB,CAAC,WAAW,CAAC,wBAAiB,CAAC,UAAU,CAAC,OAAO,CAAC,0BAA0B,CAAC,CAAC;YACpG,GAAG,EAAE,wBAAiB,CAAC,WAAW,CAAC,wBAAiB,CAAC,UAAU,CAAC,OAAO,CAAC,yBAAyB,CAAC,CAAC;SACpG,CAAC,CAAA;QAEF,OAAO,GAAG,CAAA;IACZ,CAAC;CACF,CAAA;AAxXY,gEAA0B;qCAA1B,0BAA0B;IADtC,IAAA,iBAAU,GAAE;qCAE6C,qCAA8B;GAD3E,0BAA0B,CAwXtC"}
|
|
1
|
+
{"version":3,"file":"OpenId4vcSiopHolderService.js","sourceRoot":"","sources":["../../src/openid4vc-holder/OpenId4vcSiopHolderService.ts"],"names":[],"mappings":";;;;;;;;;;;;AAiBA,yCAgBuB;AACvB,kDAGgC;AAChC,2DAAwH;AAExH,mDAAuE;AACvE,2CAA0G;AAGnG,IAAM,0BAA0B,GAAhC,MAAM,0BAA0B;IACrC,YAA2B,2BAA2D;QAA3D,gCAA2B,GAA3B,2BAA2B,CAAgC;IAAG,CAAC;IAEnF,KAAK,CAAC,2BAA2B,CACtC,YAA0B,EAC1B,eAAuB,EACvB,UAA2D,EAAE;;QAE7D,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,YAAY,EAAE;YAChE,UAAU,EAAE,OAAO,CAAC,UAAU;SAC/B,CAAC,CAAA;QAEF,8DAA8D;QAC9D,MAAM,4BAA4B,GAAG,MAAM,cAAc,CAAC,0BAA0B,CAAC,eAAe,CAAC,CAAA;QAErG,YAAY,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAC9B,mDAAmD,4BAA4B,CAAC,MAAM,GAAG,CAC1F,CAAA;QACD,YAAY,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,oBAAoB,eAAe,GAAG,CAAC,CAAA;QAExE,IACE,4BAA4B,CAAC,uBAAuB;YACpD,4BAA4B,CAAC,uBAAuB,CAAC,MAAM,GAAG,CAAC,EAC/D,CAAC;YACD,MAAM,IAAI,iBAAU,CAAC,qDAAqD,CAAC,CAAA;QAC7E,CAAC;QAED,MAAM,sBAAsB,GAAG,MAAA,MAAA,4BAA4B,CAAC,uBAAuB,0CAAG,CAAC,CAAC,0CAAE,UAAU,CAAA;QAEpG,IAAI,4BAA4B,CAAC,cAAc,KAAK,WAAW,EAAE,CAAC;YAChE,MAAM,QAAQ,GAAG,MAAM,4BAA4B,CAAC,oBAAoB,CAAC,iBAAiB,CAAS,WAAW,CAAC,CAAA;YAC/G,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACd,MAAM,IAAI,iBAAU,CAAC,0DAA0D,CAAC,CAAA;YAClF,CAAC;YAED,MAAM,UAAU,GAAG,YAAY,CAAC,iBAAiB,CAAC,OAAO,CAAC,iBAAU,CAAC,CAAA;YAErE,MAAM,mBAAmB,GAAG,MAAM,IAAA,+BAAkC,EAAC;gBACnE,QAAQ,EAAE,QAAQ;gBAClB,iBAAiB,EAAE,KAAK,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE,EAAE;oBACxC,MAAM,GAAG,GAAG,MAAM,UAAU,CAAC,SAAS,CAAC,YAAY,EAAE;wBACnD,GAAG,EAAE,GAAG;wBACR,WAAW,EAAE,GAAG,EAAE,CAAC,IAAA,qBAAc,EAAC,GAAG,CAAC;qBACvC,CAAC,CAAA;oBAEF,OAAO,GAAG,CAAC,OAAO,CAAA;gBACpB,CAAC;aACF,CAAC,CAAA;YACF,IAAI,CAAC,mBAAmB;gBAAE,MAAM,IAAI,iBAAU,CAAC,sDAAsD,QAAQ,GAAG,CAAC,CAAA;YAEjH,MAAM,0BAA0B,GAAG,MAAA,mBAAmB,CAAC,QAAQ,0CAAE,oBAAoB,CAAA;YACrF,gHAAgH;YAChH,IAAI,0BAA0B,EAAE,CAAC;gBAC/B,4BAA4B,CAAC,2BAA2B,CAAC,eAAe,GAAG,0BAA0B,CAAA;YACvG,CAAC;QACH,CAAC;QAED,OAAO;YACL,oBAAoB,EAAE,4BAA4B;YAElD,kDAAkD;YAClD,oBAAoB,EAAE,sBAAsB;gBAC1C,CAAC,CAAC;oBACE,UAAU,EAAE,sBAAsB;oBAClC,qBAAqB,EAAE,MAAM,IAAI,CAAC,2BAA2B,CAAC,wBAAwB,CACpF,YAAY,EACZ,sBAAsB,CACvB;iBACF;gBACH,CAAC,CAAC,SAAS;SACd,CAAA;IACH,CAAC;IAEM,KAAK,CAAC,0BAA0B,CACrC,YAA0B,EAC1B,OAAuD;;QAEvD,MAAM,EAAE,oBAAoB,EAAE,oBAAoB,EAAE,GAAG,OAAO,CAAA;QAC9D,IAAI,iBAAiB,GAAG,OAAO,CAAC,iBAAiB,CAAA;QACjD,IAAI,2BAA2B,GAAiD,SAAS,CAAA;QAEzF,MAAM,YAAY,GAAG,MAAM,oBAAoB,CAAC,oBAAoB,CAAC,oBAAoB,CAAC,4BAAY,CAAC,QAAQ,CAAC,CAAA;QAChH,MAAM,0BAA0B,GAAG,MAAM,YAAY,CAAC,MAAM,CAAC,aAAa,EAAE,CAAA;QAE5E,oCAAoC;QACpC,IAAI,oBAAoB,CAAC,uBAAuB,IAAI,oBAAoB,CAAC,uBAAuB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5G,IAAI,CAAC,oBAAoB,EAAE,CAAC;gBAC1B,MAAM,IAAI,iBAAU,CAClB,mIAAmI,CACpI,CAAA;YACH,CAAC;YAED,MAAM,KAAK,GAAG,MAAM,oBAAoB,CAAC,oBAAoB,CAAC,iBAAiB,CAAS,OAAO,CAAC,CAAA;YAChG,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,MAAM,IAAI,iBAAU,CAAC,sDAAsD,CAAC,CAAA;YAC9E,CAAC;YAED,MAAM,QAAQ,GAAG,MAAM,oBAAoB,CAAC,oBAAoB,CAAC,iBAAiB,CAAS,WAAW,CAAC,CAAA;YACvG,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACd,MAAM,IAAI