npm - @opentdf/sdk - Versions diffs - 0.1.0-beta.1701 - Mend

@opentdf/sdk 0.1.0-beta.1701

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (566) hide show

package/README.md +52 -0
package/dist/cjs/package.json +3 -0
package/dist/cjs/src/access.js +155 -0
package/dist/cjs/src/auth/Eas.js +60 -0
package/dist/cjs/src/auth/auth.js +79 -0
package/dist/cjs/src/auth/oidc-clientcredentials-provider.js +26 -0
package/dist/cjs/src/auth/oidc-externaljwt-provider.js +33 -0
package/dist/cjs/src/auth/oidc-refreshtoken-provider.js +34 -0
package/dist/cjs/src/auth/oidc.js +222 -0
package/dist/cjs/src/auth/providers.js +143 -0
package/dist/cjs/src/encodings/base64.js +154 -0
package/dist/cjs/src/encodings/hex.js +70 -0
package/dist/cjs/src/encodings/index.js +29 -0
package/dist/cjs/src/errors.js +138 -0
package/dist/cjs/src/index.js +344 -0
package/dist/cjs/src/nanotdf/Client.js +296 -0
package/dist/cjs/src/nanotdf/NanoTDF.js +94 -0
package/dist/cjs/src/nanotdf/browser-entry.js +19 -0
package/dist/cjs/src/nanotdf/constants.js +5 -0
package/dist/cjs/src/nanotdf/decrypt.js +17 -0
package/dist/cjs/src/nanotdf/encrypt-dataset.js +38 -0
package/dist/cjs/src/nanotdf/encrypt.js +132 -0
package/dist/cjs/src/nanotdf/enum/CipherEnum.js +13 -0
package/dist/cjs/src/nanotdf/enum/CurveNameEnum.js +15 -0
package/dist/cjs/src/nanotdf/enum/EncodingEnum.js +8 -0
package/dist/cjs/src/nanotdf/enum/PolicyTypeEnum.js +11 -0
package/dist/cjs/src/nanotdf/enum/ProtocolEnum.js +10 -0
package/dist/cjs/src/nanotdf/enum/ResourceLocatorIdentifierEnum.js +11 -0
package/dist/cjs/src/nanotdf/helpers/calculateByCurve.js +29 -0
package/dist/cjs/src/nanotdf/helpers/getHkdfSalt.js +11 -0
package/dist/cjs/src/nanotdf/index.js +25 -0
package/dist/cjs/src/nanotdf/interfaces/PolicyInterface.js +3 -0
package/dist/cjs/src/nanotdf/models/Ciphers.js +61 -0
package/dist/cjs/src/nanotdf/models/DefaultParams.js +27 -0
package/dist/cjs/src/nanotdf/models/EcCurves.js +39 -0
package/dist/cjs/src/nanotdf/models/Header.js +255 -0
package/dist/cjs/src/nanotdf/models/Payload.js +158 -0
package/dist/cjs/src/nanotdf/models/Policy/AbstractPolicy.js +73 -0
package/dist/cjs/src/nanotdf/models/Policy/EmbeddedPolicy.js +82 -0
package/dist/cjs/src/nanotdf/models/Policy/PolicyFactory.js +38 -0
package/dist/cjs/src/nanotdf/models/Policy/RemotePolicy.js +62 -0
package/dist/cjs/src/nanotdf/models/ResourceLocator.js +211 -0
package/dist/cjs/src/nanotdf/models/Signature.js +77 -0
package/dist/cjs/src/nanotdf-crypto/ciphers.js +17 -0
package/dist/cjs/src/nanotdf-crypto/decrypt.js +24 -0
package/dist/cjs/src/nanotdf-crypto/digest.js +7 -0
package/dist/cjs/src/nanotdf-crypto/ecdsaSignature.js +83 -0
package/dist/cjs/src/nanotdf-crypto/encrypt.js +24 -0
package/dist/cjs/src/nanotdf-crypto/enums.js +52 -0
package/dist/cjs/src/nanotdf-crypto/exportCryptoKey.js +20 -0
