@openid4vc/oauth2 0.3.0-alpha-20251029091020 → 0.3.0-alpha-20251029102217

package/dist/index.d.mts

@@ -2310,7 +2310,7 @@ declare class Oauth2AuthorizationServer {
       [x: string]: unknown;
       iat: number;
       htu: string;
-      htm: "GET" | "POST" | "PUT" | "DELETE" | "HEAD" | "OPTIONS" | "TRACE" | "CONNECT" | "PATCH";
+      htm: "POST" | "GET" | "PUT" | "DELETE" | "HEAD" | "OPTIONS" | "TRACE" | "CONNECT" | "PATCH";
       jti: string;
       ath?: string | undefined;
       iss?: string | undefined;
@@ -2608,11 +2608,20 @@ interface SendAuthorizationChallengeRequestOptions {
    * Scope to request for the authorization challenge request
    */
   scope?: string;
+  /**
+   * State for the authorization challenge request
+   */
+  state?: string;
   /**
    * The resource to which access is being requested. This can help the authorization
    * server in determining the resource server to handle the authorization request for
    */
   resource?: string;
+  /**
+   * Redirect uri to include in the authorization challenge request. Maybe be used by the
+   * server when falling back to a PAR request.
+   */
+  redirectUri?: string;
   /**
    * Presentation during issuance session if credentials were presented
    * as part of an issuance session

package/dist/index.d.ts

@@ -2310,7 +2310,7 @@ declare class Oauth2AuthorizationServer {
       [x: string]: unknown;
       iat: number;
       htu: string;
-      htm: "GET" | "POST" | "PUT" | "DELETE" | "HEAD" | "OPTIONS" | "TRACE" | "CONNECT" | "PATCH";
+      htm: "POST" | "GET" | "PUT" | "DELETE" | "HEAD" | "OPTIONS" | "TRACE" | "CONNECT" | "PATCH";
       jti: string;
       ath?: string | undefined;
       iss?: string | undefined;
@@ -2608,11 +2608,20 @@ interface SendAuthorizationChallengeRequestOptions {
    * Scope to request for the authorization challenge request
    */
   scope?: string;
+  /**
+   * State for the authorization challenge request
+   */
+  state?: string;
   /**
    * The resource to which access is being requested. This can help the authorization
    * server in determining the resource server to handle the authorization request for
    */
   resource?: string;
+  /**
+   * Redirect uri to include in the authorization challenge request. Maybe be used by the
+   * server when falling back to a PAR request.
+   */
+  redirectUri?: string;
   /**
    * Presentation during issuance session if credentials were presented
    * as part of an issuance session

package/dist/index.js

@@ -1977,7 +1977,9 @@ async function sendAuthorizationChallengeRequest(options) {
 		...options.additionalRequestPayload,
 		auth_session: options.authSession,
 		scope: options.scope,
+		redirect_uri: options.redirectUri,
 		resource: options.resource,
+		state: options.state,
 		code_challenge: pkce?.codeChallenge,
 		code_challenge_method: pkce?.codeChallengeMethod,
 		presentation_during_issuance_session: options.presentationDuringIssuanceSession
@@ -2228,9 +2230,11 @@ var Oauth2Client = class {
 				authorizationServerMetadata: options.authorizationServerMetadata,
 				additionalRequestPayload: options.additionalRequestPayload,
 				pkceCodeVerifier: pkce?.codeVerifier,
+				redirectUri: options.redirectUri,
 				scope: options.scope,
 				resource: options.resource,
-				dpop: options.dpop
+				dpop: options.dpop,
+				state: options.state
 			});
 		} catch (error) {
 			if (!(error instanceof Oauth2ClientAuthorizationChallengeError && error.errorResponse.error === Oauth2ErrorCodes.RedirectToWeb)) throw error;
@@ -2258,7 +2262,8 @@ var Oauth2Client = class {
 			scope: options.scope,
 			pkceCodeVerifier: pkce?.codeVerifier,
 			resource: options.resource,
-			dpop: options.dpop
+			dpop: options.dpop,
+			state: options.state
 		});
 	}
 	sendAuthorizationChallengeRequest(options) {