@openid4vc/oauth2 0.3.0-alpha-20251030140425 → 0.3.0-alpha-20251031085020
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/index.d.mts +20 -20
- package/dist/index.d.ts +20 -20
- package/dist/index.js +11 -15
- package/dist/index.js.map +1 -1
- package/dist/index.mjs +11 -9
- package/dist/index.mjs.map +1 -1
- package/package.json +2 -2
package/dist/index.d.mts
CHANGED
|
@@ -256,7 +256,7 @@ type JweEncryptor = JwtSignerJwk & {
|
|
|
256
256
|
declare const zCompactJwt: z$1.ZodString;
|
|
257
257
|
declare const zJwtPayload: z$1.ZodObject<{
|
|
258
258
|
iss: z$1.ZodOptional<z$1.ZodString>;
|
|
259
|
-
aud: z$1.ZodOptional<z$1.ZodString
|
|
259
|
+
aud: z$1.ZodOptional<z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>>;
|
|
260
260
|
iat: z$1.ZodOptional<z$1.ZodNumber>;
|
|
261
261
|
exp: z$1.ZodOptional<z$1.ZodNumber>;
|
|
262
262
|
nbf: z$1.ZodOptional<z$1.ZodNumber>;
|
|
@@ -700,7 +700,7 @@ declare const zClientAttestationJwtPayload: z$1.ZodObject<{
|
|
|
700
700
|
}, z$1.core.$loose>;
|
|
701
701
|
wallet_name: z$1.ZodOptional<z$1.ZodString>;
|
|
702
702
|
wallet_link: z$1.ZodOptional<z$1.ZodURL>;
|
|
703
|
-
aud: z$1.ZodOptional<z$1.ZodString
|
|
703
|
+
aud: z$1.ZodOptional<z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>>;
|
|
704
704
|
iat: z$1.ZodOptional<z$1.ZodNumber>;
|
|
705
705
|
nbf: z$1.ZodOptional<z$1.ZodNumber>;
|
|
706
706
|
nonce: z$1.ZodOptional<z$1.ZodString>;
|
|
@@ -749,7 +749,7 @@ type ClientAttestationJwtHeader = z$1.infer<typeof zClientAttestationJwtHeader>;
|
|
|
749
749
|
declare const zClientAttestationPopJwtPayload: z$1.ZodObject<{
|
|
750
750
|
iss: z$1.ZodString;
|
|
751
751
|
exp: z$1.ZodNumber;
|
|
752
|
-
aud: z$1.ZodString
|
|
752
|
+
aud: z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>;
|
|
753
753
|
jti: z$1.ZodString;
|
|
754
754
|
nonce: z$1.ZodOptional<z$1.ZodString>;
|
|
755
755
|
iat: z$1.ZodOptional<z$1.ZodNumber>;
|
|
@@ -926,7 +926,7 @@ declare function verifyClientAttestationJwt(options: VerifyClientAttestationJwtO
|
|
|
926
926
|
};
|
|
927
927
|
wallet_name?: string | undefined;
|
|
928
928
|
wallet_link?: string | undefined;
|
|
929
|
-
aud?: string | undefined;
|
|
929
|
+
aud?: string | string[] | undefined;
|
|
930
930
|
iat?: number | undefined;
|
|
931
931
|
nbf?: number | undefined;
|
|
932
932
|
nonce?: string | undefined;
|
|
@@ -1080,7 +1080,7 @@ declare function verifyClientAttestationPopJwt(options: VerifyClientAttestationP
|
|
|
1080
1080
|
[x: string]: unknown;
|
|
1081
1081
|
iss: string;
|
|
1082
1082
|
exp: number;
|
|
1083
|
-
aud: string;
|
|
1083
|
+
aud: string | string[];
|
|
1084
1084
|
jti: string;
|
|
1085
1085
|
nonce?: string | undefined;
|
|
1086
1086
|
iat?: number | undefined;
|
|
@@ -1302,7 +1302,7 @@ declare const zAccessTokenProfileJwtPayload: z$1.ZodObject<{
|
|
|
1302
1302
|
iss: z$1.ZodString;
|
|
1303
1303
|
exp: z$1.ZodNumber;
|
|
1304
1304
|
iat: z$1.ZodNumber;
|
|
1305
|
-
aud: z$1.ZodString
|
|
1305
|
+
aud: z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>;
|
|
1306
1306
|
sub: z$1.ZodString;
|
|
1307
1307
|
client_id: z$1.ZodOptional<z$1.ZodString>;
|
|
1308
1308
|
jti: z$1.ZodString;
|
|
@@ -1357,7 +1357,7 @@ declare const zTokenIntrospectionResponse: z$1.ZodObject<{
|
|
|
1357
1357
|
iat: z$1.ZodOptional<z$1.ZodNumber>;
|
|
1358
1358
|
nbf: z$1.ZodOptional<z$1.ZodNumber>;
|
|
1359
1359
|
sub: z$1.ZodOptional<z$1.ZodString>;
|
|
1360
|
-
aud: z$1.ZodOptional<z$1.ZodString
|
|
1360
|
+
aud: z$1.ZodOptional<z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>>;
|
|
1361
1361
|
iss: z$1.ZodOptional<z$1.ZodString>;
|
|
1362
1362
|
jti: z$1.ZodOptional<z$1.ZodString>;
|
|
1363
1363
|
cnf: z$1.ZodOptional<z$1.ZodObject<{
|
|
@@ -1427,9 +1427,9 @@ declare const zAuthorizationChallengeRequest: z$1.ZodObject<{
|
|
|
1427
1427
|
client_id: z$1.ZodOptional<z$1.ZodString>;
|
|
1428
1428
|
auth_session: z$1.ZodOptional<z$1.ZodString>;
|
|
1429
1429
|
presentation_during_issuance_session: z$1.ZodOptional<z$1.ZodString>;
|
|
1430
|
+
scope: z$1.ZodOptional<z$1.ZodString>;
|
|
1430
1431
|
redirect_uri: z$1.ZodOptional<z$1.ZodURL>;
|
|
1431
1432
|
resource: z$1.ZodOptional<z$1.ZodString>;
|
|
1432
|
-
scope: z$1.ZodOptional<z$1.ZodString>;
|
|
1433
1433
|
state: z$1.ZodOptional<z$1.ZodString>;
|
|
1434
1434
|
issuer_state: z$1.ZodOptional<z$1.ZodString>;
|
|
1435
1435
|
dpop_jkt: z$1.ZodOptional<z$1.ZodBase64URL>;
|
|
@@ -1945,7 +1945,7 @@ declare class Oauth2ServerErrorResponseError extends Oauth2Error {
|
|
|
1945
1945
|
}
|
|
1946
1946
|
//#endregion
|
|
1947
1947
|
//#region src/id-token/verify-id-token.d.ts
|
|
1948
|
-
interface
|
|
1948
|
+
interface VerifyIdTokenJwtOptions {
|
|
1949
1949
|
/**
|
|
1950
1950
|
* The compact id token.
