@did-btcr2/method 0.27.0 → 0.28.0

package/src/did-btcr2.ts

@@ -1,7 +1,5 @@
-import type { BitcoinConnection } from '@did-btcr2/bitcoin';
 import type {
   DocumentBytes,
-  HexString,
   KeyBytes,
   PatchOperation} from '@did-btcr2/common';
 import {
@@ -12,7 +10,6 @@ import {
   MethodError,
   UpdateError
 } from '@did-btcr2/common';
-import type { SignedBTCR2Update } from '@did-btcr2/cryptosuite';
 import type {
   DidMethod} from '@web5/dids';
 import {
@@ -21,13 +18,12 @@ import {
   DidErrorCode
 } from '@web5/dids';
 import * as ecc from '@bitcoinerlab/secp256k1';
-import { hexToBytes } from '@noble/hashes/utils';
 import { initEccLib } from 'bitcoinjs-lib';
 import type { BeaconService } from './core/beacon/interfaces.js';
 import { Identifier } from './core/identifier.js';
 import type { ResolutionOptions } from './core/interfaces.js';
 import { Resolver } from './core/resolver.js';
-import { Update } from './core/update.js';
+import { Updater } from './core/updater.js';
 import { Appendix } from './utils/appendix.js';
 import type { Btcr2DidDocument, DidVerificationMethod } from './utils/did-document.js';
 
@@ -140,55 +136,41 @@ export class DidBtcr2 implements DidMethod {
   }
 
   /**
-   * Entry point for section {@link https://dcdpr.github.io/did-btcr2/#read | 7.3 Update}.
-   * See specification for the {@link https://dcdpr.github.io/did-btcr2/operations/resolve.html#process | Resolve Process}.
-   * See {@link Update | Update (class)} for class implementation.
+   * Entry point for section {@link https://dcdpr.github.io/did-btcr2/#update | 7.3 Update}.
    *
-   * BTCR2 DID documents can be updated by anchoring BTCR2 Updates to Bitcoin transactions. These transactions MAY be
-   * published to the Bitcoin network. Any property in the DID document may be updated except the id. Doing so would
-   * invalidate the DID document.
-   * @param params An object containing the parameters for the update operation.
+   * Factory method that validates the update parameters and returns a sans-I/O
+   * {@link Updater} state machine. The caller drives the updater through its
+   * phases (Construct → Sign → Broadcast → Complete) by calling `advance()` and
+   * `provide()`. The method package performs **zero I/O** — signing key retrieval
+   * (or KMS delegation) and the on-chain broadcast are the caller's responsibility.
+   *
+   * For a fully-wired version with Bitcoin broadcast and key handling, see
+   * `DidMethodApi.update()` in `@did-btcr2/api`.
+   *
+   * @param params Update construction parameters.
    * @param {Btcr2DidDocument} params.sourceDocument The DID document being updated.
-   * @param {PatchOperation[]} params.patches The array of JSON Patch operations to apply to the sourceDocument.
-   * @param {string} params.sourceVersionId The version ID before applying the update.
-   * @param {string} params.verificationMethodId The verificationMethod ID to sign the update with.
-   * @param {string} params.beaconId The beacon ID associated with the update.
-   * @param {KeyBytes | HexString} [params.signingMaterial] Optional signing material (key bytes or hex string).
-   * @param {BitcoinConnection} [params.bitcoin] Optional Bitcoin network connection for announcing the update. If not provided, a default connection will be initialized.
-   * @return {Promise<SignedBTCR2Update>} Promise resolving to the signed BTCR2 update.
-   * @throws {UpdateError} if no verificationMethod, verificationMethod type is not `Multikey` or the publicKeyMultibase
-   * header is not `zQ3s`
+   * @param {PatchOperation[]} params.patches The JSON Patch operations to apply.
+   * @param {number} params.sourceVersionId The version ID before applying the update.
+   * @param {string} params.verificationMethodId The verification method ID to sign with.
+   * @param {string} params.beaconId The beacon service ID to broadcast through.
+   * @returns {Updater} A sans-I/O state machine for driving the update.
+   * @throws {UpdateError} If the verification method is not authorized, not found,
+   *   not of type `Multikey`, or does not have a `zQ3s` publicKeyMultibase prefix.
+   *   Also throws if the beacon service is not found.
    */
-  static async update({
+  static update({
     sourceDocument,
     patches,
     sourceVersionId,
     verificationMethodId,
     beaconId,
-    signingMaterial,
-    bitcoin,
   }: {
     sourceDocument: Btcr2DidDocument;
     patches: PatchOperation[];
     sourceVersionId: number;
     verificationMethodId: string;
     beaconId: string;
-    signingMaterial?: KeyBytes | HexString;
-    bitcoin?: BitcoinConnection;
-  }): Promise<SignedBTCR2Update> {
-    // If no signingMaterial provided, throw an UpdateError with INVALID_DID_UPDATE.
-    if (!signingMaterial) {
-      throw new UpdateError(
-        'Missing signing material for update',
-        INVALID_DID_UPDATE, {signingMaterial}
-      );
-    }
-
-    // Convert signingMaterial to bytes if it's a hex string
-    const secretKey = typeof signingMaterial === 'string'
-      ? hexToBytes(signingMaterial)
-      : signingMaterial;
-
+  }): Updater {
     // Validate that the verificationMethodId is authorized for capabilityInvocation
     if(!sourceDocument.capabilityInvocation?.some(vr => vr === verificationMethodId)) {
       throw new UpdateError(
@@ -201,15 +183,15 @@ export class DidBtcr2 implements DidMethod {
     const verificationMethod = this.getSigningMethod(sourceDocument, verificationMethodId);
 
