@lindorm/aegis 0.4.4 → 0.5.0

package/dist/interfaces/Aegis.d.ts

@@ -1,24 +1,12 @@
-import { AesDecryptionRecord, AesEncryptionRecord, SerialisedAesDecryption, SerialisedAesEncryption } from "@lindorm/aes";
+import { AesContent, AesDecryptionRecord, AesEncryptionRecord, SerialisedAesDecryption, SerialisedAesEncryption } from "@lindorm/aes";
 import { Dict } from "@lindorm/types";
-import { CweContent, CweEncryptOptions, CwsContent, DecryptedCwe, DecryptedJwe, EncryptedCwe, EncryptedJwe, JweEncryptOptions, JwsContent, ParsedCws, ParsedCwt, ParsedJws, ParsedJwt, SignCwsOptions, SignCwtContent, SignCwtOptions, SignJwsOptions, SignJwtContent, SignJwtOptions, SignedCws, SignedCwt, SignedJws, SignedJwt, VerifyCwtOptions, VerifyJwtOptions } from "../types";
+import { DecryptedJwe, EncryptedJwe, JweEncryptOptions, JwsContent, ParsedJws, ParsedJwt, SignJwsOptions, SignJwtContent, SignJwtOptions, SignedJws, SignedJwt, VerifyJwtOptions } from "../types";
 export interface IAegisAes {
-    encrypt(data: string, mode?: "encoded"): Promise<string>;
-    encrypt(data: string, mode: "record"): Promise<AesEncryptionRecord>;
-    encrypt(data: string, mode: "serialised"): Promise<SerialisedAesEncryption>;
-    encrypt(data: string, mode: "tokenised"): Promise<string>;
-    decrypt(data: AesDecryptionRecord | SerialisedAesDecryption | string): Promise<string>;
-}
-export interface IAegisCwe {
-    encrypt(data: CweContent, options?: CweEncryptOptions): Promise<EncryptedCwe>;
-    decrypt<T extends CweContent = string>(token: CweContent): Promise<DecryptedCwe<T>>;
-}
-export interface IAegisCws {
-    sign(data: CwsContent, options?: SignCwsOptions): Promise<SignedCws>;
-    verify<T extends CwsContent>(token: CwsContent): Promise<ParsedCws<T>>;
-}
-export interface IAegisCwt {
-    sign<T extends Dict = Dict>(content: SignCwtContent<T>, options?: SignCwtOptions): Promise<SignedCwt>;
-    verify<T extends Dict = Dict>(token: string, verify?: VerifyCwtOptions): Promise<ParsedCwt<T>>;
+    encrypt(data: AesContent, mode?: "encoded"): Promise<string>;
+    encrypt(data: AesContent, mode: "record"): Promise<AesEncryptionRecord>;
+    encrypt(data: AesContent, mode: "serialised"): Promise<SerialisedAesEncryption>;
+    encrypt(data: AesContent, mode: "tokenised"): Promise<string>;
+    decrypt<T extends AesContent = string>(data: AesDecryptionRecord | SerialisedAesDecryption | string): Promise<T>;
 }
 export interface IAegisJwe {
     encrypt(data: string, options?: JweEncryptOptions): Promise<EncryptedJwe>;
@@ -35,12 +23,10 @@ export interface IAegisJwt {
 export interface IAegis {
     issuer: string | null;
     aes: IAegisAes;
-    cwe: IAegisCwe;
-    cws: IAegisCws;
-    cwt: IAegisCwt;
     jwe: IAegisJwe;
     jws: IAegisJws;
     jwt: IAegisJwt;
+    verify(token: string): Promise<ParsedJwt | ParsedJws<any>>;
     verify<T extends ParsedJws<any>>(token: string): Promise<T>;
     verify<T extends ParsedJwt>(token: string, options?: VerifyJwtOptions): Promise<T>;
 }

package/dist/interfaces/Aegis.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"Aegis.d.ts","sourceRoot":"","sources":["../../src/interfaces/Aegis.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,mBAAmB,EACnB,mBAAmB,EACnB,uBAAuB,EACvB,uBAAuB,EACxB,MAAM,cAAc,CAAC;AACtB,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AACtC,OAAO,EACL,UAAU,EACV,iBAAiB,EACjB,UAAU,EACV,YAAY,EACZ,YAAY,EACZ,YAAY,EACZ,YAAY,EACZ,iBAAiB,EACjB,UAAU,EACV,SAAS,EACT,SAAS,EACT,SAAS,EACT,SAAS,EACT,cAAc,EACd,cAAc,EACd,cAAc,EACd,cAAc,EACd,cAAc,EACd,cAAc,EACd,SAAS,EACT,SAAS,EACT,SAAS,EACT,SAAS,EACT,gBAAgB,EAChB,gBAAgB,EACjB,MAAM,UAAU,CAAC;AAElB,MAAM,WAAW,SAAS;IACxB,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACzD,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,GAAG,OAAO,CAAC,mBAAmB,CAAC,CAAC;IACpE,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,uBAAuB,CAAC,CAAC;IAC5E,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,WAAW,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC1D,OAAO,CAAC,IAAI,EAAE,mBAAmB,GAAG,uBAAuB,GAAG,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;CACxF;AAED,MAAM,WAAW,SAAS;IACxB,OAAO,CAAC,IAAI,EAAE,UAAU,EAAE,OAAO,CAAC,EAAE,iBAAiB,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;IAC9E,OAAO,CAAC,CAAC,SAAS,UAAU,GAAG,MAAM,EAAE,KAAK,EAAE,UAAU,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC;CACrF;AAED,MAAM,WAAW,SAAS;IACxB,IAAI,CAAC,IAAI,EAAE,UAAU,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;IACrE,MAAM,CAAC,CAAC,SAAS,UAAU,EAAE,KAAK,EAAE,UAAU,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC;CACxE;AAED,MAAM,WAAW,SAAS;IACxB,IAAI,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,EACxB,OAAO,EAAE,cAAc,CAAC,CAAC,CAAC,EAC1B,OAAO,CAAC,EAAE,cAAc,GACvB,OAAO,CAAC,SAAS,CAAC,CAAC;IACtB,MAAM,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,EAC1B,KAAK,EAAE,MAAM,EACb,MAAM,CAAC,EAAE,gBAAgB,GACxB,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC;CAC1B;AAED,MAAM,WAAW,SAAS;IACxB,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,iBAAiB,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;IAC1E,OAAO,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;CAC/C;AAED,MAAM,WAAW,SAAS;IACxB,IAAI,CAAC,CAAC,SAAS,UAAU,EAAE,IAAI,EAAE,CAAC,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;IAClF,MAAM,CAAC,CAAC,SAAS,UAAU,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC;CACpE;AAED,MAAM,WAAW,SAAS;IACxB,IAAI,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,EACxB,OAAO,EAAE,cAAc,CAAC,CAAC,CAAC,EAC1B,OAAO,CAAC,EAAE,cAAc,GACvB,OAAO,CAAC,SAAS,CAAC,CAAC;IACtB,MAAM,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,EAC1B,KAAK,EAAE,MAAM,EACb,MAAM,CAAC,EAAE,gBAAgB,GACxB,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC;CAC1B;AAED,MAAM,WAAW,MAAM;IACrB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IAEtB,GAAG,EAAE,SAAS,CAAC;IAEf,GAAG,EAAE,SAAS,CAAC;IACf,GAAG,EAAE,SAAS,CAAC;IACf,GAAG,EAAE,SAAS,CAAC;IAEf,GAAG,EAAE,SAAS,CAAC;IACf,GAAG,EAAE,SAAS,CAAC;IACf,GAAG,EAAE,SAAS,CAAC;IAEf,MAAM,CAAC,CAAC,SAAS,SAAS,CAAC,GAAG,CAAC,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;IAC5D,MAAM,CAAC,CAAC,SAAS,SAAS,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,gBAAgB,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;CACpF"}
+{"version":3,"file":"Aegis.d.ts","sourceRoot":"","sources":["../../src/interfaces/Aegis.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,UAAU,EACV,mBAAmB,EACnB,mBAAmB,EACnB,uBAAuB,EACvB,uBAAuB,EACxB,MAAM,cAAc,CAAC;AACtB,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AACtC,OAAO,EACL,YAAY,EACZ,YAAY,EACZ,iBAAiB,EACjB,UAAU,EACV,SAAS,EACT,SAAS,EACT,cAAc,EACd,cAAc,EACd,cAAc,EACd,SAAS,EACT,SAAS,EACT,gBAAgB,EACjB,MAAM,UAAU,CAAC;AAElB,MAAM,WAAW,SAAS;IACxB,OAAO,CAAC,IAAI,EAAE,UAAU,EAAE,IAAI,CAAC,EAAE,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC7D,OAAO,CAAC,IAAI,EAAE,UAAU,EAAE,IAAI,EAAE,QAAQ,GAAG,OAAO,CAAC,mBAAmB,CAAC,CAAC;IACxE,OAAO,CAAC,IAAI,EAAE,UAAU,EAAE,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,uBAAuB,CAAC,CAAC;IAChF,OAAO,CAAC,IAAI,EAAE,UAAU,EAAE,IAAI,EAAE,WAAW,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC9D,OAAO,CAAC,CAAC,SAAS,UAAU,GAAG,MAAM,EACnC,IAAI,EAAE,mBAAmB,GAAG,uBAAuB,GAAG,MAAM,GAC3D,OAAO,CAAC,CAAC,CAAC,CAAC;CACf;AAED,MAAM,WAAW,SAAS;IACxB,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,iBAAiB,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;IAC1E,OAAO,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;CAC/C;AAED,MAAM,WAAW,SAAS;IACxB,IAAI,CAAC,CAAC,SAAS,UAAU,EAAE,IAAI,EAAE,CAAC,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;IAClF,MAAM,CAAC,CAAC,SAAS,UAAU,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC;CACpE;AAED,MAAM,WAAW,SAAS;IACxB,IAAI,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,EACxB,OAAO,EAAE,cAAc,CAAC,CAAC,CAAC,EAC1B,OAAO,CAAC,EAAE,cAAc,GACvB,OAAO,CAAC,SAAS,CAAC,CAAC;IACtB,MAAM,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,EAC1B,KAAK,EAAE,MAAM,EACb,MAAM,CAAC,EAAE,gBAAgB,GACxB,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC;CAC1B;AAED,MAAM,WAAW,MAAM;IACrB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IAEtB,GAAG,EAAE,SAAS,CAAC;IAEf,GAAG,EAAE,SAAS,CAAC;IACf,GAAG,EAAE,SAAS,CAAC;IACf,GAAG,EAAE,SAAS,CAAC;IAEf,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC;IAC3D,MAAM,CAAC,CAAC,SAAS,SAAS,CAAC,GAAG,CAAC,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;IAC5D,MAAM,CAAC,CAAC,SAAS,SAAS,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,gBAAgB,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;CACpF"}

