@lindorm/aegis 0.2.6 → 0.3.1

package/dist/utils/private/cose/find.d.ts

@@ -0,0 +1,5 @@
+import { CoseItem } from "../../../constants/private";
+export declare const findCoseByKey: (array: Array<CoseItem>, key: any) => CoseItem | undefined;
+export declare const findCoseByLabel: (array: Array<CoseItem>, label: any) => CoseItem | undefined;
+export declare const findSpecificCoseKey: (kty: string) => Array<CoseItem>;
+//# sourceMappingURL=find.d.ts.map

package/dist/utils/private/cose/find.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"find.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/cose/find.ts"],"names":[],"mappings":"AACA,OAAO,EAML,QAAQ,EACT,MAAM,4BAA4B,CAAC;AAGpC,eAAO,MAAM,aAAa,GAAI,OAAO,KAAK,CAAC,QAAQ,CAAC,EAAE,KAAK,GAAG,KAAG,QAAQ,GAAG,SAE3E,CAAC;AAEF,eAAO,MAAM,eAAe,GAC1B,OAAO,KAAK,CAAC,QAAQ,CAAC,EACtB,OAAO,GAAG,KACT,QAAQ,GAAG,SAUb,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAAI,KAAK,MAAM,KAAG,KAAK,CAAC,QAAQ,CAa/D,CAAC"}

package/dist/utils/private/cose/find.js

@@ -0,0 +1,37 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.findSpecificCoseKey = exports.findCoseByLabel = exports.findCoseByKey = void 0;
+const is_1 = require("@lindorm/is");
+const private_1 = require("../../../constants/private");
+const errors_1 = require("../../../errors");
+const findCoseByKey = (array, key) => {
+    return array.find((i) => i.key === key);
+};
+exports.findCoseByKey = findCoseByKey;
+const findCoseByLabel = (array, label) => {
+    const integer = (0, is_1.isNumber)(label)
+        ? label
+        : (0, is_1.isNumberString)(label)
+            ? parseInt(label, 10)
+            : undefined;
+    if (!integer)
+        return;
+    return array.find((i) => i.label === integer);
+};
+exports.findCoseByLabel = findCoseByLabel;
+const findSpecificCoseKey = (kty) => {
+    switch (kty) {
+        case "EC":
+            return [...private_1.COSE_KEY, ...private_1.COSE_KEY_EC];
+        case "OKP":
+            return [...private_1.COSE_KEY, ...private_1.COSE_KEY_OKP];
+        case "RSA":
+            return [...private_1.COSE_KEY, ...private_1.COSE_KEY_RSA];
+        case "oct":
+            return [...private_1.COSE_KEY, ...private_1.COSE_KEY_OCT];
+        default:
+            throw new errors_1.AegisError(`Unsupported COSE key type: ${kty}`);
+    }
+};
+exports.findSpecificCoseKey = findSpecificCoseKey;
+//# sourceMappingURL=find.js.map

package/dist/utils/private/cose/find.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"find.js","sourceRoot":"","sources":["../../../../src/utils/private/cose/find.ts"],"names":[],"mappings":";;;AAAA,oCAAuD;AACvD,wDAOoC;AACpC,4CAA6C;AAEtC,MAAM,aAAa,GAAG,CAAC,KAAsB,EAAE,GAAQ,EAAwB,EAAE;IACtF,OAAO,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,KAAK,GAAG,CAAC,CAAC;AAC1C,CAAC,CAAC;AAFW,QAAA,aAAa,iBAExB;AAEK,MAAM,eAAe,GAAG,CAC7B,KAAsB,EACtB,KAAU,EACY,EAAE;IACxB,MAAM,OAAO,GAAG,IAAA,aAAQ,EAAC,KAAK,CAAC;QAC7B,CAAC,CAAC,KAAK;QACP,CAAC,CAAC,IAAA,mBAAc,EAAC,KAAK,CAAC;YACrB,CAAC,CAAC,QAAQ,CAAC,KAAK,EAAE,EAAE,CAAC;YACrB,CAAC,CAAC,SAAS,CAAC;IAEhB,IAAI,CAAC,OAAO;QAAE,OAAO;IAErB,OAAO,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,OAAO,CAAC,CAAC;AAChD,CAAC,CAAC;AAbW,QAAA,eAAe,mBAa1B;AAEK,MAAM,mBAAmB,GAAG,CAAC,GAAW,EAAmB,EAAE;IAClE,QAAQ,GAAG,EAAE,CAAC;QACZ,KAAK,IAAI;YACP,OAAO,CAAC,GAAG,kBAAQ,EAAE,GAAG,qBAAW,CAAC,CAAC;QACvC,KAAK,KAAK;YACR,OAAO,CAAC,GAAG,kBAAQ,EAAE,GAAG,sBAAY,CAAC,CAAC;QACxC,KAAK,KAAK;YACR,OAAO,CAAC,GAAG,kBAAQ,EAAE,GAAG,sBAAY,CAAC,CAAC;QACxC,KAAK,KAAK;YACR,OAAO,CAAC,GAAG,kBAAQ,EAAE,GAAG,sBAAY,CAAC,CAAC;QACxC;YACE,MAAM,IAAI,mBAAU,CAAC,8BAA8B,GAAG,EAAE,CAAC,CAAC;IAC9D,CAAC;AACH,CAAC,CAAC;AAbW,QAAA,mBAAmB,uBAa9B"}

package/dist/utils/private/cose/header.d.ts

@@ -0,0 +1,5 @@
+import { Dict } from "@lindorm/types";
+import { RawTokenHeaderClaims } from "../../../types";
+export declare const mapCoseHeader: (claims: RawTokenHeaderClaims) => Dict;
+export declare const decodeCoseHeader: (cose: Dict) => RawTokenHeaderClaims;
+//# sourceMappingURL=header.d.ts.map

package/dist/utils/private/cose/header.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"header.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/cose/header.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AAGtC,OAAO,EAAE,oBAAoB,EAAE,MAAM,gBAAgB,CAAC;AAMtD,eAAO,MAAM,aAAa,GAAI,QAAQ,oBAAoB,KAAG,IAmD5D,CAAC;AAEF,eAAO,MAAM,gBAAgB,GAAI,MAAM,IAAI,KAAG,oBAuC7C,CAAC"}