,iBAAU,CAAC,0DAA0D,CAAC,CAAA;YAClF,CAAC;YAED,MAAM,WAAW,GACf,MAAA,CAAC,MAAM,oBAAoB,CAAC,oBAAoB,CAAC,iBAAiB,CAAS,cAAc,CAAC,CAAC,mCAC3F,CAAC,MAAM,oBAAoB,CAAC,oBAAoB,CAAC,iBAAiB,CAAS,cAAc,CAAC,CAAC,CAAA;YAC7F,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjB,MAAM,IAAI,iBAAU,CAAC,6DAA6D,CAAC,CAAA;YACrF,CAAC;YAED,MAAM,EAAE,uBAAuB,EAAE,sBAAsB,EAAE,GACvD,MAAM,IAAI,CAAC,2BAA2B,CAAC,kBAAkB,CAAC,YAAY,EAAE;gBACtE,6BAA6B,EAAE,oBAAoB,CAAC,WAAW;gBAC/D,sBAAsB,EAAE,oBAAoB,CAAC,uBAAuB,CAAC,CAAC,CAAC,CAAC,UAAU;gBAClF,SAAS,EAAE,KAAK;gBAChB,MAAM,EAAE,QAAQ;gBAChB,8BAA8B,EAAE,gDAAyC,CAAC,QAAQ;gBAClF,SAAS,EAAE;oBACT,kBAAkB,EAAE,0BAA0B;oBAC9C,WAAW;iBACZ;aACF,CAAC,CAAA;YAEJ,2BAA2B,GAAG;gBAC5B,uBAAuB,EAAE,uBAAuB,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,IAAA,6CAAiC,EAAC,EAAE,CAAC,CAAC;gBACnG,sBAAsB;gBACtB,eAAe,EAAE,+BAAe,CAAC,sBAAsB;aACxD,CAAA;YAED,IAAI,YAAY,IAAI,CAAC,iBAAiB,EAAE,CAAC;gBACvC,iBAAiB,GAAG,IAAI,CAAC,8CAA8C,CAAC,uBAAuB,CAAC,CAAC,CAAC,CAAC,CAAA;YACrG,CAAC;QACH,CAAC;aAAM,IAAI,OAAO,CAAC,oBAAoB,EAAE,CAAC;YACxC,MAAM,IAAI,iBAAU,CAClB,4GAA4G,CAC7G,CAAA;QACH,CAAC;QAED,IAAI,YAAY,EAAE,CAAC;YACjB,IAAI,CAAC,iBAAiB,EAAE,CAAC;gBACvB,MAAM,IAAI,iBAAU,CAClB,oJAAoJ,CACrJ,CAAA;YACH,CAAC;YAED,IAAI,CAAC,sBAAsB,CAAC,oBAAoB,EAAE,iBAAiB,CAAC,CAAA;QACtE,CAAC;QAED,MAAM,SAAS,GACb,YAAY,IAAI,iBAAiB;YAC/B,CAAC,CAAC,MAAM,IAAA,oCAA4B,EAAC,YAAY,EAAE,iBAAiB,CAAC;YACrE,CAAC,CAAC,SAAS,CAAA;QAEf,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,YAAY,CAAC,CAAA;QACjE,MAAM,sCAAsC,GAAG,MAAM,cAAc,CAAC,2BAA2B,CAC7F,oBAAoB,EACpB;YACE,SAAS;YACT,oBAAoB,EAAE,2BAA2B;YACjD,+FAA+F;YAC/F,QAAQ,EAAE,oBAAoB,CAAC,2BAA2B,CAAC,SAAS;SACrE,CACF,CAAA;QAED,MAAM,6BAA6B,GAAG,CAAC,0BAAkC,EAAE,EAAE;YAC3E,OAAO,KAAK,EAAE,IAGb,EAAE,EAAE;;gBACH,MAAM,EAAE,4BAA4B,EAAE,oBAAoB,EAAE,GAAG,IAAI,CAAA;gBAEnE,MAAM,GAAG,GAAG,MAAM,kBAAE,CAAC,gCAAgC,CAAC,oBAAoB,CAAC,eAAe,CAAC,CAAA;gBAC3F,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,CAAC;oBACb,MAAM,IAAI,iBAAU,CAAC,qBAAqB,CAAC,CAAA;gBAC7C,CAAC;gBAED,MAAM,iBAAiB,GAAG,kBAAE,CAAC,oBAAoB,CAAC;oBAChD,eAAe,EAAE,oBAAoB,CAAC,eAAe;oBACrD,eAAe,EAAE;wBACf,6CAA6C,EAAE,CAAC,SAAS,CAAC;wBAC1D,6CAA6C,EAAE,CAAC,SAAS,CAAC;qBAC3D;iBACF,CAAC,CAAA;gBAEF,IAAI,iBAAiB,CAAC,IAAI,KAAK,WAAW,EAAE,CAAC;oBAC3C,MAAM,IAAI,iBAAU,CAAC,8CAA8C,CAAC,CAAA;gBACtE,CAAC;gBAED,2DAA2D;gBAC3D,MAAM,KAAK,GAAG,MAAA,oBAAoB,CAAC,OAAO,0CAAE,KAAK,CAAA;gBACjD,IAAI,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;oBACxC,MAAM,IAAI,iBAAU,CAAC,gDAAgD,CAAC,CAAA;gBACxE,CAAC;gBAED,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAAC,YAAY,EAAE;oBACvD,OAAO,EAAE,GAAc;oBACvB,OAAO,EAAE,4BAA4B;oBACrC,yBAAyB,EAAE,KAAK;oBAChC,GAAG,EAAE,iBAAiB,CAAC,eAAe,CAAC,oCAAoC;oBAC3E,GAAG,EAAE,iBAAiB,CAAC,eAAe,CAAC,oCAAoC;oBAC3E,0BAA0B;iBAC3B,CAAC,CAAA;gBAEF,OAAO,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAA;YAC1B,CAAC,CAAA;QACH,CAAC,CAAA;QACD,MAAM,QAAQ,GAAG,MAAM,cAAc,CAAC,2BAA2B,CAC/D,sCAAsC,EACtC,6BAA6B,CAAC,0BAA0B,CAAC,CAC1D,CAAA;QACD,MAAM,YAAY,GAAG,MAAM,QAAQ;aAChC,KAAK,EAAE;aACP,IAAI,EAAE;aACN,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,CAAA;QACpB,MAAM,YAAY,GAAG,CAAC,MAAM,QAAQ;aACjC,KAAK,EAAE;aACP,IAAI,EAAE;aACN,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,CAAmC,CAAA;QAEvD,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,cAAc,EAAE;oBACd,MAAM,EAAE,QAAQ,CAAC,MAAM;oBACvB,IAAI,EAAE,YAAY,aAAZ,YAAY,cAAZ,YAAY,GAAI,YAAY;iBACnC;gBACD,iBAAiB,EAAE,sCAAsC