package/dist/interfaces/index.d.ts

@@ -1,7 +1,4 @@
 export * from "./Aegis";
-export * from "./CweKit";
-export * from "./CwsKit";
-export * from "./CwtKit";
 export * from "./JweKit";
 export * from "./JwsKit";
 export * from "./JwtKit";

package/dist/interfaces/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/interfaces/index.ts"],"names":[],"mappings":"AAAA,cAAc,SAAS,CAAC;AACxB,cAAc,UAAU,CAAC;AACzB,cAAc,UAAU,CAAC;AACzB,cAAc,UAAU,CAAC;AACzB,cAAc,UAAU,CAAC;AACzB,cAAc,UAAU,CAAC;AACzB,cAAc,UAAU,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/interfaces/index.ts"],"names":[],"mappings":"AAAA,cAAc,SAAS,CAAC;AACxB,cAAc,UAAU,CAAC;AACzB,cAAc,UAAU,CAAC;AACzB,cAAc,UAAU,CAAC"}

package/dist/interfaces/index.js

@@ -15,9 +15,6 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 __exportStar(require("./Aegis"), exports);
-__exportStar(require("./CweKit"), exports);
-__exportStar(require("./CwsKit"), exports);
-__exportStar(require("./CwtKit"), exports);
 __exportStar(require("./JweKit"), exports);
 __exportStar(require("./JwsKit"), exports);
 __exportStar(require("./JwtKit"), exports);

package/dist/interfaces/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/interfaces/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,0CAAwB;AACxB,2CAAyB;AACzB,2CAAyB;AACzB,2CAAyB;AACzB,2CAAyB;AACzB,2CAAyB;AACzB,2CAAyB"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/interfaces/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,0CAAwB;AACxB,2CAAyB;AACzB,2CAAyB;AACzB,2CAAyB"}

package/dist/internal/constants/aegis-profile-keys.d.ts

@@ -0,0 +1,2 @@
+export declare const AEGIS_PROFILE_WIRE_KEYS: ReadonlySet<string>;
+//# sourceMappingURL=aegis-profile-keys.d.ts.map

package/dist/internal/constants/aegis-profile-keys.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"aegis-profile-keys.d.ts","sourceRoot":"","sources":["../../../src/internal/constants/aegis-profile-keys.ts"],"names":[],"mappings":"AAOA,eAAO,MAAM,uBAAuB,EAAE,WAAW,CAAC,MAAM,CA2CtD,CAAC"}

package/dist/internal/constants/aegis-profile-keys.js

@@ -0,0 +1,37 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AEGIS_PROFILE_WIRE_KEYS = void 0;
+exports.AEGIS_PROFILE_WIRE_KEYS = new Set([
+    "address",
+    "email",
+    "email_verified",
+    "phone_number",
+    "phone_number_verified",
+    "picture",
+    "birthdate",
+    "family_name",
+    "gender",
+    "given_name",
+    "locale",
+    "middle_name",
+    "name",
+    "nickname",
+    "preferred_username",
+    "profile",
+    "updated_at",
+    "website",
+    "zoneinfo",
+    "display_name",
+    "honorific",
+    "legal_name",
+    "legal_name_verified",
+    "naming_system",
+    "preferred_accessibility",
+    "preferred_name",
+    "pronouns",
+    "department",
+    "job_title",
+    "occupation",
+    "organization",
+]);
+//# sourceMappingURL=aegis-profile-keys.js.map

package/dist/internal/constants/aegis-profile-keys.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"aegis-profile-keys.js","sourceRoot":"","sources":["../../../src/internal/constants/aegis-profile-keys.ts"],"names":[],"mappings":";;;AAOa,QAAA,uBAAuB,GAAwB,IAAI,GAAG,CAAC;IAElE,SAAS;IAGT,OAAO;IACP,gBAAgB;IAChB,cAAc;IACd,uBAAuB;IAGvB,SAAS;IAGT,WAAW;IACX,aAAa;IACb,QAAQ;IACR,YAAY;IACZ,QAAQ;IACR,aAAa;IACb,MAAM;IACN,UAAU;IACV,oBAAoB;IACpB,SAAS;IACT,YAAY;IACZ,SAAS;IACT,UAAU;IAGV,cAAc;IACd,WAAW;IACX,YAAY;IACZ,qBAAqB;IACrB,eAAe;IACf,yBAAyB;IACzB,gBAAgB;IAChB,UAAU;IAGV,YAAY;IACZ,WAAW;IACX,YAAY;IACZ,cAAc;CACf,CAAC,CAAC"}