package/dist/utils/private/cose/header.js

@@ -0,0 +1,88 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.decodeCoseHeader = exports.mapCoseHeader = void 0;
+const private_1 = require("../../../constants/private");
+const errors_1 = require("../../../errors");
+const bstr_1 = require("./bstr");
+const crit_1 = require("./crit");
+const find_1 = require("./find");
+const key_1 = require("./key");
+const mapCoseHeader = (claims) => {
+    const result = {};
+    if (claims["alg"] && claims["enc"]) {
+        throw new errors_1.AegisError("COSE header cannot contain both alg and enc");
+    }
+    for (const [key, value] of Object.entries(claims)) {
+        if (!value)
+            continue;
+        const claim = (0, find_1.findCoseByKey)(private_1.COSE_HEADER, key);
+        if (!claim) {
+            result[key] = value;
+            continue;
+        }
+        if (key === "alg") {
+            const alg = (0, find_1.findCoseByKey)(private_1.COSE_ALGORITHM, value);
+            if (!alg) {
+                throw new errors_1.AegisError(`Unsupported COSE algorithm: ${value}`);
+            }
+            result[claim.label] = alg.label;
+            continue;
+        }
+        if (key === "enc") {
+            const enc = (0, find_1.findCoseByKey)(private_1.COSE_ENCRYPTION, value);
+            if (!enc) {
+                console.error("map", { key, value, claim, alg: enc });
+                throw new errors_1.AegisError(`Unsupported COSE algorithm: ${value}`);
+            }
+            result[claim.label] = enc.label;
+            continue;
+        }
+        if (key === "crit") {
+            result[claim.label] = (0, crit_1.mapCoseCrit)(value);
+            continue;
+        }
+        if (key === "epk" || key === "jwk") {
+            result[claim.label] = (0, key_1.mapCoseKey)(value);
+            continue;
+        }
+        result[claim.label] = (0, bstr_1.toBstr)(claim, value);
+        continue;
+    }
+    return result;
+};
+exports.mapCoseHeader = mapCoseHeader;
+const decodeCoseHeader = (cose) => {
+    const result = {};
+    for (const [label, value] of Object.entries(cose)) {
+        if (!value)
+            continue;
+        const claim = (0, find_1.findCoseByLabel)(private_1.COSE_HEADER, label);
+        if (!claim) {
+            result[label] = value;
+            continue;
+        }
+        if (claim.key === "alg" || claim.key === "enc") {
+            const alg = (0, find_1.findCoseByLabel)(private_1.COSE_ALGORITHM, value);
+            const enc = (0, find_1.findCoseByLabel)(private_1.COSE_ENCRYPTION, value);
+            if (!alg && !enc) {
+                throw new errors_1.AegisError(`Unsupported COSE algorithm/encryption: ${value}`);
+            }
+            const calc = alg ? "alg" : "enc";
+            result[calc] = alg?.key ?? enc?.key;
+            continue;
+        }
+        if (claim.key === "crit") {
+            result[claim.key] = (0, crit_1.decodeCoseCrit)(value);
+            continue;
+        }
+        if (claim.key === "epk" || claim.key === "jwk") {
+            result[claim.key] = (0, key_1.decodeCoseKey)(value);
+            continue;
+        }
+        result[claim.key] = (0, bstr_1.fromBstr)(claim, value);
+        continue;
+    }
+    return result;
+};
+exports.decodeCoseHeader = decodeCoseHeader;
+//# sourceMappingURL=header.js.map

package/dist/utils/private/cose/header.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"header.js","sourceRoot":"","sources":["../../../../src/utils/private/cose/header.ts"],"names":[],"mappings":";;;AACA,wDAA0F;AAC1F,4CAA6C;AAE7C,iCAA0C;AAC1C,iCAAqD;AACrD,iCAAwD;AACxD,+BAAkD;AAE3C,MAAM,aAAa,GAAG,CAAC,MAA4B,EAAQ,EAAE;IAClE,MAAM,MAAM,GAAS,EAAE,CAAC;IAExB,IAAI,MAAM,CAAC,KAAK,CAAC,IAAI,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;QACnC,MAAM,IAAI,mBAAU,CAAC,6CAA6C,CAAC,CAAC;IACtE,CAAC;IAED,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;QAClD,IAAI,CAAC,KAAK;YAAE,SAAS;QAErB,MAAM,KAAK,GAAG,IAAA,oBAAa,EAAC,qBAAW,EAAE,GAAG,CAAC,CAAC;QAE9C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;YACpB,SAAS;QACX,CAAC;QAED,IAAI,GAAG,KAAK,KAAK,EAAE,CAAC;YAClB,MAAM,GAAG,GAAG,IAAA,oBAAa,EAAC,wBAAc,EAAE,KAAK,CAAC,CAAC;YACjD,IAAI,CAAC,GAAG,EAAE,CAAC;gBACT,MAAM,IAAI,mBAAU,CAAC,+BAA+B,KAAK,EAAE,CAAC,CAAC;YAC/D,CAAC;YACD,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,KAAK,CAAC;YAChC,SAAS;QACX,CAAC;QAED,IAAI,GAAG,KAAK,KAAK,EAAE,CAAC;YAClB,MAAM,GAAG,GAAG,IAAA,oBAAa,EAAC,yBAAe,EAAE,KAAK,CAAC,CAAC;YAClD,IAAI,CAAC,GAAG,EAAE,CAAC;gBACT,OAAO,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,GAAG,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC;gBACtD,MAAM,IAAI,mBAAU,CAAC,+BAA+B,KAAK,EAAE,CAAC,CAAC;YAC/D,CAAC;YACD,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,KAAK,CAAC;YAChC,SAAS;QACX,CAAC;QAED,IAAI,GAAG,KAAK,MAAM,EAAE,CAAC;YACnB,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,IAAA,kBAAW,EAAC,KAAK,CAAC,CAAC;YACzC,SAAS;QACX,CAAC;QAED,IAAI,GAAG,KAAK,KAAK,IAAI,GAAG,KAAK,KAAK,EAAE,CAAC;YACnC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,IAAA,gBAAU,EAAC,KAAK,CAAC,CAAC;YACxC,SAAS;QACX,CAAC;QAED,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,IAAA,aAAM,EAAC,KAAK,EAAE,KAAK,CAAC,CAAC;QAC3C,SAAS;IACX,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC,CAAC;AAnDW,QAAA,aAAa,iBAmDxB;AAEK,MAAM,gBAAgB,GAAG,CAAC,IAAU,EAAwB,EAAE;IACnE,MAAM,MAAM,GAAS,EAAE,CAAC;IAExB,KAAK,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QAClD,IAAI,CAAC,KAAK;YAAE,SAAS;QAErB,MAAM,KAAK,GAAG,IAAA,sBAAe,EAAC,qBAAW,EAAE,KAAK,CAAC,CAAC;QAElD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC;YACtB,SAAS;QACX,CAAC;QAED,IAAI,KAAK,CAAC,GAAG,KAAK,KAAK,IAAI,KAAK,CAAC,GAAG,KAAK,KAAK,EAAE,CAAC;YAC/C,MAAM,GAAG,GAAG,IAAA,sBAAe,EAAC,wBAAc,EAAE,KAAK,CAAC,CAAC;YACnD,MAAM,GAAG,GAAG,IAAA,sBAAe,EAAC,yBAAe,EAAE,KAAK,CAAC,CAAC;YACpD,IAAI,CAAC,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;gBACjB,MAAM,IAAI,mBAAU,CAAC,0CAA0C,KAAK,EAAE,CAAC,CAAC;YAC1E,CAAC;YACD,MAAM,IAAI,GAAG,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC;YACjC,MAAM,CAAC,IAAI,CAAC,GAAG,GAAG,EAAE,GAAG,IAAI,GAAG,EAAE,GAAG,CAAC;YACpC,SAAS;QACX,CAAC;QAED,IAAI,KAAK,CAAC,GAAG,KAAK,MAAM,EAAE,CAAC;YACzB,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,IAAA,qBAAc,EAAC,KAAK,CAAC,CAAC;YAC1C,SAAS;QACX,CAAC;QAED,IAAI,KAAK,CAAC,GAAG,KAAK,KAAK,IAAI,KAAK,CAAC,GAAG,KAAK,KAAK,EAAE,CAAC;YAC/C,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,IAAA,mBAAa,EAAC,KAAK,CAAC,CAAC;YACzC,SAAS;QACX,CAAC;QAED,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,IAAA,eAAQ,EAAC,KAAK,EAAE,KAAK,CAAC,CAAC;QAC3C,SAAS;IACX,CAAC;IAED,OAAO,MAA8B,CAAC;AACxC,CAAC,CAAC;AAvCW,QAAA,gBAAgB,oBAuC3B"}

