@learncard/network-plugin 2.11.5 → 2.12.1

package/dist/lcn-plugin.cjs.development.js

@@ -13205,6 +13205,19 @@ var VC2EvidenceValidator = external_exports.object({
   genre: external_exports.string().optional(),
   audience: external_exports.string().optional()
 }).catchall(external_exports.any());
+var TemplateRenderMethodValidator = external_exports.object({
+  type: external_exports.literal("TemplateRenderMethod"),
+  renderSuite: external_exports.string(),
+  template: external_exports.string(),
+  renderProperty: external_exports.array(external_exports.string()).optional(),
+  outputPreference: external_exports.object({
+    mediaType: external_exports.string()
+  }).optional()
+});
+var RenderMethodValidator = external_exports.union([
+  TemplateRenderMethodValidator,
+  external_exports.record(external_exports.string(), external_exports.any())
+]);
 var UnsignedVCValidator = external_exports.object({
   "@context": ContextValidator,
   id: external_exports.string().optional(),
@@ -13228,7 +13241,8 @@ var UnsignedVCValidator = external_exports.object({
   validUntil: external_exports.string().optional(),
   status: CredentialStatusValidator.or(CredentialStatusValidator.array()).optional(),
   termsOfUse: TermsOfUseValidator.or(TermsOfUseValidator.array()).optional(),
-  evidence: external_exports.union([VC2EvidenceValidator, external_exports.array(VC2EvidenceValidator)]).optional()
+  evidence: external_exports.union([VC2EvidenceValidator, external_exports.array(VC2EvidenceValidator)]).optional(),
+  renderMethod: external_exports.union([RenderMethodValidator, external_exports.array(RenderMethodValidator)]).optional()
 }).catchall(external_exports.any());
 var ProofValidator = external_exports.object({
   type: external_exports.string(),
@@ -13536,10 +13550,45 @@ var UnsignedClrCredentialValidator = UnsignedVCValidator.extend({
 var ClrCredentialValidator = UnsignedClrCredentialValidator.extend({
   proof: ProofValidator.or(ProofValidator.array())
 });
+var StatusCheckEntryValidator = external_exports.object({
+  /**
+   * The `credentialStatus.type` as it appeared on the credential.
+   * One of `BitstringStatusListEntry`, `StatusList2021Entry`,
+   * `RevocationList2020Status`, or any future custom status type.
+   */
+  entryType: external_exports.string(),
+  /**
+   * The claimed purpose of the entry. Standard values are
+   * `"revocation"` and `"suspension"`; the spec allows arbitrary
+   * strings.
+   */
+  statusPurpose: external_exports.string(),
+  /**
+   * Whether the bit at the credential's index in the status list
+   * bitstring was set.
+   */
+  isSet: external_exports.boolean(),
+  /** URL of the status list credential, when known. */
+  statusListCredential: external_exports.string().optional(),
+  /** Original (string) index within the status list. */
+  statusListIndex: external_exports.string().optional()
+});
 var VerificationCheckValidator = external_exports.object({
   checks: external_exports.string().array(),
   warnings: external_exports.string().array(),
-  errors: external_exports.string().array()
+  errors: external_exports.string().array(),
+  /**
+   * Per-entry results for the `credentialStatus` check, populated
+   * by `@learncard/didkit-plugin` when the verified credential
+   * carries one or more `credentialStatus` entries. Empty / absent
+   * for credentials without a status entry.
+   *
+   * Marked `.optional()` because the underlying `ssi-ldp`
+   * serializer omits the field when empty (`skip_serializing_if`),
+   * so older WASM builds that pre-date the structured-status
+   * change still validate against this schema.