package/dist/internal/constants/header.d.ts

@@ -1,3 +1,3 @@
 export declare const TOKEN_HEADER_ALGORITHMS: readonly ["ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW", "ECDH-ES+A128GCMKW", "ECDH-ES+A192GCMKW", "ECDH-ES+A256GCMKW", "ES256", "ES384", "ES512", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW", "ECDH-ES+A128GCMKW", "ECDH-ES+A192GCMKW", "ECDH-ES+A256GCMKW", "EdDSA", "RSA-OAEP", "RSA-OAEP-256", "RSA-OAEP-384", "RSA-OAEP-512", "RS256", "RS384", "RS512", "PS256", "PS384", "PS512", "dir", "A128KW", "A192KW", "A256KW", "A128GCMKW", "A192GCMKW", "A256GCMKW", "PBES2-HS256+A128KW", "PBES2-HS384+A192KW", "PBES2-HS512+A256KW", "HS256", "HS384", "HS512"];
-export declare const TOKEN_HEADER_TYPES: readonly ["JWE", "JWS", "JWT", "application/cwt", "application/cose; cose-type=cose-encrypt", "application/cose; cose-type=cose-mac", "application/cose; cose-type=cose-sign"];
+export declare const TOKEN_HEADER_TYPES: readonly ["JWE", "JWS", "JWT"];
 //# sourceMappingURL=header.d.ts.map

package/dist/internal/constants/header.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"header.d.ts","sourceRoot":"","sources":["../../../src/internal/constants/header.ts"],"names":[],"mappings":"AAYA,eAAO,MAAM,uBAAuB,0kBAU1B,CAAC;AAEX,eAAO,MAAM,kBAAkB,gLAWrB,CAAC"}
+{"version":3,"file":"header.d.ts","sourceRoot":"","sources":["../../../src/internal/constants/header.ts"],"names":[],"mappings":"AAYA,eAAO,MAAM,uBAAuB,0kBAU1B,CAAC;AAEX,eAAO,MAAM,kBAAkB,gCAKrB,CAAC"}

package/dist/internal/constants/header.js

@@ -17,9 +17,5 @@ exports.TOKEN_HEADER_TYPES = [
     "JWE",
     "JWS",
     "JWT",
-    "application/cwt",
-    "application/cose; cose-type=cose-encrypt",
-    "application/cose; cose-type=cose-mac",
-    "application/cose; cose-type=cose-sign",
 ];
 //# sourceMappingURL=header.js.map

package/dist/internal/constants/header.js.map

@@ -1 +1 @@
-{"version":3,"file":"header.js","sourceRoot":"","sources":["../../../src/internal/constants/header.ts"],"names":[],"mappings":";;;AAAA,8CAU0B;AAEb,QAAA,uBAAuB,GAAG;IACrC,GAAG,2BAAiB;IACpB,GAAG,2BAAiB;IACpB,GAAG,4BAAkB;IACrB,GAAG,4BAAkB;IACrB,GAAG,4BAAkB;IACrB,GAAG,4BAAkB;IACrB,GAAG,gCAAsB;IACzB,GAAG,gCAAsB;IACzB,GAAG,4BAAkB;CACb,CAAC;AAEE,QAAA,kBAAkB,GAAG;IAEhC,KAAK;IACL,KAAK;IACL,KAAK;IAGL,iBAAiB;IACjB,0CAA0C;IAC1C,sCAAsC;IACtC,uCAAuC;CAC/B,CAAC"}
+{"version":3,"file":"header.js","sourceRoot":"","sources":["../../../src/internal/constants/header.ts"],"names":[],"mappings":";;;AAAA,8CAU0B;AAEb,QAAA,uBAAuB,GAAG;IACrC,GAAG,2BAAiB;IACpB,GAAG,2BAAiB;IACpB,GAAG,4BAAkB;IACrB,GAAG,4BAAkB;IACrB,GAAG,4BAAkB;IACrB,GAAG,4BAAkB;IACrB,GAAG,gCAAsB;IACzB,GAAG,gCAAsB;IACzB,GAAG,4BAAkB;CACb,CAAC;AAEE,QAAA,kBAAkB,GAAG;IAEhC,KAAK;IACL,KAAK;IACL,KAAK;CACG,CAAC"}

package/dist/internal/utils/compute-jwk-thumbprint.d.ts

@@ -0,0 +1,4 @@
+type RawJwk = Record<string, unknown>;
+export declare const computeJwkThumbprint: (jwk: RawJwk) => string;
+export {};
+//# sourceMappingURL=compute-jwk-thumbprint.d.ts.map

package/dist/internal/utils/compute-jwk-thumbprint.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"compute-jwk-thumbprint.d.ts","sourceRoot":"","sources":["../../../src/internal/utils/compute-jwk-thumbprint.ts"],"names":[],"mappings":"AAGA,KAAK,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;AAQtC,eAAO,MAAM,oBAAoB,GAAI,KAAK,MAAM,KAAG,MAGlD,CAAC"}

package/dist/internal/utils/compute-jwk-thumbprint.js

@@ -0,0 +1,25 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.computeJwkThumbprint = void 0;
+const sha_1 = require("@lindorm/sha");
+const errors_1 = require("../../errors");
+const computeJwkThumbprint = (jwk) => {
+    const canonical = computeCanonicalJwk(jwk);
+    return sha_1.ShaKit.S256(JSON.stringify(canonical));
+};
+exports.computeJwkThumbprint = computeJwkThumbprint;
+const computeCanonicalJwk = (jwk) => {
+    switch (jwk.kty) {
+        case "EC":
+            return { crv: jwk.crv, kty: jwk.kty, x: jwk.x, y: jwk.y };
+        case "RSA":
+            return { e: jwk.e, kty: jwk.kty, n: jwk.n };
+        case "OKP":
+            return { crv: jwk.crv, kty: jwk.kty, x: jwk.x };
+        case "oct":
+            return { k: jwk.k, kty: jwk.kty };
+        default:
+            throw new errors_1.JwtError(`Cannot compute JWK thumbprint: unsupported kty "${String(jwk.kty)}"`);
+    }
+};
+//# sourceMappingURL=compute-jwk-thumbprint.js.map

package/dist/internal/utils/compute-jwk-thumbprint.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"compute-jwk-thumbprint.js","sourceRoot":"","sources":["../../../src/internal/utils/compute-jwk-thumbprint.ts"],"names":[],"mappings":";;;AAAA,sCAAsC;AACtC,yCAAwC;AAUjC,MAAM,oBAAoB,GAAG,CAAC,GAAW,EAAU,EAAE;IAC1D,MAAM,SAAS,GAAG,mBAAmB,CAAC,GAAG,CAAC,CAAC;IAC3C,OAAO,YAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC;AAChD,CAAC,CAAC;AAHW,QAAA,oBAAoB,wBAG/B;AAEF,MAAM,mBAAmB,GAAG,CAAC,GAAW,EAA2B,EAAE;IACnE,QAAQ,GAAG,CAAC,GAAG,EAAE,CAAC;QAChB,KAAK,IAAI;YACP,OAAO,EAAE,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC,EAAE,CAAC;QAE5D,KAAK,KAAK;YACR,OAAO,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC,EAAE,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC,EAAE,CAAC;QAE9C,KAAK,KAAK;YACR,OAAO,EAAE,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC,EAAE,CAAC;QAElD,KAAK,KAAK;YACR,OAAO,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC,EAAE,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,CAAC;QAEpC;YACE,MAAM,IAAI,iBAAQ,CAChB,mDAAmD,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CACtE,CAAC;IACN,CAAC;AACH,CAAC,CAAC"}

package/dist/internal/utils/compute-typ-header.d.ts

@@ -0,0 +1,7 @@
+import { TokenType } from "../../constants/token-type";
+import { BaseTokenFormat } from "../../types/header";
+export type KitFormat = "jwt" | "jws" | "jwe";
+export declare const computeTypHeader: (tokenType: TokenType | undefined, kitFormat: KitFormat) => string;
+export declare const decodeTokenTypeFromTyp: (typ: string | undefined, kitFormat: KitFormat) => string | undefined;
+export declare const getBaseFormat: (typ: string | undefined) => BaseTokenFormat | undefined;
+//# sourceMappingURL=compute-typ-header.d.ts.map