,CAAC,QAAQ,CAAC,OAAO;aAClE,CAAA;QACZ,CAAC;QAED,OAAO;YACL,EAAE,EAAE,IAAI;YACR,cAAc,EAAE;gBACd,MAAM,EAAE,QAAQ,CAAC,MAAM;gBACvB,IAAI,EAAE,YAAY,aAAZ,YAAY,cAAZ,YAAY,GAAI,EAAE;aACzB;YACD,iBAAiB,EAAE,sCAAsC,CAAC,QAAQ,CAAC,OAAO;YAE1E,WAAW,EAAE,YAAY,aAAZ,YAAY,uBAAZ,YAAY,CAAE,YAAkC;YAC7D,iCAAiC,EAAE,YAAY,aAAZ,YAAY,uBAAZ,YAAY,CAAE,oCAA0D;SACnG,CAAA;IACZ,CAAC;IAEO,KAAK,CAAC,iBAAiB,CAAC,YAA0B,EAAE,UAAiD,EAAE;QAC7G,MAAM,OAAO,GAAG,kBAAE,CAAC,OAAO,EAAE;aACzB,aAAa,CAAC,IAAI,CAAC;aACnB,UAAU,CAAC,2BAAW,CAAC,cAAc,CAAC;aACtC,gBAAgB,CAAC,4BAAY,CAAC,IAAI,CAAC;aACnC,qBAAqB,CAAC;YACrB,gCAAgB,CAAC,UAAU;YAC3B,gCAAgB,CAAC,qBAAqB;YACtC,gCAAgB,CAAC,qBAAqB;SACvC,CAAC;aACD,qBAAqB,CAAC,IAAA,4BAAoB,EAAC,YAAY,CAAC,CAAC;aACzD,qBAAqB,CACpB,IAAA,4BAAoB,EAAC,YAAY,EAAE;YACjC,UAAU,EAAE,OAAO,CAAC,UAAU;SAC/B,CAAC,CACH;aACA,UAAU,CAAC,aAAM,CAAC,IAAI,CAAC,CAAA;QAE1B,MAAM,cAAc,GAAG,OAAO,CAAC,KAAK,EAAE,CAAA;QAEtC,OAAO,cAAc,CAAA;IACvB,CAAC;IAEO,8CAA8C,CACpD,sBAA8C;QAE9C,IAAI,iBAAqC,CAAA;QAEzC,IAAI,sBAAsB,YAAY,sCAA+B,EAAE,CAAC;YACtE,MAAM,CAAC,UAAU,CAAC,GAAG,IAAA,cAAO,EAAC,sBAAsB,CAAC,KAAK,CAAC,CAAA;YAC1D,IAAI,CAAC,UAAU;gBAAE,MAAM,IAAI,iBAAU,CAAC,kDAAkD,CAAC,CAAA;YAEzF,IAAI,CAAC,UAAU,CAAC,kBAAkB,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;gBACtD,MAAM,IAAI,iBAAU,CAClB,iIAAiI,CAClI,CAAA;YACH,CAAC;YAED,iBAAiB,GAAG;gBAClB,MAAM,EAAE,KAAK;gBACb,MAAM,EAAE,UAAU,CAAC,kBAAkB;aACtC,CAAA;QACH,CAAC;aAAM,IAAI,sBAAsB,YAAY,mCAA4B,EAAE,CAAC;YAC1E,MAAM,GAAG,GAAG,sBAAsB,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAA;YAEjD,IAAI,CAAC,GAAG;gBAAE,MAAM,IAAI,iBAAU,CAAC,kEAAkE,CAAC,CAAA;YAClG,IAAI,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,sBAAsB,CAAC,YAAY,CAAC,QAAQ,EAAE,CAAC;gBACxE,iBAAiB,GAAG;oBAClB,MAAM,EAAE,GAAG,sBAAsB,CAAC,YAAY,CAAC,QAAQ,GAAG,GAAG,EAAE;oBAC/D,MAAM,EAAE,KAAK;iBACd,CAAA;YACH,CAAC;iBAAM,IAAI,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;gBAClC,iBAAiB,GAAG;oBAClB,MAAM,EAAE,GAAG;oBACX,MAAM,EAAE,KAAK;iBACd,CAAA;YACH,CAAC;iBAAM,CAAC;gBACN,MAAM,IAAI,iBAAU,CAClB,4IAA4I,CAC7I,CAAA;YACH,CAAC;QACH,CAAC;aAAM,IAAI,sBAAsB,YAAY,yBAAkB,EAAE,CAAC;YAChE,MAAM,IAAI,iBAAU,CAAC,qDAAqD,CAAC,CAAA;QAC7E,CAAC;aAAM,CAAC;YACN,MAAM,GAAG,GAAG,sBAAsB,CAAC,OAAO,CAAC,GAAG,CAAA;YAC9C,qFAAqF;YACrF,IACE,CAAC,GAAG;gBACJ,OAAO,GAAG,KAAK,QAAQ;gBACvB,CAAC,CAAC,KAAK,IAAI,GAAG,CAAC;gBACf,OAAO,GAAG,CAAC,GAAG,KAAK,QAAQ;gBAC3B,CAAC,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC;gBAC3B,CAAC,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,EACtB,CAAC;gBACD,MAAM,IAAI,iBAAU,CAClB,+LAA+L,CAChM,CAAA;YACH,CAAC;YAED,iBAAiB,GAAG;gBAClB,MAAM,EAAE,GAAG,CAAC,GAAG;gBACf,MAAM,EAAE,KAAK;aACd,CAAA;QACH,CAAC;QAED,OAAO,iBAAiB,CAAA;IAC1B,CAAC;IAEO,sBAAsB,CAC5B,oBAAkD,EAClD,iBAAqC;QAErC,MAAM,2BAA2B,GAAG,oBAAoB,CAAC,2BAA2B,CAAC,8BAA8B,CAAA;QACnH,IAAI,CAAC,2BAA2B,EAAE,CAAC;YACjC,MAAM,IAAI,iBAAU,CAClB,gHAAgH,CACjH,CAAA;QACH,CAAC;QAED,IAAI,yBAAyB,GAAa,EAAE,CAAA;QAC5C,IAAI,iBAAiB,CAAC,MAAM,KAAK,KAAK,EAAE,CAAC;YACvC,MAAM,SAAS,GAAG,IAAA,eAAQ,EAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;YAEpD,8DAA8D;YAC9D,yBAAyB,GAAG,CAAC,OAAO,SAAS,CAAC,MAAM,EAAE,EAAE,KAAK,CAAC,CAAA;QAChE,CAAC;aAAM,IAAI,iBAAiB,CAAC,MAAM,KAAK,KAAK,EAAE,CAAC;YAC9C,yBAAyB,GAAG,CAAC,sCAAsC,CAAC,CAAA;QACtE,CAAC;aAAM,CAAC;YACN,MAAM,IAAI,iBAAU,CAAC,uEAAuE,CAAC,CAAA;QAC/F,CAAC;QAED,+EAA+E;QAC/E,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,2BAA2B,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