|
|
1951
1951
|
*/
|
|
@@ -1974,7 +1974,7 @@ interface VerifyJwtIdTokenOptions {
|
|
|
1974
1974
|
/**
|
|
1975
1975
|
* Verify an ID Token JWT.
|
|
1976
1976
|
*/
|
|
1977
|
-
declare function
|
|
1977
|
+
declare function verifyIdTokenJwt(options: VerifyIdTokenJwtOptions): Promise<{
|
|
1978
1978
|
header: {
|
|
1979
1979
|
[x: string]: unknown;
|
|
1980
1980
|
alg: string;
|
|
@@ -2018,7 +2018,7 @@ declare function verifyJwtIdToken(options: VerifyJwtIdTokenOptions): Promise<{
|
|
|
2018
2018
|
[x: string]: unknown;
|
|
2019
2019
|
iss: string;
|
|
2020
2020
|
sub: string;
|
|
2021
|
-
aud: string;
|
|
2021
|
+
aud: string | string[];
|
|
2022
2022
|
exp: number;
|
|
2023
2023
|
iat: number;
|
|
2024
2024
|
auth_time?: number | undefined;
|
|
@@ -2136,7 +2136,7 @@ type IdTokenJwtHeader = z$1.infer<typeof zIdTokenJwtHeader>;
|
|
|
2136
2136
|
declare const zIdTokenJwtPayload: z$1.ZodObject<{
|
|
2137
2137
|
iss: z$1.ZodString;
|
|
2138
2138
|
sub: z$1.ZodString;
|
|
2139
|
-
aud: z$1.ZodString
|
|
2139
|
+
aud: z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>;
|
|
2140
2140
|
exp: z$1.ZodNumber;
|
|
2141
2141
|
iat: z$1.ZodNumber;
|
|
2142
2142
|
auth_time: z$1.ZodOptional<z$1.ZodNumber>;
|
|
@@ -2585,7 +2585,7 @@ declare class Oauth2AuthorizationServer {
|
|
|
2585
2585
|
jti: string;
|
|
2586
2586
|
ath?: string | undefined;
|
|
2587
2587
|
iss?: string | undefined;
|
|
2588
|
-
aud?: string | undefined;
|
|
2588
|
+
aud?: string | string[] | undefined;
|
|
2589
2589
|
exp?: number | undefined;
|
|
2590
2590
|
nbf?: number | undefined;
|
|
2591
2591
|
nonce?: string | undefined;
|
|
@@ -2712,7 +2712,7 @@ declare class Oauth2AuthorizationServer {
|
|
|
2712
2712
|
};
|
|
2713
2713
|
wallet_name?: string | undefined;
|
|
2714
2714
|
wallet_link?: string | undefined;
|
|
2715
|
-
aud?: string | undefined;
|
|
2715
|
+
aud?: string | string[] | undefined;
|
|
2716
2716
|
iat?: number | undefined;
|
|
2717
2717
|
nbf?: number | undefined;
|
|
2718
2718
|
nonce?: string | undefined;
|
|
@@ -2766,7 +2766,7 @@ declare class Oauth2AuthorizationServer {
|
|
|
2766
2766
|
[x: string]: unknown;
|
|
2767
2767
|
iss: string;
|
|
2768
2768
|
exp: number;
|
|
2769
|
-
aud: string;
|
|
2769
|
+
aud: string | string[];
|
|
2770
2770
|
jti: string;
|
|
2771
2771
|
nonce?: string | undefined;
|
|
2772
2772
|
iat?: number | undefined;
|
|
@@ -3044,7 +3044,7 @@ declare class Oauth2ResourceServer {
|
|
|
3044
3044
|
iss: string;
|
|
3045
3045
|
exp: number;
|
|
3046
3046
|
iat: number;
|
|
3047
|
-
aud: string;
|
|
3047
|
+
aud: string | string[];
|
|
3048
3048
|
sub: string;
|
|
3049
3049
|
jti: string;
|
|
3050
3050
|
client_id?: string | undefined;
|
|
@@ -3099,7 +3099,7 @@ declare class Oauth2ResourceServer {
|
|
|
3099
3099
|
iat?: number | undefined;
|
|
3100
3100
|
nbf?: number | undefined;
|
|
3101
3101
|
sub?: string | undefined;
|
|
3102
|
-
aud?: string | undefined;
|
|
3102
|
+
aud?: string | string[] | undefined;
|
|
3103
3103
|
iss?: string | undefined;
|
|
3104
3104
|
jti?: string | undefined;
|
|
3105
3105
|
cnf?: {
|
|
@@ -3208,7 +3208,7 @@ declare function verifyResourceRequest(options: VerifyResourceRequestOptions): P
|
|
|
3208
3208
|
iss: string;
|
|
3209
3209
|
exp: number;
|
|
3210
3210
|
iat: number;
|
|
3211
|
-
aud: string;
|
|
3211
|
+
aud: string | string[];
|
|
3212
3212
|
sub: string;
|
|
3213
3213
|
jti: string;
|
|
3214
3214
|
client_id?: string | undefined;
|
|
@@ -3263,7 +3263,7 @@ declare function verifyResourceRequest(options: VerifyResourceRequestOptions): P
|
|
|
3263
3263
|
iat?: number | undefined;
|
|
3264
3264
|
nbf?: number | undefined;
|
|
3265
3265
|
sub?: string | undefined;
|
|
3266
|
-
aud?: string | undefined;
|
|
3266
|
+
aud?: string | string[] | undefined;
|
|
3267
3267
|
iss?: string | undefined;
|
|
3268
3268
|
jti?: string | undefined;
|
|
3269
3269
|
cnf?: {
|
|
@@ -3340,5 +3340,5 @@ declare function verifyResourceRequest(options: VerifyResourceRequestOptions): P
|
|
|
3340
3340
|
authorizationServer: string;
|
|
3341
3341
|
}>;
|
|
3342
3342
|
//#endregion
|
|
3343
|
-