package/dist/internal/utils/compute-typ-header.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"compute-typ-header.d.ts","sourceRoot":"","sources":["../../../src/internal/utils/compute-typ-header.ts"],"names":[],"mappings":"AAAA,OAAO,EAA4B,SAAS,EAAE,MAAM,4BAA4B,CAAC;AACjF,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAErD,MAAM,MAAM,SAAS,GAAG,KAAK,GAAG,KAAK,GAAG,KAAK,CAAC;AAc9C,eAAO,MAAM,gBAAgB,GAC3B,WAAW,SAAS,GAAG,SAAS,EAChC,WAAW,SAAS,KACnB,MAsBF,CAAC;AAOF,eAAO,MAAM,sBAAsB,GACjC,KAAK,MAAM,GAAG,SAAS,EACvB,WAAW,SAAS,KACnB,MAAM,GAAG,SAeX,CAAC;AAQF,eAAO,MAAM,aAAa,GAAI,KAAK,MAAM,GAAG,SAAS,KAAG,eAAe,GAAG,SAczE,CAAC"}

package/dist/internal/utils/compute-typ-header.js

@@ -0,0 +1,68 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getBaseFormat = exports.decodeTokenTypeFromTyp = exports.computeTypHeader = void 0;
+const token_type_1 = require("../../constants/token-type");
+const FORMAT_FALLBACK = {
+    jwt: "JWT",
+    jws: "JWS",
+    jwe: "JWE",
+};
+const FORMAT_SUFFIX = {
+    jwt: "+jwt",
+    jws: "+jws",
+    jwe: "+jwe",
+};
+const computeTypHeader = (tokenType, kitFormat) => {
+    if (tokenType === undefined)
+        return FORMAT_FALLBACK[kitFormat];
+    if (tokenType === "") {
+        throw new Error("tokenType cannot be an empty string");
+    }
+    if (tokenType.trim() !== tokenType || /\s/.test(tokenType)) {
+        throw new Error("tokenType cannot contain whitespace");
+    }
+    if (tokenType.includes("+")) {
+        throw new Error('tokenType cannot contain \'+\' — pass the bare type (e.g. "access_token"), not the full typ header (e.g. "at+jwt")');
+    }
+    const shortName = token_type_1.TOKEN_TYPE_TO_SHORT_NAME[tokenType] ?? tokenType;
+    if (shortName === "JWT")
+        return "JWT";
+    return `${shortName}${FORMAT_SUFFIX[kitFormat]}`;
+};
+exports.computeTypHeader = computeTypHeader;
+const decodeTokenTypeFromTyp = (typ, kitFormat) => {
+    if (!typ)
+        return undefined;
+    if (typ === FORMAT_FALLBACK[kitFormat])
+        return undefined;
+    const suffix = FORMAT_SUFFIX[kitFormat];
+    if (typ.endsWith(suffix)) {
+        const shortName = typ.slice(0, -suffix.length);
+        for (const [tokenType, known] of Object.entries(token_type_1.TOKEN_TYPE_TO_SHORT_NAME)) {
+            if (known === shortName)
+                return tokenType;
+        }
+        return shortName;
+    }
+    return undefined;
+};
+exports.decodeTokenTypeFromTyp = decodeTokenTypeFromTyp;
+const getBaseFormat = (typ) => {
+    if (!typ)
+        return undefined;
+    if (typ === "JWT")
+        return "JWT";
+    if (typ === "JWS" || typ === "JOSE")
+        return "JWS";
+    if (typ === "JWE")
+        return "JWE";
+    if (typ.endsWith("+jwt"))
+        return "JWT";
+    if (typ.endsWith("+jws"))
+        return "JWS";
+    if (typ.endsWith("+jwe"))
+        return "JWE";
+    return undefined;
+};
+exports.getBaseFormat = getBaseFormat;
+//# sourceMappingURL=compute-typ-header.js.map

package/dist/internal/utils/compute-typ-header.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"compute-typ-header.js","sourceRoot":"","sources":["../../../src/internal/utils/compute-typ-header.ts"],"names":[],"mappings":";;;AAAA,2DAAiF;AAKjF,MAAM,eAAe,GAA8B;IACjD,GAAG,EAAE,KAAK;IACV,GAAG,EAAE,KAAK;IACV,GAAG,EAAE,KAAK;CACX,CAAC;AAEF,MAAM,aAAa,GAA8B;IAC/C,GAAG,EAAE,MAAM;IACX,GAAG,EAAE,MAAM;IACX,GAAG,EAAE,MAAM;CACZ,CAAC;AAEK,MAAM,gBAAgB,GAAG,CAC9B,SAAgC,EAChC,SAAoB,EACZ,EAAE;IACV,IAAI,SAAS,KAAK,SAAS;QAAE,OAAO,eAAe,CAAC,SAAS,CAAC,CAAC;IAE/D,IAAI,SAAS,KAAK,EAAE,EAAE,CAAC;QACrB,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;IACzD,CAAC;IACD,IAAI,SAAS,CAAC,IAAI,EAAE,KAAK,SAAS,IAAI,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;QAC3D,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;IACzD,CAAC;IACD,IAAI,SAAS,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,KAAK,CACb,oHAAoH,CACrH,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GACZ,qCAAmD,CAAC,SAAS,CAAC,IAAI,SAAS,CAAC;IAG/E,IAAI,SAAS,KAAK,KAAK;QAAE,OAAO,KAAK,CAAC;IAEtC,OAAO,GAAG,SAAS,GAAG,aAAa,CAAC,SAAS,CAAC,EAAE,CAAC;AACnD,CAAC,CAAC;AAzBW,QAAA,gBAAgB,oBAyB3B;AAOK,MAAM,sBAAsB,GAAG,CACpC,GAAuB,EACvB,SAAoB,EACA,EAAE;IACtB,IAAI,CAAC,GAAG;QAAE,OAAO,SAAS,CAAC;IAC3B,IAAI,GAAG,KAAK,eAAe,CAAC,SAAS,CAAC;QAAE,OAAO,SAAS,CAAC;IAEzD,MAAM,MAAM,GAAG,aAAa,CAAC,SAAS,CAAC,CAAC;IACxC,IAAI,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;QACzB,MAAM,SAAS,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAE/C,KAAK,MAAM,CAAC,SAAS,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,qCAAwB,CAAC,EAAE,CAAC;YAC1E,IAAI,KAAK,KAAK,SAAS;gBAAE,OAAO,SAAS,CAAC;QAC5C,CAAC;QACD,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC,CAAC;AAlBW,QAAA,sBAAsB,0BAkBjC;AAQK,MAAM,aAAa,GAAG,CAAC,GAAuB,EAA+B,EAAE;IACpF,IAAI,CAAC,GAAG;QAAE,OAAO,SAAS,CAAC;IAG3B,IAAI,GAAG,KAAK,KAAK;QAAE,OAAO,KAAK,CAAC;IAChC,IAAI,GAAG,KAAK,KAAK,IAAI,GAAG,KAAK,MAAM;QAAE,OAAO,KAAK,CAAC;IAClD,IAAI,GAAG,KAAK,KAAK;QAAE,OAAO,KAAK,CAAC;IAGhC,IAAI,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC;QAAE,OAAO,KAAK,CAAC;IACvC,IAAI,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC;QAAE,OAAO,KAAK,CAAC;IACvC,IAAI,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC;QAAE,OAAO,KAAK,CAAC;IAEvC,OAAO,SAAS,CAAC;AACnB,CAAC,CAAC;AAdW,QAAA,aAAa,iBAcxB"}

package/dist/internal/utils/extract-aegis-profile.d.ts

@@ -0,0 +1,7 @@
+import { Dict } from "@lindorm/types";
+import { AegisProfile } from "../../types";
+export declare const extractAegisProfile: (data: Dict) => {
+    profile: AegisProfile | undefined;
+    rest: Dict;
+};
+//# sourceMappingURL=extract-aegis-profile.d.ts.map

