@openid4vc/utils 0.3.0-alpha-20251001121503 → 0.3.0-alpha-20251017082202

package/dist/index.mjs

@@ -1,438 +1,409 @@
-// src/globals.ts
-var _URL = URL;
-var _URLSearchParams = URLSearchParams;
-var _Headers = Headers;
+import { Buffer } from "buffer";
+import z, { ZodIssueCode } from "zod";
+
+//#region src/array.ts
+/**
+* Only primitive types allowed
+* Must have not duplicate entries (will always return false in this case)
+*/
+function arrayEqualsIgnoreOrder(a, b) {
+	if (new Set(a).size !== new Set(b).size) return false;
+	if (a.length !== b.length) return false;
+	return a.every((k) => b.includes(k));
+}
+
+//#endregion
+//#region src/config.ts
+let GLOBAL_CONFIG = { allowInsecureUrls: false };
+function setGlobalConfig(config) {
+	GLOBAL_CONFIG = config;
+}
+function getGlobalConfig() {
+	return GLOBAL_CONFIG;
+}
 
-// src/content-type.ts
-var ContentType = /* @__PURE__ */ ((ContentType2) => {
-  ContentType2["XWwwFormUrlencoded"] = "application/x-www-form-urlencoded";
-  ContentType2["Json"] = "application/json";
-  ContentType2["JwkSet"] = "application/jwk-set+json";
-  ContentType2["OAuthAuthorizationRequestJwt"] = "application/oauth-authz-req+jwt";
-  ContentType2["Jwt"] = "application/jwt";
-  ContentType2["Html"] = "text/html";
-  return ContentType2;
-})(ContentType || {});
+//#endregion
+//#region src/content-type.ts
+let ContentType = /* @__PURE__ */ function(ContentType$1) {
+	ContentType$1["XWwwFormUrlencoded"] = "application/x-www-form-urlencoded";
+	ContentType$1["Json"] = "application/json";
+	ContentType$1["JwkSet"] = "application/jwk-set+json";
+	ContentType$1["OAuthAuthorizationRequestJwt"] = "application/oauth-authz-req+jwt";
+	ContentType$1["Jwt"] = "application/jwt";
+	ContentType$1["Html"] = "text/html";
+	return ContentType$1;
+}({});
 function isContentType(contentType, value) {
-  return value.toLowerCase().includes(contentType);
+	return value.toLowerCase().includes(contentType);
 }
 function isResponseContentType(contentType, response) {
-  const contentTypeArray = Array.isArray(contentType) ? contentType : [contentType];
-  const header = response.headers.get("Content-Type");
-  if (!header) return false;
-  return contentTypeArray.some((contentTypeEntry) => isContentType(contentTypeEntry, header));
+	const contentTypeArray = Array.isArray(contentType) ? contentType : [contentType];
+	const header = response.headers.get("Content-Type");
+	if (!header) return false;
+	return contentTypeArray.some((contentTypeEntry) => isContentType(contentTypeEntry, header));
+}
+
+//#endregion
+//#region src/date.ts
+/**
+* Get the time in seconds since epoch for a date.
+* If date is not provided the current time will be used.
+*/
+function dateToSeconds(date) {
+	const milliseconds = date?.getTime() ?? Date.now();
+	return Math.floor(milliseconds / 1e3);
+}
+function addSecondsToDate(date, seconds) {
+	return new Date(date.getTime() + seconds * 1e3);
 }
 