package/dist/cjs/src/nanotdf-crypto/generateKeyPair.js +13 -0
package/dist/cjs/src/nanotdf-crypto/generateRandomNumber.js +12 -0
package/dist/cjs/src/nanotdf-crypto/importRawKey.js +18 -0
package/dist/cjs/src/nanotdf-crypto/index.js +52 -0
package/dist/cjs/src/nanotdf-crypto/keyAgreement.js +91 -0
package/dist/cjs/src/nanotdf-crypto/pemPublicToCrypto.js +225 -0
package/dist/cjs/src/policy/api.js +58 -0
package/dist/cjs/src/policy/attributes.js +3 -0
package/dist/cjs/src/policy/granter.js +146 -0
package/dist/cjs/src/tdf/AttributeObject.js +15 -0
package/dist/cjs/src/tdf/AttributeObjectJwt.js +3 -0
package/dist/cjs/src/tdf/Crypto.js +47 -0
package/dist/cjs/src/tdf/EntityObject.js +3 -0
package/dist/cjs/src/tdf/NanoTDF/NanoTDF.js +38 -0
package/dist/cjs/src/tdf/Policy.js +50 -0
package/dist/cjs/src/tdf/PolicyObject.js +3 -0
package/dist/cjs/src/tdf/TypedArray.js +3 -0
package/dist/cjs/src/tdf/index.js +35 -0
package/dist/cjs/src/types/index.js +3 -0
package/dist/cjs/src/utils.js +147 -0
package/dist/cjs/src/version.js +12 -0
package/dist/cjs/tdf3/index.js +57 -0
package/dist/cjs/tdf3/src/assertions.js +118 -0
package/dist/cjs/tdf3/src/binary.js +153 -0
package/dist/cjs/tdf3/src/ciphers/aes-gcm-cipher.js +56 -0
package/dist/cjs/tdf3/src/ciphers/algorithms.js +8 -0
package/dist/cjs/tdf3/src/ciphers/index.js +8 -0
package/dist/cjs/tdf3/src/ciphers/symmetric-cipher-base.js +22 -0
package/dist/cjs/tdf3/src/client/DecoratedReadableStream.js +116 -0
package/dist/cjs/tdf3/src/client/builders.js +561 -0
package/dist/cjs/tdf3/src/client/index.js +460 -0
package/dist/cjs/tdf3/src/client/validation.js +63 -0
package/dist/cjs/tdf3/src/crypto/crypto-utils.js +116 -0
package/dist/cjs/tdf3/src/crypto/declarations.js +8 -0
package/dist/cjs/tdf3/src/crypto/index.js +315 -0
package/dist/cjs/tdf3/src/index.js +34 -0
package/dist/cjs/tdf3/src/models/attribute-set.js +122 -0
package/dist/cjs/tdf3/src/models/encryption-information.js +90 -0
package/dist/cjs/tdf3/src/models/index.js +25 -0
package/dist/cjs/tdf3/src/models/key-access.js +103 -0
package/dist/cjs/tdf3/src/models/manifest.js +3 -0
package/dist/cjs/tdf3/src/models/payload.js +3 -0
package/dist/cjs/tdf3/src/models/policy.js +24 -0
package/dist/cjs/tdf3/src/models/upsert-response.js +3 -0
package/dist/cjs/tdf3/src/tdf.js +907 -0
package/dist/cjs/tdf3/src/templates/default.html.js +98 -0
package/dist/cjs/tdf3/src/templates/escaper.js +15 -0
package/dist/cjs/tdf3/src/templates/index.js +12 -0
package/dist/cjs/tdf3/src/utils/buffer-crc32.js +48 -0
package/dist/cjs/tdf3/src/utils/chunkers.js +106 -0
package/dist/cjs/tdf3/src/utils/index.js +296 -0
package/dist/cjs/tdf3/src/utils/keysplit.js +61 -0
package/dist/cjs/tdf3/src/utils/zip-reader.js +253 -0
package/dist/cjs/tdf3/src/utils/zip-writer.js +308 -0
package/dist/cjs/tdf3/src/version.js +6 -0