package/dist/internal/utils/extract-aegis-profile.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"extract-aegis-profile.d.ts","sourceRoot":"","sources":["../../../src/internal/utils/extract-aegis-profile.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AACtC,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAqB3C,eAAO,MAAM,mBAAmB,GAC9B,MAAM,IAAI,KACT;IAAE,OAAO,EAAE,YAAY,GAAG,SAAS,CAAC;IAAC,IAAI,EAAE,IAAI,CAAA;CA6BjD,CAAC"}

package/dist/internal/utils/extract-aegis-profile.js

@@ -0,0 +1,34 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.extractAegisProfile = void 0;
+const case_1 = require("@lindorm/case");
+const aegis_profile_keys_1 = require("../constants/aegis-profile-keys");
+const AEGIS_PROFILE_CAMEL_KEYS = new Set(Object.keys((0, case_1.camelKeys)(Object.fromEntries([...aegis_profile_keys_1.AEGIS_PROFILE_WIRE_KEYS].map((k) => [k, 1])))));
+const extractAegisProfile = (data) => {
+    const profileWire = {};
+    const profileCamel = {};
+    const rest = {};
+    for (const [key, value] of Object.entries(data)) {
+        if (aegis_profile_keys_1.AEGIS_PROFILE_WIRE_KEYS.has(key)) {
+            profileWire[key] = value;
+        }
+        else if (AEGIS_PROFILE_CAMEL_KEYS.has(key)) {
+            profileCamel[key] = value;
+        }
+        else {
+            rest[key] = value;
+        }
+    }
+    const hasWire = Object.keys(profileWire).length > 0;
+    const hasCamel = Object.keys(profileCamel).length > 0;
+    if (!hasWire && !hasCamel) {
+        return { profile: undefined, rest };
+    }
+    const merged = {
+        ...(hasWire ? (0, case_1.camelKeys)(profileWire) : {}),
+        ...profileCamel,
+    };
+    return { profile: merged, rest };
+};
+exports.extractAegisProfile = extractAegisProfile;
+//# sourceMappingURL=extract-aegis-profile.js.map

package/dist/internal/utils/extract-aegis-profile.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"extract-aegis-profile.js","sourceRoot":"","sources":["../../../src/internal/utils/extract-aegis-profile.ts"],"names":[],"mappings":";;;AAAA,wCAA0C;AAG1C,wEAA0E;AAK1E,MAAM,wBAAwB,GAAwB,IAAI,GAAG,CAC3D,MAAM,CAAC,IAAI,CACT,IAAA,gBAAS,EAAC,MAAM,CAAC,WAAW,CAAC,CAAC,GAAG,4CAAuB,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAC/E,CACF,CAAC;AAWK,MAAM,mBAAmB,GAAG,CACjC,IAAU,EACyC,EAAE;IACrD,MAAM,WAAW,GAAS,EAAE,CAAC;IAC7B,MAAM,YAAY,GAAS,EAAE,CAAC;IAC9B,MAAM,IAAI,GAAS,EAAE,CAAC;IAEtB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QAChD,IAAI,4CAAuB,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;YACrC,WAAW,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QAC3B,CAAC;aAAM,IAAI,wBAAwB,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;YAC7C,YAAY,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QAC5B,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACpB,CAAC;IACH,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC;IACpD,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC;IAEtD,IAAI,CAAC,OAAO,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC1B,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;IACtC,CAAC;IAGD,MAAM,MAAM,GAAS;QACnB,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,IAAA,gBAAS,EAAC,WAAW,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAC1C,GAAG,YAAY;KAChB,CAAC;IAEF,OAAO,EAAE,OAAO,EAAE,MAAsB,EAAE,IAAI,EAAE,CAAC;AACnD,CAAC,CAAC;AA/BW,QAAA,mBAAmB,uBA+B9B"}

package/dist/internal/utils/extract-claims.d.ts

@@ -0,0 +1,15 @@
+import { Dict } from "@lindorm/types";
+import { LindormClaims } from "../../types/claims/lindorm-claims";
+import { OAuthClaims } from "../../types/claims/oauth-claims";
+import { OidcClaims } from "../../types/claims/oidc-claims";
+import { PopClaims } from "../../types/claims/pop-claims";
+import { DelegationClaims } from "../../types/claims/delegation-claims";
+import { StdClaims } from "../../types/claims/std-claims";
+export type DomainClaims = StdClaims & OidcClaims & PopClaims & DelegationClaims & OAuthClaims & LindormClaims;
+export type ExtractClaimsResult = {
+    claims: DomainClaims;
+    rest: Dict;
+};
+export declare const extractDomainClaims: (input: Dict) => ExtractClaimsResult;
+export declare const DOMAIN_CLAIM_KEYS: Readonly<Record<string, ReadonlyArray<string>>>;
+//# sourceMappingURL=extract-claims.d.ts.map

package/dist/internal/utils/extract-claims.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"extract-claims.d.ts","sourceRoot":"","sources":["../../../src/internal/utils/extract-claims.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AAItC,OAAO,EAAE,aAAa,EAAE,MAAM,mCAAmC,CAAC;AAClE,OAAO,EAAE,WAAW,EAAE,MAAM,iCAAiC,CAAC;AAC9D,OAAO,EAAE,UAAU,EAAE,MAAM,gCAAgC,CAAC;AAC5D,OAAO,EAAE,SAAS,EAAE,MAAM,+BAA+B,CAAC;AAC1D,OAAO,EAAE,gBAAgB,EAAE,MAAM,sCAAsC,CAAC;AACxE,OAAO,EAAE,SAAS,EAAE,MAAM,+BAA+B,CAAC;AAK1D,MAAM,MAAM,YAAY,GAAG,SAAS,GAClC,UAAU,GACV,SAAS,GACT,gBAAgB,GAChB,WAAW,GACX,aAAa,CAAC;AAEhB,MAAM,MAAM,mBAAmB,GAAG;IAChC,MAAM,EAAE,YAAY,CAAC;IACrB,IAAI,EAAE,IAAI,CAAC;CACZ,CAAC;AAwIF,eAAO,MAAM,mBAAmB,GAAI,OAAO,IAAI,KAAG,mBA4GjD,CAAC;AAIF,eAAO,MAAM,iBAAiB,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,aAAa,CAAC,MAAM,CAAC,CAAC,CAI7E,CAAC"}

