npm - @openid4vc/openid4vci - Versions diffs - 0.3.0-alpha-20250602121005 → 0.3.0-alpha-20250704115435 - Mend

@openid4vc/openid4vci 0.3.0-alpha-20250602121005 → 0.3.0-alpha-20250704115435

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.js CHANGED Viewed

@@ -43,9 +43,9 @@ __export(index_exports, {
   determineAuthorizationServerForCredentialOffer: () => determineAuthorizationServerForCredentialOffer,
   extractScopesForCredentialConfigurationIds: () => extractScopesForCredentialConfigurationIds,
   getCredentialConfigurationsMatchingRequestFormat: () => getCredentialConfigurationsMatchingRequestFormat,
-  getGlobalConfig: () => import_utils20.getGlobalConfig,
+  getGlobalConfig: () => import_utils21.getGlobalConfig,
   parseKeyAttestationJwt: () => parseKeyAttestationJwt,
-  setGlobalConfig: () => import_utils20.setGlobalConfig,
+  setGlobalConfig: () => import_utils21.setGlobalConfig,
   verifyKeyAttestationJwt: () => verifyKeyAttestationJwt
 });
 module.exports = __toCommonJS(index_exports);
@@ -261,7 +261,7 @@ async function createCredentialOffer(options) {
 }
 // src/index.ts
-var import_utils20 = require("@openid4vc/utils");
+var import_utils21 = require("@openid4vc/utils");
 // src/credential-request/credential-request-configurations.ts
 var import_utils6 = require("@openid4vc/utils");
@@ -957,12 +957,12 @@ var Openid4vciError = class extends Error {
 };
 // src/error/Openid4vciRetrieveCredentialsError.ts
+var import_utils7 = require("@openid4vc/utils");
 var Openid4vciRetrieveCredentialsError = class extends Openid4vciError {
   constructor(message, response, responseText) {
-    super(
-      `${message}
-${JSON.stringify(response.credentialResponseResult?.data ?? response.credentialErrorResponseResult?.data ?? responseText, null, 2)}`
-    );
+    const errorData = response.credentialResponseResult?.data ?? response.credentialErrorResponseResult?.data ?? (response.credentialResponseResult?.error ? (0, import_utils7.formatZodError)(response.credentialResponseResult.error) : void 0) ?? responseText;
+    super(`${message}
+${JSON.stringify(errorData, null, 2)}`);
     this.response = response;
   }
 };
@@ -978,15 +978,15 @@ var Openid4vciSendNotificationError = class extends Openid4vciError {
 // src/key-attestation/key-attestation.ts
 var import_oauth26 = require("@openid4vc/oauth2");
 var import_oauth27 = require("@openid4vc/oauth2");
-var import_utils7 = require("@openid4vc/utils");
+var import_utils8 = require("@openid4vc/utils");
 async function createKeyAttestationJwt(options) {
-  const header = (0, import_utils7.parseWithErrorHandling)(zKeyAttestationJwtHeader, {
+  const header = (0, import_utils8.parseWithErrorHandling)(zKeyAttestationJwtHeader, {
     ...(0, import_oauth26.jwtHeaderFromJwtSigner)(options.signer),
     typ: "keyattestation+jwt"
   });
-  const payload = (0, import_utils7.parseWithErrorHandling)(zKeyAttestationJwtPayloadForUse(options.use), {
-    iat: (0, import_utils7.dateToSeconds)(options.issuedAt),
-    exp: options.expiresAt ? (0, import_utils7.dateToSeconds)(options.expiresAt) : void 0,
+  const payload = (0, import_utils8.parseWithErrorHandling)(zKeyAttestationJwtPayloadForUse(options.use), {
+    iat: (0, import_utils8.dateToSeconds)(options.issuedAt),
+    exp: options.expiresAt ? (0, import_utils8.dateToSeconds)(options.expiresAt) : void 0,
     nonce: options.nonce,
     attested_keys: options.attestedKeys,
     user_authentication: options.userAuthentication,
@@ -1029,7 +1029,7 @@ async function verifyKeyAttestationJwt(options) {