package/dist/utils/private/cose/index.d.ts

@@ -0,0 +1,3 @@
+export * from "./claims";
+export * from "./header";
+//# sourceMappingURL=index.d.ts.map

package/dist/utils/private/cose/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/cose/index.ts"],"names":[],"mappings":"AAAA,cAAc,UAAU,CAAC;AACzB,cAAc,UAAU,CAAC"}

package/dist/{types/interfaces → utils/private/cose}/index.js

@@ -14,8 +14,6 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./aegis"), exports);
-__exportStar(require("./jwe-kit"), exports);
-__exportStar(require("./jws-kit"), exports);
-__exportStar(require("./jwt-kit"), exports);
+__exportStar(require("./claims"), exports);
+__exportStar(require("./header"), exports);
 //# sourceMappingURL=index.js.map

package/dist/utils/private/cose/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/utils/private/cose/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CAAyB;AACzB,2CAAyB"}

package/dist/utils/private/cose/key.d.ts

@@ -0,0 +1,4 @@
+import { Dict } from "@lindorm/types";
+export declare const mapCoseKey: (jwk: any) => Dict;
+export declare const decodeCoseKey: (cose: any) => Dict;
+//# sourceMappingURL=key.d.ts.map

package/dist/utils/private/cose/key.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"key.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/cose/key.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AAMtC,eAAO,MAAM,UAAU,GAAI,KAAK,GAAG,KAAG,IA8CrC,CAAC;AAEF,eAAO,MAAM,aAAa,GAAI,MAAM,GAAG,KAAG,IAyCzC,CAAC"}

package/dist/utils/private/cose/key.js

@@ -0,0 +1,82 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.decodeCoseKey = exports.mapCoseKey = void 0;
+const is_1 = require("@lindorm/is");
+const private_1 = require("../../../constants/private");
+const errors_1 = require("../../../errors");
+const bstr_1 = require("./bstr");
+const find_1 = require("./find");
+const mapCoseKey = (jwk) => {
+    if (!(0, is_1.isObject)(jwk)) {
+        throw new errors_1.AegisError(`Invalid COSE key: ${jwk}`);
+    }
+    const kty = jwk["kty"];
+    if (!kty) {
+        throw new errors_1.AegisError("Missing COSE key type", { debug: { jwk } });
+    }
+    const coseKey = (0, find_1.findSpecificCoseKey)(kty);
+    const result = {};
+    for (const [key, value] of Object.entries(jwk)) {
+        const claim = (0, find_1.findCoseByKey)(coseKey, key);
+        if (!claim) {
+            result[key] = value;
+            continue;
+        }
+        if (key === "crv") {
+            const crv = (0, find_1.findCoseByKey)(private_1.COSE_KEY_CURVE, value);
+            if (!crv) {
+                throw new errors_1.AegisError(`Unsupported COSE key curve: ${value}`);
+            }
+            result[claim.label] = crv.label;
+            continue;
+        }
+        if (key === "kty") {
+            const kty = (0, find_1.findCoseByKey)(private_1.COSE_KEY_TYPE, value);
+            if (!kty) {
+                throw new errors_1.AegisError(`Unsupported COSE key type: ${value}`);
+            }
+            result[claim?.label ?? key] = kty.label;
+            continue;
+        }
+        result[claim.label] = (0, bstr_1.toBstr)(claim, value);
+        continue;
+    }
+    return result;
+};
+exports.mapCoseKey = mapCoseKey;
+const decodeCoseKey = (cose) => {
+    if (!(0, is_1.isObject)(cose)) {
+        throw new errors_1.AegisError(`Invalid COSE key: ${cose}`);
+    }
+    const result = {};
+    const kty = (0, find_1.findCoseByLabel)(private_1.COSE_KEY_TYPE, cose[1]);
+    const coseKey = (0, find_1.findSpecificCoseKey)(kty.key);
+    for (const [label, value] of Object.entries(cose)) {
+        const claim = (0, find_1.findCoseByLabel)(coseKey, label);
+        if (!claim) {
+            result[label] = value;
+            continue;
+        }
+        if (claim.key === "crv") {
+            const crv = (0, find_1.findCoseByLabel)(private_1.COSE_KEY_CURVE, value);
+            if (!crv) {
+                throw new errors_1.AegisError(`Unsupported COSE key curve: ${value}`);
+            }
+            result[claim.key] = crv.key;
+            continue;
+        }
+        if (claim.key === "kty") {
+            const kty = (0, find_1.findCoseByLabel)(private_1.COSE_KEY_TYPE, value);
+            if (!kty) {
+                throw new errors_1.AegisError(`Unsupported COSE key type: ${value}`);
+            }
+            result[claim.key] = kty.key;
+            continue;
+        }
+        result[claim.key] = (0, bstr_1.fromBstr)(claim, value);
+        continue;
+    }
+    return result;
+};
+exports.decodeCoseKey = decodeCoseKey;
+//# sourceMappingURL=key.js.map