export { type AccessTokenErrorResponse, type AccessTokenProfileJwtPayload, type AccessTokenResponse, type AuthorizationChallengeErrorResponse, type AuthorizationChallengeRequest, type AuthorizationChallengeResponse, type AuthorizationCodeGrantIdentifier, type AuthorizationServerMetadata, type CalculateJwkThumbprintOptions, type CallbackContext, type ClientAttestationJwtHeader, type ClientAttestationJwtPayload, type ClientAttestationPopJwtHeader, type ClientAttestationPopJwtPayload, type ClientAuthenticationCallback, type ClientAuthenticationCallbackOptions, type ClientAuthenticationClientAttestationJwtOptions, type ClientAuthenticationClientSecretBasicOptions, type ClientAuthenticationClientSecretPostOptions, type ClientAuthenticationDynamicOptions, type ClientAuthenticationNoneOptions, type CreateAuthorizationRequestUrlOptions, type CreateClientAttestationJwtOptions, type CreatePkceReturn, type CreatePushedAuthorizationErrorResponseOptions, type CreatePushedAuthorizationResponseOptions, type DecodeJwtHeaderResult, type DecodeJwtOptions, type DecodeJwtResult, type DecryptJweCallback, type DecryptJweCallbackOptions, type EncryptJweCallback, type GenerateRandomCallback, HashAlgorithm, type HashCallback, type HttpMethod, IdTokenJwtHeader, IdTokenJwtPayload, InvalidFetchResponseError, type JweEncryptor, type Jwk, type JwkSet, type JwtHeader, type JwtPayload, type JwtSigner, type JwtSignerCustom, type JwtSignerDid, type JwtSignerJwk, type JwtSignerWithJwk, type JwtSignerX5c, Oauth2AuthorizationServer, type Oauth2AuthorizationServerOptions, Oauth2Client, Oauth2ClientAuthorizationChallengeError, Oauth2ClientErrorResponseError, type Oauth2ClientOptions, Oauth2Error, Oauth2ErrorCodes, type Oauth2ErrorOptions, type Oauth2ErrorResponse, Oauth2JwtParseError, Oauth2JwtVerificationError, Oauth2ResourceServer, type Oauth2ResourceServerOptions, Oauth2ResourceUnauthorizedError, Oauth2ServerErrorResponseError, type Oid4vcTsConfig, type ParseAuthorizationChallengeRequestOptions, type ParseAuthorizationChallengeRequestResult, type ParsePushedAuthorizationRequestOptions, type ParsePushedAuthorizationRequestResult, PkceCodeChallengeMethod, type PreAuthorizedCodeGrantIdentifier, type RefreshTokenGrantIdentifier, type RequestClientAttestationOptions, type RequestDpopOptions, type RequestLike, type ResourceRequestOptions, type ResourceRequestResponseNotOk, type ResourceRequestResponseOk, type RetrieveAuthorizationCodeAccessTokenOptions, type RetrievePreAuthorizedCodeAccessTokenOptions, type SignJwtCallback, SupportedAuthenticationScheme, SupportedClientAuthenticationMethod, type TokenIntrospectionResponse, VerifiedClientAttestationJwt, type VerifyAccessTokenRequestReturn, type VerifyAuthorizationChallengeRequestOptions, type VerifyAuthorizationChallengeRequestReturn, type VerifyJwtCallback,
|
|
3343
|
+
export { type AccessTokenErrorResponse, type AccessTokenProfileJwtPayload, type AccessTokenResponse, type AuthorizationChallengeErrorResponse, type AuthorizationChallengeRequest, type AuthorizationChallengeResponse, type AuthorizationCodeGrantIdentifier, type AuthorizationServerMetadata, type CalculateJwkThumbprintOptions, type CallbackContext, type ClientAttestationJwtHeader, type ClientAttestationJwtPayload, type ClientAttestationPopJwtHeader, type ClientAttestationPopJwtPayload, type ClientAuthenticationCallback, type ClientAuthenticationCallbackOptions, type ClientAuthenticationClientAttestationJwtOptions, type ClientAuthenticationClientSecretBasicOptions, type ClientAuthenticationClientSecretPostOptions, type ClientAuthenticationDynamicOptions, type ClientAuthenticationNoneOptions, type CreateAuthorizationRequestUrlOptions, type CreateClientAttestationJwtOptions, type CreatePkceReturn, type CreatePushedAuthorizationErrorResponseOptions, type CreatePushedAuthorizationResponseOptions, type DecodeJwtHeaderResult, type DecodeJwtOptions, type DecodeJwtResult, type DecryptJweCallback, type DecryptJweCallbackOptions, type EncryptJweCallback, type GenerateRandomCallback, HashAlgorithm, type HashCallback, type HttpMethod, IdTokenJwtHeader, IdTokenJwtPayload, InvalidFetchResponseError, type JweEncryptor, type Jwk, type JwkSet, type JwtHeader, type JwtPayload, type JwtSigner, type JwtSignerCustom, type JwtSignerDid, type JwtSignerJwk, type JwtSignerWithJwk, type JwtSignerX5c, Oauth2AuthorizationServer, type Oauth2AuthorizationServerOptions, Oauth2Client, Oauth2ClientAuthorizationChallengeError, Oauth2ClientErrorResponseError, type Oauth2ClientOptions, Oauth2Error, Oauth2ErrorCodes, type Oauth2ErrorOptions, type Oauth2ErrorResponse, Oauth2JwtParseError, Oauth2JwtVerificationError, Oauth2ResourceServer, type Oauth2ResourceServerOptions, Oauth2ResourceUnauthorizedError, Oauth2ServerErrorResponseError, type Oid4vcTsConfig, type ParseAuthorizationChallengeRequestOptions, type ParseAuthorizationChallengeRequestResult, type ParsePushedAuthorizationRequestOptions, type ParsePushedAuthorizationRequestResult, PkceCodeChallengeMethod, type PreAuthorizedCodeGrantIdentifier, type RefreshTokenGrantIdentifier, type RequestClientAttestationOptions, type RequestDpopOptions, type RequestLike, type ResourceRequestOptions, type ResourceRequestResponseNotOk, type ResourceRequestResponseOk, type RetrieveAuthorizationCodeAccessTokenOptions, type RetrievePreAuthorizedCodeAccessTokenOptions, type SignJwtCallback, SupportedAuthenticationScheme, SupportedClientAuthenticationMethod, type TokenIntrospectionResponse, type VerifiedClientAttestationJwt, type