,EAAE,CAAC;YAChG,MAAM,IAAI,iBAAU,CAClB;gBACE,uEAAuE;gBACvE,oCAAoC,2BAA2B,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG;aAC9E,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAA;QACH,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,mBAAmB,CAC/B,YAA0B,EAC1B,OAOC;QAED,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,OAAO,CAAA;QACpC,MAAM,GAAG,GAAG,IAAA,qBAAc,EAAC,OAAO,CAAC,CAAA;QACnC,MAAM,GAAG,GAAG,GAAG,CAAC,GAAG,CAAA;QAEnB,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,6BAA6B,EAAE,CAAC;YACvD,MAAM,IAAI,iBAAU,CAClB,sIAAsI,CACvI,CAAA;QACH,CAAC;QAED,IAAI,OAAO,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;YAC9B,MAAM,IAAI,iBAAU,CAAC,yEAAyE,CAAC,CAAA;QACjG,CAAC;QAED,IAAI,OAAO,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;YAC9B,MAAM,IAAI,iBAAU,CAAC,yEAAyE,CAAC,CAAA;QACjG,CAAC;QAED,IAAI,GAAG,CAAC,OAAO,KAAK,cAAO,CAAC,IAAI,EAAE,CAAC;YACjC,MAAM,IAAI,iBAAU,CAAC,SAAS,cAAO,CAAC,IAAI,sDAAsD,CAAC,CAAA;QACnG,CAAC;QAED,MAAM,IAAI,GAAG,aAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAA;QACjD,MAAM,GAAG,GAAG,MAAM,YAAY,CAAC,MAAM,CAAC,6BAA6B,CAAC;YAClE,IAAI;YACJ,YAAY,EAAE,GAAG;YACjB,MAAM,EAAE;gBACN,GAAG,EAAE,OAAO,CAAC,GAAG;aACjB;YACD,mBAAmB,EAAE,OAAO,CAAC,GAAG;YAChC,GAAG,EAAE,wBAAiB,CAAC,WAAW,CAAC,wBAAiB,CAAC,UAAU,CAAC,OAAO,CAAC,0BAA0B,CAAC,CAAC;YACpG,GAAG,EAAE,wBAAiB,CAAC,WAAW,CAAC,wBAAiB,CAAC,UAAU,CAAC,OAAO,CAAC,yBAAyB,CAAC,CAAC;SACpG,CAAC,CAAA;QAEF,OAAO,GAAG,CAAA;IACZ,CAAC;IAEM,KAAK,CAAC,6BAA6B,CACxC,YAA0B,EAC1B,OAA+C;QAE/C,MAAM,UAAU,GAAG,YAAY,CAAC,iBAAiB,CAAC,OAAO,CAAC,iBAAU,CAAC,CAAA;QAErE,MAAM,EAAE,QAAQ,EAAE,oBAAoB,EAAE,GAAG,OAAO,CAAA;QAElD,OAAO,IAAA,yBAA4B,EAAC;YAClC,QAAQ;YACR,oBAAoB;YACpB,iBAAiB,EAAE,KAAK,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE,EAAE;gBACxC,MAAM,GAAG,GAAG,MAAM,UAAU,CAAC,SAAS,CAAC,YAAY,EAAE;oBACnD,GAAG,EAAE,GAAG;oBACR,WAAW,EAAE,GAAG,EAAE,CAAC,IAAA,qBAAc,EAAC,GAAG,CAAC;iBACvC,CAAC,CAAA;gBAEF,OAAO,GAAG,CAAC,OAAO,CAAA;YACpB,CAAC;SACF,CAAC,CAAA;IACJ,CAAC;IAEM,KAAK,CAAC,wCAAwC,CACnD,YAA0B,EAC1B,OAAqD;QAErD,MAAM,UAAU,GAAG,YAAY,CAAC,iBAAiB,CAAC,OAAO,CAAC,iBAAU,CAAC,CAAA;QAErE,MAAM,EAAE,QAAQ,EAAE,GAAG,OAAO,CAAA;QAE5B,OAAO,IAAA,+BAAkC,EAAC;YACxC,QAAQ;YACR,iBAAiB,EAAE,KAAK,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE,EAAE;gBACxC,MAAM,GAAG,GAAG,MAAM,UAAU,CAAC,SAAS,CAAC,YAAY,EAAE;oBACnD,GAAG,EAAE,GAAG;oBACR,WAAW,EAAE,GAAG,EAAE,CAAC,IAAA,qBAAc,EAAC,GAAG,CAAC;iBACvC,CAAC,CAAA;gBAEF,OAAO,GAAG,CAAC,OAAO,CAAA;YACpB,CAAC;SACF,CAAC,CAAA;IACJ,CAAC;CACF,CAAA;AAtcY,gEAA0B;qCAA1B,0BAA0B;IADtC,IAAA,iBAAU,GAAE;qCAE6C,qCAA8B;GAD3E,0BAA0B,CAsctC"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import type { OpenId4VcJwtIssuer, OpenId4VcSiopVerifiedAuthorizationRequest } from '../shared';
|
|
1
|
+
import type { OpenId4VcJwtIssuer, OpenId4VcSiopVerifiedAuthorizationRequest, OpenId4VcJwtIssuerFederation } from '../shared';
|
|
2
2
|
import type { DifPexCredentialsForRequest, DifPexInputDescriptorToCredentials, DifPresentationExchangeDefinition } from '@credo-ts/core';
|
|
3
3
|
export interface OpenId4VcSiopResolvedAuthorizationRequest {
|
|
4
4
|
/**
|
|
@@ -30,9 +30,32 @@ export interface OpenId4VcSiopAcceptAuthorizationRequestOptions {
|
|
|
30
30
|
* In case presentation exchange is used, and `openIdTokenIssuer` is not provided, the issuer of the ID Token
|
|
31
31
|
* will be extracted from the signer of the first verifiable presentation.