package/dist/types/src/access.d.ts +47 -0
package/dist/types/src/access.d.ts.map +1 -0
package/dist/types/src/auth/Eas.d.ts +34 -0
package/dist/types/src/auth/Eas.d.ts.map +1 -0
package/dist/types/src/auth/auth.d.ts +86 -0
package/dist/types/src/auth/auth.d.ts.map +1 -0
package/dist/types/src/auth/oidc-clientcredentials-provider.d.ts +9 -0
package/dist/types/src/auth/oidc-clientcredentials-provider.d.ts.map +1 -0
package/dist/types/src/auth/oidc-externaljwt-provider.d.ts +10 -0
package/dist/types/src/auth/oidc-externaljwt-provider.d.ts.map +1 -0
package/dist/types/src/auth/oidc-refreshtoken-provider.d.ts +10 -0
package/dist/types/src/auth/oidc-refreshtoken-provider.d.ts.map +1 -0
package/dist/types/src/auth/oidc.d.ts +104 -0
package/dist/types/src/auth/oidc.d.ts.map +1 -0
package/dist/types/src/auth/providers.d.ts +67 -0
package/dist/types/src/auth/providers.d.ts.map +1 -0
package/dist/types/src/encodings/base64.d.ts +18 -0
package/dist/types/src/encodings/base64.d.ts.map +1 -0
package/dist/types/src/encodings/hex.d.ts +5 -0
package/dist/types/src/encodings/hex.d.ts.map +1 -0
package/dist/types/src/encodings/index.d.ts +3 -0
package/dist/types/src/encodings/index.d.ts.map +1 -0
package/dist/types/src/errors.d.ts +72 -0
package/dist/types/src/errors.d.ts.map +1 -0
package/dist/types/src/index.d.ts +138 -0
package/dist/types/src/index.d.ts.map +1 -0
package/dist/types/src/nanotdf/Client.d.ts +95 -0
package/dist/types/src/nanotdf/Client.d.ts.map +1 -0
package/dist/types/src/nanotdf/NanoTDF.d.ts +25 -0
package/dist/types/src/nanotdf/NanoTDF.d.ts.map +1 -0
package/dist/types/src/nanotdf/browser-entry.d.ts +17 -0
package/dist/types/src/nanotdf/browser-entry.d.ts.map +1 -0
package/dist/types/src/nanotdf/constants.d.ts +2 -0
package/dist/types/src/nanotdf/constants.d.ts.map +1 -0
package/dist/types/src/nanotdf/decrypt.d.ts +9 -0
package/dist/types/src/nanotdf/decrypt.d.ts.map +1 -0
package/dist/types/src/nanotdf/encrypt-dataset.d.ts +12 -0
package/dist/types/src/nanotdf/encrypt-dataset.d.ts.map +1 -0
package/dist/types/src/nanotdf/encrypt.d.ts +14 -0
package/dist/types/src/nanotdf/encrypt.d.ts.map +1 -0
package/dist/types/src/nanotdf/enum/CipherEnum.d.ts +10 -0
package/dist/types/src/nanotdf/enum/CipherEnum.d.ts.map +1 -0
package/dist/types/src/nanotdf/enum/CurveNameEnum.d.ts +12 -0
package/dist/types/src/nanotdf/enum/CurveNameEnum.d.ts.map +1 -0
package/dist/types/src/nanotdf/enum/EncodingEnum.d.ts +5 -0
package/dist/types/src/nanotdf/enum/EncodingEnum.d.ts.map +1 -0
package/dist/types/src/nanotdf/enum/PolicyTypeEnum.d.ts +8 -0
package/dist/types/src/nanotdf/enum/PolicyTypeEnum.d.ts.map +1 -0
package/dist/types/src/nanotdf/enum/ProtocolEnum.d.ts +7 -0
package/dist/types/src/nanotdf/enum/ProtocolEnum.d.ts.map +1 -0
package/dist/types/src/nanotdf/enum/ResourceLocatorIdentifierEnum.d.ts +8 -0
