npm - @openid4vc/oauth2 - Versions diffs - 0.3.0-alpha-20250304095426 → 0.3.0-alpha-20250315153009 - Mend

@openid4vc/oauth2 0.3.0-alpha-20250304095426 → 0.3.0-alpha-20250315153009

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -2146,9 +2146,13 @@ type JwtHeader = z__default.infer<typeof zJwtHeader>;
 /**
  * Supported hashing algorithms
+ *
+ * Based on https://www.iana.org/assignments/named-information/named-information.xhtml
  */
 declare enum HashAlgorithm {
-    Sha256 = "SHA-256"
+    Sha256 = "sha-256",
+    Sha384 = "sha-384",
+    Sha512 = "sha-512"
 }
 /**
  * Callback used for operations that require hashing
@@ -2174,7 +2178,7 @@ type VerifyJwtCallback = (jwtSigner: JwtSigner, jwt: {
     signerJwk?: Jwk;
 }>;
 interface DecryptJweCallbackOptions {
-    jwk: Jwk;
+    jwk?: Jwk;
 }
 type DecryptJweCallback = (jwe: string, options?: DecryptJweCallbackOptions) => OrPromise<{
     decrypted: true;

package/dist/index.d.ts CHANGED Viewed

@@ -2146,9 +2146,13 @@ type JwtHeader = z__default.infer<typeof zJwtHeader>;
 /**
  * Supported hashing algorithms
+ *
+ * Based on https://www.iana.org/assignments/named-information/named-information.xhtml
  */
 declare enum HashAlgorithm {
-    Sha256 = "SHA-256"
+    Sha256 = "sha-256",
+    Sha384 = "sha-384",
+    Sha512 = "sha-512"
 }
 /**
  * Callback used for operations that require hashing
@@ -2174,7 +2178,7 @@ type VerifyJwtCallback = (jwtSigner: JwtSigner, jwt: {
     signerJwk?: Jwk;
 }>;
 interface DecryptJweCallbackOptions {
-    jwk: Jwk;
+    jwk?: Jwk;
 }
 type DecryptJweCallback = (jwe: string, options?: DecryptJweCallbackOptions) => OrPromise<{
     decrypted: true;

package/dist/index.js CHANGED Viewed

@@ -180,7 +180,9 @@ async function calculateJwkThumbprint(options) {
 // src/callbacks.ts
 var HashAlgorithm = /* @__PURE__ */ ((HashAlgorithm2) => {
-  HashAlgorithm2["Sha256"] = "SHA-256";
+  HashAlgorithm2["Sha256"] = "sha-256";
+  HashAlgorithm2["Sha384"] = "sha-384";
+  HashAlgorithm2["Sha512"] = "sha-512";
   return HashAlgorithm2;
 })(HashAlgorithm || {});
@@ -214,13 +216,13 @@ async function isJwkInSet({
   callbacks
 }) {
   const jwkThumbprint = await calculateJwkThumbprint({
-    hashAlgorithm: "SHA-256" /* Sha256 */,
+    hashAlgorithm: "sha-256" /* Sha256 */,
     hashCallback: callbacks.hash,
     jwk
   });
   for (const jwkFromSet of jwks) {
     const jwkFromSetThumbprint = await calculateJwkThumbprint({
-      hashAlgorithm: "SHA-256" /* Sha256 */,
+      hashAlgorithm: "sha-256" /* Sha256 */,
       hashCallback: callbacks.hash,
       jwk: jwkFromSet
     });
@@ -895,7 +897,7 @@ async function createDpopHeadersForRequest(options) {
 async function createDpopJwt(options) {
   let ath = void 0;
   if (options.accessToken) {
-    ath = (0, import_utils15.encodeToBase64Url)(await options.callbacks.hash((0, import_utils15.decodeUtf8String)(options.accessToken), "SHA-256" /* Sha256 */));
+    ath = (0, import_utils15.encodeToBase64Url)(await options.callbacks.hash((0, import_utils15.decodeUtf8String)(options.accessToken), "sha-256" /* Sha256 */));
   }
   const header = (0, import_utils15.parseWithErrorHandling)(zDpopJwtHeader, {
     typ: "dpop+jwt",
@@ -949,7 +951,7 @@ async function verifyDpopJwt(options) {
   }
   if (options.accessToken) {
     const expectedAth = (0, import_utils15.encodeToBase64Url)(
-      await options.callbacks.hash((0, import_utils15.decodeUtf8String)(options.accessToken), "SHA-256" /* Sha256 */)
+      await options.callbacks.hash((0, import_utils15.decodeUtf8String)(options.accessToken), "sha-256" /* Sha256 */)
     );
     if (!payload.ath) {
       throw new Oauth2Error(`Dpop jwt does not have a ath value, but expected ath value '${expectedAth}'.`);
@@ -960,7 +962,7 @@ async function verifyDpopJwt(options) {
   }
   if (options.expectedJwkThumbprint) {
     const jwkThumprint = await calculateJwkThumbprint({
-      hashAlgorithm: "SHA-256" /* Sha256 */,
+      hashAlgorithm: "sha-256" /* Sha256 */,
       hashCallback: options.callbacks.hash,
       jwk: header.jwk
     });
@@ -1424,7 +1426,7 @@ async function createAccessTokenJwt(options) {
     scope: options.scope,
     cnf: options.dpopJwk ? {
       jkt: await calculateJwkThumbprint({
-        hashAlgorithm: "SHA-256" /* Sha256 */,
+        hashAlgorithm: "sha-256" /* Sha256 */,
         hashCallback: options.callbacks.hash,
         jwk: options.dpopJwk
       })
@@ -1623,7 +1625,7 @@ async function calculateCodeChallenge(options) {
     return options.codeVerifier;
   }
   if (options.codeChallengeMethod === "S256" /* S256 */) {
-    return (0, import_utils26.encodeToBase64Url)(await options.hashCallback((0, import_utils26.decodeUtf8String)(options.codeVerifier), "SHA-256" /* Sha256 */));
+    return (0, import_utils26.encodeToBase64Url)(await options.hashCallback((0, import_utils26.decodeUtf8String)(options.codeVerifier), "sha-256" /* Sha256 */));
   }
   throw new Oauth2Error(`Unsupported code challenge method ${options.codeChallengeMethod}`);
 }
@@ -2452,7 +2454,7 @@ async function createAuthorizationRequestUrl(options) {
   } else {
     if (options.dpop) {
       authorizationRequest.dpop_jkt = await calculateJwkThumbprint({
-        hashAlgorithm: "SHA-256" /* Sha256 */,
+        hashAlgorithm: "sha-256" /* Sha256 */,
         hashCallback: options.callbacks.hash,
         jwk: options.dpop.signer.publicJwk
       });