     // Validate the verificationMethod exists in the sourceDocument
-    if (!verificationMethod) {
+    if(!verificationMethod) {
       throw new UpdateError(
         'Invalid verificationMethod: not found in source document',
-        INVALID_DID_DOCUMENT, {sourceDocument, verificationMethodId}
+        INVALID_DID_DOCUMENT, { sourceDocument, verificationMethodId }
       );
     }
 
     // Validate the verificationMethod is of type 'Multikey'
-    if (verificationMethod.type !== 'Multikey') {
+    if(verificationMethod.type !== 'Multikey') {
       throw new UpdateError(
         'Invalid verificationMethod: verificationMethod.type must be "Multikey"',
         INVALID_DID_DOCUMENT, verificationMethod
@@ -217,46 +199,34 @@ export class DidBtcr2 implements DidMethod {
     }
 
     // Validate the publicKeyMultibase prefix is 'zQ3s'
-    if (verificationMethod.publicKeyMultibase?.slice(0, 4) !== 'zQ3s') {
+    if(verificationMethod.publicKeyMultibase?.slice(0, 4) !== 'zQ3s') {
       throw new UpdateError(
         'Invalid verificationMethodId: publicKeyMultibase prefix must start with "zQ3s"',
         INVALID_DID_DOCUMENT, verificationMethod
       );
     }
 
-    // Construct an unsigned update following the BTCR2 Update construction algorithm
-    const update = Update.construct(sourceDocument, patches, sourceVersionId);
-
-    // Sign the unsigned update using the specified verification method
-    const signed = Update.sign(sourceDocument.id, update, verificationMethod, secretKey);
-
-    // Filter sourceDocument services to get beaconServices matching beaconIds
+    // Find the beacon service matching the given beaconId
     const beaconService = sourceDocument.service
       .filter((service: BeaconService) => service.id === beaconId)
       .filter((service: BeaconService): service is BeaconService => !!service)
       .shift();
 
-    // If no matching beacon service found, throw an UpdateError with INVALID_DID_UPDATE.
     if(!beaconService) {
       throw new UpdateError(
         'No beacon service found for provided beaconId',
-        INVALID_DID_UPDATE, {sourceDocument, beaconId}
+        INVALID_DID_UPDATE, { sourceDocument, beaconId }
       );
     }
-    // Require an explicit bitcoin connection — no silent env-var fallback
-    if (!bitcoin) {
-      throw new UpdateError(
-        'Bitcoin connection required for update. Pass a configured `bitcoin` parameter '
-        + 'or use DidBtcr2Api which injects it automatically.',
-        INVALID_DID_UPDATE, { beaconId }
-      );
-    }
-
-    // Announce the signed update to the blockchain using the specified beacon(s)
-    await Update.announce(beaconService, signed, secretKey, bitcoin);
 