package/dist/internal/utils/extract-claims.js

@@ -0,0 +1,201 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DOMAIN_CLAIM_KEYS = exports.extractDomainClaims = void 0;
+const is_1 = require("@lindorm/is");
+const utils_1 = require("@lindorm/utils");
+const FIELD_KEYS = {
+    subject: ["subject", "sub"],
+    expiresAt: ["expiresAt", "exp"],
+    issuedAt: ["issuedAt", "iat"],
+    notBefore: ["notBefore", "nbf"],
+    issuer: ["issuer", "iss"],
+    audience: ["audience", "aud"],
+    tokenId: ["tokenId", "jti"],
+    accessTokenHash: ["accessTokenHash", "at_hash"],
+    authContextClass: ["authContextClass", "acr"],
+    authMethods: ["authMethods", "amr"],
+    authorizedParty: ["authorizedParty", "azp"],
+    authTime: ["authTime", "auth_time"],
+    codeHash: ["codeHash", "c_hash"],
+    nonce: ["nonce"],
+    stateHash: ["stateHash", "s_hash"],
+    entitlements: ["entitlements"],
+    groups: ["groups"],
+    roles: ["roles"],
+    adjustedAccessLevel: ["adjustedAccessLevel", "aal"],
+    authFactor: ["authFactor", "afr"],
+    clientId: ["clientId", "client_id"],
+    grantType: ["grantType", "gty"],
+    levelOfAssurance: ["levelOfAssurance", "loa"],
+    permissions: ["permissions"],
+    scope: ["scope"],
+    sessionHint: ["sessionHint", "sih"],
+    sessionId: ["sessionId", "sid"],
+    subjectHint: ["subjectHint", "suh"],
+    tenantId: ["tenantId", "tenant_id"],
+};
+const RFC8693_KEYS = {
+    act: ["act"],
+    mayAct: ["mayAct", "may_act"],
+};
+const POP_KEYS = {
+    confirmation: ["confirmation", "cnf"],
+};
+const toDate = (value) => {
+    if (value instanceof Date)
+        return value;
+    if ((0, is_1.isFinite)(value))
+        return new Date(value * 1000);
+    return undefined;
+};
+const toStringArray = (value) => {
+    if ((0, is_1.isArray)(value))
+        return value;
+    if ((0, is_1.isString)(value))
+        return value.split(" ").filter(Boolean);
+    return undefined;
+};
+const toAudience = (value) => {
+    if ((0, is_1.isArray)(value))
+        return value;
+    if ((0, is_1.isString)(value))
+        return [value];
+    return undefined;
+};
+const toActClaim = (value) => {
+    if (!(0, is_1.isObject)(value))
+        return undefined;
+    const v = value;
+    const result = (0, utils_1.removeUndefined)({
+        subject: (0, is_1.isString)(v.subject) ? v.subject : (0, is_1.isString)(v.sub) ? v.sub : undefined,
+        issuer: (0, is_1.isString)(v.issuer) ? v.issuer : (0, is_1.isString)(v.iss) ? v.iss : undefined,
+        audience: toAudience(v.audience ?? v.aud),
+        clientId: (0, is_1.isString)(v.clientId)
+            ? v.clientId
+            : (0, is_1.isString)(v.client_id)
+                ? v.client_id
+                : undefined,
+        act: toActClaim(v.act),
+    });
+    return Object.keys(result).length > 0 ? result : undefined;
+};
+const toConfirmation = (value) => {
+    if (!(0, is_1.isObject)(value))
+        return undefined;
+    const v = value;
+    const result = (0, utils_1.removeUndefined)({
+        thumbprint: (0, is_1.isString)(v.thumbprint)
+            ? v.thumbprint
+            : (0, is_1.isString)(v.jkt)
+                ? v.jkt
+                : undefined,
+        mtlsCertThumbprint: (0, is_1.isString)(v.mtlsCertThumbprint)
+            ? v.mtlsCertThumbprint
+            : (0, is_1.isString)(v["x5t#S256"])
+                ? v["x5t#S256"]
+                : undefined,
+        key: (0, is_1.isObject)(v.key)
+            ? v.key
+            : (0, is_1.isObject)(v.jwk)
+                ? v.jwk
+                : undefined,
+        keyId: (0, is_1.isString)(v.keyId) ? v.keyId : (0, is_1.isString)(v.kid) ? v.kid : undefined,
+        jwkSetUri: (0, is_1.isString)(v.jwkSetUri) ? v.jwkSetUri : (0, is_1.isString)(v.jku) ? v.jku : undefined,
+    });
+    return Object.keys(result).length > 0 ? result : undefined;
+};
+const extractDomainClaims = (input) => {
+    const consumed = new Set();
+    const consume = (keys) => {
+        for (const key of keys) {
+            if (key in input) {
+                consumed.add(key);
+                return input[key];
+            }
+        }
+        return undefined;
+    };
+    const subject = consume(FIELD_KEYS.subject);
+    const expiresAt = consume(FIELD_KEYS.expiresAt);
+    const issuedAt = consume(FIELD_KEYS.issuedAt);
+    const notBefore = consume(FIELD_KEYS.notBefore);
+    const issuer = consume(FIELD_KEYS.issuer);
+    const audience = consume(FIELD_KEYS.audience);
+    const tokenId = consume(FIELD_KEYS.tokenId);
+    const accessTokenHash = consume(FIELD_KEYS.accessTokenHash);
+    const authContextClass = consume(FIELD_KEYS.authContextClass);
+    const authMethods = consume(FIELD_KEYS.authMethods);
+    const authorizedParty = consume(FIELD_KEYS.authorizedParty);
+    const authTime = consume(FIELD_KEYS.authTime);
+    const codeHash = consume(FIELD_KEYS.codeHash);
+    const nonce = consume(FIELD_KEYS.nonce);
+    const stateHash = consume(FIELD_KEYS.stateHash);
+    const entitlements = consume(FIELD_KEYS.entitlements);
+    const groups = consume(FIELD_KEYS.groups);
+    const roles = consume(FIELD_KEYS.roles);
+    const adjustedAccessLevel = consume(FIELD_KEYS.adjustedAccessLevel);
+    const authFactor = consume(FIELD_KEYS.authFactor);
+    const clientId = consume(FIELD_KEYS.clientId);
+    const grantType = consume(FIELD_KEYS.grantType);
+    const levelOfAssurance = consume(FIELD_KEYS.levelOfAssurance);
+    const permissions = consume(FIELD_KEYS.permissions);
+    const scope = consume(FIELD_KEYS.scope);
+    const sessionHint = consume(FIELD_KEYS.sessionHint);
+    const sessionId = consume(FIELD_KEYS.sessionId);
+    const subjectHint = consume(FIELD_KEYS.subjectHint);
+    const tenantId = consume(FIELD_KEYS.tenantId);
+    const act = consume(RFC8693_KEYS.act);
+    const mayAct = consume(RFC8693_KEYS.mayAct);
+    const confirmation = consume(POP_KEYS.confirmation);
+    const claims = (0, utils_1.removeUndefined)({
+        subject: (0, is_1.isString)(subject) ? subject : undefined,
+        expiresAt: toDate(expiresAt),
+        issuedAt: toDate(issuedAt),
+        notBefore: toDate(notBefore),
+        issuer: (0, is_1.isString)(issuer) ? issuer : undefined,
+        audience: toAudience(audience),
+        tokenId: (0, is_1.isString)(tokenId) ? tokenId : undefined,
+        accessTokenHash: (0, is_1.isString)(accessTokenHash) ? accessTokenHash : undefined,
+        authContextClass: (0, is_1.isString)(authContextClass) ? authContextClass : undefined,
+        authMethods: (0, is_1.isArray)(authMethods) ? authMethods : undefined,
+        authorizedParty: (0, is_1.isString)(authorizedParty) ? authorizedParty : undefined,
+        authTime: toDate(authTime),
+        codeHash: (0, is_1.isString)(codeHash) ? codeHash : undefined,
+        nonce: (0, is_1.isString)(nonce) ? nonce : undefined,
+        stateHash: (0, is_1.isString)(stateHash) ? stateHash : undefined,
+        confirmation: toConfirmation(confirmation),
+        act: toActClaim(act),
+        mayAct: toActClaim(mayAct),
+        entitlements: (0, is_1.isArray)(entitlements) ? entitlements : undefined,
+        groups: (0, is_1.isArray)(groups) ? groups : undefined,
+        roles: toStringArray(roles),
+        adjustedAccessLevel: (0, is_1.isFinite)(adjustedAccessLevel)
+            ? adjustedAccessLevel
+            : undefined,
+        authFactor: (0, is_1.isArray)(authFactor) ? authFactor : undefined,
+        clientId: (0, is_1.isString)(clientId) ? clientId : undefined,
+        grantType: (0, is_1.isString)(grantType) ? grantType : undefined,
+        levelOfAssurance: (0, is_1.isFinite)(levelOfAssurance)
+            ? levelOfAssurance
+            : undefined,
+        permissions: toStringArray(permissions),
+        scope: toStringArray(scope),
+        sessionHint: (0, is_1.isString)(sessionHint) ? sessionHint : undefined,
+        sessionId: (0, is_1.isString)(sessionId) ? sessionId : undefined,
+        subjectHint: (0, is_1.isString)(subjectHint) ? subjectHint : undefined,
+        tenantId: (0, is_1.isString)(tenantId) ? tenantId : undefined,
+    });
+    const rest = {};
+    for (const key of Object.keys(input)) {
+        if (!consumed.has(key))
+            rest[key] = input[key];
+    }
+    return { claims, rest };
+};
+exports.extractDomainClaims = extractDomainClaims;
+exports.DOMAIN_CLAIM_KEYS = {
+    ...FIELD_KEYS,
+    ...RFC8693_KEYS,
+    ...POP_KEYS,
+};
+//# sourceMappingURL=extract-claims.js.map