 // src/metadata/credential-issuer/credential-configurations.ts
 var import_oauth28 = require("@openid4vc/oauth2");
-var import_utils8 = require("@openid4vc/utils");
+var import_utils9 = require("@openid4vc/utils");
 function extractScopesForCredentialConfigurationIds(options) {
   const scopes = /* @__PURE__ */ new Set();
   for (const credentialConfigurationId of options.credentialConfigurationIds) {
@@ -1060,7 +1060,7 @@ function credentialsSupportedToCredentialConfigurationsSupported(credentialsSupp
     }
     const parseResult = zCredentialConfigurationSupportedDraft11To14.safeParse(credentialSupported);
     if (!parseResult.success) {
-      throw new import_utils8.ValidationError(
+      throw new import_utils9.ValidationError(
         `Error transforming credential supported with id '${credentialSupported.id}' to credential configuration supported format`,
         parseResult.error
       );
@@ -1074,25 +1074,25 @@ function credentialsSupportedToCredentialConfigurationsSupported(credentialsSupp
 var import_oauth218 = require("@openid4vc/oauth2");
 // src/credential-request/format-payload.ts
-var import_utils9 = require("@openid4vc/utils");
+var import_utils10 = require("@openid4vc/utils");
 function getCredentialRequestFormatPayloadForCredentialConfigurationId(options) {
   const credentialConfiguration = getCredentialConfigurationSupportedById(
     options.issuerMetadata.credentialIssuer.credential_configurations_supported,
     options.credentialConfigurationId
   );
-  if ((0, import_utils9.zIs)(zSdJwtVcCredentialIssuerMetadataDraft14, credentialConfiguration)) {
+  if ((0, import_utils10.zIs)(zSdJwtVcCredentialIssuerMetadataDraft14, credentialConfiguration)) {
     return {
       format: credentialConfiguration.format,
       vct: credentialConfiguration.vct
     };
   }
-  if ((0, import_utils9.zIs)(zMsoMdocCredentialIssuerMetadata, credentialConfiguration) || (0, import_utils9.zIs)(zMsoMdocCredentialIssuerMetadataDraft14, credentialConfiguration)) {
+  if ((0, import_utils10.zIs)(zMsoMdocCredentialIssuerMetadata, credentialConfiguration) || (0, import_utils10.zIs)(zMsoMdocCredentialIssuerMetadataDraft14, credentialConfiguration)) {
     return {
       format: credentialConfiguration.format,
       doctype: credentialConfiguration.doctype
     };
   }
-  if ((0, import_utils9.zIs)(zLdpVcCredentialIssuerMetadata, credentialConfiguration) || (0, import_utils9.zIs)(zLdpVcCredentialIssuerMetadataDraft14, credentialConfiguration)) {
+  if ((0, import_utils10.zIs)(zLdpVcCredentialIssuerMetadata, credentialConfiguration) || (0, import_utils10.zIs)(zLdpVcCredentialIssuerMetadataDraft14, credentialConfiguration)) {
     return {
       format: credentialConfiguration.format,
       credential_definition: {
@@ -1101,7 +1101,7 @@ function getCredentialRequestFormatPayloadForCredentialConfigurationId(options)
       }
     };
   }
-  if ((0, import_utils9.zIs)(zJwtVcJsonLdCredentialIssuerMetadata, credentialConfiguration) || (0, import_utils9.zIs)(zJwtVcJsonLdCredentialIssuerMetadataDraft14, credentialConfiguration)) {
+  if ((0, import_utils10.zIs)(zJwtVcJsonLdCredentialIssuerMetadata, credentialConfiguration) || (0, import_utils10.zIs)(zJwtVcJsonLdCredentialIssuerMetadataDraft14, credentialConfiguration)) {
     return {
       format: credentialConfiguration.format,
       credential_definition: {
@@ -1110,7 +1110,7 @@ function getCredentialRequestFormatPayloadForCredentialConfigurationId(options)
       }
     };
   }