-// src/error/InvalidFetchResponseError.ts
+//#endregion
+//#region src/encoding.ts
+function decodeUtf8String(string) {
+	return new Uint8Array(Buffer.from(string, "utf-8"));
+}
+function encodeToUtf8String(data) {
+	return Buffer.from(data).toString("utf-8");
+}
+/**
+* Also supports base64 url
+*/
+function decodeBase64(base64) {
+	return new Uint8Array(Buffer.from(base64, "base64"));
+}
+function encodeToBase64(data) {
+	if (typeof data === "string") return Buffer.from(data).toString("base64");
+	return Buffer.from(data).toString("base64");
+}
+function encodeToBase64Url(data) {
+	return base64ToBase64Url(encodeToBase64(data));
+}
+/**
+* The 'buffer' npm library does not support base64url.
+*/
+function base64ToBase64Url(base64) {
+	return base64.replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
+}
+
+//#endregion
+//#region src/error/InvalidFetchResponseError.ts
 var InvalidFetchResponseError = class extends Error {
-  constructor(message, textResponse, response) {
-    const textResponseMessage = isResponseContentType("text/html" /* Html */, response) ? void 0 : textResponse.substring(0, 1e3);
-    super(textResponseMessage ? `${message}
-${textResponseMessage}` : message);
-    this.textResponse = textResponse;
-    this.response = response.clone();
-  }
+	constructor(message, textResponse, response) {
+		const textResponseMessage = isResponseContentType(ContentType.Html, response) ? void 0 : textResponse.substring(0, 1e3);
+		super(textResponseMessage ? `${message}\n${textResponseMessage}` : message);
+		this.textResponse = textResponse;
+		this.response = response.clone();
+	}
 };
 
-// src/error/JsonParseError.ts
+//#endregion
+//#region src/error/JsonParseError.ts
 var JsonParseError = class extends Error {
-  constructor(message, jsonString) {
-    super(`${message}
-${jsonString}`);
-  }
+	constructor(message, jsonString) {
+		super(`${message}\n${jsonString}`);
+	}
 };
 
-// src/zod-error.ts
-import { ZodIssueCode } from "zod";
-var constants = {
-  // biome-ignore lint/suspicious/noMisleadingCharacterClass: expected
-  identifierRegex: /[$_\p{ID_Start}][$\u200c\u200d\p{ID_Continue}]*/u,
-  unionSeparator: ", or ",
-  issueSeparator: "\n	- "
+//#endregion
+//#region src/zod-error.ts
+/**
+* Some code comes from `zod-validation-error` package (MIT License) and
+* was slightly simplified to fit our needs.
+*/
+const constants = {
+	identifierRegex: /[$_\p{ID_Start}][$\u200c\u200d\p{ID_Continue}]*/u,
+	unionSeparator: ", or ",
+	issueSeparator: "\n	- "
 };
 function escapeQuotes(str) {
-  return str.replace(/"/g, '\\"');
+	return str.replace(/"/g, "\\\"");
 }
 function joinPath(path) {
-  if (path.length === 1) {
-    return path[0].toString();
-  }
-  return path.reduce((acc, item) => {
-    if (typeof item === "number") {
-      return `${acc}[${item.toString()}]`;
-    }
-    if (item.includes('"')) {
-      return `${acc}["${escapeQuotes(item)}"]`;
-    }
-    if (!constants.identifierRegex.test(item)) {
-      return `${acc}["${item}"]`;
-    }
-    const separator = acc.length === 0 ? "" : ".";
-    return acc + separator + item;
-  }, "");
+	if (path.length === 1) return path[0].toString();
+	return path.reduce((acc, item) => {
+		if (typeof item === "number") return `${acc}[${item.toString()}]`;
+		if (item.includes("\"")) return `${acc}["${escapeQuotes(item)}"]`;
+		if (!constants.identifierRegex.test(item)) return `${acc}["${item}"]`;
+		return acc + (acc.length === 0 ? "" : ".") + item;
+	}, "");
 }
 function getMessageFromZodIssue(issue) {
-  if (issue.code === ZodIssueCode.invalid_union) {
-    return getMessageFromUnionErrors(issue.unionErrors);
-  }
-  if (issue.code === ZodIssueCode.invalid_arguments) {
-    return [issue.message, ...issue.argumentsError.issues.map((issue2) => getMessageFromZodIssue(issue2))].join(
-      constants.issueSeparator
-    );
-  }
-  if (issue.code === ZodIssueCode.invalid_return_type) {
-    return [issue.message, ...issue.returnTypeError.issues.map((issue2) => getMessageFromZodIssue(issue2))].join(
-      constants.issueSeparator
-    );
-  }
-  if (issue.path.length !== 0) {
-    if (issue.path.length === 1) {
-      const identifier = issue.path[0];
-      if (typeof identifier === "number") {
-        return `${issue.message} at index ${identifier}`;
-      }
-    }
-    return `${issue.message} at "${joinPath(issue.path)}"`;
-  }
-  return issue.message;
+	if (issue.code === ZodIssueCode.invalid_union) return getMessageFromUnionErrors(issue.unionErrors);
+	if (issue.code === ZodIssueCode.invalid_arguments) return [issue.message, ...issue.argumentsError.issues.map((issue$1) => getMessageFromZodIssue(issue$1))].join(constants.issueSeparator);
+	if (issue.code === ZodIssueCode.invalid_return_type) return [issue.message, ...issue.returnTypeError.issues.map((issue$1) => getMessageFromZodIssue(issue$1))].join(constants.issueSeparator);
+	if (issue.path.length !== 0) {
+		if (issue.path.length === 1) {
+			const identifier = issue.path[0];
+			if (typeof identifier === "number") return `${issue.message} at index ${identifier}`;
+		}
+		return `${issue.message} at "${joinPath(issue.path)}"`;
+	}
+	return issue.message;
 }
 function getMessageFromUnionErrors(unionErrors) {
-  return unionErrors.reduce((acc, zodError) => {
-    const newIssues = zodError.issues.map((issue) => getMessageFromZodIssue(issue)).join(constants.issueSeparator);
-    if (!acc.includes(newIssues)) acc.push(newIssues);
-    return acc;
-  }, []).join(constants.unionSeparator);
+	return unionErrors.reduce((acc, zodError) => {
+		const newIssues = zodError.issues.map((issue) => getMessageFromZodIssue(issue)).join(constants.issueSeparator);
+		if (!acc.includes(newIssues)) acc.push(newIssues);
+		return acc;
+	}, []).join(constants.unionSeparator);
 }
 function formatZodError(error) {
-  if (!error) return "";
-  return `	- ${error?.issues.map((issue) => getMessageFromZodIssue(issue)).join(constants.issueSeparator)}`;
+	if (!error) return "";
+	return `\t- ${error?.issues.map((issue) => getMessageFromZodIssue(issue)).join(constants.issueSeparator)}`;
 }
 