package/dist/internal/utils/extract-claims.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"extract-claims.js","sourceRoot":"","sources":["../../../src/internal/utils/extract-claims.ts"],"names":[],"mappings":";;;AAAA,oCAAoE;AAEpE,0CAAiD;AAgCjD,MAAM,UAAU,GAA0C;IAExD,OAAO,EAAE,CAAC,SAAS,EAAE,KAAK,CAAC;IAC3B,SAAS,EAAE,CAAC,WAAW,EAAE,KAAK,CAAC;IAC/B,QAAQ,EAAE,CAAC,UAAU,EAAE,KAAK,CAAC;IAC7B,SAAS,EAAE,CAAC,WAAW,EAAE,KAAK,CAAC;IAC/B,MAAM,EAAE,CAAC,QAAQ,EAAE,KAAK,CAAC;IACzB,QAAQ,EAAE,CAAC,UAAU,EAAE,KAAK,CAAC;IAC7B,OAAO,EAAE,CAAC,SAAS,EAAE,KAAK,CAAC;IAG3B,eAAe,EAAE,CAAC,iBAAiB,EAAE,SAAS,CAAC;IAC/C,gBAAgB,EAAE,CAAC,kBAAkB,EAAE,KAAK,CAAC;IAC7C,WAAW,EAAE,CAAC,aAAa,EAAE,KAAK,CAAC;IACnC,eAAe,EAAE,CAAC,iBAAiB,EAAE,KAAK,CAAC;IAC3C,QAAQ,EAAE,CAAC,UAAU,EAAE,WAAW,CAAC;IACnC,QAAQ,EAAE,CAAC,UAAU,EAAE,QAAQ,CAAC;IAChC,KAAK,EAAE,CAAC,OAAO,CAAC;IAChB,SAAS,EAAE,CAAC,WAAW,EAAE,QAAQ,CAAC;IAGlC,YAAY,EAAE,CAAC,cAAc,CAAC;IAC9B,MAAM,EAAE,CAAC,QAAQ,CAAC;IAClB,KAAK,EAAE,CAAC,OAAO,CAAC;IAGhB,mBAAmB,EAAE,CAAC,qBAAqB,EAAE,KAAK,CAAC;IACnD,UAAU,EAAE,CAAC,YAAY,EAAE,KAAK,CAAC;IACjC,QAAQ,EAAE,CAAC,UAAU,EAAE,WAAW,CAAC;IACnC,SAAS,EAAE,CAAC,WAAW,EAAE,KAAK,CAAC;IAC/B,gBAAgB,EAAE,CAAC,kBAAkB,EAAE,KAAK,CAAC;IAC7C,WAAW,EAAE,CAAC,aAAa,CAAC;IAC5B,KAAK,EAAE,CAAC,OAAO,CAAC;IAChB,WAAW,EAAE,CAAC,aAAa,EAAE,KAAK,CAAC;IACnC,SAAS,EAAE,CAAC,WAAW,EAAE,KAAK,CAAC;IAC/B,WAAW,EAAE,CAAC,aAAa,EAAE,KAAK,CAAC;IACnC,QAAQ,EAAE,CAAC,UAAU,EAAE,WAAW,CAAC;CACpC,CAAC;AAIF,MAAM,YAAY,GAAG;IACnB,GAAG,EAAE,CAAC,KAAK,CAAC;IACZ,MAAM,EAAE,CAAC,QAAQ,EAAE,SAAS,CAAC;CACrB,CAAC;AAEX,MAAM,QAAQ,GAAG;IACf,YAAY,EAAE,CAAC,cAAc,EAAE,KAAK,CAAC;CAC7B,CAAC;AAEX,MAAM,MAAM,GAAG,CAAC,KAAc,EAAoB,EAAE;IAClD,IAAI,KAAK,YAAY,IAAI;QAAE,OAAO,KAAK,CAAC;IACxC,IAAI,IAAA,aAAQ,EAAC,KAAK,CAAC;QAAE,OAAO,IAAI,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,CAAC;IACnD,OAAO,SAAS,CAAC;AACnB,CAAC,CAAC;AAEF,MAAM,aAAa,GAAG,CAAC,KAAc,EAA6B,EAAE;IAClE,IAAI,IAAA,YAAO,EAAC,KAAK,CAAC;QAAE,OAAO,KAAsB,CAAC;IAClD,IAAI,IAAA,aAAQ,EAAC,KAAK,CAAC;QAAE,OAAO,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IAC7D,OAAO,SAAS,CAAC;AACnB,CAAC,CAAC;AAEF,MAAM,UAAU,GAAG,CAAC,KAAc,EAA6B,EAAE;IAC/D,IAAI,IAAA,YAAO,EAAC,KAAK,CAAC;QAAE,OAAO,KAAsB,CAAC;IAClD,IAAI,IAAA,aAAQ,EAAC,KAAK,CAAC;QAAE,OAAO,CAAC,KAAK,CAAC,CAAC;IACpC,OAAO,SAAS,CAAC;AACnB,CAAC,CAAC;AAIF,MAAM,UAAU,GAAG,CAAC,KAAc,EAAwB,EAAE;IAC1D,IAAI,CAAC,IAAA,aAAQ,EAAC,KAAK,CAAC;QAAE,OAAO,SAAS,CAAC;IACvC,MAAM,CAAC,GAAG,KAAK,CAAC;IAChB,MAAM,MAAM,GAAa,IAAA,uBAAe,EAAC;QACvC,OAAO,EAAE,IAAA,aAAQ,EAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAA,aAAQ,EAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;QAC9E,MAAM,EAAE,IAAA,aAAQ,EAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAA,aAAQ,EAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;QAC3E,QAAQ,EAAE,UAAU,CAAC,CAAC,CAAC,QAAQ,IAAI,CAAC,CAAC,GAAG,CAAC;QACzC,QAAQ,EAAE,IAAA,aAAQ,EAAC,CAAC,CAAC,QAAQ,CAAC;YAC5B,CAAC,CAAC,CAAC,CAAC,QAAQ;YACZ,CAAC,CAAC,IAAA,aAAQ,EAAC,CAAC,CAAC,SAAS,CAAC;gBACrB,CAAC,CAAC,CAAC,CAAC,SAAS;gBACb,CAAC,CAAC,SAAS;QACf,GAAG,EAAE,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC;KACvB,CAAC,CAAC;IACH,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;AAC7D,CAAC,CAAC;AAKF,MAAM,cAAc,GAAG,CAAC,KAAc,EAAiC,EAAE;IACvE,IAAI,CAAC,IAAA,aAAQ,EAAC,KAAK,CAAC;QAAE,OAAO,SAAS,CAAC;IACvC,MAAM,CAAC,GAAG,KAAK,CAAC;IAChB,MAAM,MAAM,GAAsB,IAAA,uBAAe,EAAC;QAChD,UAAU,EAAE,IAAA,aAAQ,EAAC,CAAC,CAAC,UAAU,CAAC;YAChC,CAAC,CAAC,CAAC,CAAC,UAAU;YACd,CAAC,CAAC,IAAA,aAAQ,EAAC,CAAC,CAAC,GAAG,CAAC;gBACf,CAAC,CAAC,CAAC,CAAC,GAAG;gBACP,CAAC,CAAC,SAAS;QACf,kBAAkB,EAAE,IAAA,aAAQ,EAAC,CAAC,CAAC,kBAAkB,CAAC;YAChD,CAAC,CAAC,CAAC,CAAC,kBAAkB;YACtB,CAAC,CAAC,IAAA,aAAQ,EAAC,CAAC,CAAC,UAAU,CAAC,CAAC;gBACvB,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC;gBACf,CAAC,CAAC,SAAS;QACf,GAAG,EAAE,IAAA,aAAQ,EAAC,CAAC,CAAC,GAAG,CAAC;YAClB,CAAC,CAAE,CAAC,CAAC,GAAgC;YACrC,CAAC,CAAC,IAAA,aAAQ,EAAC,CAAC,CAAC,GAAG,CAAC;gBACf,CAAC,CAAE,CAAC,CAAC,GAAgC;gBACrC,CAAC,CAAC,SAAS;QACf,KAAK,EAAE,IAAA,aAAQ,EAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAA,aAAQ,EAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;QACxE,SAAS,EAAE,IAAA,aAAQ,EAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAA,aAAQ,EAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;KACrF,CAAC,CAAC;IACH,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;AAC7D,CAAC,CAAC;AAcK,MAAM,mBAAmB,GAAG,CAAC,KAAW,EAAuB,EAAE;IACtE,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAU,CAAC;IAEnC,MAAM,OAAO,GAAG,CAAC,IAA2B,EAAW,EAAE;QACvD,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;YACvB,IAAI,GAAG,IAAI,KAAK,EAAE,CAAC;gBACjB,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;gBAClB,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC;YACpB,CAAC;QACH,CAAC;QACD,OAAO,SAAS,CAAC;IACnB,CAAC,CAAC;IAGF,MAAM,OAAO,GAAG,OAAO,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;IAC5C,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;IAChD,MAAM,QAAQ,GAAG,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;IAC9C,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;IAChD,MAAM,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;IAC1C,MAAM,QAAQ,GAAG,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;IAC9C,MAAM,OAAO,GAAG,OAAO,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;IAE5C,MAAM,eAAe,GAAG,OAAO,CAAC,UAAU,CAAC,eAAe,CAAC,CAAC;IAC5D,MAAM,gBAAgB,GAAG,OAAO,CAAC,UAAU,CAAC,gBAAgB,CAAC,CAAC;IAC9D,MAAM,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IACpD,MAAM,eAAe,GAAG,OAAO,CAAC,UAAU,CAAC,eAAe,CAAC,CAAC;IAC5D,MAAM,QAAQ,GAAG,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;IAC9C,MAAM,QAAQ,GAAG,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;IAC9C,MAAM,KAAK,GAAG,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;IACxC,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;IAEhD,MAAM,YAAY,GAAG,OAAO,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC;IACtD,MAAM,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;IAC1C,MAAM,KAAK,GAAG,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;IAExC,MAAM,mBAAmB,GAAG,OAAO,CAAC,UAAU,CAAC,mBAAmB,CAAC,CAAC;IACpE,MAAM,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC;IAClD,MAAM,QAAQ,GAAG,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;IAC9C,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;IAChD,MAAM,gBAAgB,GAAG,OAAO,CAAC,UAAU,CAAC,gBAAgB,CAAC,CAAC;IAC9D,MAAM,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IACpD,MAAM,KAAK,GAAG,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;IACxC,MAAM,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IACpD,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;IAChD,MAAM,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IACpD,MAAM,QAAQ,GAAG,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;IAE9C,MAAM,GAAG,GAAG,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC;IACtC,MAAM,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;IAC5C,MAAM,YAAY,GAAG,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;IAEpD,MAAM,MAAM,GAAiB,IAAA,uBAAe,EAAC;QAE3C,OAAO,EAAE,IAAA,aAAQ,EAAC,OAAO,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS;QAChD,SAAS,EAAE,MAAM,CAAC,SAAS,CAAC;QAC5B,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC;QAC1B,SAAS,EAAE,MAAM,CAAC,SAAS,CAAC;QAC5B,MAAM,EAAE,IAAA,aAAQ,EAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS;QAC7C,QAAQ,EAAE,UAAU,CAAC,QAAQ,CAAC;QAC9B,OAAO,EAAE,IAAA,aAAQ,EAAC,OAAO,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS;QAGhD,eAAe,EAAE,IAAA,aAAQ,EAAC,eAAe,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS;QACxE,gBAAgB,EAAE,IAAA,aAAQ,EAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS;QAC3E,WAAW,EAAE,IAAA,YAAO,EAAC,WAAW,CAAC,CAAC,CAAC,CAAE,WAA6B,CAAC,CAAC,CAAC,SAAS;QAC9E,eAAe,EAAE,IAAA,aAAQ,EAAC,eAAe,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS;QACxE,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC;QAC1B,QAAQ,EAAE,IAAA,aAAQ,EAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS;QACnD,KAAK,EAAE,IAAA,aAAQ,EAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS;QAC1C,SAAS,EAAE,IAAA,aAAQ,EAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS;QAGtD,YAAY,EAAE,cAAc,CAAC,YAAY,CAAC;QAG1C,GAAG,EAAE,UAAU,CAAC,GAAG,CAAC;QACpB,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC;QAG1B,YAAY,EAAE,IAAA,YAAO,EAAC,YAAY,CAAC,CAAC,CAAC,CAAE,YAA8B,CAAC,CAAC,CAAC,SAAS;QACjF,MAAM,EAAE,IAAA,YAAO,EAAC,MAAM,CAAC,CAAC,CAAC,CAAE,MAAwB,CAAC,CAAC,CAAC,SAAS;QAC/D,KAAK,EAAE,aAAa,CAAC,KAAK,CAAC;QAG3B,mBAAmB,EAAE,IAAA,aAAQ,EAAsB,mBAAmB,CAAC;YACrE,CAAC,CAAC,mBAAmB;YACrB,CAAC,CAAC,SAAS;QACb,UAAU,EAAE,IAAA,YAAO,EAAC,UAAU,CAAC,CAAC,CAAC,CAAE,UAA4B,CAAC,CAAC,CAAC,SAAS;QAC3E,QAAQ,EAAE,IAAA,aAAQ,EAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS;QACnD,SAAS,EAAE,IAAA,aAAQ,EAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS;QACtD,gBAAgB,EAAE,IAAA,aAAQ,EAAmB,gBAAgB,CAAC;YAC5D,CAAC,CAAC,gBAAgB;YAClB,CAAC,CAAC,SAAS;QACb,WAAW,EAAE,aAAa,CAAC,WAAW,CAAC;QACvC,KAAK,EAAE,aAAa,CAAC,KAAK,CAAC;QAC3B,WAAW,EAAE,IAAA,aAAQ,EAAC,WAAW,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;QAC5D,SAAS,EAAE,IAAA,aAAQ,EAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS;QACtD,WAAW,EAAE,IAAA,aAAQ,EAAC,WAAW,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;QAC5D,QAAQ,EAAE,IAAA,aAAQ,EAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS;KACpD,CAAC,CAAC;IAGH,MAAM,IAAI,GAAS,EAAE,CAAC;IACtB,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;QACrC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC;YAAE,IAAI,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC;IACjD,CAAC;IAED,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC;AAC1B,CAAC,CAAC;AA5GW,QAAA,mBAAmB,uBA4G9B;AAIW,QAAA,iBAAiB,GAAoD;IAChF,GAAG,UAAU;IACb,GAAG,YAAY;IACf,GAAG,QAAQ;CACZ,CAAC"}

package/dist/internal/utils/extract-token-delegation.d.ts

@@ -0,0 +1,6 @@
+import { ActClaimWire } from "../../types/claims/jwt/act-claim-wire";
+import { TokenDelegation } from "../../types/jwt/jwt-delegation";
+export declare const extractTokenDelegation: (payload: {
+    act?: ActClaimWire;
+}) => TokenDelegation;
+//# sourceMappingURL=extract-token-delegation.d.ts.map

package/dist/internal/utils/extract-token-delegation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"extract-token-delegation.d.ts","sourceRoot":"","sources":["../../../src/internal/utils/extract-token-delegation.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,YAAY,EAAE,MAAM,uCAAuC,CAAC;AACrE,OAAO,EAAE,eAAe,EAAE,MAAM,gCAAgC,CAAC;AAmBjE,eAAO,MAAM,sBAAsB,GAAI,SAAS;IAC9C,GAAG,CAAC,EAAE,YAAY,CAAC;CACpB,KAAG,eAOH,CAAC"}