VerifyAccessTokenRequestReturn, type VerifyAuthorizationChallengeRequestOptions, type VerifyAuthorizationChallengeRequestReturn, VerifyIdTokenJwtOptions, type VerifyJwtCallback, type VerifyPushedAuthorizationRequestOptions, type VerifyPushedAuthorizationRequestReturn, type VerifyResourceRequestOptions, type WwwAuthenticateHeaderChallenge, authorizationCodeGrantIdentifier, calculateJwkThumbprint, clientAuthenticationAnonymous, clientAuthenticationClientAttestationJwt, clientAuthenticationClientSecretBasic, clientAuthenticationClientSecretPost, clientAuthenticationDynamic, clientAuthenticationNone, createClientAttestationJwt, decodeJwt, decodeJwtHeader, fetchAuthorizationServerMetadata, fetchJwks, fetchWellKnownMetadata, getAuthorizationServerMetadataFromList, getGlobalConfig, isJwkInSet, jwtHeaderFromJwtSigner, jwtSignerFromJwt, preAuthorizedCodeGrantIdentifier, refreshTokenGrantIdentifier, resourceRequest, setGlobalConfig, verifyClientAttestationJwt, verifyIdTokenJwt, verifyJwt, verifyResourceRequest, zAlgValueNotNone, zAuthorizationCodeGrantIdentifier, zAuthorizationServerMetadata, zCompactJwe, zCompactJwt, zIdTokenJwtHeader, zIdTokenJwtPayload, zJwk, zJwkSet, zJwtHeader, zJwtPayload, zOauth2ErrorResponse, zPreAuthorizedCodeGrantIdentifier, zRefreshTokenGrantIdentifier };
|
|
3344
3344
|
//# sourceMappingURL=index.d.mts.map
|
package/dist/index.d.ts
CHANGED
|
@@ -256,7 +256,7 @@ type JweEncryptor = JwtSignerJwk & {
|
|
|
256
256
|
declare const zCompactJwt: z$1.ZodString;
|
|
257
257
|
declare const zJwtPayload: z$1.ZodObject<{
|
|
258
258
|
iss: z$1.ZodOptional<z$1.ZodString>;
|
|
259
|
-
aud: z$1.ZodOptional<z$1.ZodString
|
|
259
|
+
aud: z$1.ZodOptional<z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>>;
|
|
260
260
|
iat: z$1.ZodOptional<z$1.ZodNumber>;
|
|
261
261
|
exp: z$1.ZodOptional<z$1.ZodNumber>;
|
|
262
262
|
nbf: z$1.ZodOptional<z$1.ZodNumber>;
|
|
@@ -700,7 +700,7 @@ declare const zClientAttestationJwtPayload: z$1.ZodObject<{
|
|
|
700
700
|
}, z$1.core.$loose>;
|
|
701
701
|
wallet_name: z$1.ZodOptional<z$1.ZodString>;
|
|
702
702
|
wallet_link: z$1.ZodOptional<z$1.ZodURL>;
|
|
703
|
-
aud: z$1.ZodOptional<z$1.ZodString
|
|
703
|
+
aud: z$1.ZodOptional<z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>>;
|
|
704
704
|
iat: z$1.ZodOptional<z$1.ZodNumber>;
|
|
705
705
|
nbf: z$1.ZodOptional<z$1.ZodNumber>;
|
|
706
706
|
nonce: z$1.ZodOptional<z$1.ZodString>;
|
|
@@ -749,7 +749,7 @@ type ClientAttestationJwtHeader = z$1.infer<typeof zClientAttestationJwtHeader>;
|
|
|
749
749
|
declare const zClientAttestationPopJwtPayload: z$1.ZodObject<{
|
|
750
750
|
iss: z$1.ZodString;
|
|
751
751
|
exp: z$1.ZodNumber;
|
|
752
|
-
aud: z$1.ZodString
|
|
752
|
+
aud: z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>;
|
|
753
753
|
jti: z$1.ZodString;
|
|
754
754
|
nonce: z$1.ZodOptional<z$1.ZodString>;
|
|
755
755
|
iat: z$1.ZodOptional<z$1.ZodNumber>;
|
|
@@ -926,7 +926,7 @@ declare function verifyClientAttestationJwt(options: VerifyClientAttestationJwtO
|
|
|
926
926
|
};
|
|
927
927
|
wallet_name?: string | undefined;
|
|
928
928
|
wallet_link?: string | undefined;
|
|
929
|
-
aud?: string | undefined;
|
|
929
|
+
aud?: string | string[] | undefined;
|
|
930
930
|
iat?: number | undefined;
|
|
931
931
|
nbf?: number | undefined;
|
|
932
932
|
nonce?: string | undefined;
|
|
@@ -1080,7 +1080,7 @@ declare function verifyClientAttestationPopJwt(options: VerifyClientAttestationP
|
|
|
1080
1080
|
[x: string]: unknown;
|
|
1081
1081
|
iss: string;
|
|
1082
1082
|
exp: number;
|
|
1083
|
-
aud: string;
|
|
1083
|
+
aud: string | string[];
|
|
1084
1084
|
jti: string;
|
|
1085
1085
|
nonce?: string | undefined;
|
|
1086
1086
|
iat?: number | undefined;
|
|
@@ -1302,7 +1302,7 @@ declare const zAccessTokenProfileJwtPayload: z$1.ZodObject<{
|
|
|
1302
1302
|
iss: z$1.ZodString;
|
|
1303
1303
|
exp: z$1.ZodNumber;
|
|
1304
1304
|
iat: z$1.ZodNumber;
|
|
1305
|
-
aud: z$1.ZodString
|
|
1305
|
+
aud: z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>;
|
|
1306
1306
|
sub: z$1.ZodString;
|
|
1307
1307
|
client_id: z$1.ZodOptional<z$1.ZodString>;
|
|
1308
1308
|
jti: z$1.ZodString;
|
|
@@ -1357,7 +1357,7 @@ declare const zTokenIntrospectionResponse: z$1.ZodObject<{
|
|
|
1357
1357
|
iat: z$1.ZodOptional<z$1.ZodNumber>;
|
|
1358
1358
|
nbf: z$1.ZodOptional<z$1.ZodNumber>;
|
|
1359
1359
|
sub: z$1.ZodOptional<z$1.ZodString>;
|
|
1360
|
-
aud: z$1.ZodOptional<z$1.ZodString
|
|
1360
|
+
aud: z$1.ZodOptional<z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>>;
|
|
1361
1361
|
iss: z$1.ZodOptional<z$1.ZodString>;
|
|
1362
1362
|
jti: z$1.ZodOptional<z$1.ZodString>;
|
|
1363
1363
|
cnf: z$1.ZodOptional<z$1.ZodObject<{
|
|
@@ -1427,9 +1427,9 @@ declare const zAuthorizationChallengeRequest: z$1.ZodObject<{
|
|
|
1427