-  if ((0, import_utils9.zIs)(zJwtVcJsonCredentialIssuerMetadata, credentialConfiguration) || (0, import_utils9.zIs)(zJwtVcJsonCredentialIssuerMetadataDraft14, credentialConfiguration)) {
+  if ((0, import_utils10.zIs)(zJwtVcJsonCredentialIssuerMetadata, credentialConfiguration) || (0, import_utils10.zIs)(zJwtVcJsonCredentialIssuerMetadataDraft14, credentialConfiguration)) {
     return {
       format: credentialConfiguration.format,
       credential_definition: {
@@ -1118,7 +1118,7 @@ function getCredentialRequestFormatPayloadForCredentialConfigurationId(options)
       }
     };
   }
-  if ((0, import_utils9.zIs)(zSdJwtDcCredentialIssuerMetadata, credentialConfiguration)) {
+  if ((0, import_utils10.zIs)(zSdJwtDcCredentialIssuerMetadata, credentialConfiguration)) {
     throw new Openid4vciError(
       `Credential configuration id '${options.credentialConfigurationId}' with format ${zSdJwtVcFormatIdentifier.value} does not support credential request based on 'format'. Use 'credential_configuration_id' directly.`
     );
@@ -1130,7 +1130,7 @@ function getCredentialRequestFormatPayloadForCredentialConfigurationId(options)
 // src/credential-request/retrieve-credentials.ts
 var import_oauth212 = require("@openid4vc/oauth2");
-var import_utils11 = require("@openid4vc/utils");
+var import_utils12 = require("@openid4vc/utils");
 // src/credential-request/z-credential-request.ts
 var import_zod16 = __toESM(require("zod"));
@@ -1141,7 +1141,7 @@ var import_zod15 = __toESM(require("zod"));
 // src/formats/proof-type/jwt/z-jwt-proof-type.ts
 var import_oauth29 = require("@openid4vc/oauth2");
-var import_utils10 = require("@openid4vc/utils");
+var import_utils11 = require("@openid4vc/utils");
 var import_zod13 = __toESM(require("zod"));
 var zJwtProofTypeIdentifier = import_zod13.default.literal("jwt");
 var jwtProofTypeIdentifier = zJwtProofTypeIdentifier.value;
@@ -1161,8 +1161,8 @@ var zCredentialRequestJwtProofTypeHeader = import_oauth29.zJwtHeader.merge(
 });
 var zCredentialRequestJwtProofTypePayload = import_zod13.default.object({
   ...import_oauth29.zJwtPayload.shape,
-  aud: import_utils10.zHttpsUrl,
-  iat: import_utils10.zInteger
+  aud: import_utils11.zHttpsUrl,
+  iat: import_utils11.zInteger
 }).passthrough();
 // src/formats/proof-type/attestation/z-attestation-proof-type.ts
@@ -1412,7 +1412,7 @@ async function retrieveCredentialsWithFormat(options) {
 }
 async function retrieveCredentials(options) {
   const credentialEndpoint = options.issuerMetadata.credentialIssuer.credential_endpoint;
-  let credentialRequest = (0, import_utils11.parseWithErrorHandling)(
+  let credentialRequest = (0, import_utils12.parseWithErrorHandling)(
     zCredentialRequest,
     options.credentialRequest,
     "Error validating credential request"
@@ -1432,7 +1432,7 @@ async function retrieveCredentials(options) {
     }
   }
   if (options.issuerMetadata.originalDraftVersion === "Draft11" /* Draft11 */) {
-    credentialRequest = (0, import_utils11.parseWithErrorHandling)(
+    credentialRequest = (0, import_utils12.parseWithErrorHandling)(
       zCredentialRequestDraft14To11,
       credentialRequest,
       `Error transforming credential request from ${"Draft14" /* Draft14 */} to ${"Draft11" /* Draft11 */}`
@@ -1446,19 +1446,19 @@ async function retrieveCredentials(options) {
     requestOptions: {
       method: "POST",
       headers: {
-        "Content-Type": import_utils11.ContentType.Json
+        "Content-Type": import_utils12.ContentType.Json
       },
       body: JSON.stringify(credentialRequest)
     }
   });
   if (!resourceResponse.ok) {