|
|
32
32
|
*/
|
|
33
|
-
openIdTokenIssuer?: OpenId4VcJwtIssuer
|
|
33
|
+
openIdTokenIssuer?: Exclude<OpenId4VcJwtIssuer, OpenId4VcJwtIssuerFederation>;
|
|
34
34
|
/**
|
|
35
35
|
* The verified authorization request.
|
|
36
36
|
*/
|
|
37
37
|
authorizationRequest: OpenId4VcSiopVerifiedAuthorizationRequest;
|
|
38
38
|
}
|
|
39
|
+
export interface OpenId4VcSiopResolveAuthorizationRequestOptions {
|
|
40
|
+
federation?: {
|
|
41
|
+
/**
|
|
42
|
+
* The entity IDs of the trusted issuers.
|
|
43
|
+
*/
|
|
44
|
+
trustedEntityIds?: string[];
|
|
45
|
+
};
|
|
46
|
+
}
|
|
47
|
+
export interface OpenId4VcSiopGetOpenIdProviderOptions {
|
|
48
|
+
federation?: {
|
|
49
|
+
/**
|
|
50
|
+
* The entity IDs of the trusted issuers.
|
|
51
|
+
*/
|
|
52
|
+
trustedEntityIds?: string[];
|
|
53
|
+
};
|
|
54
|
+
}
|
|
55
|
+
export interface OpenId4VcSiopResolveTrustChainsOptions {
|
|
56
|
+
entityId: string;
|
|
57
|
+
trustAnchorEntityIds: [string, ...string[]];
|
|
58
|
+
}
|
|
59
|
+
export interface OpenId4VcSiopFetchEntityConfigurationOptions {
|
|
60
|
+
entityId: string;
|
|
61
|
+
}
|
|
@@ -10,6 +10,7 @@ const OpenId4VcIssuerService_1 = require("./OpenId4VcIssuerService");
|
|
|
10
10
|
const repository_1 = require("./repository");
|
|
11
11
|
const OpenId4VcIssuerRepository_1 = require("./repository/OpenId4VcIssuerRepository");
|
|
12
12
|
const router_2 = require("./router");
|
|
13
|
+
const federationEndpoint_1 = require("./router/federationEndpoint");
|
|
13
14
|
/**
|
|
14
15
|
* @public
|
|
15
16
|
*/
|
|
@@ -96,6 +97,7 @@ class OpenId4VcIssuerModule {
|
|
|
96
97
|
(0, router_2.configureAccessTokenEndpoint)(endpointRouter, this.config);
|
|
97
98
|
(0, router_2.configureAuthorizationChallengeEndpoint)(endpointRouter, this.config);
|
|
98
99
|
(0, router_2.configureCredentialEndpoint)(endpointRouter, this.config);
|
|
100
|
+
(0, federationEndpoint_1.configureFederationEndpoint)(endpointRouter);
|
|
99
101
|
// First one will be called for all requests (when next is called)
|
|
100
102
|
contextRouter.use(async (req, _res, next) => {
|
|
101
103
|
const { agentContext } = (0, router_1.getRequestContext)(req);
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"OpenId4VcIssuerModule.js","sourceRoot":"","sources":["../../src/openid4vc-issuer/OpenId4VcIssuerModule.ts"],"names":[],"mappings":";;;AAKA,6CAAkD;AAClD,yCAA4C;AAE5C,6CAA8F;AAE9F,6DAAyD;AACzD,+EAA2E;AAC3E,qEAAiE;AACjE,6CAAiE;AACjE,sFAAkF;AAClF,qCASiB;
|
|
1
|
+
{"version":3,"file":"OpenId4VcIssuerModule.js","sourceRoot":"","sources":["../../src/openid4vc-issuer/OpenId4VcIssuerModule.ts"],"names":[],"mappings":";;;AAKA,6CAAkD;AAClD,yCAA4C;AAE5C,6CAA8F;AAE9F,6DAAyD;AACzD,+EAA2E;AAC3E,qEAAiE;AACjE,6CAAiE;AACjE,sFAAkF;AAClF,qCASiB;AACjB,oEAAyE;AAEzE;;GAEG;AACH,MAAa,qBAAqB;IAIhC,YAAmB,OAA2C;QAH9C,QAAG,GAAG,uCAAkB,CAAA;QAItC,IAAI,CAAC,MAAM,GAAG,IAAI,yDAA2B,CAAC,OAAO,CAAC,CAAA;IACxD,CAAC;IAED;;OAEG;IACI,QAAQ,CAAC,iBAAoC;QAClD,MAAM,WAAW,GAAG,iBAAiB,CAAC,OAAO,CAAC,kBAAW,CAAC,CAAA;QAE1D,iCAAiC;QACjC,WAAW,CAAC,MAAM,CAAC,IAAI,CACrB,0LAA0L,CAC3L,CAAA;QAED,IAAI,WAAW,CAAC,qBAAqB,EAAE,CAAC;YACtC,IAAA,wBAAe,EAAC;gBACd,iBAAiB,EAAE,IAAI;aACxB,CAAC,CAAA;QACJ,CAAC;QACD,kBAAkB;QAClB,iBAAiB,CAAC,gBAAgB,CAAC,yDAA2B,EAAE,IAAI,CAAC,MAAM,CAAC,CAAA;QAE5E,WAAW;QACX,iBAAiB,CAAC,iBAAiB,CAAC,+CAAsB,CAAC,CAAA;QAE3D,aAAa;QACb,iBAAiB,CAAC,iBAAiB,CAAC,qDAAyB,CAAC,CAAA;QAC9D,iBAAiB,CAAC,iBAAiB,CAAC,+CAAkC,CAAC,CAAA;IACzE,CAAC;