+   */
+  status: StatusCheckEntryValidator.array().optional()
 });
 var VerificationStatusValidator = external_exports.enum(["Success", "Failed", "Error"]);
 var VerificationStatusEnum = VerificationStatusValidator.enum;
@@ -14942,6 +14991,28 @@ var AuthSessionError = (_a2 = class extends Error {
     this.name = "AuthSessionError";
   }
 }, __name(_a2, "AuthSessionError"), __name2(_a2, "AuthSessionError"), _a2);
+var BITSTRING_STATUS_PURPOSES = ["revocation", "suspension"];
+var BitstringStatusPurposeValidator = external_exports.enum(BITSTRING_STATUS_PURPOSES);
+var BitstringStatusListEntryValidator = external_exports.object({
+  id: external_exports.string().optional(),
+  type: external_exports.literal("BitstringStatusListEntry"),
+  statusPurpose: BitstringStatusPurposeValidator,
+  statusListIndex: external_exports.string(),
+  statusListCredential: external_exports.string()
+});
+var AllocatedBitstringStatusListEntryValidator = BitstringStatusListEntryValidator.extend({
+  id: external_exports.string()
+});
+var BitstringStatusListCredentialSubjectValidator = external_exports.object({
+  id: external_exports.string().optional(),
+  type: external_exports.literal("BitstringStatusList"),
+  statusPurpose: BitstringStatusPurposeValidator,
+  encodedList: external_exports.string()
+});
+var AllocateCredentialStatusInputValidator = external_exports.object({
+  statusPurposes: external_exports.array(BitstringStatusPurposeValidator).optional(),
+  listSize: external_exports.number().int().positive().optional()
+}).default({});
 
 // src/plugin.ts
 var import_helpers = require("@learncard/helpers");
@@ -15475,6 +15546,27 @@ var appendTemplateEvidence = /* @__PURE__ */ __name((boost, templateData, allowA
 var hasDid = /* @__PURE__ */ __name((profile) => {
   return !!profile && "did" in profile && typeof profile.did === "string" && profile.did.length > 0;
 }, "hasDid");
+var appendNetworkCredentialStatus = /* @__PURE__ */ __name(async (client, credential, statusPurposes = ["revocation"]) => {
+  if (!(0, import_helpers.isVC2Format)(credential)) return credential;
+  const existingStatuses = (0, import_helpers.getCredentialStatusArray)(credential);
+  const missingPurposes = statusPurposes.filter((statusPurpose) => {
+    return !existingStatuses.some(
+      (status) => status.type === "BitstringStatusListEntry" && status.statusPurpose === statusPurpose
+    );
+  });
+  if (missingPurposes.length === 0) return credential;
+  const entries = await client.boost.allocateCredentialStatus.mutate({
+    statusPurposes: missingPurposes
+  });
+  const credentialStatuses = [...existingStatuses, ...entries];
+  credential.credentialStatus = credentialStatuses.length === 1 ? credentialStatuses[0] : credentialStatuses;
+  return credential;
+}, "appendNetworkCredentialStatus");
+var issueCredentialWithNetworkStatus = /* @__PURE__ */ __name(async (learnCard, client, credential, statusPurposes) => {
+  return learnCard.invoke.issueCredential(
+    await appendNetworkCredentialStatus(client, credential, statusPurposes)
+  );
+}, "issueCredentialWithNetworkStatus");
 async function getLearnCardNetworkPlugin(learnCard, url2, apiTokenOrOptions, options) {
   const apiToken = typeof apiTokenOrOptions === "string" ? apiTokenOrOptions : void 0;
   const guardianApprovalGetter = (typeof apiTokenOrOptions === "object" ? apiTokenOrOptions?.guardianApprovalGetter : void 0) ?? options?.guardianApprovalGetter;
@@ -15854,7 +15946,11 @@ async function getLearnCardNetworkPlugin(learnCard, url2, apiTokenOrOptions, opt
           const myProfile = await client.profile.getProfile.query();
           const issuerDid = myProfile?.did || await client.utilities.getDid.query();
           const issuerDisplayName = myProfile?.displayName || "Unknown Issuer";
-          const signedCredential = await _learnCard.invoke.issueCredential(vc);
+          const signedCredential = await issueCredentialWithNetworkStatus(
+            _learnCard,
+            client,
+            vc
+          );
           const didAuthJwt = await _learnCard.invoke.getDidAuthVp({
             proofFormat: "jwt",
             challenge: `inbox-federation-${crypto.randomUUID()}`
@@ -16192,10 +16288,28 @@ async function getLearnCardNetworkPlugin(learnCard, url2, apiTokenOrOptions, opt
         if (result) await _learnCard.invoke.clearDidWebCache?.();
         return result;
       }, "removeBoostAdmin"),
+      allocateCredentialStatus: /* @__PURE__ */ __name(async (_learnCard, options2 = {}) => {
+        await ensureUser();
+        return client.boost.allocateCredentialStatus.mutate(options2);
+      }, "allocateCredentialStatus"),
       revokeBoostRecipient: /* @__PURE__ */ __name(async (_learnCard, boostUri, recipientProfileId) => {
         await ensureUser();
         return client.boost.revokeBoostRecipient.mutate({ boostUri, recipientProfileId });
       }, "revokeBoostRecipient"),