1427
|
client_id: z$1.ZodOptional<z$1.ZodString>;
|
|
1428
1428
|
auth_session: z$1.ZodOptional<z$1.ZodString>;
|
|
1429
1429
|
presentation_during_issuance_session: z$1.ZodOptional<z$1.ZodString>;
|
|
1430
|
+
scope: z$1.ZodOptional<z$1.ZodString>;
|
|
1430
1431
|
redirect_uri: z$1.ZodOptional<z$1.ZodURL>;
|
|
1431
1432
|
resource: z$1.ZodOptional<z$1.ZodString>;
|
|
1432
|
-
scope: z$1.ZodOptional<z$1.ZodString>;
|
|
1433
1433
|
state: z$1.ZodOptional<z$1.ZodString>;
|
|
1434
1434
|
issuer_state: z$1.ZodOptional<z$1.ZodString>;
|
|
1435
1435
|
dpop_jkt: z$1.ZodOptional<z$1.ZodBase64URL>;
|
|
@@ -1945,7 +1945,7 @@ declare class Oauth2ServerErrorResponseError extends Oauth2Error {
|
|
|
1945
1945
|
}
|
|
1946
1946
|
//#endregion
|
|
1947
1947
|
//#region src/id-token/verify-id-token.d.ts
|
|
1948
|
-
interface
|
|
1948
|
+
interface VerifyIdTokenJwtOptions {
|
|
1949
1949
|
/**
|
|
1950
1950
|
* The compact id token.
|
|
1951
1951
|
*/
|
|
@@ -1974,7 +1974,7 @@ interface VerifyJwtIdTokenOptions {
|
|
|
1974
1974
|
/**
|
|
1975
1975
|
* Verify an ID Token JWT.
|
|
1976
1976
|
*/
|
|
1977
|
-
declare function
|
|
1977
|
+
declare function verifyIdTokenJwt(options: VerifyIdTokenJwtOptions): Promise<{
|
|
1978
1978
|
header: {
|
|
1979
1979
|
[x: string]: unknown;
|
|
1980
1980
|
alg: string;
|
|
@@ -2018,7 +2018,7 @@ declare function verifyJwtIdToken(options: VerifyJwtIdTokenOptions): Promise<{
|
|
|
2018
2018
|
[x: string]: unknown;
|
|
2019
2019
|
iss: string;
|
|
2020
2020
|
sub: string;
|
|
2021
|
-
aud: string;
|
|
2021
|
+
aud: string | string[];
|
|
2022
2022
|
exp: number;
|
|
2023
2023
|
iat: number;
|
|
2024
2024
|
auth_time?: number | undefined;
|
|
@@ -2136,7 +2136,7 @@ type IdTokenJwtHeader = z$1.infer<typeof zIdTokenJwtHeader>;
|
|
|
2136
2136
|
declare const zIdTokenJwtPayload: z$1.ZodObject<{
|
|
2137
2137
|
iss: z$1.ZodString;
|
|
2138
2138
|
sub: z$1.ZodString;
|
|
2139
|
-
aud: z$1.ZodString
|
|
2139
|
+
aud: z$1.ZodUnion<readonly [z$1.ZodString, z$1.ZodArray<z$1.ZodString>]>;
|
|
2140
2140
|
exp: z$1.ZodNumber;
|
|
2141
2141
|
iat: z$1.ZodNumber;
|
|
2142
2142
|
auth_time: z$1.ZodOptional<z$1.ZodNumber>;
|
|
@@ -2585,7 +2585,7 @@ declare class Oauth2AuthorizationServer {
|
|
|
2585
2585
|
jti: string;
|
|
2586
2586
|
ath?: string | undefined;
|
|
2587
2587
|
iss?: string | undefined;
|
|
2588
|
-
aud?: string | undefined;
|
|
2588
|
+
aud?: string | string[] | undefined;
|
|
2589
2589
|
exp?: number | undefined;
|
|
2590
2590
|
nbf?: number | undefined;
|
|
2591
2591
|
nonce?: string | undefined;
|
|
@@ -2712,7 +2712,7 @@ declare class Oauth2AuthorizationServer {
|
|
|
2712
2712
|
};
|
|
2713
2713
|
wallet_name?: string | undefined;
|
|
2714
2714
|
wallet_link?: string | undefined;
|
|
2715
|
-
aud?: string | undefined;
|
|
2715
|
+
aud?: string | string[] | undefined;
|
|
2716
2716
|
iat?: number | undefined;
|
|
2717
2717
|
nbf?: number | undefined;
|
|
2718
2718
|
nonce?: string | undefined;
|
|
@@ -2766,7 +2766,7 @@ declare class Oauth2AuthorizationServer {
|
|
|
2766
2766
|
[x: string]: unknown;
|
|
2767
2767
|
iss: string;
|
|
2768
2768
|
exp: number;
|
|
2769
|
-
aud: string;
|
|
2769
|
+
aud: string | string[];
|
|
2770
2770
|
jti: string;
|
|
2771
2771
|
nonce?: string | undefined;
|
|
2772
2772
|
iat?: number | undefined;
|
|
@@ -3044,7 +3044,7 @@ declare class Oauth2ResourceServer {
|
|
|
3044
3044
|
iss: string;
|
|
3045
3045
|
exp: number;
|
|
3046
3046
|
iat: number;
|
|
3047
|
-
aud: string;
|
|
3047
|
+
aud: string | string[];
|
|
3048
3048
|
sub: string;
|
|
3049
3049
|
jti: string;
|
|
3050
3050
|
client_id?: string | undefined;
|
|
@@ -3099,7 +3099,7 @@ declare class Oauth2ResourceServer {
|
|
|
3099
3099
|
iat?: number | undefined;
|
|
3100
3100
|
nbf?: number | undefined;
|
|
3101
3101
|
sub?: string | undefined;
|
|
3102
|
-
aud?: string | undefined;
|
|
3102
|
+
aud?: string | string[] | undefined;
|
|
3103
3103
|
iss?: string | undefined;
|
|
3104
3104
|
jti?: string | undefined;
|
|
3105
3105
|
cnf?: {
|
|
@@ -3208,7 +3208,7 @@ declare function verifyResourceRequest(options: VerifyResourceRequestOptions): P
|
|
|
3208
3208
|
iss: string;
|
|
3209
3209
|
exp: number;
|
|
3210
3210
|
iat: number;
|
|
3211
|
-
aud: string;
|
|
3211
|
+
aud: string | string[];
|
|
3212
3212
|
sub: string;
|
|
3213
3213
|
jti: string;
|
|
3214
3214
|
client_id?: string | undefined;
|
|
@@ -3263,7 +3263,7 @@ declare function verifyResourceRequest(options: VerifyResourceRequestOptions): P
|
|
|
3263
3263
|
iat?: number | undefined;
|
|
3264
3264
|
nbf?: number | undefined;
|
|
3265
3265
|
sub?: string | undefined;
|
|
3266
|
-
aud?: string | undefined;
|
|
3266
|
+
aud?: string | string[] | undefined;
|
|
3267
3267
|
iss?: string | undefined;
|
|
3268
3268
|
jti?: string | undefined;
|
|
3269