package/dist/utils/private/cose/key.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"key.js","sourceRoot":"","sources":["../../../../src/utils/private/cose/key.ts"],"names":[],"mappings":";;;AAAA,oCAAuC;AAEvC,wDAA2E;AAC3E,4CAA6C;AAC7C,iCAA0C;AAC1C,iCAA6E;AAEtE,MAAM,UAAU,GAAG,CAAC,GAAQ,EAAQ,EAAE;IAC3C,IAAI,CAAC,IAAA,aAAQ,EAAC,GAAG,CAAC,EAAE,CAAC;QACnB,MAAM,IAAI,mBAAU,CAAC,qBAAqB,GAAG,EAAE,CAAC,CAAC;IACnD,CAAC;IAED,MAAM,GAAG,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC;IAEvB,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,MAAM,IAAI,mBAAU,CAAC,uBAAuB,EAAE,EAAE,KAAK,EAAE,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC;IACpE,CAAC;IAED,MAAM,OAAO,GAAG,IAAA,0BAAmB,EAAC,GAAG,CAAC,CAAC;IAEzC,MAAM,MAAM,GAAS,EAAE,CAAC;IAExB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QAC/C,MAAM,KAAK,GAAG,IAAA,oBAAa,EAAC,OAAO,EAAE,GAAG,CAAC,CAAC;QAE1C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;YACpB,SAAS;QACX,CAAC;QAED,IAAI,GAAG,KAAK,KAAK,EAAE,CAAC;YAClB,MAAM,GAAG,GAAG,IAAA,oBAAa,EAAC,wBAAc,EAAE,KAAK,CAAC,CAAC;YACjD,IAAI,CAAC,GAAG,EAAE,CAAC;gBACT,MAAM,IAAI,mBAAU,CAAC,+BAA+B,KAAK,EAAE,CAAC,CAAC;YAC/D,CAAC;YACD,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,KAAK,CAAC;YAChC,SAAS;QACX,CAAC;QAED,IAAI,GAAG,KAAK,KAAK,EAAE,CAAC;YAClB,MAAM,GAAG,GAAG,IAAA,oBAAa,EAAC,uBAAa,EAAE,KAAK,CAAC,CAAC;YAChD,IAAI,CAAC,GAAG,EAAE,CAAC;gBACT,MAAM,IAAI,mBAAU,CAAC,8BAA8B,KAAK,EAAE,CAAC,CAAC;YAC9D,CAAC;YACD,MAAM,CAAC,KAAK,EAAE,KAAK,IAAI,GAAG,CAAC,GAAG,GAAG,CAAC,KAAK,CAAC;YACxC,SAAS;QACX,CAAC;QAED,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,IAAA,aAAM,EAAC,KAAK,EAAE,KAAK,CAAC,CAAC;QAC3C,SAAS;IACX,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC,CAAC;AA9CW,QAAA,UAAU,cA8CrB;AAEK,MAAM,aAAa,GAAG,CAAC,IAAS,EAAQ,EAAE;IAC/C,IAAI,CAAC,IAAA,aAAQ,EAAC,IAAI,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,mBAAU,CAAC,qBAAqB,IAAI,EAAE,CAAC,CAAC;IACpD,CAAC;IAED,MAAM,MAAM,GAAS,EAAE,CAAC;IAExB,MAAM,GAAG,GAAG,IAAA,sBAAe,EAAC,uBAAa,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;IACpD,MAAM,OAAO,GAAG,IAAA,0BAAmB,EAAC,GAAI,CAAC,GAAG,CAAC,CAAC;IAE9C,KAAK,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QAClD,MAAM,KAAK,GAAG,IAAA,sBAAe,EAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QAE9C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC;YACtB,SAAS;QACX,CAAC;QAED,IAAI,KAAK,CAAC,GAAG,KAAK,KAAK,EAAE,CAAC;YACxB,MAAM,GAAG,GAAG,IAAA,sBAAe,EAAC,wBAAc,EAAE,KAAK,CAAC,CAAC;YACnD,IAAI,CAAC,GAAG,EAAE,CAAC;gBACT,MAAM,IAAI,mBAAU,CAAC,+BAA+B,KAAK,EAAE,CAAC,CAAC;YAC/D,CAAC;YACD,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC;YAC5B,SAAS;QACX,CAAC;QAED,IAAI,KAAK,CAAC,GAAG,KAAK,KAAK,EAAE,CAAC;YACxB,MAAM,GAAG,GAAG,IAAA,sBAAe,EAAC,uBAAa,EAAE,KAAK,CAAC,CAAC;YAClD,IAAI,CAAC,GAAG,EAAE,CAAC;gBACT,MAAM,IAAI,mBAAU,CAAC,8BAA8B,KAAK,EAAE,CAAC,CAAC;YAC9D,CAAC;YACD,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC;YAC5B,SAAS;QACX,CAAC;QAED,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,IAAA,eAAQ,EAAC,KAAK,EAAE,KAAK,CAAC,CAAC;QAC3C,SAAS;IACX,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC,CAAC;AAzCW,QAAA,aAAa,iBAyCxB"}