-    const credentialErrorResponseResult = (0, import_utils11.isResponseContentType)(import_utils11.ContentType.Json, resourceResponse.response) ? zCredentialErrorResponse.safeParse(await resourceResponse.response.clone().json()) : void 0;
+    const credentialErrorResponseResult = (0, import_utils12.isResponseContentType)(import_utils12.ContentType.Json, resourceResponse.response) ? zCredentialErrorResponse.safeParse(await resourceResponse.response.clone().json()) : void 0;
     return {
       ...resourceResponse,
       credentialErrorResponseResult
     };
   }
-  const credentialResponseResult = (0, import_utils11.isResponseContentType)(import_utils11.ContentType.Json, resourceResponse.response) ? zCredentialResponse.safeParse(await resourceResponse.response.clone().json()) : void 0;
+  const credentialResponseResult = (0, import_utils12.isResponseContentType)(import_utils12.ContentType.Json, resourceResponse.response) ? zCredentialResponse.safeParse(await resourceResponse.response.clone().json()) : void 0;
   if (!credentialResponseResult?.success) {
     return {
       ...resourceResponse,
@@ -1475,17 +1475,17 @@ async function retrieveCredentials(options) {
 // src/formats/proof-type/jwt/jwt-proof-type.ts
 var import_oauth213 = require("@openid4vc/oauth2");
 var import_oauth214 = require("@openid4vc/oauth2");
-var import_utils12 = require("@openid4vc/utils");
+var import_utils13 = require("@openid4vc/utils");
 async function createCredentialRequestJwtProof(options) {
-  const header = (0, import_utils12.parseWithErrorHandling)(zCredentialRequestJwtProofTypeHeader, {
+  const header = (0, import_utils13.parseWithErrorHandling)(zCredentialRequestJwtProofTypeHeader, {
     ...(0, import_oauth213.jwtHeaderFromJwtSigner)(options.signer),
     key_attestation: options.keyAttestationJwt,
     typ: "openid4vci-proof+jwt"
   });
-  const payload = (0, import_utils12.parseWithErrorHandling)(zCredentialRequestJwtProofTypePayload, {
+  const payload = (0, import_utils13.parseWithErrorHandling)(zCredentialRequestJwtProofTypePayload, {
     nonce: options.nonce,
     aud: options.credentialIssuer,
-    iat: (0, import_utils12.dateToSeconds)(options.issuedAt),
+    iat: (0, import_utils13.dateToSeconds)(options.issuedAt),
     iss: options.clientId
   });
   const { jwt, signerJwk } = await options.callbacks.signJwt(options.signer, { header, payload });
@@ -1558,7 +1558,7 @@ async function verifyCredentialRequestJwtProof(options) {
 // src/metadata/fetch-issuer-metadata.ts
 var import_oauth215 = require("@openid4vc/oauth2");
-var import_utils13 = require("@openid4vc/utils");
+var import_utils14 = require("@openid4vc/utils");
 async function resolveIssuerMetadata(credentialIssuer, options) {
   const allowAuthorizationMetadataFromCredentialIssuerMetadata = options?.allowAuthorizationMetadataFromCredentialIssuerMetadata ?? true;
   const credentialIssuerMetadataWithDraftVersion = await fetchCredentialIssuerMetadata(credentialIssuer, options?.fetch);
@@ -1574,7 +1574,7 @@ async function resolveIssuerMetadata(credentialIssuer, options) {
     }
     let authorizationServerMetadata = await (0, import_oauth215.fetchAuthorizationServerMetadata)(authorizationServer, options?.fetch);
     if (!authorizationServerMetadata && authorizationServer === credentialIssuer && allowAuthorizationMetadataFromCredentialIssuerMetadata) {
-      authorizationServerMetadata = (0, import_utils13.parseWithErrorHandling)(
+      authorizationServerMetadata = (0, import_utils14.parseWithErrorHandling)(
         import_oauth215.zAuthorizationServerMetadata,