IAEM,KAAK,CAAC,UAAU,CAAC,gBAA8B;QACpD,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,CAAA;IACxC,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,gBAA8B;QACpD,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,EAAE,GAAG,IAAA,sBAAa,GAAE,CAAA;QAEpD,4DAA4D;QAC5D,gDAAgD;QAChD,uEAAuE;QACvE,sEAAsE;QACtE,8DAA8D;QAC9D,4CAA4C;QAE5C,wGAAwG;QACxG,iFAAiF;QACjF,MAAM,cAAc,GAAG,MAAM,EAAE,CAAA;QAC/B,MAAM,aAAa,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAA;QAExC,0CAA0C;QAC1C,aAAa,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,CAAC,CAAA;QAClD,yBAAyB;QACzB,aAAa,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,CAAA;QAEzB,aAAa,CAAC,KAAK,CAAC,UAAU,EAAE,KAAK,EAAE,GAA6B,EAAE,IAAI,EAAE,IAAI,EAAE,QAAgB,EAAE,EAAE;YACpG,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACd,gBAAgB,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,kEAAkE,CAAC,CAAA;gBACxG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA;YACpC,CAAC;YAED,IAAI,YAAY,GAA6B,SAAS,CAAA;YAEtD,IAAI,CAAC;gBACH,wDAAwD;gBACxD,YAAY,GAAG,MAAM,IAAA,kCAAyB,EAAC,gBAAgB,EAAE,QAAQ,CAAC,CAAA;gBAC1E,MAAM,SAAS,GAAG,YAAY,CAAC,iBAAiB,CAAC,OAAO,CAAC,uCAAkB,CAAC,CAAA;gBAC5E,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,mBAAmB,CAAC,QAAQ,CAAC,CAAA;gBAE5D,GAAG,CAAC,cAAc,GAAG;oBACnB,YAAY;oBACZ,MAAM;iBACP,CAAA;YACH,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,YAAY,aAAZ,YAAY,uBAAZ,YAAY,CAAE,MAAM,CAAC,MAAM,CAAC,KAAK,CAC/B,4EAA4E,EAC5E;oBACE,KAAK;iBACN,CACF,CAAA;gBACD,wBAAwB;gBACxB,MAAM,CAAA,YAAY,aAAZ,YAAY,uBAAZ,YAAY,CAAE,UAAU,EAAE,CAAA,CAAA;gBAEhC,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA;YAC3C,CAAC;YAED,IAAI,EAAE,CAAA;QACR,CAAC,CAAC,CAAA;QAEF,aAAa,CAAC,GAAG,CAAC,YAAY,EAAE,cAAc,CAAC,CAAA;QAE/C,sBAAsB;QACtB,IAAA,wCAA+B,EAAC,cAAc,CAAC,CAAA;QAC/C,IAAA,8BAAqB,EAAC,cAAc,EAAE,IAAI,CAAC,MAAM,CAAC,CAAA;QAClD,IAAA,+BAAsB,EAAC,cAAc,EAAE,IAAI,CAAC,MAAM,CAAC,CAAA;QACnD,IAAA,0DAAiD,EAAC,cAAc,CAAC,CAAA;QACjE,IAAA,yCAAgC,EAAC,cAAc,EAAE,IAAI,CAAC,MAAM,CAAC,CAAA;QAC7D,IAAA,qCAA4B,EAAC,cAAc,EAAE,IAAI,CAAC,MAAM,CAAC,CAAA;QACzD,IAAA,gDAAuC,EAAC,cAAc,EAAE,IAAI,CAAC,MAAM,CAAC,CAAA;QACpE,IAAA,oCAA2B,EAAC,cAAc,EAAE,IAAI,CAAC,MAAM,CAAC,CAAA;QACxD,IAAA,gDAA2B,EAAC,cAAc,CAAC,CAAA;QAE3C,kEAAkE;QAClE,aAAa,CAAC,GAAG,CAAC,KAAK,EAAE,GAA6B,EAAE,IAAa,EAAE,IAAI,EAAE,EAAE;YAC7E,MAAM,EAAE,YAAY,EAAE,GAAG,IAAA,0BAAiB,EAAC,GAAG,CAAC,CAAA;YAC/C,MAAM,YAAY,CAAC,UAAU,EAAE,CAAA;YAE/B,IAAI,EAAE,CAAA;QACR,CAAC,CAAC,CAAA;QAEF,yDAAyD;QACzD,aAAa,CAAC,GAAG,CAAC,KAAK,EAAE,MAAe,EAAE,GAA6B,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;YAC5G,MAAM,EAAE,YAAY,EAAE,GAAG,IAAA,0BAAiB,EAAC,GAAG,CAAC,CAAA;YAE/C,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC;gBACrB,YAAY,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAC7B,iGAAiG,CAClG,CAAA;gBAED,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACnB,KAAK,EAAE,cAAc;oBACrB,iBAAiB,EAAE,6CAA6C;iBACjE,CAAC,CAAA;YACJ,CAAC;YAED,MAAM,YAAY,CAAC,UAAU,EAAE,CAAA;YAC/B,IAAI,EAAE,CAAA;QACR,CAAC,CAAC,CAAA;IACJ,CAAC;CACF;AAxID,sDAwIC"}
|
|
@@ -0,0 +1,89 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.configureFederationEndpoint = configureFederationEndpoint;
|
|
4
|
+
const core_1 = require("@credo-ts/core");
|
|
5
|
+
const core_2 = require("@openid-federation/core");
|
|
6
|
+
const router_1 = require("../../shared/router");
|
|
7
|
+
// TODO: It's also possible that the issuer and the verifier can have the same openid-federation endpoint. In that case we need to combine them.