3269
|
cnf?: {
|
|
@@ -3340,5 +3340,5 @@ declare function verifyResourceRequest(options: VerifyResourceRequestOptions): P
|
|
|
3340
3340
|
authorizationServer: string;
|
|
3341
3341
|
}>;
|
|
3342
3342
|
//#endregion
|
|
3343
|
-
export { type AccessTokenErrorResponse, type AccessTokenProfileJwtPayload, type AccessTokenResponse, type AuthorizationChallengeErrorResponse, type AuthorizationChallengeRequest, type AuthorizationChallengeResponse, type AuthorizationCodeGrantIdentifier, type AuthorizationServerMetadata, type CalculateJwkThumbprintOptions, type CallbackContext, type ClientAttestationJwtHeader, type ClientAttestationJwtPayload, type ClientAttestationPopJwtHeader, type ClientAttestationPopJwtPayload, type ClientAuthenticationCallback, type ClientAuthenticationCallbackOptions, type ClientAuthenticationClientAttestationJwtOptions, type ClientAuthenticationClientSecretBasicOptions, type ClientAuthenticationClientSecretPostOptions, type ClientAuthenticationDynamicOptions, type ClientAuthenticationNoneOptions, type CreateAuthorizationRequestUrlOptions, type CreateClientAttestationJwtOptions, type CreatePkceReturn, type CreatePushedAuthorizationErrorResponseOptions, type CreatePushedAuthorizationResponseOptions, type DecodeJwtHeaderResult, type DecodeJwtOptions, type DecodeJwtResult, type DecryptJweCallback, type DecryptJweCallbackOptions, type EncryptJweCallback, type GenerateRandomCallback, HashAlgorithm, type HashCallback, type HttpMethod, IdTokenJwtHeader, IdTokenJwtPayload, InvalidFetchResponseError, type JweEncryptor, type Jwk, type JwkSet, type JwtHeader, type JwtPayload, type JwtSigner, type JwtSignerCustom, type JwtSignerDid, type JwtSignerJwk, type JwtSignerWithJwk, type JwtSignerX5c, Oauth2AuthorizationServer, type Oauth2AuthorizationServerOptions, Oauth2Client, Oauth2ClientAuthorizationChallengeError, Oauth2ClientErrorResponseError, type Oauth2ClientOptions, Oauth2Error, Oauth2ErrorCodes, type Oauth2ErrorOptions, type Oauth2ErrorResponse, Oauth2JwtParseError, Oauth2JwtVerificationError, Oauth2ResourceServer, type Oauth2ResourceServerOptions, Oauth2ResourceUnauthorizedError, Oauth2ServerErrorResponseError, type Oid4vcTsConfig, type ParseAuthorizationChallengeRequestOptions, type ParseAuthorizationChallengeRequestResult, type ParsePushedAuthorizationRequestOptions, type ParsePushedAuthorizationRequestResult, PkceCodeChallengeMethod, type PreAuthorizedCodeGrantIdentifier, type RefreshTokenGrantIdentifier, type RequestClientAttestationOptions, type RequestDpopOptions, type RequestLike, type ResourceRequestOptions, type ResourceRequestResponseNotOk, type ResourceRequestResponseOk, type RetrieveAuthorizationCodeAccessTokenOptions, type RetrievePreAuthorizedCodeAccessTokenOptions, type SignJwtCallback, SupportedAuthenticationScheme, SupportedClientAuthenticationMethod, type TokenIntrospectionResponse, VerifiedClientAttestationJwt, type VerifyAccessTokenRequestReturn, type VerifyAuthorizationChallengeRequestOptions, type VerifyAuthorizationChallengeRequestReturn, type VerifyJwtCallback,
|
|
3343
|
+
export { type AccessTokenErrorResponse, type AccessTokenProfileJwtPayload, type AccessTokenResponse, type AuthorizationChallengeErrorResponse, type AuthorizationChallengeRequest, type AuthorizationChallengeResponse, type AuthorizationCodeGrantIdentifier, type AuthorizationServerMetadata, type CalculateJwkThumbprintOptions, type CallbackContext, type ClientAttestationJwtHeader, type ClientAttestationJwtPayload, type ClientAttestationPopJwtHeader, type ClientAttestationPopJwtPayload, type ClientAuthenticationCallback, type ClientAuthenticationCallbackOptions, type ClientAuthenticationClientAttestationJwtOptions, type ClientAuthenticationClientSecretBasicOptions, type ClientAuthenticationClientSecretPostOptions, type ClientAuthenticationDynamicOptions, type ClientAuthenticationNoneOptions, type CreateAuthorizationRequestUrlOptions, type CreateClientAttestationJwtOptions, type CreatePkceReturn, type CreatePushedAuthorizationErrorResponseOptions, type CreatePushedAuthorizationResponseOptions, type DecodeJwtHeaderResult, type DecodeJwtOptions, type DecodeJwtResult, type DecryptJweCallback, type DecryptJweCallbackOptions, type EncryptJweCallback, type GenerateRandomCallback, HashAlgorithm, type HashCallback, type HttpMethod, IdTokenJwtHeader, IdTokenJwtPayload, InvalidFetchResponseError, type JweEncryptor, type Jwk, type JwkSet, type JwtHeader, type JwtPayload, type JwtSigner, type JwtSignerCustom, type JwtSignerDid, type JwtSignerJwk, type JwtSignerWithJwk, type JwtSignerX5c, Oauth2AuthorizationServer, type Oauth2AuthorizationServerOptions, Oauth2Client, Oauth2ClientAuthorizationChallengeError, Oauth2ClientErrorResponseError, type Oauth2ClientOptions, Oauth2Error, Oauth2ErrorCodes, type Oauth2ErrorOptions, type