         {
           token_endpoint: credentialIssuerMetadata.token_endpoint,
@@ -1599,26 +1599,26 @@ async function resolveIssuerMetadata(credentialIssuer, options) {
 // src/nonce/nonce-request.ts
 var import_oauth216 = require("@openid4vc/oauth2");
-var import_utils15 = require("@openid4vc/utils");
+var import_utils16 = require("@openid4vc/utils");
 // src/nonce/z-nonce.ts
-var import_utils14 = require("@openid4vc/utils");
+var import_utils15 = require("@openid4vc/utils");
 var import_zod19 = __toESM(require("zod"));
 var zNonceResponse = import_zod19.default.object({
   c_nonce: import_zod19.default.string(),
-  c_nonce_expires_in: import_zod19.default.optional(import_utils14.zInteger)
+  c_nonce_expires_in: import_zod19.default.optional(import_utils15.zInteger)
 }).passthrough();
 // src/nonce/nonce-request.ts
 async function requestNonce(options) {
-  const fetchWithZod = (0, import_utils15.createZodFetcher)(options?.fetch);
+  const fetchWithZod = (0, import_utils16.createZodFetcher)(options?.fetch);
   const nonceEndpoint = options.issuerMetadata.credentialIssuer.nonce_endpoint;
   if (!nonceEndpoint) {
     throw new Openid4vciError(
       `Credential issuer '${options.issuerMetadata.credentialIssuer.credential_issuer}' does not have a nonce endpoint.`
     );
   }
-  const { response, result } = await fetchWithZod(zNonceResponse, import_utils15.ContentType.Json, nonceEndpoint, {
+  const { response, result } = await fetchWithZod(zNonceResponse, import_utils16.ContentType.Json, nonceEndpoint, {
     method: "POST"
   });
   if (!response.ok || !result) {
@@ -1629,12 +1629,12 @@ async function requestNonce(options) {
     );
   }
   if (!result.success) {
-    throw new import_utils15.ValidationError("Error parsing nonce response", result.error);
+    throw new import_utils16.ValidationError("Error parsing nonce response", result.error);
   }
   return result.data;
 }
 function createNonceResponse(options) {
-  return (0, import_utils15.parseWithErrorHandling)(zNonceResponse, {
+  return (0, import_utils16.parseWithErrorHandling)(zNonceResponse, {
     c_nonce: options.cNonce,
     c_nonce_expires_in: options.cNonceExpiresIn,
     ...options.additionalPayload
@@ -1643,7 +1643,7 @@ function createNonceResponse(options) {
 // src/notification/notification.ts
 var import_oauth217 = require("@openid4vc/oauth2");
-var import_utils16 = require("@openid4vc/utils");
+var import_utils17 = require("@openid4vc/utils");
 // src/notification/z-notification.ts
 var import_zod20 = __toESM(require("zod"));
@@ -1665,7 +1665,7 @@ async function sendNotifcation(options) {
       `Credential issuer '${options.issuerMetadata.credentialIssuer.credential_issuer}' does not have a notification endpiont configured.`
     );
   }
-  const notificationRequest = (0, import_utils16.parseWithErrorHandling)(
+  const notificationRequest = (0, import_utils17.parseWithErrorHandling)(
     zNotificationRequest,
     {
       event: options.notification.event,
@@ -1682,13 +1682,13 @@ async function sendNotifcation(options) {
     requestOptions: {
       method: "POST",
       headers: {
-        "Content-Type": import_utils16.ContentType.Json
+        "Content-Type": import_utils17.ContentType.Json
       },
       body: JSON.stringify(notificationRequest)
     }
   });
   if (!resourceResponse.ok) {
-    const notificationErrorResponseResult = (0, import_utils16.isResponseContentType)(import_utils16.ContentType.Json, resourceResponse.response) ? zNotificationErrorResponse.safeParse(await resourceResponse.response.clone().json()) : void 0;