|
|
8
|
+
function configureFederationEndpoint(router) {
|
|
9
|
+
// TODO: this whole result needs to be cached and the ttl should be the expires of this node
|
|
10
|
+
router.get('/.well-known/openid-federation', async (request, response, next) => {
|
|
11
|
+
var _a, _b;
|
|
12
|
+
const { agentContext, issuer } = (0, router_1.getRequestContext)(request);
|
|
13
|
+
try {
|
|
14
|
+
// TODO: Should be only created once per issuer and be used between instances
|
|
15
|
+
const federationKey = await agentContext.wallet.createKey({
|
|
16
|
+
keyType: core_1.KeyType.Ed25519,
|
|
17
|
+
});
|
|
18
|
+
const now = new Date();
|
|
19
|
+
const expires = new Date(now.getTime() + 1000 * 60 * 60 * 24); // 1 day from now
|
|
20
|
+
// TODO: We need to generate a key and always use that for the entity configuration
|
|
21
|
+
const jwk = (0, core_1.getJwkFromKey)(federationKey);
|
|
22
|
+
const kid = federationKey.fingerprint;
|
|
23
|
+
const alg = jwk.supportedSignatureAlgorithms[0];
|
|
24
|
+
const issuerDisplay = (_a = issuer.display) === null || _a === void 0 ? void 0 : _a[0];
|
|
25
|
+
const accessTokenSigningKey = core_1.Key.fromFingerprint(issuer.accessTokenPublicKeyFingerprint);
|
|
26
|
+
const entityConfiguration = await (0, core_2.createEntityConfiguration)({
|
|
27
|
+
claims: {
|
|
28
|
+
sub: issuer.issuerId,
|
|
29
|
+
iss: issuer.issuerId,
|
|
30
|
+
iat: now,
|
|
31
|
+
exp: expires,
|
|
32
|
+
jwks: {
|
|
33
|
+
keys: [Object.assign({ kid, alg }, jwk.toJson())],
|
|
34
|
+
},
|
|
35
|
+
metadata: {
|
|
36
|
+
federation_entity: issuerDisplay
|
|
37
|
+
? {
|
|
38
|
+
organization_name: issuerDisplay.name,
|
|
39
|
+
logo_uri: (_b = issuerDisplay.logo) === null || _b === void 0 ? void 0 : _b.uri,
|
|
40
|
+
}
|
|
41
|
+
: undefined,
|
|
42
|
+
openid_provider: {
|
|
43
|
+
// TODO: The type isn't correct yet down the line so that needs to be updated before
|
|
44
|
+
// credential_issuer: issuerMetadata.issuerUrl,
|
|
45
|
+
// token_endpoint: issuerMetadata.tokenEndpoint,
|
|
46
|
+
// credential_endpoint: issuerMetadata.credentialEndpoint,
|
|
47
|
+
// authorization_server: issuerMetadata.authorizationServer,
|
|
48
|
+
// authorization_servers: issuerMetadata.authorizationServer
|
|
49
|
+
// ? [issuerMetadata.authorizationServer]
|
|
50
|
+
// : undefined,
|
|
51
|
+
// credentials_supported: issuerMetadata.credentialsSupported,
|
|
52
|
+
// credential_configurations_supported: issuerMetadata.credentialConfigurationsSupported,
|
|
53
|
+
// display: issuerMetadata.issuerDisplay,
|
|
54
|
+
// dpop_signing_alg_values_supported: issuerMetadata.dpopSigningAlgValuesSupported,
|
|
55
|
+
client_registration_types_supported: ['automatic'],
|
|
56
|
+
jwks: {
|
|
57
|
+
keys: [
|
|
58
|
+
Object.assign({
|
|
59
|
+
// TODO: Not 100% sure if this is the right key that we want to expose here or a different one
|
|
60
|
+
kid: accessTokenSigningKey.fingerprint }, (0, core_1.getJwkFromKey)(accessTokenSigningKey).toJson()),
|
|
61
|
+
],
|
|
62
|
+
},
|
|
63
|
+
},
|
|
64
|
+
},
|
|
65
|
+
},
|
|
66
|
+
header: {
|
|
67
|
+
kid,
|
|
68
|
+
alg,
|
|
69
|
+
typ: 'entity-statement+jwt',
|
|
70
|
+
},
|
|
71
|
+
signJwtCallback: ({ toBeSigned }) => agentContext.wallet.sign({
|
|
72
|
+
data: toBeSigned,
|
|
73
|
+
key: federationKey,
|
|
74
|
+
}),
|
|
75
|
+
});
|
|
76
|
+
response.writeHead(200, { 'Content-Type': 'application/entity-statement+jwt' }).end(entityConfiguration);
|
|
77
|
+
}
|
|
78
|
+
catch (error) {
|
|
79
|
+
agentContext.config.logger.error('Failed to create entity configuration', {
|
|
80
|
+
error,
|
|
81
|
+
});
|
|
82
|
+
(0, router_1.sendErrorResponse)(response, next, agentContext.config.logger, 500, 'invalid_request', error);
|
|
83
|
+
return;
|
|
84
|
+
}
|
|
85
|
+
// NOTE: if we don't call next, the agentContext session handler will NOT be called
|
|
86
|
+
next();
|
|
87
|
+
});
|
|
88
|
+
}
|
|
89
|
+