package/dist/utils/private/cose-sign-token.d.ts

@@ -0,0 +1,10 @@
+import { Dict } from "@lindorm/types";
+type SignOptions = {
+    protectedHeader: Buffer;
+    unprotectedHeader: Dict;
+    payload: Buffer;
+    signature: Buffer;
+};
+export declare const createCoseSignToken: (options: SignOptions) => Buffer;
+export {};
+//# sourceMappingURL=cose-sign-token.d.ts.map

package/dist/utils/private/cose-sign-token.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cose-sign-token.d.ts","sourceRoot":"","sources":["../../../src/utils/private/cose-sign-token.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AAGtC,KAAK,WAAW,GAAG;IACjB,eAAe,EAAE,MAAM,CAAC;IACxB,iBAAiB,EAAE,IAAI,CAAC;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAAI,SAAS,WAAW,KAAG,MAMvD,CAAC"}

package/dist/utils/private/cose-sign-token.js

@@ -0,0 +1,12 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createCoseSignToken = void 0;
+const cbor_1 = require("cbor");
+const createCoseSignToken = (options) => (0, cbor_1.encode)([
+    options.protectedHeader,
+    options.unprotectedHeader,
+    options.payload,
+    options.signature,
+]);
+exports.createCoseSignToken = createCoseSignToken;
+//# sourceMappingURL=cose-sign-token.js.map

package/dist/utils/private/cose-sign-token.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cose-sign-token.js","sourceRoot":"","sources":["../../../src/utils/private/cose-sign-token.ts"],"names":[],"mappings":";;;AACA,+BAA8B;AASvB,MAAM,mBAAmB,GAAG,CAAC,OAAoB,EAAU,EAAE,CAClE,IAAA,aAAM,EAAC;IACL,OAAO,CAAC,eAAe;IACvB,OAAO,CAAC,iBAAiB;IACzB,OAAO,CAAC,OAAO;IACf,OAAO,CAAC,SAAS;CAClB,CAAC,CAAC;AANQ,QAAA,mBAAmB,uBAM3B"}

package/dist/utils/private/cose-signature.d.ts

@@ -0,0 +1,16 @@
+import { IKryptos } from "@lindorm/kryptos";
+type CreateOptions = {
+    kryptos: IKryptos;
+    payload: Buffer;
+    protectedHeader: Buffer;
+};
+type VerifyOptions = {
+    kryptos: IKryptos;
+    payload: Buffer;
+    protectedHeader: Buffer;
+    signature: Buffer;
+};
+export declare const createCoseSignature: (options: CreateOptions) => Buffer;
+export declare const verifyCoseSignature: (options: VerifyOptions) => boolean;
+export {};
+//# sourceMappingURL=cose-signature.d.ts.map

package/dist/utils/private/cose-signature.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cose-signature.d.ts","sourceRoot":"","sources":["../../../src/utils/private/cose-signature.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAI5C,KAAK,aAAa,GAAG;IACnB,OAAO,EAAE,QAAQ,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,eAAe,EAAE,MAAM,CAAC;CACzB,CAAC;AAEF,KAAK,aAAa,GAAG;IACnB,OAAO,EAAE,QAAQ,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,eAAe,EAAE,MAAM,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC;AAKF,eAAO,MAAM,mBAAmB,GAAI,SAAS,aAAa,KAAG,MAM5D,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAAI,SAAS,aAAa,KAAG,OAO5D,CAAC"}

package/dist/utils/private/cose-signature.js

@@ -0,0 +1,17 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.verifyCoseSignature = exports.createCoseSignature = void 0;
+const cbor_1 = require("cbor");
+const classes_1 = require("../../classes");
+const encodeSignature = (options) => (0, cbor_1.encode)(["Signature1", options.protectedHeader, Buffer.alloc(0), options.payload]);
+const createCoseSignature = (options) => {
+    const signature = encodeSignature(options);
+    return new classes_1.SignatureKit({ kryptos: options.kryptos, dsa: "ieee-p1363" }).sign(signature);
+};
+exports.createCoseSignature = createCoseSignature;
+const verifyCoseSignature = (options) => {
+    const signature = encodeSignature(options);
+    return new classes_1.SignatureKit({ kryptos: options.kryptos, dsa: "ieee-p1363" }).verify(signature, options.signature);
+};
+exports.verifyCoseSignature = verifyCoseSignature;
+//# sourceMappingURL=cose-signature.js.map

package/dist/utils/private/cose-signature.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cose-signature.js","sourceRoot":"","sources":["../../../src/utils/private/cose-signature.ts"],"names":[],"mappings":";;;AACA,+BAA8B;AAC9B,2CAA6C;AAe7C,MAAM,eAAe,GAAG,CAAC,OAAsB,EAAU,EAAE,CACzD,IAAA,aAAM,EAAC,CAAC,YAAY,EAAE,OAAO,CAAC,eAAe,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC;AAE7E,MAAM,mBAAmB,GAAG,CAAC,OAAsB,EAAU,EAAE;IACpE,MAAM,SAAS,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;IAE3C,OAAO,IAAI,sBAAY,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,EAAE,GAAG,EAAE,YAAY,EAAE,CAAC,CAAC,IAAI,CAC3E,SAAS,CACV,CAAC;AACJ,CAAC,CAAC;AANW,QAAA,mBAAmB,uBAM9B;AAEK,MAAM,mBAAmB,GAAG,CAAC,OAAsB,EAAW,EAAE;IACrE,MAAM,SAAS,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;IAE3C,OAAO,IAAI,sBAAY,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,EAAE,GAAG,EAAE,YAAY,EAAE,CAAC,CAAC,MAAM,CAC7E,SAAS,EACT,OAAO,CAAC,SAAS,CAClB,CAAC;AACJ,CAAC,CAAC;AAPW,QAAA,mBAAmB,uBAO9B"}