+    const notificationErrorResponseResult = (0, import_utils17.isResponseContentType)(import_utils17.ContentType.Json, resourceResponse.response) ? zNotificationErrorResponse.safeParse(await resourceResponse.response.clone().json()) : void 0;
     return {
       ...resourceResponse,
       notificationErrorResponseResult
@@ -2075,12 +2075,12 @@ var Openid4vciClient = class {
 // src/Openid4vciIssuer.ts
 var import_oauth219 = require("@openid4vc/oauth2");
-var import_utils19 = require("@openid4vc/utils");
+var import_utils20 = require("@openid4vc/utils");
 // src/credential-request/credential-response.ts
-var import_utils17 = require("@openid4vc/utils");
+var import_utils18 = require("@openid4vc/utils");
 function createCredentialResponse(options) {
-  const credentialResponse = (0, import_utils17.parseWithErrorHandling)(zCredentialResponse, {
+  const credentialResponse = (0, import_utils18.parseWithErrorHandling)(zCredentialResponse, {
     c_nonce: options.cNonce,
     c_nonce_expires_in: options.cNonceExpiresInSeconds,
     credential: options.credential,
@@ -2095,10 +2095,10 @@ function createCredentialResponse(options) {
 }
 // src/credential-request/parse-credential-request.ts
-var import_utils18 = require("@openid4vc/utils");
+var import_utils19 = require("@openid4vc/utils");
 var import_zod21 = __toESM(require("zod"));
 function parseCredentialRequest(options) {
-  const credentialRequest = (0, import_utils18.parseWithErrorHandling)(
+  const credentialRequest = (0, import_utils19.parseWithErrorHandling)(
     zCredentialRequest,
     options.credentialRequest,
     "Error validating credential request"
@@ -2141,7 +2141,7 @@ function parseCredentialRequest(options) {
   )) {
     return {
       // Removes all claims that are not specific to this format
-      format: (0, import_utils18.parseWithErrorHandling)(
+      format: (0, import_utils19.parseWithErrorHandling)(
         import_zod21.default.union(allCredentialRequestFormats),
         credentialRequest,
         "Unable to validate format specific properties from credential request"
@@ -2171,7 +2171,7 @@ var Openid4vciIssuer = class {
     this.options = options;
   }
   getCredentialIssuerMetadataDraft11(credentialIssuerMetadata) {
-    return (0, import_utils19.parseWithErrorHandling)(zCredentialIssuerMetadataWithDraft11, credentialIssuerMetadata);
+    return (0, import_utils20.parseWithErrorHandling)(zCredentialIssuerMetadataWithDraft11, credentialIssuerMetadata);
   }
   getKnownCredentialConfigurationsSupported(credentialIssuerMetadata) {
     return extractKnownCredentialConfigurationSupportedFormats(
@@ -2182,7 +2182,7 @@ var Openid4vciIssuer = class {
    * Create issuer metadata and validates the structure is correct
    */
   createCredentialIssuerMetadata(credentialIssuerMetadata) {
-    return (0, import_utils19.parseWithErrorHandling)(
+    return (0, import_utils20.parseWithErrorHandling)(
       zCredentialIssuerMetadata,
       credentialIssuerMetadata,
       "Error validating credential issuer metadata"
@@ -2272,7 +2272,7 @@ var Openid4vciIssuer = class {
           error: import_oauth219.Oauth2ErrorCodes.InvalidCredentialRequest,
           error_description: (
             // TODO: error should have a internalErrorMessage and a publicErrorMessage
-            error instanceof import_utils19.ValidationError ? error.message : "Invalid request"
+            error instanceof import_utils20.ValidationError ? error.message : "Invalid request"
           )
         },
         {