-    // Return signed update if announced successfully
-    return signed;
+    // Return a sans-I/O state machine the caller will drive
+    return new Updater({
+      sourceDocument,
+      patches,
+      sourceVersionId,
+      verificationMethod,
+      beaconService,
+    });
   }
 
   /**

package/src/index.ts

@@ -14,6 +14,7 @@ export * from './core/beacon/beacon.js';
 export * from './core/beacon/cas-beacon.js';
 export * from './core/beacon/error.js';
 export * from './core/beacon/factory.js';
+export * from './core/beacon/fee-estimator.js';
 export * from './core/beacon/interfaces.js';
 export * from './core/beacon/signal-discovery.js';
 export * from './core/beacon/singleton-beacon.js';
@@ -25,7 +26,7 @@ export * from './core/identifier.js';
 export * from './core/interfaces.js';
 export * from './core/resolver.js';
 export * from './core/types.js';
-export * from './core/update.js';
+export * from './core/updater.js';
 
 // Utils
 export * from './utils/appendix.js';

package/dist/esm/core/update.js

@@ -1,112 +0,0 @@
-import { canonicalHash, INVALID_DID_UPDATE, JSONPatch, UpdateError } from '@did-btcr2/common';
-import { SchnorrMultikey } from '@did-btcr2/cryptosuite';
-import { DidDocument } from '../utils/did-document.js';
-import { BeaconFactory } from './beacon/factory.js';
-/**
- * Implements {@link https://dcdpr.github.io/did-btcr2/operations/update.html | 7.3 Update}.
- *
- * An update to a did:btcr2 document is an invoked capability using the ZCAP-LD
- * data format, signed by a verificationMethod that has the authority to make
- * the update as specified in the previous DID document. Capability invocations
- * for updates MUST be authorized using Data Integrity following the
- * bip340-jcs-2025 cryptosuite with a proofPurpose of capabilityInvocation.
- *
- * @class Update
- * @type {Update}
- */
-export class Update {
-    /**
-     * Implements subsection {@link https://dcdpr.github.io/did-btcr2/operations/update.html#construct-btcr2-unsigned-update | 7.3.b Construct BTCR2 Unsigned Update}.
-     * This process constructs a BTCR2 Unsigned Update conformant to the spec template.
-     *
-     * @param {Btcr2DidDocument} sourceDocument The source DID document to be updated.
-     * @param {PatchOperation[]} patches The array of JSON Patch operations to apply to the sourceDocument.
-     * @param {number} sourceVersionId The version ID of the source document.
-     * @returns {UnsignedBTCR2Update} The constructed UnsignedBTCR2Update object.
-     * @throws {UpdateError} InvalidDid if sourceDocument.id does not match identifier.
-     */
-    static construct(sourceDocument, patches, sourceVersionId) {
-        // Initialize an unsigned update conformant to btcr2 spec.
-        const unsignedUpdate = {
-            '@context': [
-                'https://w3id.org/security/v2',
-                'https://w3id.org/zcap/v1',
-                'https://w3id.org/json-ld-patch/v1',
-                'https://btcr2.dev/context/v1'
-            ],
-            patch: patches,
-            targetHash: '',
-            targetVersionId: sourceVersionId + 1,
-            sourceHash: canonicalHash(sourceDocument),
-        };
-        // Apply all JSON patches to sourceDocument.
-        const targetDocument = JSONPatch.apply(sourceDocument, patches);
-        try {
-            // Ensure the targetDocument is conformant to DID Core v1.1.
-            DidDocument.isValid(targetDocument);
-        }
-        catch (error) {
-            // If validation fails, throw an UpdateError with INVALID_DID_UPDATE.
-            throw new UpdateError('Error validating targetDocument: ' + (error instanceof Error ? error.message : String(error)), INVALID_DID_UPDATE, targetDocument);
-        }
-        // Set the targetHash by canonicalizing the targetDocument and encoding it in base64url.
-        unsignedUpdate.targetHash = canonicalHash(targetDocument);
-        // Return unsignedUpdate.
-        return unsignedUpdate;
-    }
-    /**
-     * Implements subsection {@link http://dcdpr.github.io/did-btcr2/operations/update.html#construct-btcr2-signed-update | 7.3.c Construct BTCR2 Signed Update }.
-     * This process constructs a BTCR2 Signed Update from a BTCR2 Unsigned Update.
-     *
-     * @param {string} did The did-btcr2 identifier to derive the root capability from
-     * @param {UnsignedBTCR2Update} unsignedUpdate The updatePayload object to be signed
-     * @param {DidVerificationMethod} verificationMethod The verificationMethod object to be used for signing
-     * @returns {SignedBTCR2Update} Did update payload secured with a proof => SignedBTCR2Update
-     * @throws {UpdateError} if the privateKeyBytes are invalid
-     */
-    static sign(did, unsignedUpdate, verificationMethod, secretKey) {
-        // Parse the controller from the verificationMethod
-        const controller = verificationMethod.controller;
-        // Parse the fragment from the vmId
-        const id = verificationMethod.id.slice(verificationMethod.id.indexOf('#'));
-        // Construct a Schnorr Multikey
-        const multikey = SchnorrMultikey.fromSecretKey(id, controller, secretKey);
-        // Define the Data Integrity proof config
-        const config = {
-            '@context': [
-                'https://w3id.org/security/v2',
-                'https://w3id.org/zcap/v1',
-                'https://w3id.org/json-ld-patch/v1',
-                'https://btcr2.dev/context/v1'
-            ],
-            cryptosuite: 'bip340-jcs-2025',
-            type: 'DataIntegrityProof',
-            verificationMethod: verificationMethod.id,
-            proofPurpose: 'capabilityInvocation',
-            capability: `urn:zcap:root:${encodeURIComponent(did)}`,
-            capabilityAction: 'Write',
-        };
-        // Go from multikey => cryptosuite => diproof
-        const diproof = multikey.toCryptosuite().toDataIntegrityProof();
-        // Use the config to add a proof to the unsigned update
-        return diproof.addProof(unsignedUpdate, config);
-    }
-    /**
-     * Implements subsection {@link https://dcdpr.github.io/did-btcr2/operations/update.html#announce-did-update | 7.3.d Announce DID Update}.
-     * BTCR2 Signed Updates are announced to the Bitcoin blockchain depending on the Beacon Type.
-     * @param {BeaconService} beaconService The BeaconService object representing the funded beacon to announce the update to.
-     * @param {SignedBTCR2Update} update The signed update object to be announced.
-     * @param {KeyBytes} secretKey The private key used to sign the update for announcement.
-     * @returns {SignedBTCR2Update} The SignedBTCR2Update object containing data to validate the Beacon Signal
-     * @throws {UpdateError} if the beaconService type is invalid
-     */
-    static async announce(beaconService, update, secretKey, bitcoin) {
-        // Establish a beacon object
-        const beacon = BeaconFactory.establish(beaconService);
-        // Broadcast the update
-        const result = await beacon.broadcastSignal(update, secretKey, bitcoin);
-        // Return the sidecarData
-        return result;
-    }
-}
-//# sourceMappingURL=update.js.map