-// src/error/ValidationError.ts
+//#endregion
+//#region src/error/ValidationError.ts
 var ValidationError = class extends Error {
-  constructor(message, zodError) {
-    super(message);
-    const formattedError = formatZodError(zodError);
-    this.message = `${message}
-${formattedError}`;
-    Object.defineProperty(this, "zodError", {
-      value: zodError,
-      writable: false,
-      enumerable: false
-    });
-  }
+	constructor(message, zodError) {
+		super(message);
+		this.message = `${message}\n${formatZodError(zodError)}`;
+		Object.defineProperty(this, "zodError", {
+			value: zodError,
+			writable: false,
+			enumerable: false
+		});
+	}
 };
 
-// src/array.ts
-function arrayEqualsIgnoreOrder(a, b) {
-  if (new Set(a).size !== new Set(b).size) return false;
-  if (a.length !== b.length) return false;
-  return a.every((k) => b.includes(k));
-}
-
-// src/config.ts
-var GLOBAL_CONFIG = {
-  allowInsecureUrls: false
+//#endregion
+//#region src/error/FetchError.ts
+var FetchError = class extends Error {
+	constructor(message, { cause } = {}) {
+		super(`${message}\nCause: ${cause?.message}`);
+		this.cause = cause;
+	}
 };
-function setGlobalConfig(config) {
-  GLOBAL_CONFIG = config;
-}
-function getGlobalConfig() {
-  return GLOBAL_CONFIG;
-}
 
