@openid4vc/openid4vp 0.3.0-alpha-20250321202313 → 0.3.0-alpha-20250321213505

package/dist/index.mjs

@@ -832,7 +832,7 @@ function parseOpenid4vpAuthorizationRequest(options) {
 // src/authorization-request/resolve-authorization-request.ts
 import { Oauth2ErrorCodes as Oauth2ErrorCodes9, Oauth2ServerErrorResponseError as Oauth2ServerErrorResponseError10 } from "@openid4vc/oauth2";
 import { parseWithErrorHandling as parseWithErrorHandling4 } from "@openid4vc/utils";
-import z14 from "zod";
+import z13 from "zod";
 
 // src/fetch-client-metadata.ts
 import { Oauth2ErrorCodes as Oauth2ErrorCodes4, Oauth2ServerErrorResponseError as Oauth2ServerErrorResponseError5 } from "@openid4vc/oauth2";
@@ -936,23 +936,26 @@ function parseAuthorizationRequestVersion(request) {
 
 // src/jar/jar-request-object/fetch-jar-request-object.ts
 import { Oauth2ErrorCodes as Oauth2ErrorCodes6, Oauth2ServerErrorResponseError as Oauth2ServerErrorResponseError7 } from "@openid4vc/oauth2";
-import { ContentType as ContentType2, createZodFetcher as createZodFetcher2, objectToQueryParams as objectToQueryParams2 } from "@openid4vc/utils";
-import { z as z11 } from "zod";
+import { ContentType as ContentType2, defaultFetcher, objectToQueryParams as objectToQueryParams2 } from "@openid4vc/utils";
 async function fetchJarRequestObject(options) {
-  const { requestUri, clientIdentifierScheme, method, wallet, fetch } = options;
-  const fetcher = createZodFetcher2(fetch);
+  const { requestUri, clientIdentifierScheme, method, wallet, fetch = defaultFetcher } = options;
   let requestBody = wallet.metadata ? { wallet_metadata: wallet.metadata, wallet_nonce: wallet.nonce } : void 0;
   if (requestBody?.wallet_metadata?.request_object_signing_alg_values_supported && clientIdentifierScheme === "redirect_uri") {
     const { request_object_signing_alg_values_supported, ...rest } = requestBody.wallet_metadata;
     requestBody = { ...requestBody, wallet_metadata: { ...rest } };
   }
-  const { result, response } = await fetcher(z11.string(), ContentType2.OAuthAuthorizationRequestJwt, requestUri, {
+  const response = await fetch(requestUri, {
     method,
+    body: method === "POST" ? objectToQueryParams2(wallet.metadata ?? {}) : void 0,
     headers: {
-      Accept: `${ContentType2.OAuthAuthorizationRequestJwt}, ${ContentType2.Jwt};q=0.9`,
+      Accept: `${ContentType2.OAuthAuthorizationRequestJwt}, ${ContentType2.Jwt};q=0.9, text/plain`,
       "Content-Type": ContentType2.XWwwFormUrlencoded
-    },
-    body: method === "POST" ? objectToQueryParams2(wallet.metadata ?? {}) : void 0
+    }
+  }).catch(() => {
+    throw new Oauth2ServerErrorResponseError7({
+      error_description: `Fetching request_object from request_uri '${requestUri}' failed`,
+      error: Oauth2ErrorCodes6.InvalidRequestUri
+    });
   });
   if (!response.ok) {
     throw new Oauth2ServerErrorResponseError7({
@@ -960,21 +963,15 @@ async function fetchJarRequestObject(options) {
       error: Oauth2ErrorCodes6.InvalidRequestUri
     });
   }
-  if (!result || !result.success) {
-    throw new Oauth2ServerErrorResponseError7({
-      error_description: `Parsing request_object from request_uri '${requestUri}' failed.`,
-      error: Oauth2ErrorCodes6.InvalidRequestObject
-    });
-  }
-  return result.data;
+  return await response.text();
 }
 
 // src/jar/jar-request-object/z-jar-request-object.ts
 import { zJwtPayload as zJwtPayload2 } from "@openid4vc/oauth2";
-import { z as z12 } from "zod";
-var zJarRequestObjectPayload = z12.object({
+import { z as z11 } from "zod";
+var zJarRequestObjectPayload = z11.object({
   ...zJwtPayload2.shape,
-  client_id: z12.string()
+  client_id: z11.string()
 }).passthrough();
 