package/dist/utils/private/create-hash.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"create-hash.d.ts","sourceRoot":"","sources":["../../../src/utils/private/create-hash.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,gBAAgB,EAAE,MAAM,kBAAkB,CAAC;AAIpD,KAAK,YAAY,GAAG,QAAQ,GAAG,QAAQ,GAAG,QAAQ,CAAC;AAEnD,eAAO,MAAM,YAAY,cAAe,gBAAgB,KAAG,YAM1D,CAAC;AAgBF,eAAO,MAAM,qBAAqB,cACrB,gBAAgB,QACrB,MAAM,KACX,MAA0C,CAAC;AAE9C,eAAO,MAAM,cAAc,cAAe,gBAAgB,QAAQ,MAAM,KAAG,MACzC,CAAC;AAEnC,eAAO,MAAM,eAAe,cAAe,gBAAgB,QAAQ,MAAM,KAAG,MAC1C,CAAC"}
+{"version":3,"file":"create-hash.d.ts","sourceRoot":"","sources":["../../../src/utils/private/create-hash.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,gBAAgB,EAAE,MAAM,kBAAkB,CAAC;AAIpD,KAAK,YAAY,GAAG,QAAQ,GAAG,QAAQ,GAAG,QAAQ,CAAC;AAEnD,eAAO,MAAM,YAAY,GAAI,WAAW,gBAAgB,KAAG,YAM1D,CAAC;AAgBF,eAAO,MAAM,qBAAqB,GAChC,WAAW,gBAAgB,EAC3B,MAAM,MAAM,KACX,MAA0C,CAAC;AAE9C,eAAO,MAAM,cAAc,GAAI,WAAW,gBAAgB,EAAE,MAAM,MAAM,KAAG,MACzC,CAAC;AAEnC,eAAO,MAAM,eAAe,GAAI,WAAW,gBAAgB,EAAE,MAAM,MAAM,KAAG,MAC1C,CAAC"}

package/dist/utils/private/index.d.ts

@@ -1,11 +1,14 @@
+export * from "./cose";
+export * from "./auth-tag-length";
+export * from "./cose-sign-token";
+export * from "./cose-signature";
 export * from "./create-hash";
-export * from "./create-token-signature";
+export * from "./jose-header";
+export * from "./jose-signature";
 export * from "./jwt-payload";
 export * from "./jwt-validate";
 export * from "./jwt-verify";
 export * from "./token-header";
-export * from "./token-type";
 export * from "./validate";
 export * from "./validate-value";
-export * from "./verify-token-signature";
 //# sourceMappingURL=index.d.ts.map

package/dist/utils/private/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/utils/private/index.ts"],"names":[],"mappings":"AAAA,cAAc,eAAe,CAAC;AAC9B,cAAc,0BAA0B,CAAC;AACzC,cAAc,eAAe,CAAC;AAC9B,cAAc,gBAAgB,CAAC;AAC/B,cAAc,cAAc,CAAC;AAC7B,cAAc,gBAAgB,CAAC;AAC/B,cAAc,cAAc,CAAC;AAC7B,cAAc,YAAY,CAAC;AAC3B,cAAc,kBAAkB,CAAC;AACjC,cAAc,0BAA0B,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/utils/private/index.ts"],"names":[],"mappings":"AAAA,cAAc,QAAQ,CAAC;AAEvB,cAAc,mBAAmB,CAAC;AAClC,cAAc,mBAAmB,CAAC;AAClC,cAAc,kBAAkB,CAAC;AACjC,cAAc,eAAe,CAAC;AAC9B,cAAc,eAAe,CAAC;AAC9B,cAAc,kBAAkB,CAAC;AACjC,cAAc,eAAe,CAAC;AAC9B,cAAc,gBAAgB,CAAC;AAC/B,cAAc,cAAc,CAAC;AAC7B,cAAc,gBAAgB,CAAC;AAC/B,cAAc,YAAY,CAAC;AAC3B,cAAc,kBAAkB,CAAC"}

package/dist/utils/private/index.js

@@ -14,14 +14,17 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./cose"), exports);
+__exportStar(require("./auth-tag-length"), exports);
+__exportStar(require("./cose-sign-token"), exports);
+__exportStar(require("./cose-signature"), exports);
 __exportStar(require("./create-hash"), exports);
-__exportStar(require("./create-token-signature"), exports);
+__exportStar(require("./jose-header"), exports);
+__exportStar(require("./jose-signature"), exports);
 __exportStar(require("./jwt-payload"), exports);
 __exportStar(require("./jwt-validate"), exports);
 __exportStar(require("./jwt-verify"), exports);
 __exportStar(require("./token-header"), exports);
-__exportStar(require("./token-type"), exports);
 __exportStar(require("./validate"), exports);
 __exportStar(require("./validate-value"), exports);
-__exportStar(require("./verify-token-signature"), exports);
 //# sourceMappingURL=index.js.map

package/dist/utils/private/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/utils/private/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,gDAA8B;AAC9B,2DAAyC;AACzC,gDAA8B;AAC9B,iDAA+B;AAC/B,+CAA6B;AAC7B,iDAA+B;AAC/B,+CAA6B;AAC7B,6CAA2B;AAC3B,mDAAiC;AACjC,2DAAyC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/utils/private/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,yCAAuB;AAEvB,oDAAkC;AAClC,oDAAkC;AAClC,mDAAiC;AACjC,gDAA8B;AAC9B,gDAA8B;AAC9B,mDAAiC;AACjC,gDAA8B;AAC9B,iDAA+B;AAC/B,+CAA6B;AAC7B,iDAA+B;AAC/B,6CAA2B;AAC3B,mDAAiC"}

package/dist/utils/private/jose-header.d.ts

@@ -0,0 +1,4 @@
+import { DecodedTokenHeader, TokenHeaderOptions } from "../../types";
+export declare const encodeJoseHeader: (options: TokenHeaderOptions) => string;
+export declare const decodeJoseHeader: (header: string) => DecodedTokenHeader;
+//# sourceMappingURL=jose-header.d.ts.map

package/dist/utils/private/jose-header.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"jose-header.d.ts","sourceRoot":"","sources":["../../../src/utils/private/jose-header.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,kBAAkB,EAAqB,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAGxF,eAAO,MAAM,gBAAgB,GAAI,SAAS,kBAAkB,KAAG,MAyB9D,CAAC;AAEF,eAAO,MAAM,gBAAgB,GAAI,QAAQ,MAAM,KAAG,kBAkBjD,CAAC"}