-// src/date.ts
-function dateToSeconds(date) {
-  const milliseconds = date?.getTime() ?? Date.now();
-  return Math.floor(milliseconds / 1e3);
-}
-function addSecondsToDate(date, seconds) {
-  return new Date(date.getTime() + seconds * 1e3);
-}
+//#endregion
+//#region src/globals.ts
+const _URL = URL;
+const _URLSearchParams = URLSearchParams;
+const _Headers = Headers;
 
-// src/encoding.ts
-import { Buffer } from "buffer";
-function decodeUtf8String(string) {
-  return new Uint8Array(Buffer.from(string, "utf-8"));
-}
-function encodeToUtf8String(data) {
-  return Buffer.from(data).toString("utf-8");
-}
-function decodeBase64(base64) {
-  return new Uint8Array(Buffer.from(base64, "base64"));
-}
-function encodeToBase64(data) {
-  if (typeof data === "string") {
-    return Buffer.from(data).toString("base64");
-  }
-  return Buffer.from(data).toString("base64");
-}
-function encodeToBase64Url(data) {
-  return base64ToBase64Url(encodeToBase64(data));
+//#endregion
+//#region src/fetcher.ts
+/**
+* The default fetcher used by createZodFetcher when no
+* fetcher is provided.
+*/
+const defaultFetcher = fetch;
+function createFetcher(fetcher = defaultFetcher) {
+	return (input, init, ...args) => {
+		return fetcher(input, init ? {
+			...init,
+			body: init.body instanceof _URLSearchParams ? init.body.toString() : init.body
+		} : void 0, ...args).catch((error) => {
+			throw new FetchError(`Unknown error occurred during fetch to '${input}'`, { cause: error });
+		});
+	};
 }
-function base64ToBase64Url(base64) {
-  return base64.replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
+/**
+* Creates a `fetchWithZod` function that takes in a schema of
+* the expected response, and the arguments to the fetcher
+* you provided.
+*
+* @example
+*
+* const fetchWithZod = createZodFetcher((url) => {
+*   return fetch(url).then((res) => res.json());
+* });
+*
+* const response = await fetchWithZod(
+*   z.object({
+*     hello: z.string(),
+*   }),
+*   "https://example.com",
+* );
+*/
+function createZodFetcher(fetcher) {
+	return async (schema, expectedContentType, ...args) => {
+		const response = await createFetcher(fetcher)(...args);
+		const expectedContentTypeArray = Array.isArray(expectedContentType) ? expectedContentType : [expectedContentType];
+		if (response.ok && !isResponseContentType(expectedContentTypeArray, response)) throw new InvalidFetchResponseError(`Expected response to match content type ${expectedContentTypeArray.join(" | ")}, but received '${response.headers.get("Content-Type")}'`, await response.clone().text(), response);
+		if (expectedContentTypeArray.includes(ContentType.OAuthAuthorizationRequestJwt)) return {
+			response,
+			result: response.ok ? schema.safeParse(await response.text()) : void 0
+		};
+		return {
+			response,
+			result: response.ok ? schema.safeParse(await response.json()) : void 0
+		};
+	};
 }
 
-// src/object.ts
+//#endregion
+//#region src/object.ts
 function isObject(item) {
-  return item != null && typeof item === "object" && !Array.isArray(item);
+	return item != null && typeof item === "object" && !Array.isArray(item);
 }
+/**
+* Deep merge two objects.
+* @param target
+* @param ...sources
+*/
 function mergeDeep(target, ...sources) {
-  if (!sources.length) return target;
-  const source = sources.shift();
-  if (isObject(target) && isObject(source)) {
-    for (const key in source) {
-      if (isObject(source[key])) {
-        if (!target[key]) Object.assign(target, { [key]: {} });
-        mergeDeep(target[key], source[key]);
-      } else {
-        Object.assign(target, { [key]: source[key] });
-      }
-    }
-  }
-  return mergeDeep(target, ...sources);
+	if (!sources.length) return target;
+	const source = sources.shift();
+	if (isObject(target) && isObject(source)) for (const key in source) if (isObject(source[key])) {
+		if (!target[key]) Object.assign(target, { [key]: {} });
+		mergeDeep(target[key], source[key]);
+	} else Object.assign(target, { [key]: source[key] });
+	return mergeDeep(target, ...sources);
 }
 