package/dist/esm/core/update.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"update.js","sourceRoot":"","sources":["../../../src/core/update.ts"],"names":[],"mappings":"AAGA,OAAO,EACL,aAAa,EACb,kBAAkB,EAClB,SAAS,EACT,WAAW,EACZ,MAAM,mBAAmB,CAAC;AAM3B,OAAO,EACL,eAAe,EAChB,MAAM,wBAAwB,CAAC;AAEhC,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAC;AACvD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AAIpD;;;;;;;;;;;GAWG;AACH,MAAM,OAAO,MAAM;IACjB;;;;;;;;;OASG;IACH,MAAM,CAAC,SAAS,CACd,cAAgC,EAChC,OAAyB,EACzB,eAAuB;QAEvB,0DAA0D;QAC1D,MAAM,cAAc,GAAwB;YAC1C,UAAU,EAAQ;gBAChB,8BAA8B;gBAC9B,0BAA0B;gBAC1B,mCAAmC;gBACnC,8BAA8B;aAC/B;YACD,KAAK,EAAa,OAAO;YACzB,UAAU,EAAQ,EAAE;YACpB,eAAe,EAAG,eAAe,GAAG,CAAC;YACrC,UAAU,EAAQ,aAAa,CAAC,cAAc,CAAC;SAChD,CAAC;QAEF,4CAA4C;QAC5C,MAAM,cAAc,GAAG,SAAS,CAAC,KAAK,CAAC,cAAc,EAAE,OAAO,CAAC,CAAC;QAEhE,IAAI,CAAC;YACH,4DAA4D;YAC5D,WAAW,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;QACtC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,qEAAqE;YACrE,MAAM,IAAI,WAAW,CACnB,mCAAmC,GAAG,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,EAC9F,kBAAkB,EAAE,cAAc,CACnC,CAAC;QACJ,CAAC;QAED,wFAAwF;QACxF,cAAc,CAAC,UAAU,GAAG,aAAa,CAAC,cAAc,CAAC,CAAC;QAE1D,yBAAyB;QACzB,OAAO,cAAc,CAAC;IACxB,CAAC;IAED;;;;;;;;;OASG;IACH,MAAM,CAAC,IAAI,CACT,GAAW,EACX,cAAmC,EACnC,kBAAyC,EACzC,SAAmB;QAEnB,mDAAmD;QACnD,MAAM,UAAU,GAAG,kBAAkB,CAAC,UAAU,CAAC;QACjD,mCAAmC;QACnC,MAAM,EAAE,GAAG,kBAAkB,CAAC,EAAE,CAAC,KAAK,CAAC,kBAAkB,CAAC,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC;QAE3E,+BAA+B;QAC/B,MAAM,QAAQ,GAAG,eAAe,CAAC,aAAa,CAAC,EAAE,EAAE,UAAU,EAAE,SAAS,CAAC,CAAC;QAE1E,yCAAyC;QACzC,MAAM,MAAM,GAAwB;YAClC,UAAU,EAAG;gBACX,8BAA8B;gBAC9B,0BAA0B;gBAC1B,mCAAmC;gBACnC,8BAA8B;aAC/B;YACD,WAAW,EAAU,iBAAiB;YACtC,IAAI,EAAiB,oBAAoB;YACzC,kBAAkB,EAAG,kBAAkB,CAAC,EAAE;YAC1C,YAAY,EAAS,sBAAsB;YAC3C,UAAU,EAAW,iBAAiB,kBAAkB,CAAC,GAAG,CAAC,EAAE;YAC/D,gBAAgB,EAAK,OAAO;SAC7B,CAAC;QAEF,6CAA6C;QAC7C,MAAM,OAAO,GAAG,QAAQ,CAAC,aAAa,EAAE,CAAC,oBAAoB,EAAE,CAAC;QAEhE,uDAAuD;QACvD,OAAO,OAAO,CAAC,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;IAClD,CAAC;IAED;;;;;;;;OAQG;IACH,MAAM,CAAC,KAAK,CAAC,QAAQ,CACnB,aAA4B,EAC5B,MAAyB,EACzB,SAAmB,EACnB,OAA0B;QAE1B,4BAA4B;QAC5B,MAAM,MAAM,GAAG,aAAa,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;QAEtD,uBAAuB;QACvB,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,eAAe,CAAC,MAAM,EAAE,SAAS,EAAE,OAAO,CAAC,CAAC;QAExE,yBAAyB;QACzB,OAAO,MAAM,CAAC;IAChB,CAAC;CACF"}