Oauth2ErrorResponse, Oauth2JwtParseError, Oauth2JwtVerificationError, Oauth2ResourceServer, type Oauth2ResourceServerOptions, Oauth2ResourceUnauthorizedError, Oauth2ServerErrorResponseError, type Oid4vcTsConfig, type ParseAuthorizationChallengeRequestOptions, type ParseAuthorizationChallengeRequestResult, type ParsePushedAuthorizationRequestOptions, type ParsePushedAuthorizationRequestResult, PkceCodeChallengeMethod, type PreAuthorizedCodeGrantIdentifier, type RefreshTokenGrantIdentifier, type RequestClientAttestationOptions, type RequestDpopOptions, type RequestLike, type ResourceRequestOptions, type ResourceRequestResponseNotOk, type ResourceRequestResponseOk, type RetrieveAuthorizationCodeAccessTokenOptions, type RetrievePreAuthorizedCodeAccessTokenOptions, type SignJwtCallback, SupportedAuthenticationScheme, SupportedClientAuthenticationMethod, type TokenIntrospectionResponse, type VerifiedClientAttestationJwt, type VerifyAccessTokenRequestReturn, type VerifyAuthorizationChallengeRequestOptions, type VerifyAuthorizationChallengeRequestReturn, VerifyIdTokenJwtOptions, type VerifyJwtCallback, type VerifyPushedAuthorizationRequestOptions, type VerifyPushedAuthorizationRequestReturn, type VerifyResourceRequestOptions, type WwwAuthenticateHeaderChallenge, authorizationCodeGrantIdentifier, calculateJwkThumbprint, clientAuthenticationAnonymous, clientAuthenticationClientAttestationJwt, clientAuthenticationClientSecretBasic, clientAuthenticationClientSecretPost, clientAuthenticationDynamic, clientAuthenticationNone, createClientAttestationJwt, decodeJwt, decodeJwtHeader, fetchAuthorizationServerMetadata, fetchJwks, fetchWellKnownMetadata, getAuthorizationServerMetadataFromList, getGlobalConfig, isJwkInSet, jwtHeaderFromJwtSigner, jwtSignerFromJwt, preAuthorizedCodeGrantIdentifier, refreshTokenGrantIdentifier, resourceRequest, setGlobalConfig, verifyClientAttestationJwt, verifyIdTokenJwt, verifyJwt, verifyResourceRequest, zAlgValueNotNone, zAuthorizationCodeGrantIdentifier, zAuthorizationServerMetadata, zCompactJwe, zCompactJwt, zIdTokenJwtHeader, zIdTokenJwtPayload, zJwk, zJwkSet, zJwtHeader, zJwtPayload, zOauth2ErrorResponse, zPreAuthorizedCodeGrantIdentifier, zRefreshTokenGrantIdentifier };
|
|
3344
3344
|
//# sourceMappingURL=index.d.ts.map
|
package/dist/index.js
CHANGED
|
@@ -183,7 +183,7 @@ const zJwtConfirmationPayload = zod.default.object({
|
|
|
183
183
|
}).loose();
|
|
184
184
|
const zJwtPayload = zod.default.object({
|
|
185
185
|
iss: zod.default.string().optional(),
|
|
186
|
-
aud: zod.default.string().optional(),
|
|
186
|
+
aud: zod.default.union([zod.default.string(), zod.default.array(zod.default.string())]).optional(),
|
|
187
187
|
iat: __openid4vc_utils.zInteger.optional(),
|
|
188
188
|
exp: __openid4vc_utils.zInteger.optional(),
|
|
189
189
|
nbf: __openid4vc_utils.zInteger.optional(),
|
|
@@ -357,7 +357,9 @@ async function verifyJwt(options) {
|
|
|
357
357
|
const timeBasedValidation = options.skipTimeBasedValidation !== void 0 ? !options.skipTimeBasedValidation : true;
|
|
358
358
|
if (timeBasedValidation && options.payload.nbf && nowInSeconds < options.payload.nbf - skewInSeconds) throw new Oauth2JwtVerificationError(`${errorMessage} jwt 'nbf' is in the future`);
|
|
359
359
|
if (timeBasedValidation && options.payload.exp && nowInSeconds > options.payload.exp + skewInSeconds) throw new Oauth2JwtVerificationError(`${errorMessage} jwt 'exp' is in the past`);
|
|
360
|
-
if (options.expectedAudience
|
|
360
|
+
if (options.expectedAudience) {
|
|
361
|
+
if (Array.isArray(options.payload.aud) && !options.payload.aud.includes(options.expectedAudience) || typeof options.payload.aud === "string" && options.payload.aud !== options.expectedAudience) throw new Oauth2JwtVerificationError(`${errorMessage} jwt 'aud' does not match expected value.`);
|
|
362
|
+
}
|
|
361
363
|
if (options.expectedIssuer && options.expectedIssuer !== options.payload.iss) throw new Oauth2JwtVerificationError(`${errorMessage} jwt 'iss' does not match expected value.`);
|
|
362
364
|
if (options.expectedNonce && options.expectedNonce !== options.payload.nonce) throw new Oauth2JwtVerificationError(`${errorMessage} jwt 'nonce' does not match expected value.`);
|
|
363
365
|
if (options.expectedSubject && options.expectedSubject !== options.payload.sub) throw new Oauth2JwtVerificationError(`${errorMessage} jwt 'sub' does not match expected value.`);
|
|
@@ -413,7 +415,7 @@ const zAccessTokenProfileJwtPayload = zod.default.object({
|
|
|
413
415
|
iss: zod.default.string(),
|
|
414
416
|
exp: __openid4vc_utils.zInteger,
|
|
415
417
|
iat: __openid4vc_utils.zInteger,
|
|
416
|
-
aud: zod.default.string(),
|
|
418
|
+
aud: zod.default.union([zod.default.string(), zod.default.array(zod.default.string())]),
|
|
417
419
|