-// src/parse.ts
+//#endregion
+//#region src/parse.ts
 function stringToJsonWithErrorHandling(string, errorMessage) {
-  try {
-    return JSON.parse(string);
-  } catch (error) {
-    throw new JsonParseError(errorMessage ?? "Unable to parse string to JSON.", string);
-  }
+	try {
+		return JSON.parse(string);
+	} catch (_error) {
+		throw new JsonParseError(errorMessage ?? "Unable to parse string to JSON.", string);
+	}
 }
 function parseIfJson(data) {
-  if (typeof data !== "string") {
-    return data;
-  }
-  try {
-    return JSON.parse(data);
-  } catch (error) {
-  }
-  return data;
+	if (typeof data !== "string") return data;
+	try {
+		return JSON.parse(data);
+	} catch (_error) {}
+	return data;
 }
 function parseWithErrorHandling(schema, data, customErrorMessage) {
-  const parseResult = schema.safeParse(data);
-  if (!parseResult.success) {
-    throw new ValidationError(
-      customErrorMessage ?? `Error validating schema with data ${JSON.stringify(data)}`,
-      parseResult.error
-    );
-  }
-  return parseResult.data;
+	const parseResult = schema.safeParse(data);
+	if (!parseResult.success) throw new ValidationError(customErrorMessage ?? `Error validating schema with data ${JSON.stringify(data)}`, parseResult.error);
+	return parseResult.data;
 }
 
-// src/path.ts
+//#endregion
+//#region src/path.ts
+/**
+* Combine multiple uri parts into a single uri taking into account slashes.
+*
+* @param parts the parts to combine
+* @returns the combined url
+*/
 function joinUriParts(base, parts) {
-  if (parts.length === 0) return base;
-  let combined = base.trim();
-  combined = base.endsWith("/") ? base.slice(0, base.length - 1) : base;
-  for (const part of parts) {
-    let strippedPart = part.trim();
-    strippedPart = strippedPart.startsWith("/") ? strippedPart.slice(1) : strippedPart;
-    strippedPart = strippedPart.endsWith("/") ? strippedPart.slice(0, strippedPart.length - 1) : strippedPart;
-    if (strippedPart === "") continue;
-    combined += `/${strippedPart}`;
-  }
-  return combined;
+	if (parts.length === 0) return base;
+	let combined = base.trim();
+	combined = base.endsWith("/") ? base.slice(0, base.length - 1) : base;
+	for (const part of parts) {
+		let strippedPart = part.trim();
+		strippedPart = strippedPart.startsWith("/") ? strippedPart.slice(1) : strippedPart;
+		strippedPart = strippedPart.endsWith("/") ? strippedPart.slice(0, strippedPart.length - 1) : strippedPart;
+		if (strippedPart === "") continue;
+		combined += `/${strippedPart}`;
+	}
+	return combined;
 }
 
-// src/url.ts
+//#endregion
+//#region src/url.ts
 function getQueryParams(url) {
-  const parsedUrl = new _URL(url);
-  const searchParams = new _URLSearchParams(parsedUrl.search);
-  const params = {};
-  searchParams.forEach((value, key) => {
-    params[key] = value;
-  });
-  return params;
+	const searchParams = new _URLSearchParams(new _URL(url).search);
+	const params = {};
+	searchParams.forEach((value, key) => {
+		params[key] = value;
+	});
+	return params;
 }
 function objectToQueryParams(object) {
-  const params = new _URLSearchParams();
-  for (const [key, value] of Object.entries(object)) {
-    if (value != null) {
-      params.append(key, typeof value === "object" ? JSON.stringify(value) : String(value));
-    }
-  }
-  return params;
+	const params = new _URLSearchParams();
+	for (const [key, value] of Object.entries(object)) if (value != null) params.append(key, typeof value === "object" ? JSON.stringify(value) : String(value));
+	return params;
 }
 