package/dist/types/core/update.d.ts

@@ -1,52 +0,0 @@
-import type { KeyBytes, PatchOperation } from '@did-btcr2/common';
-import type { SignedBTCR2Update, UnsignedBTCR2Update } from '@did-btcr2/cryptosuite';
-import type { Btcr2DidDocument, DidVerificationMethod } from '../utils/did-document.js';
-import type { BeaconService } from './beacon/interfaces.js';
-import type { BitcoinConnection } from '@did-btcr2/bitcoin';
-/**
- * Implements {@link https://dcdpr.github.io/did-btcr2/operations/update.html | 7.3 Update}.
- *
- * An update to a did:btcr2 document is an invoked capability using the ZCAP-LD
- * data format, signed by a verificationMethod that has the authority to make
- * the update as specified in the previous DID document. Capability invocations
- * for updates MUST be authorized using Data Integrity following the
- * bip340-jcs-2025 cryptosuite with a proofPurpose of capabilityInvocation.
- *
- * @class Update
- * @type {Update}
- */
-export declare class Update {
-    /**
-     * Implements subsection {@link https://dcdpr.github.io/did-btcr2/operations/update.html#construct-btcr2-unsigned-update | 7.3.b Construct BTCR2 Unsigned Update}.
-     * This process constructs a BTCR2 Unsigned Update conformant to the spec template.
-     *
-     * @param {Btcr2DidDocument} sourceDocument The source DID document to be updated.
-     * @param {PatchOperation[]} patches The array of JSON Patch operations to apply to the sourceDocument.
-     * @param {number} sourceVersionId The version ID of the source document.
-     * @returns {UnsignedBTCR2Update} The constructed UnsignedBTCR2Update object.
-     * @throws {UpdateError} InvalidDid if sourceDocument.id does not match identifier.
-     */
-    static construct(sourceDocument: Btcr2DidDocument, patches: PatchOperation[], sourceVersionId: number): UnsignedBTCR2Update;
-    /**
-     * Implements subsection {@link http://dcdpr.github.io/did-btcr2/operations/update.html#construct-btcr2-signed-update | 7.3.c Construct BTCR2 Signed Update }.
-     * This process constructs a BTCR2 Signed Update from a BTCR2 Unsigned Update.
-     *
-     * @param {string} did The did-btcr2 identifier to derive the root capability from
-     * @param {UnsignedBTCR2Update} unsignedUpdate The updatePayload object to be signed
-     * @param {DidVerificationMethod} verificationMethod The verificationMethod object to be used for signing
-     * @returns {SignedBTCR2Update} Did update payload secured with a proof => SignedBTCR2Update
-     * @throws {UpdateError} if the privateKeyBytes are invalid
-     */
-    static sign(did: string, unsignedUpdate: UnsignedBTCR2Update, verificationMethod: DidVerificationMethod, secretKey: KeyBytes): SignedBTCR2Update;
-    /**
-     * Implements subsection {@link https://dcdpr.github.io/did-btcr2/operations/update.html#announce-did-update | 7.3.d Announce DID Update}.
-     * BTCR2 Signed Updates are announced to the Bitcoin blockchain depending on the Beacon Type.
-     * @param {BeaconService} beaconService The BeaconService object representing the funded beacon to announce the update to.
-     * @param {SignedBTCR2Update} update The signed update object to be announced.
-     * @param {KeyBytes} secretKey The private key used to sign the update for announcement.
-     * @returns {SignedBTCR2Update} The SignedBTCR2Update object containing data to validate the Beacon Signal
-     * @throws {UpdateError} if the beaconService type is invalid
-     */
-    static announce(beaconService: BeaconService, update: SignedBTCR2Update, secretKey: KeyBytes, bitcoin: BitcoinConnection): Promise<SignedBTCR2Update>;
-}
-//# sourceMappingURL=update.d.ts.map