//# sourceMappingURL=federationEndpoint.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"federationEndpoint.js","sourceRoot":"","sources":["../../../src/openid4vc-issuer/router/federationEndpoint.ts"],"names":[],"mappings":";;AAWA,kEA6FC;AApGD,yCAA4D;AAC5D,kDAAmE;AAEnE,gDAA0E;AAE1E,gJAAgJ;AAEhJ,SAAgB,2BAA2B,CAAC,MAAc;IACxD,4FAA4F;IAE5F,MAAM,CAAC,GAAG,CAAC,gCAAgC,EAAE,KAAK,EAAE,OAAiC,EAAE,QAAkB,EAAE,IAAI,EAAE,EAAE;;QACjH,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,GAAG,IAAA,0BAAiB,EAAC,OAAO,CAAC,CAAA;QAE3D,IAAI,CAAC;YACH,6EAA6E;YAC7E,MAAM,aAAa,GAAG,MAAM,YAAY,CAAC,MAAM,CAAC,SAAS,CAAC;gBACxD,OAAO,EAAE,cAAO,CAAC,OAAO;aACzB,CAAC,CAAA;YAEF,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAA;YACtB,MAAM,OAAO,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,IAAI,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,CAAA,CAAC,iBAAiB;YAE/E,mFAAmF;YAEnF,MAAM,GAAG,GAAG,IAAA,oBAAa,EAAC,aAAa,CAAC,CAAA;YAExC,MAAM,GAAG,GAAG,aAAa,CAAC,WAAW,CAAA;YACrC,MAAM,GAAG,GAAG,GAAG,CAAC,4BAA4B,CAAC,CAAC,CAAC,CAAA;YAE/C,MAAM,aAAa,GAAG,MAAA,MAAM,CAAC,OAAO,0CAAG,CAAC,CAAC,CAAA;YAEzC,MAAM,qBAAqB,GAAG,UAAG,CAAC,eAAe,CAAC,MAAM,CAAC,+BAA+B,CAAC,CAAA;YAEzF,MAAM,mBAAmB,GAAG,MAAM,IAAA,gCAAyB,EAAC;gBAC1D,MAAM,EAAE;oBACN,GAAG,EAAE,MAAM,CAAC,QAAQ;oBACpB,GAAG,EAAE,MAAM,CAAC,QAAQ;oBACpB,GAAG,EAAE,GAAG;oBACR,GAAG,EAAE,OAAO;oBACZ,IAAI,EAAE;wBACJ,IAAI,EAAE,iBAAG,GAAG,EAAE,GAAG,IAAK,GAAG,CAAC,MAAM,EAAE,EAAG;qBACtC;oBACD,QAAQ,EAAE;wBACR,iBAAiB,EAAE,aAAa;4BAC9B,CAAC,CAAC;gCACE,iBAAiB,EAAE,aAAa,CAAC,IAAI;gCACrC,QAAQ,EAAE,MAAA,aAAa,CAAC,IAAI,0CAAE,GAAG;6BAClC;4BACH,CAAC,CAAC,SAAS;wBACb,eAAe,EAAE;4BACf,oFAAoF;4BACpF,+CAA+C;4BAC/C,gDAAgD;4BAChD,0DAA0D;4BAC1D,4DAA4D;4BAC5D,4DAA4D;4BAC5D,2CAA2C;4BAC3C,iBAAiB;4BACjB,8DAA8D;4BAC9D,yFAAyF;4BACzF,yCAAyC;4BACzC,mFAAmF;4BAEnF,mCAAmC,EAAE,CAAC,WAAW,CAAC;4BAClD,IAAI,EAAE;gCACJ,IAAI,EAAE;;wCAEF,8FAA8F;wCAC9F,GAAG,EAAE,qBAAqB,CAAC,WAAW,IACnC,IAAA,oBAAa,EAAC,qBAAqB,CAAC,CAAC,MAAM,EAAE;iCAEnD;6BACF;yBACF;qBACF;iBACF;gBACD,MAAM,EAAE;oBACN,GAAG;oBACH,GAAG;oBACH,GAAG,EAAE,sBAAsB;iBAC5B;gBACD,eAAe,EAAE,CAAC,EAAE,UAAU,EAAE,EAAE,EAAE,CAClC,YAAY,CAAC,MAAM,CAAC,IAAI,CAAC;oBACvB,IAAI,EAAE,UAAoB;oBAC1B,GAAG,EAAE,aAAa;iBACnB,CAAC;aACL,CAAC,CAAA;YAEF,QAAQ,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,kCAAkC,EAAE,CAAC,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAA;QAC1G,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,YAAY,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,uCAAuC,EAAE;gBACxE,KAAK;aACN,CAAC,CAAA;YACF,IAAA,0BAAiB,EAAC,QAAQ,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,EAAE,iBAAiB,EAAE,KAAK,CAAC,CAAA;YAC5F,OAAM;QACR,CAAC;QAED,mFAAmF;QACnF,IAAI,EAAE,CAAA;IACR,CAAC,CAAC,CAAA;AACJ,CAAC"}
|
|
@@ -1,8 +1,10 @@
|
|
|
1
|
-
import type { OpenId4VcSiopCreateAuthorizationRequestOptions, OpenId4VcSiopCreateAuthorizationRequestReturn, OpenId4VcSiopCreateVerifierOptions, OpenId4VcSiopVerifiedAuthorizationResponse, OpenId4VcSiopVerifyAuthorizationResponseOptions } from './OpenId4VcSiopVerifierServiceOptions';
|
|
1
|
+
import type { OpenId4VcSiopCreateAuthorizationRequestOptions, OpenId4VcSiopCreateAuthorizationRequestReturn, OpenId4VcSiopCreateVerifierOptions, OpenId4VcSiopVerifiedAuthorizationResponse, OpenId4VcSiopVerifyAuthorizationResponseOptions, ResponseMode } from './OpenId4VcSiopVerifierServiceOptions';
|
|
2
2
|
import type { OpenId4VcVerificationSessionRecord } from './repository';
|
|
3
3
|
import type { OpenId4VcSiopAuthorizationResponsePayload } from '../shared';
|
|
4
|
-
import type { AgentContext, Query, QueryOptions } from '@credo-ts/core';
|
|
4
|
+
import type { AgentContext, DifPresentationExchangeDefinition, Query, QueryOptions } from '@credo-ts/core';
|
|
5
|
+
import type { ClientIdScheme } from '@sphereon/did-auth-siop';
|
|
5
6
|
import { Logger, W3cCredentialService } from '@credo-ts/core';
|
|
7
|
+
import { RP } from '@sphereon/did-auth-siop';
|
|
6
8
|
import { OpenId4VcVerifierModuleConfig } from './OpenId4VcVerifierModuleConfig';
|
|
7
9
|
import { OpenId4VcVerificationSessionRepository, OpenId4VcVerifierRecord, OpenId4VcVerifierRepository } from './repository';
|
|
8
10
|
/**
|
|
@@ -50,6 +52,13 @@ export declare class OpenId4VcSiopVerifierService {
|
|
|
50
52
|
createVerifier(agentContext: AgentContext, options?: OpenId4VcSiopCreateVerifierOptions): Promise<OpenId4VcVerifierRecord>;
|
|
51
53
|
findVerificationSessionsByQuery(agentContext: AgentContext, query: Query<OpenId4VcVerificationSessionRecord>, queryOptions?: QueryOptions): Promise<OpenId4VcVerificationSessionRecord[]>;
|
|
52
54
|
getVerificationSessionById(agentContext: AgentContext, verificationSessionId: string): Promise<OpenId4VcVerificationSessionRecord>;
|
|
53
|
-
|
|
55
|
+
getRelyingParty(agentContext: AgentContext, verifier: OpenId4VcVerifierRecord, { idToken, presentationDefinition, clientId, clientIdScheme, authorizationResponseUrl, responseMode, }: {
|
|
56
|
+
responseMode?: ResponseMode;
|
|
57
|
+
idToken?: boolean;
|
|
58
|
+
presentationDefinition?: DifPresentationExchangeDefinition;
|
|
59
|
+
clientId: string;
|
|
60
|
+
authorizationResponseUrl: string;
|
|
61
|
+
clientIdScheme?: ClientIdScheme;
|
|
62
|
+
}): Promise<RP>;
|
|
54
63
|
private getPresentationVerificationCallback;
|
|
55
64
|
}
|