 // src/jar/handle-jar-request/verify-jar-request.ts
@@ -1016,7 +1013,7 @@ async function verifyJarRequest(options) {
       error_description: 'Jar Request Object is missing the required "client_id" field.'
     });
   }
-  if (jarRequestParams.client_id !== authorizationRequestPayload.client_id) {
+  if (jarRequestParams.client_id && jarRequestParams.client_id !== authorizationRequestPayload.client_id) {
     throw new Oauth2ServerErrorResponseError8({
       error: Oauth2ErrorCodes7.InvalidRequest,
       error_description: "client_id does not match the request object client_id."
@@ -1078,13 +1075,13 @@ import { Oauth2ErrorCodes as Oauth2ErrorCodes8, Oauth2ServerErrorResponseError a
 import { decodeBase64, encodeToUtf8String, parseIfJson } from "@openid4vc/utils";
 
 // src/transaction-data/z-transaction-data.ts
-import { z as z13 } from "zod";
-var zTransactionEntry = z13.object({
-  type: z13.string(),
-  credential_ids: z13.array(z13.string()).nonempty(),
-  transaction_data_hashes_alg: z13.array(z13.string()).optional()
+import { z as z12 } from "zod";
+var zTransactionEntry = z12.object({
+  type: z12.string(),
+  credential_ids: z12.array(z12.string()).nonempty(),
+  transaction_data_hashes_alg: z12.array(z12.string()).optional()
 });
-var zTransactionData = z13.array(zTransactionEntry);
+var zTransactionData = z12.array(zTransactionEntry);
 
 // src/transaction-data/parse-transaction-data.ts
 function parseTransactionData(options) {
@@ -1109,7 +1106,7 @@ async function resolveOpenid4vpAuthorizationRequest(options) {
   const { wallet, callbacks, origin, disableOriginValidation } = options;
   let authorizationRequestPayload;
   const parsed = parseWithErrorHandling4(
-    z14.union([zOpenid4vpAuthorizationRequestDcApi, zOpenid4vpAuthorizationRequest, zJarAuthorizationRequest]),
+    z13.union([zOpenid4vpAuthorizationRequestDcApi, zOpenid4vpAuthorizationRequest, zJarAuthorizationRequest]),
     options.authorizationRequestPayload,
     "Invalid authorization request. Could not parse openid4vp authorization request as openid4vp or jar auth request."
   );
@@ -1117,7 +1114,7 @@ async function resolveOpenid4vpAuthorizationRequest(options) {
   if (isJarAuthorizationRequest(parsed)) {
     jar = await verifyJarRequest({ jarRequestParams: parsed, callbacks, wallet });
     const parsedJarAuthorizationRequestPayload = parseWithErrorHandling4(
-      z14.union([zOpenid4vpAuthorizationRequestDcApi, zOpenid4vpAuthorizationRequest]),
+      z13.union([zOpenid4vpAuthorizationRequestDcApi, zOpenid4vpAuthorizationRequest]),
       jar.authorizationRequestPayload,
       "Invalid authorization request. Could not parse jar request payload as openid4vp auth request."
     );
@@ -1238,7 +1235,7 @@ async function createJarmAuthorizationResponse(options) {
 }
 
 // src/jarm/jarm-response-mode.ts
-import { z as z15 } from "zod";
+import { z as z14 } from "zod";
 var jarmResponseMode = [
   "jwt",
   "query.jwt",
@@ -1247,7 +1244,7 @@ var jarmResponseMode = [
   "direct_post.jwt",
   "dc_api.jwt"
 ];
-var zJarmResponseMode = z15.enum(jarmResponseMode);
+var zJarmResponseMode = z14.enum(jarmResponseMode);
 var isJarmResponseMode = (responseMode) => {
   return jarmResponseMode.includes(responseMode);
 };
@@ -1380,12 +1377,12 @@ async function createOpenid4vpAuthorizationResponse(options) {
 