package/dist/types/core/update.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"update.d.ts","sourceRoot":"","sources":["../../../src/core/update.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,QAAQ,EACR,cAAc,EAAC,MAAM,mBAAmB,CAAC;AAO3C,OAAO,KAAK,EAEV,iBAAiB,EACjB,mBAAmB,EACpB,MAAM,wBAAwB,CAAC;AAIhC,OAAO,KAAK,EAAE,gBAAgB,EAAE,qBAAqB,EAAE,MAAM,0BAA0B,CAAC;AAGxF,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,wBAAwB,CAAC;AAC5D,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AAE5D;;;;;;;;;;;GAWG;AACH,qBAAa,MAAM;IACjB;;;;;;;;;OASG;IACH,MAAM,CAAC,SAAS,CACd,cAAc,EAAE,gBAAgB,EAChC,OAAO,EAAE,cAAc,EAAE,EACzB,eAAe,EAAE,MAAM,GACtB,mBAAmB;IAoCtB;;;;;;;;;OASG;IACH,MAAM,CAAC,IAAI,CACT,GAAG,EAAE,MAAM,EACX,cAAc,EAAE,mBAAmB,EACnC,kBAAkB,EAAE,qBAAqB,EACzC,SAAS,EAAE,QAAQ,GAClB,iBAAiB;IAgCpB;;;;;;;;OAQG;WACU,QAAQ,CACnB,aAAa,EAAE,aAAa,EAC5B,MAAM,EAAE,iBAAiB,EACzB,SAAS,EAAE,QAAQ,EACnB,OAAO,EAAE,iBAAiB,GACzB,OAAO,CAAC,iBAAiB,CAAC;CAU9B"}