+      suspendBoostRecipient: /* @__PURE__ */ __name(async (_learnCard, boostUri, recipientProfileId) => {
+        await ensureUser();
+        return client.boost.suspendBoostRecipient.mutate({
+          boostUri,
+          recipientProfileId
+        });
+      }, "suspendBoostRecipient"),
+      unsuspendBoostRecipient: /* @__PURE__ */ __name(async (_learnCard, boostUri, recipientProfileId) => {
+        await ensureUser();
+        return client.boost.unsuspendBoostRecipient.mutate({
+          boostUri,
+          recipientProfileId
+        });
+      }, "unsuspendBoostRecipient"),
       deleteBoost: /* @__PURE__ */ __name(async (_learnCard, uri) => {
         await ensureUser();
         return client.boost.deleteBoost.mutate({ uri });
@@ -16244,7 +16358,13 @@ async function getLearnCardNetworkPlugin(learnCard, url2, apiTokenOrOptions, opt
         if (typeof options2 === "object" && options2.overideFn) {
           boost = options2.overideFn(boost);
         }
-        const vc = await _learnCard.invoke.issueCredential(boost);
+        const statusPurposes = typeof options2 === "object" ? options2.statusPurposes : void 0;
+        const vc = await issueCredentialWithNetworkStatus(
+          _learnCard,
+          client,
+          boost,
+          statusPurposes
+        );
         if (typeof options2 === "object" && !options2.encrypt || !options2) {
           return client.boost.sendBoost.mutate({
             profileId,
@@ -16352,7 +16472,11 @@ async function getLearnCardNetworkPlugin(learnCard, url2, apiTokenOrOptions, opt
             if (boost.type?.includes("BoostCredential")) {
               boost.boostId = input.templateUri;
             }
-            const signedCredential = await _learnCard.invoke.issueCredential(boost);
+            const signedCredential = await issueCredentialWithNetworkStatus(
+              _learnCard,
+              client,
+              boost
+            );
             const credentialUri = await _learnCard.invoke.sendCredential(
               recipient,
               signedCredential,
@@ -16426,7 +16550,11 @@ async function getLearnCardNetworkPlugin(learnCard, url2, apiTokenOrOptions, opt
               }
               if (boost?.type?.includes("BoostCredential"))
                 boost.boostId = input.templateUri;
-              const signedCredential = await _learnCard.invoke.issueCredential(boost);
+              const signedCredential = await issueCredentialWithNetworkStatus(
+                _learnCard,
+                client,
+                boost
+              );
               if (isDid && recipient.startsWith("did:web:")) {
                 const credentialUri = await _learnCard.invoke.sendCredential(
                   recipient,
@@ -16551,6 +16679,12 @@ async function getLearnCardNetworkPlugin(learnCard, url2, apiTokenOrOptions, opt
           categories
         });
       }, "syncCredentialsToContract"),
+      deleteCredentialFromAllContracts: /* @__PURE__ */ __name(async (_learnCard, deletedUris) => {
+        await ensureUser();
+        return client.contracts.deleteCredentialFromAllContracts.mutate({
+          deletedUris
+        });
+      }, "deleteCredentialFromAllContracts"),
       sendAiInsightsContractRequest: /* @__PURE__ */ __name(async (_learnCard, contractUri, targetProfileId, shareLink) => {
         await ensureUser();
         return client.contracts.sendAiInsightsContractRequest.mutate({
@@ -17152,14 +17286,28 @@ var getVerifyBoostPlugin = /* @__PURE__ */ __name(async (learnCard, trustedBoost
             const verifyBoostCredential = await learnCard.invoke.verifyCredential(
               boostCredential
             );
+            const boostCredentialErrors = verifyBoostCredential.errors ?? [];
+            if (verifyBoostCredential.status?.length) {
+              verificationCheck.status = [
+                ...verificationCheck.status ?? [],
+                ...verifyBoostCredential.status
+              ];
+            }
             if (!boostCredential?.boostId && !credential?.boostId) {
               verificationCheck.warnings.push(
                 "Boost Authenticity could not be verified: Boost ID metadata is missing."
               );
             }
-            if (verifyBoostCredential.errors?.length > 0) {
+            if (boostCredentialErrors.length > 0) {
+              if (boostCredentialErrors.some(
+                (error46) => /revoked|suspend|status/i.test(error46)
+              )) {
+                verificationCheck.checks = verificationCheck.checks.filter(
+                  (check2) => check2 !== "status"
+                );
+              }
               verificationCheck.errors = [
-                ...verifyBoostCredential.errors || [],
+                ...boostCredentialErrors,
                 ...verificationCheck.errors || [],
                 "Boost Credential could not be verified."
               ];