-// src/error/FetchError.ts
-var FetchError = class extends Error {
-  constructor(message, { cause } = {}) {
-    super(`${message}
-Cause: ${cause?.message}`);
-    this.cause = cause;
-  }
-};
-
-// src/fetcher.ts
-var defaultFetcher = fetch;
-function createFetcher(fetcher = defaultFetcher) {
-  return (input, init, ...args) => {
-    return fetcher(
-      input,
-      init ? {
-        ...init,
-        // React Native does not seem to handle the toString(). This is hard to catch when running
-        // tests in Node.JS where this does work correctly. so we handle it here.
-        body: init.body instanceof _URLSearchParams ? init.body.toString() : init.body
-      } : void 0,
-      ...args
-    ).catch((error) => {
-      throw new FetchError(`Unknown error occurred during fetch to '${input}'`, { cause: error });
-    });
-  };
-}
-function createZodFetcher(fetcher) {
-  return async (schema, expectedContentType, ...args) => {
-    const response = await createFetcher(fetcher)(...args);
-    const expectedContentTypeArray = Array.isArray(expectedContentType) ? expectedContentType : [expectedContentType];
-    if (response.ok && !isResponseContentType(expectedContentTypeArray, response)) {
-      throw new InvalidFetchResponseError(
-        `Expected response to match content type ${expectedContentTypeArray.join(" | ")}, but received '${response.headers.get("Content-Type")}'`,
-        await response.clone().text(),
-        response
-      );
-    }
-    if (expectedContentTypeArray.includes("application/oauth-authz-req+jwt" /* OAuthAuthorizationRequestJwt */)) {
-      return {
-        response,
-        result: response.ok ? schema.safeParse(await response.text()) : void 0
-      };
-    }
-    return {
-      response,
-      result: response.ok ? schema.safeParse(await response.json()) : void 0
-    };
-  };
-}
-
-// src/validation.ts
-import z from "zod";
-var zHttpsUrl = z.string().url().refine(
-  (url) => {
-    const { allowInsecureUrls } = getGlobalConfig();
-    return allowInsecureUrls ? url.startsWith("http://") || url.startsWith("https://") : url.startsWith("https://");
-  },
-  { message: "url must be an https:// url" }
-);
-var zInteger = z.number().int();
-var zHttpMethod = z.enum(["GET", "POST", "PUT", "DELETE", "HEAD", "OPTIONS", "TRACE", "CONNECT", "PATCH"]);
-var zStringToJson = z.string().transform((string, ctx) => {
-  try {
-    return JSON.parse(string);
-  } catch (error) {
-    ctx.addIssue({
-      code: "custom",
-      message: "Expected a JSON string, but could not parse the string to JSON"
-    });
-    return z.NEVER;
-  }
+//#endregion
+//#region src/validation.ts
+const zHttpsUrl = z.string().url().refine((url) => {
+	const { allowInsecureUrls } = getGlobalConfig();
+	return allowInsecureUrls ? url.startsWith("http://") || url.startsWith("https://") : url.startsWith("https://");
+}, { message: "url must be an https:// url" });
+const zInteger = z.number().int();
+const zHttpMethod = z.enum([
+	"GET",
+	"POST",
+	"PUT",
+	"DELETE",
+	"HEAD",
+	"OPTIONS",
+	"TRACE",
+	"CONNECT",
+	"PATCH"
+]);
+const zStringToJson = z.string().transform((string, ctx) => {
+	try {
+		return JSON.parse(string);
+	} catch (_error) {
+		ctx.addIssue({
+			code: "custom",
+			message: "Expected a JSON string, but could not parse the string to JSON"
+		});
+		return z.NEVER;
+	}
 });
-var zIs = (schema, data) => schema.safeParse(data).success;
+const zIs = (schema, data) => schema.safeParse(data).success;
 