package/dist/utils/private/jose-header.js

@@ -0,0 +1,51 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.decodeJoseHeader = exports.encodeJoseHeader = void 0;
+const b64_1 = require("@lindorm/b64");
+const is_1 = require("@lindorm/is");
+const private_1 = require("../../constants/private");
+const token_header_1 = require("./token-header");
+const encodeJoseHeader = (options) => {
+    if (!options.algorithm) {
+        throw new Error("Algorithm is required");
+    }
+    if (!private_1.TOKEN_HEADER_ALGORITHMS.includes(options.algorithm)) {
+        throw new Error(`Invalid algorithm: ${options.algorithm}`);
+    }
+    if (!options.headerType) {
+        throw new Error("Header type is required");
+    }
+    if (!private_1.TOKEN_HEADER_TYPES.includes(options.headerType)) {
+        throw new Error(`Invalid header type: ${options.headerType}`);
+    }
+    if (!options.keyId) {
+        throw new Error("Key ID is required");
+    }
+    const claims = (0, token_header_1.mapTokenHeader)(options);
+    for (const [key, value] of Object.entries(claims)) {
+        if (!(0, is_1.isBuffer)(value))
+            continue;
+        claims[key] = b64_1.B64.encode(value);
+    }
+    return b64_1.B64.encode(JSON.stringify(claims), private_1.B64U);
+};
+exports.encodeJoseHeader = encodeJoseHeader;
+const decodeJoseHeader = (header) => {
+    const string = b64_1.B64.toString(header);
+    const json = JSON.parse(string);
+    if (!json.alg) {
+        throw new Error("Missing token header: alg");
+    }
+    if (!private_1.TOKEN_HEADER_ALGORITHMS.includes(json.alg)) {
+        throw new Error(`Invalid token header: alg: ${json.alg}`);
+    }
+    if (!json.typ) {
+        throw new Error("Missing token header: typ");
+    }
+    if (!private_1.TOKEN_HEADER_TYPES.includes(json.typ)) {
+        throw new Error(`Invalid token header: typ: ${json.typ}`);
+    }
+    return json;
+};
+exports.decodeJoseHeader = decodeJoseHeader;
+//# sourceMappingURL=jose-header.js.map

package/dist/utils/private/jose-header.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jose-header.js","sourceRoot":"","sources":["../../../src/utils/private/jose-header.ts"],"names":[],"mappings":";;;AAAA,sCAAmC;AACnC,oCAAuC;AACvC,qDAIiC;AAEjC,iDAAgD;AAEzC,MAAM,gBAAgB,GAAG,CAAC,OAA2B,EAAU,EAAE;IACtE,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QACvB,MAAM,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC3C,CAAC;IACD,IAAI,CAAC,iCAAuB,CAAC,QAAQ,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,CAAC;QACzD,MAAM,IAAI,KAAK,CAAC,sBAAsB,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC;IAC7D,CAAC;IACD,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;IACD,IAAI,CAAC,4BAAkB,CAAC,QAAQ,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE,CAAC;QACrD,MAAM,IAAI,KAAK,CAAC,wBAAwB,OAAO,CAAC,UAAU,EAAE,CAAC,CAAC;IAChE,CAAC;IACD,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;IACxC,CAAC;IAED,MAAM,MAAM,GAAG,IAAA,6BAAc,EAAC,OAAO,CAAC,CAAC;IAEvC,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;QAClD,IAAI,CAAC,IAAA,aAAQ,EAAC,KAAK,CAAC;YAAE,SAAS;QAC9B,MAAc,CAAC,GAAG,CAAC,GAAG,SAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAC3C,CAAC;IAED,OAAO,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,cAAI,CAAC,CAAC;AAClD,CAAC,CAAC;AAzBW,QAAA,gBAAgB,oBAyB3B;AAEK,MAAM,gBAAgB,GAAG,CAAC,MAAc,EAAsB,EAAE;IACrE,MAAM,MAAM,GAAG,SAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IACpC,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAA+B,CAAC;IAE9D,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,CAAC,iCAAuB,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;QAChD,MAAM,IAAI,KAAK,CAAC,8BAA8B,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;IAC5D,CAAC;IACD,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,CAAC,4BAAkB,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;QAC3C,MAAM,IAAI,KAAK,CAAC,8BAA8B,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;IAC5D,CAAC;IAED,OAAO,IAA0B,CAAC;AACpC,CAAC,CAAC;AAlBW,QAAA,gBAAgB,oBAkB3B"}

package/dist/utils/private/jose-signature.d.ts

@@ -0,0 +1,10 @@
+import { IKryptos } from "@lindorm/kryptos";
+type Options = {
+    header: string;
+    payload: string;
+    kryptos: IKryptos;
+};
+export declare const createJoseSignature: (options: Options) => string;
+export declare const verifyJoseSignature: (kryptos: IKryptos, token: string) => boolean;
+export {};
+//# sourceMappingURL=jose-signature.d.ts.map

package/dist/utils/private/jose-signature.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"jose-signature.d.ts","sourceRoot":"","sources":["../../../src/utils/private/jose-signature.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAI5C,KAAK,OAAO,GAAG;IACb,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,QAAQ,CAAC;CACnB,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAAI,SAAS,OAAO,KAAG,MAMtD,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAAI,SAAS,QAAQ,EAAE,OAAO,MAAM,KAAG,OAKtE,CAAC"}

package/dist/utils/private/jose-signature.js

@@ -0,0 +1,19 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.verifyJoseSignature = exports.createJoseSignature = void 0;
+const classes_1 = require("../../classes");
+const private_1 = require("../../constants/private");
+const createJoseSignature = (options) => {
+    const data = `${options.header}.${options.payload}`;
+    return new classes_1.SignatureKit({ kryptos: options.kryptos, raw: true })
+        .sign(data)
+        .toString(private_1.B64U);
+};
+exports.createJoseSignature = createJoseSignature;
+const verifyJoseSignature = (kryptos, token) => {
+    const [header, payload, signature] = token.split(".");
+    const data = `${header}.${payload}`;
+    return new classes_1.SignatureKit({ kryptos, encoding: private_1.B64U, raw: true }).verify(data, signature);
+};
+exports.verifyJoseSignature = verifyJoseSignature;
+//# sourceMappingURL=jose-signature.js.map