 // src/authorization-response/submit-authorization-response.ts
 import { Oauth2Error as Oauth2Error9 } from "@openid4vc/oauth2";
-import { ContentType as ContentType4, defaultFetcher as defaultFetcher2 } from "@openid4vc/utils";
+import { ContentType as ContentType4, defaultFetcher as defaultFetcher3 } from "@openid4vc/utils";
 import { objectToQueryParams as objectToQueryParams3 } from "@openid4vc/utils";
 
 // src/jarm/jarm-authorizatino-response-send.ts
 import { Oauth2Error as Oauth2Error8 } from "@openid4vc/oauth2";
-import { ContentType as ContentType3, URL as URL4, defaultFetcher } from "@openid4vc/utils";
+import { ContentType as ContentType3, URL as URL4, defaultFetcher as defaultFetcher2 } from "@openid4vc/utils";
 var jarmAuthorizationResponseSend = (options) => {
   const { authorizationRequestPayload, jarmAuthorizationResponseJwt, callbacks } = options;
   const responseEndpoint = authorizationRequestPayload.response_uri ?? authorizationRequestPayload.redirect_uri;
@@ -1396,7 +1393,7 @@ var jarmAuthorizationResponseSend = (options) => {
   return handleDirectPostJwt(responseEndpointUrl, jarmAuthorizationResponseJwt, callbacks);
 };
 async function handleDirectPostJwt(responseEndpoint, responseJwt, callbacks) {
-  const response = await (callbacks.fetch ?? defaultFetcher)(responseEndpoint, {
+  const response = await (callbacks.fetch ?? defaultFetcher2)(responseEndpoint, {
     method: "POST",
     headers: { "Content-Type": ContentType3.XWwwFormUrlencoded },
     body: `response=${responseJwt}`
@@ -1423,7 +1420,7 @@ async function submitOpenid4vpAuthorizationResponse(options) {
       "Failed to submit OpenId4Vp Authorization Response. No redirect_uri or response_uri provided."
     );
   }
-  const fetch = callbacks.fetch ?? defaultFetcher2;
+  const fetch = callbacks.fetch ?? defaultFetcher3;
   const encodedResponse = objectToQueryParams3(authorizationResponsePayload);
   const submissionResponse = await fetch(url, {
     method: "POST",
@@ -1445,17 +1442,17 @@ import { Oauth2Error as Oauth2Error10 } from "@openid4vc/oauth2";
 import { parseIfJson as parseIfJson2, parseWithErrorHandling as parseWithErrorHandling5 } from "@openid4vc/utils";
 
 // src/vp-token/z-vp-token.ts
-import { z as z16 } from "zod";
-var zVpTokenPexEntry = z16.union([z16.string(), z16.record(z16.any())], {
+import { z as z15 } from "zod";
+var zVpTokenPexEntry = z15.union([z15.string(), z15.record(z15.any())], {
   message: "pex vp_token entry must be a string or object"
 });
-var zVpTokenPex = z16.union(
-  [zVpTokenPexEntry, z16.array(zVpTokenPexEntry).nonempty("Must have at least entry in vp_token array")],
+var zVpTokenPex = z15.union(
+  [zVpTokenPexEntry, z15.array(zVpTokenPexEntry).nonempty("Must have at least entry in vp_token array")],
   {
     message: "pex vp_token must be a string, object or array of strings and objects"
   }
 );
-var zVpTokenDcql = z16.record(z16.union([z16.string(), z16.record(z16.any())]), {
+var zVpTokenDcql = z15.record(z15.union([z15.string(), z15.record(z15.any())]), {
   message: "dcql vp_token must be an object with keys referencing the dcql credential query id, and values the encoded (string or object) presentation"
 });
 var zVpToken = zVpTokenDcql.or(zVpTokenPex);
@@ -1529,23 +1526,23 @@ import { parseWithErrorHandling as parseWithErrorHandling6 } from "@openid4vc/ut
 
 // src/authorization-response/z-authorization-response.ts
 import { zStringToJson as zStringToJson2 } from "@openid4vc/utils";
-import { z as z18 } from "zod";
+import { z as z17 } from "zod";
 
 // src/models/z-pex.ts
-import { z as z17 } from "zod";
-var zPexPresentationDefinition = z17.record(z17.any());
-var zPexPresentationSubmission = z17.record(z17.any());
+import { z as z16 } from "zod";
+var zPexPresentationDefinition = z16.record(z16.any());
+var zPexPresentationSubmission = z16.record(z16.any());
 