sub: zod.default.string(),
|
|
418
420
|
client_id: zod.default.optional(zod.default.string()),
|
|
419
421
|
jti: zod.default.string(),
|
|
@@ -552,7 +554,7 @@ const zClientAttestationPopJwtPayload = zod.default.object({
|
|
|
552
554
|
...zJwtPayload.shape,
|
|
553
555
|
iss: zod.default.string(),
|
|
554
556
|
exp: __openid4vc_utils.zInteger,
|
|
555
|
-
aud: __openid4vc_utils.zHttpsUrl,
|
|
557
|
+
aud: zod.default.union([__openid4vc_utils.zHttpsUrl, zod.default.array(__openid4vc_utils.zHttpsUrl)]),
|
|
556
558
|
jti: zod.default.string(),
|
|
557
559
|
nonce: zod.default.optional(zod.default.string())
|
|
558
560
|
}).loose();
|
|
@@ -570,7 +572,6 @@ async function verifyClientAttestationPopJwt(options) {
|
|
|
570
572
|
payloadSchema: zClientAttestationPopJwtPayload
|
|
571
573
|
});
|
|
572
574
|
if (payload.iss !== options.clientAttestation.payload.sub) throw new Oauth2Error(`Client Attestation Pop jwt contains 'iss' (client_id) value '${payload.iss}', but expected 'sub' value from client attestation '${options.clientAttestation.payload.sub}'`);
|
|
573
|
-
if (payload.aud !== options.authorizationServer) throw new Oauth2Error(`Client Attestation Pop jwt contains 'aud' value '${payload.aud}', but expected authorization server identifier '${options.authorizationServer}'`);
|
|
574
575
|
const { signer } = await verifyJwt({
|
|
575
576
|
signer: {
|
|
576
577
|
alg: header.alg,
|
|
@@ -581,6 +582,7 @@ async function verifyClientAttestationPopJwt(options) {
|
|
|
581
582
|
header,
|
|
582
583
|
expectedNonce: options.expectedNonce,
|
|
583
584
|
payload,
|
|
585
|
+
expectedAudience: options.authorizationServer,
|
|
584
586
|
compact: options.clientAttestationPopJwt,
|
|
585
587
|
verifyJwtCallback: options.callbacks.verifyJwt,
|
|
586
588
|
errorMessage: "client attestation pop jwt verification failed"
|
|
@@ -876,7 +878,7 @@ const zIdTokenJwtPayload = zod.default.object({
|
|
|
876
878
|
...zJwtPayload.shape,
|
|
877
879
|
iss: zod.default.string(),
|
|
878
880
|
sub: zod.default.string(),
|
|
879
|
-
aud: zod.default.string(),
|
|
881
|
+
aud: zod.default.union([zod.default.string(), zod.default.array(zod.default.string())]),
|
|
880
882
|
exp: __openid4vc_utils.zInteger,
|
|
881
883
|
iat: __openid4vc_utils.zInteger,
|
|
882
884
|
auth_time: __openid4vc_utils.zInteger.optional(),
|
|
@@ -916,7 +918,7 @@ const zIdTokenJwtPayload = zod.default.object({
|
|
|
916
918
|
/**
|
|
917
919
|
* Verify an ID Token JWT.
|
|
918
920
|
*/
|
|
919
|
-
async function
|
|
921
|
+
async function verifyIdTokenJwt(options) {
|
|
920
922
|
const { header, payload } = decodeJwt({
|
|
921
923
|
jwt: options.idToken,
|
|
922
924
|
headerSchema: zIdTokenJwtHeader,
|
|
@@ -2443,7 +2445,7 @@ const zTokenIntrospectionResponse = zod.default.object({
|
|
|
2443
2445
|
iat: zod.default.optional(__openid4vc_utils.zInteger),
|
|
2444
2446
|
nbf: zod.default.optional(__openid4vc_utils.zInteger),
|
|
2445
2447
|
sub: zod.default.optional(zod.default.string()),
|
|
2446
|
-
aud: zod.default.optional(zod.default.string()),
|
|
2448
|
+
aud: zod.default.optional(zod.default.union([zod.default.string(), zod.default.array(zod.default.string())])),
|
|
2447
2449
|
iss: zod.default.optional(zod.default.string()),
|
|
2448
2450
|
jti: zod.default.optional(zod.default.string()),
|
|
2449
2451
|
cnf: zod.default.optional(zJwtConfirmationPayload)
|
|
@@ -2588,12 +2590,6 @@ exports.Oauth2ServerErrorResponseError = Oauth2ServerErrorResponseError;
|
|
|
2588
2590
|
exports.PkceCodeChallengeMethod = PkceCodeChallengeMethod;
|
|
2589
2591
|
exports.SupportedAuthenticationScheme = SupportedAuthenticationScheme;
|
|
2590
2592
|
exports.SupportedClientAuthenticationMethod = SupportedClientAuthenticationMethod;
|
|
2591
|
-
Object.defineProperty(exports, 'VerifiedClientAttestationJwt', {
|
|
2592
|
-
enumerable: true,
|
|
2593
|
-
get: function () {
|
|
2594
|
-
return VerifiedClientAttestationJwt;
|
|
2595
|
-
}
|
|
2596
|
-
});
|
|
2597
2593
|
exports.authorizationCodeGrantIdentifier = authorizationCodeGrantIdentifier;
|
|
2598
2594
|
exports.calculateJwkThumbprint = calculateJwkThumbprint;
|
|
2599
2595
|
exports.clientAuthenticationAnonymous = clientAuthenticationAnonymous;
|
|
@@ -2628,8 +2624,8 @@ Object.defineProperty(exports, 'setGlobalConfig', {
|
|
|
2628
2624
|
}
|
|
2629
2625
|
});
|
|
2630
2626
|
exports.verifyClientAttestationJwt = verifyClientAttestationJwt;
|
|
2627
|
+
exports.verifyIdTokenJwt = verifyIdTokenJwt;
|
|
2631
2628
|
exports.verifyJwt = verifyJwt;
|
|
2632
|
-
exports.verifyJwtIdToken = verifyJwtIdToken;
|
|
2633
2629
|
exports.verifyResourceRequest = verifyResourceRequest;
|
|
2634
2630
|
exports.zAlgValueNotNone = zAlgValueNotNone;
|
|
2635
2631
|
exports.zAuthorizationCodeGrantIdentifier = zAuthorizationCodeGrantIdentifier;
|