-// src/www-authenticate.ts
-var unquote = (value) => value.substring(1, value.length - 1).replace(/\\"/g, '"');
-var sanitize = (value) => value.charAt(0) === '"' ? unquote(value) : value.trim();
-var body = (
-  // biome-ignore lint/suspicious/noControlCharactersInRegex: <explanation>
-  /((?:[a-zA-Z0-9._~+\/-]+=*(?:\s+|$))|[^\u0000-\u001F\u007F()<>@,;:\\"/?={}\[\]\u0020\u0009]+)(?:=([^\\"=\s,]+|"(?:[^"\\]|\\.)*"))?/g
-);
-var parsePayload = (scheme, string) => {
-  const payload = {};
-  while (true) {
-    const res = body.exec(string);
-    if (!res) break;
-    const [, key, newValue] = res;
-    const payloadValue = payload[key];
-    if (newValue) {
-      const sanitizedValue = sanitize(newValue);
-      payload[key] = payloadValue ? Array.isArray(payloadValue) ? [...payloadValue, sanitizedValue] : [payloadValue, sanitizedValue] : sanitizedValue;
-    } else if (!payloadValue) {
-      payload[key] = null;
-    }
-  }
-  return { scheme, payload };
+//#endregion
+//#region src/www-authenticate.ts
+const unquote = (value) => value.substring(1, value.length - 1).replace(/\\"/g, "\"");
+const sanitize = (value) => value.charAt(0) === "\"" ? unquote(value) : value.trim();
+const body = /((?:[a-zA-Z0-9._~+/-]+=*(?:\s+|$))|[^\u0000-\u001F\u007F()<>@,;:\\"/?={}[\]\u0020\u0009]+)(?:=([^\\"=\s,]+|"(?:[^"\\]|\\.)*"))?/g;
+const parsePayload = (scheme, string) => {
+	const payload = {};
+	while (true) {
+		const res = body.exec(string);
+		if (!res) break;
+		const [, key, newValue] = res;
+		const payloadValue = payload[key];
+		if (newValue) {
+			const sanitizedValue = sanitize(newValue);
+			payload[key] = payloadValue ? Array.isArray(payloadValue) ? [...payloadValue, sanitizedValue] : [payloadValue, sanitizedValue] : sanitizedValue;
+		} else if (!payloadValue) payload[key] = null;
+	}
+	return {
+		scheme,
+		payload
+	};
 };
 function parseWwwAuthenticateHeader(str) {
-  const start = str.indexOf(" ");
-  let scheme = str.substring(0, start);
-  let value = str.substring(start);
-  const challenges = [];
-  const endsWithSchemeRegex = /, ?(Bearer|DPoP|Basic)$/;
-  const endsWithSchemeTest = endsWithSchemeRegex.exec(value);
-  let endsWithScheme = void 0;
-  if (endsWithSchemeTest) {
-    value = value.substring(0, value.length - endsWithSchemeTest[0].length);
-    endsWithScheme = endsWithSchemeTest[1];
-  }
-  const additionalSchemesRegex = /(.*?)(, ?)(Bearer|DPoP|Basic)[, ]/;
-  let match = additionalSchemesRegex.exec(value);
-  while (match) {
-    challenges.push(parsePayload(scheme, match[1]));
-    value = value.substring(match[0].length - 1);
-    scheme = match[3];
-    match = additionalSchemesRegex.exec(value);
-  }
-  challenges.push(parsePayload(scheme, value));
-  if (endsWithScheme) {
-    challenges.push({ scheme: endsWithScheme, payload: {} });
-  }
-  return challenges;
+	const start = str.indexOf(" ");
+	let scheme = str.substring(0, start);
+	let value = str.substring(start);
+	const challenges = [];
+	const endsWithSchemeTest = /, ?(Bearer|DPoP|Basic)$/.exec(value);
+	let endsWithScheme;
+	if (endsWithSchemeTest) {
+		value = value.substring(0, value.length - endsWithSchemeTest[0].length);