package/src/core/update.ts

@@ -1,158 +0,0 @@
-import type {
-  KeyBytes,
-  PatchOperation} from '@did-btcr2/common';
-import {
-  canonicalHash,
-  INVALID_DID_UPDATE,
-  JSONPatch,
-  UpdateError
-} from '@did-btcr2/common';
-import type {
-  DataIntegrityConfig,
-  SignedBTCR2Update,
-  UnsignedBTCR2Update
-} from '@did-btcr2/cryptosuite';
-import {
-  SchnorrMultikey
-} from '@did-btcr2/cryptosuite';
-import type { Btcr2DidDocument, DidVerificationMethod } from '../utils/did-document.js';
-import { DidDocument } from '../utils/did-document.js';
-import { BeaconFactory } from './beacon/factory.js';
-import type { BeaconService } from './beacon/interfaces.js';
-import type { BitcoinConnection } from '@did-btcr2/bitcoin';
-
-/**
- * Implements {@link https://dcdpr.github.io/did-btcr2/operations/update.html | 7.3 Update}.
- *
- * An update to a did:btcr2 document is an invoked capability using the ZCAP-LD
- * data format, signed by a verificationMethod that has the authority to make
- * the update as specified in the previous DID document. Capability invocations
- * for updates MUST be authorized using Data Integrity following the
- * bip340-jcs-2025 cryptosuite with a proofPurpose of capabilityInvocation.
- *
- * @class Update
- * @type {Update}
- */
-export class Update {
-  /**
-   * Implements subsection {@link https://dcdpr.github.io/did-btcr2/operations/update.html#construct-btcr2-unsigned-update | 7.3.b Construct BTCR2 Unsigned Update}.
-   * This process constructs a BTCR2 Unsigned Update conformant to the spec template.
-   *
-   * @param {Btcr2DidDocument} sourceDocument The source DID document to be updated.
-   * @param {PatchOperation[]} patches The array of JSON Patch operations to apply to the sourceDocument.
-   * @param {number} sourceVersionId The version ID of the source document.
-   * @returns {UnsignedBTCR2Update} The constructed UnsignedBTCR2Update object.
-   * @throws {UpdateError} InvalidDid if sourceDocument.id does not match identifier.
-   */
-  static construct(
-    sourceDocument: Btcr2DidDocument,
-    patches: PatchOperation[],
-    sourceVersionId: number,
-  ): UnsignedBTCR2Update {
-    // Initialize an unsigned update conformant to btcr2 spec.
-    const unsignedUpdate: UnsignedBTCR2Update = {
-      '@context'      : [
-        'https://w3id.org/security/v2',
-        'https://w3id.org/zcap/v1',
-        'https://w3id.org/json-ld-patch/v1',
-        'https://btcr2.dev/context/v1'
-      ],
-      patch           : patches,
-      targetHash      : '',
-      targetVersionId : sourceVersionId + 1,
-      sourceHash      : canonicalHash(sourceDocument),
-    };
-
-    // Apply all JSON patches to sourceDocument.
-    const targetDocument = JSONPatch.apply(sourceDocument, patches);
-
-    try {
-      // Ensure the targetDocument is conformant to DID Core v1.1.
-      DidDocument.isValid(targetDocument);
-    } catch (error) {
-      // If validation fails, throw an UpdateError with INVALID_DID_UPDATE.
-      throw new UpdateError(
-        'Error validating targetDocument: ' + (error instanceof Error ? error.message : String(error)),
-        INVALID_DID_UPDATE, targetDocument
-      );
-    }
-
-    // Set the targetHash by canonicalizing the targetDocument and encoding it in base64url.
-    unsignedUpdate.targetHash = canonicalHash(targetDocument);