package/dist/utils/private/jose-signature.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jose-signature.js","sourceRoot":"","sources":["../../../src/utils/private/jose-signature.ts"],"names":[],"mappings":";;;AACA,2CAA6C;AAC7C,qDAA+C;AAQxC,MAAM,mBAAmB,GAAG,CAAC,OAAgB,EAAU,EAAE;IAC9D,MAAM,IAAI,GAAG,GAAG,OAAO,CAAC,MAAM,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;IAEpD,OAAO,IAAI,sBAAY,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,EAAE,GAAG,EAAE,IAAI,EAAE,CAAC;SAC7D,IAAI,CAAC,IAAI,CAAC;SACV,QAAQ,CAAC,cAAI,CAAC,CAAC;AACpB,CAAC,CAAC;AANW,QAAA,mBAAmB,uBAM9B;AAEK,MAAM,mBAAmB,GAAG,CAAC,OAAiB,EAAE,KAAa,EAAW,EAAE;IAC/E,MAAM,CAAC,MAAM,EAAE,OAAO,EAAE,SAAS,CAAC,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACtD,MAAM,IAAI,GAAG,GAAG,MAAM,IAAI,OAAO,EAAE,CAAC;IAEpC,OAAO,IAAI,sBAAY,CAAC,EAAE,OAAO,EAAE,QAAQ,EAAE,cAAI,EAAE,GAAG,EAAE,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;AAC1F,CAAC,CAAC;AALW,QAAA,mBAAmB,uBAK9B"}

package/dist/utils/private/jwt-payload.d.ts

@@ -5,6 +5,7 @@ type Config = {
     algorithm: KryptosAlgorithm;
     issuer: string;
 };
+type DecodeClaims<C extends Dict = Dict> = JwtClaims & C;
 type Result = {
     expiresAt: Date;
     expiresIn: number;
@@ -12,9 +13,9 @@ type Result = {
     payload: string;
     tokenId: string;
 };
+export declare const mapJwtContentToClaims: <C extends Dict = Dict>(config: Config, content: SignJwtContent<C>, options: SignJwtOptions) => JwtClaims;
 export declare const encodeJwtPayload: <C extends Dict = Dict>(config: Config, content: SignJwtContent<C>, options: SignJwtOptions) => Result;
-type DecodeClaims<C extends Dict = Dict> = JwtClaims & C;
 export declare const decodeJwtPayload: <C extends Dict = Dict<never>>(payload: string) => DecodeClaims<C>;
-export declare const parseJwtPayload: <C extends Dict = Dict<never>>(decoded: DecodeClaims<C>) => ParsedJwtPayload<C>;
+export declare const parseTokenPayload: <C extends Dict = Dict<never>>(decoded: DecodeClaims<C>) => ParsedJwtPayload<C>;
 export {};
 //# sourceMappingURL=jwt-payload.d.ts.map

package/dist/utils/private/jwt-payload.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"jwt-payload.d.ts","sourceRoot":"","sources":["../../../src/utils/private/jwt-payload.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,gBAAgB,EAAE,MAAM,kBAAkB,CAAC;AACpD,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AAKtC,OAAO,EAAE,SAAS,EAAE,gBAAgB,EAAE,cAAc,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAG1F,KAAK,MAAM,GAAG;IACZ,SAAS,EAAE,gBAAgB,CAAC;IAC5B,MAAM,EAAE,MAAM,CAAC;CAChB,CAAC;AAEF,KAAK,MAAM,GAAG;IACZ,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;CACjB,CAAC;AAEF,eAAO,MAAM,gBAAgB,GAAI,CAAC,SAAS,IAAI,iBACrC,MAAM,WACL,cAAc,CAAC,CAAC,CAAC,WACjB,cAAc,KACtB,MAmFF,CAAC;AAEF,KAAK,YAAY,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,IAAI,SAAS,GAAG,CAAC,CAAC;AAEzD,eAAO,MAAM,gBAAgB,GAAI,CAAC,SAAS,IAAI,yBACpC,MAAM,KACd,YAAY,CAAC,CAAC,CAAyD,CAAC;AAE3E,eAAO,MAAM,eAAe,GAAI,CAAC,SAAS,IAAI,yBACnC,YAAY,CAAC,CAAC,CAAC,KACvB,gBAAgB,CAAC,CAAC,CA4EpB,CAAC"}
+{"version":3,"file":"jwt-payload.d.ts","sourceRoot":"","sources":["../../../src/utils/private/jwt-payload.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,gBAAgB,EAAE,MAAM,kBAAkB,CAAC;AACpD,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AAKtC,OAAO,EAAE,SAAS,EAAE,gBAAgB,EAAE,cAAc,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAG1F,KAAK,MAAM,GAAG;IACZ,SAAS,EAAE,gBAAgB,CAAC;IAC5B,MAAM,EAAE,MAAM,CAAC;CAChB,CAAC;AAEF,KAAK,YAAY,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,IAAI,SAAS,GAAG,CAAC,CAAC;AAEzD,KAAK,MAAM,GAAG;IACZ,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;CACjB,CAAC;AAEF,eAAO,MAAM,qBAAqB,GAAI,CAAC,SAAS,IAAI,GAAG,IAAI,EACzD,QAAQ,MAAM,EACd,SAAS,cAAc,CAAC,CAAC,CAAC,EAC1B,SAAS,cAAc,KACtB,SAyEF,CAAC;AAEF,eAAO,MAAM,gBAAgB,GAAI,CAAC,SAAS,IAAI,GAAG,IAAI,EACpD,QAAQ,MAAM,EACd,SAAS,cAAc,CAAC,CAAC,CAAC,EAC1B,SAAS,cAAc,KACtB,MAUF,CAAC;AAEF,eAAO,MAAM,gBAAgB,GAAI,CAAC,SAAS,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,EAC3D,SAAS,MAAM,KACd,YAAY,CAAC,CAAC,CAAyD,CAAC;AAE3E,eAAO,MAAM,iBAAiB,GAAI,CAAC,SAAS,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,EAC5D,SAAS,YAAY,CAAC,CAAC,CAAC,KACvB,gBAAgB,CAAC,CAAC,CA4EpB,CAAC"}