 // src/authorization-response/z-authorization-response.ts
-var zOpenid4vpAuthorizationResponse = z18.object({
-  state: z18.string().optional(),
-  id_token: z18.string().optional(),
+var zOpenid4vpAuthorizationResponse = z17.object({
+  state: z17.string().optional(),
+  id_token: z17.string().optional(),
   vp_token: zVpToken,
   presentation_submission: zPexPresentationSubmission.or(zStringToJson2).optional(),
-  refresh_token: z18.string().optional(),
-  token_type: z18.string().optional(),
-  access_token: z18.string().optional(),
-  expires_in: z18.number().optional()
+  refresh_token: z17.string().optional(),
+  token_type: z17.string().optional(),
+  access_token: z17.string().optional(),
+  expires_in: z17.number().optional()
 }).passthrough();
 
 // src/authorization-response/parse-authorization-response-payload.ts
@@ -1560,11 +1557,11 @@ function parseOpenid4VpAuthorizationResponsePayload(payload) {
 // src/authorization-response/parse-jarm-authorization-response.ts
 import { Oauth2Error as Oauth2Error11, decodeJwtHeader, zCompactJwe as zCompactJwe3, zCompactJwt as zCompactJwt3 } from "@openid4vc/oauth2";
 import { parseWithErrorHandling as parseWithErrorHandling7 } from "@openid4vc/utils";
-import z19 from "zod";
+import z18 from "zod";
 async function parseJarmAuthorizationResponse(options) {
   const { jarmResponseJwt, callbacks, authorizationRequestPayload, expectedClientId } = options;
   const jarmAuthorizationResponseJwt = parseWithErrorHandling7(
-    z19.union([zCompactJwt3, zCompactJwe3]),
+    z18.union([zCompactJwt3, zCompactJwe3]),
     jarmResponseJwt,
     "Invalid jarm authorization response jwt."
   );
@@ -1762,22 +1759,22 @@ var Openid4vpVerifier = class {
 };
 
 // src/models/z-credential-formats.ts
-import { z as z20 } from "zod";
-var zCredentialFormat = z20.enum(["jwt_vc_json", "ldp_vc", "ac_vc", "mso_mdoc", "dc+sd-jwt", "vc+sd-jwt"]);
+import { z as z19 } from "zod";
+var zCredentialFormat = z19.enum(["jwt_vc_json", "ldp_vc", "ac_vc", "mso_mdoc", "dc+sd-jwt", "vc+sd-jwt"]);
 
 // src/models/z-proof-formats.ts
-import { z as z21 } from "zod";
-var zProofFormat = z21.enum(["jwt_vp_json", "ldc_vp", "ac_vp", "dc+sd-jwt", "vc+sd-jwt", "mso_mdoc"]);
+import { z as z20 } from "zod";
+var zProofFormat = z20.enum(["jwt_vp_json", "ldc_vp", "ac_vp", "dc+sd-jwt", "vc+sd-jwt", "mso_mdoc"]);
 
 // src/models/z-wallet-metadata.ts
-import { z as z22 } from "zod";
-var zWalletMetadata = z22.object({
-  presentation_definition_uri_supported: z22.optional(z22.boolean()),
+import { z as z21 } from "zod";
+var zWalletMetadata = z21.object({
+  presentation_definition_uri_supported: z21.optional(z21.boolean()),
   vp_formats_supported: zVpFormatsSupported,
-  client_id_schemes_supported: z22.optional(z22.array(zClientIdScheme)),
-  request_object_signing_alg_values_supported: z22.optional(z22.array(z22.string())),
-  authorization_encryption_alg_values_supported: z22.optional(z22.array(z22.string())),
-  authorization_encryption_enc_values_supported: z22.optional(z22.array(z22.string()))
+  client_id_schemes_supported: z21.optional(z21.array(zClientIdScheme)),
+  request_object_signing_alg_values_supported: z21.optional(z21.array(z21.string())),
+  authorization_encryption_alg_values_supported: z21.optional(z21.array(z21.string())),
+  authorization_encryption_enc_values_supported: z21.optional(z21.array(z21.string()))
 });
 export {
   JarmMode,