-
-    // Return unsignedUpdate.
-    return unsignedUpdate;
-  }
-
-  /**
-   * Implements subsection {@link http://dcdpr.github.io/did-btcr2/operations/update.html#construct-btcr2-signed-update | 7.3.c Construct BTCR2 Signed Update }.
-   * This process constructs a BTCR2 Signed Update from a BTCR2 Unsigned Update.
-   *
-   * @param {string} did The did-btcr2 identifier to derive the root capability from
-   * @param {UnsignedBTCR2Update} unsignedUpdate The updatePayload object to be signed
-   * @param {DidVerificationMethod} verificationMethod The verificationMethod object to be used for signing
-   * @returns {SignedBTCR2Update} Did update payload secured with a proof => SignedBTCR2Update
-   * @throws {UpdateError} if the privateKeyBytes are invalid
-   */
-  static sign(
-    did: string,
-    unsignedUpdate: UnsignedBTCR2Update,
-    verificationMethod: DidVerificationMethod,
-    secretKey: KeyBytes,
-  ): SignedBTCR2Update {
-    // Parse the controller from the verificationMethod
-    const controller = verificationMethod.controller;
-    // Parse the fragment from the vmId
-    const id = verificationMethod.id.slice(verificationMethod.id.indexOf('#'));
-
-    // Construct a Schnorr Multikey
-    const multikey = SchnorrMultikey.fromSecretKey(id, controller, secretKey);
-
-    // Define the Data Integrity proof config
-    const config: DataIntegrityConfig = {
-      '@context' : [
-        'https://w3id.org/security/v2',
-        'https://w3id.org/zcap/v1',
-        'https://w3id.org/json-ld-patch/v1',
-        'https://btcr2.dev/context/v1'
-      ],
-      cryptosuite        : 'bip340-jcs-2025',
-      type               : 'DataIntegrityProof',
-      verificationMethod : verificationMethod.id,
-      proofPurpose       : 'capabilityInvocation',
-      capability         : `urn:zcap:root:${encodeURIComponent(did)}`,
-      capabilityAction   : 'Write',
-    };
-
-    // Go from multikey => cryptosuite => diproof
-    const diproof = multikey.toCryptosuite().toDataIntegrityProof();
-
-    // Use the config to add a proof to the unsigned update
-    return diproof.addProof(unsignedUpdate, config);
-  }
-
-  /**
-   * Implements subsection {@link https://dcdpr.github.io/did-btcr2/operations/update.html#announce-did-update | 7.3.d Announce DID Update}.
-   * BTCR2 Signed Updates are announced to the Bitcoin blockchain depending on the Beacon Type.
-   * @param {BeaconService} beaconService The BeaconService object representing the funded beacon to announce the update to.
-   * @param {SignedBTCR2Update} update The signed update object to be announced.
-   * @param {KeyBytes} secretKey The private key used to sign the update for announcement.
-   * @returns {SignedBTCR2Update} The SignedBTCR2Update object containing data to validate the Beacon Signal
-   * @throws {UpdateError} if the beaconService type is invalid
-   */
-  static async announce(
-    beaconService: BeaconService,
-    update: SignedBTCR2Update,
-    secretKey: KeyBytes,
-    bitcoin: BitcoinConnection
-  ): Promise<SignedBTCR2Update> {
-    // Establish a beacon object
-    const beacon = BeaconFactory.establish(beaconService);
-
-    // Broadcast the update
-    const result = await beacon.broadcastSignal(update, secretKey, bitcoin);
-
-    // Return the sidecarData
-    return result;
-  }
-}