+		endsWithScheme = endsWithSchemeTest[1];
+	}
+	const additionalSchemesRegex = /(.*?)(, ?)(Bearer|DPoP|Basic)[, ]/;
+	let match = additionalSchemesRegex.exec(value);
+	while (match) {
+		challenges.push(parsePayload(scheme, match[1]));
+		value = value.substring(match[0].length - 1);
+		scheme = match[3];
+		match = additionalSchemesRegex.exec(value);
+	}
+	challenges.push(parsePayload(scheme, value));
+	if (endsWithScheme) challenges.push({
+		scheme: endsWithScheme,
+		payload: {}
+	});
+	return challenges;
 }
 function encodeWwwAuthenticateHeader(challenges) {
-  const entries = [];
-  for (const challenge of challenges) {
-    const encodedParams = Object.entries(challenge.payload).flatMap(([key, value]) => {
-      const encode = (s) => s.replace(/\\/g, "\\\\").replace(/"/g, '\\"');
-      if (Array.isArray(value)) {
-        return value.map((v) => `${key}="${encode(v)}"`);
-      }
-      return value ? `${key}="${encode(value)}"` : key;
-    });
-    entries.push(encodedParams.length === 0 ? challenge.scheme : `${challenge.scheme} ${encodedParams.join(", ")}`);
-  }
-  return entries.join(", ");
+	const entries = [];
+	for (const challenge of challenges) {
+		const encodedParams = Object.entries(challenge.payload).flatMap(([key, value]) => {
+			const encode = (s) => s.replace(/\\/g, "\\\\").replace(/"/g, "\\\"");
+			if (Array.isArray(value)) return value.map((v) => `${key}="${encode(v)}"`);
+			return value ? `${key}="${encode(value)}"` : key;
+		});
+		entries.push(encodedParams.length === 0 ? challenge.scheme : `${challenge.scheme} ${encodedParams.join(", ")}`);
+	}
+	return entries.join(", ");
 }
-export {
-  ContentType,
-  _Headers as Headers,
-  InvalidFetchResponseError,
-  JsonParseError,
-  _URL as URL,
-  _URLSearchParams as URLSearchParams,
-  ValidationError,
-  addSecondsToDate,
-  arrayEqualsIgnoreOrder,
-  createFetcher,
-  createZodFetcher,
-  dateToSeconds,
-  decodeBase64,
-  decodeUtf8String,
-  encodeToBase64,
-  encodeToBase64Url,
-  encodeToUtf8String,
-  encodeWwwAuthenticateHeader,
-  formatZodError,
-  getGlobalConfig,
-  getQueryParams,
-  isContentType,
-  isObject,
-  isResponseContentType,
-  joinUriParts,
-  mergeDeep,
-  objectToQueryParams,
-  parseIfJson,
-  parseWithErrorHandling,
-  parseWwwAuthenticateHeader,
-  setGlobalConfig,
-  stringToJsonWithErrorHandling,
-  zHttpMethod,
-  zHttpsUrl,
-  zInteger,
-  zIs,
-  zStringToJson
-};
+
+//#endregion
+export { ContentType, _Headers as Headers, InvalidFetchResponseError, JsonParseError, _URL as URL, _URLSearchParams as URLSearchParams, ValidationError, addSecondsToDate, arrayEqualsIgnoreOrder, createFetcher, createZodFetcher, dateToSeconds, decodeBase64, decodeUtf8String, encodeToBase64, encodeToBase64Url, encodeToUtf8String, encodeWwwAuthenticateHeader, formatZodError, getGlobalConfig, getQueryParams, isContentType, isObject, isResponseContentType, joinUriParts, mergeDeep, objectToQueryParams, parseIfJson, parseWithErrorHandling, parseWwwAuthenticateHeader, setGlobalConfig, stringToJsonWithErrorHandling, zHttpMethod, zHttpsUrl, zInteger, zIs, zStringToJson };
 //# sourceMappingURL=index.mjs.map