package/dist/types/src/nanotdf/enum/ResourceLocatorIdentifierEnum.d.ts.map +1 -0
package/dist/types/src/nanotdf/helpers/calculateByCurve.d.ts +20 -0
package/dist/types/src/nanotdf/helpers/calculateByCurve.d.ts.map +1 -0
package/dist/types/src/nanotdf/helpers/getHkdfSalt.d.ts +9 -0
package/dist/types/src/nanotdf/helpers/getHkdfSalt.d.ts.map +1 -0
package/dist/types/src/nanotdf/index.d.ts +9 -0
package/dist/types/src/nanotdf/index.d.ts.map +1 -0
package/dist/types/src/nanotdf/interfaces/PolicyInterface.d.ts +17 -0
package/dist/types/src/nanotdf/interfaces/PolicyInterface.d.ts.map +1 -0
package/dist/types/src/nanotdf/models/Ciphers.d.ts +14 -0
package/dist/types/src/nanotdf/models/Ciphers.d.ts.map +1 -0
package/dist/types/src/nanotdf/models/DefaultParams.d.ts +21 -0
package/dist/types/src/nanotdf/models/DefaultParams.d.ts.map +1 -0
package/dist/types/src/nanotdf/models/EcCurves.d.ts +15 -0
package/dist/types/src/nanotdf/models/EcCurves.d.ts.map +1 -0
package/dist/types/src/nanotdf/models/Header.d.ts +73 -0
package/dist/types/src/nanotdf/models/Header.d.ts.map +1 -0
package/dist/types/src/nanotdf/models/Payload.d.ts +47 -0
package/dist/types/src/nanotdf/models/Payload.d.ts.map +1 -0
package/dist/types/src/nanotdf/models/Policy/AbstractPolicy.d.ts +52 -0
package/dist/types/src/nanotdf/models/Policy/AbstractPolicy.d.ts.map +1 -0
package/dist/types/src/nanotdf/models/Policy/EmbeddedPolicy.d.ts +35 -0
package/dist/types/src/nanotdf/models/Policy/EmbeddedPolicy.d.ts.map +1 -0
package/dist/types/src/nanotdf/models/Policy/PolicyFactory.d.ts +11 -0
package/dist/types/src/nanotdf/models/Policy/PolicyFactory.d.ts.map +1 -0
package/dist/types/src/nanotdf/models/Policy/RemotePolicy.d.ts +31 -0
package/dist/types/src/nanotdf/models/Policy/RemotePolicy.d.ts.map +1 -0
package/dist/types/src/nanotdf/models/ResourceLocator.d.ts +65 -0
package/dist/types/src/nanotdf/models/ResourceLocator.d.ts.map +1 -0
package/dist/types/src/nanotdf/models/Signature.d.ts +33 -0
package/dist/types/src/nanotdf/models/Signature.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/ciphers.d.ts +8 -0
package/dist/types/src/nanotdf-crypto/ciphers.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/decrypt.d.ts +14 -0
package/dist/types/src/nanotdf-crypto/decrypt.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/digest.d.ts +3 -0
package/dist/types/src/nanotdf-crypto/digest.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/ecdsaSignature.d.ts +35 -0
package/dist/types/src/nanotdf-crypto/ecdsaSignature.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/encrypt.d.ts +14 -0
package/dist/types/src/nanotdf-crypto/encrypt.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/enums.d.ts +42 -0
package/dist/types/src/nanotdf-crypto/enums.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/exportCryptoKey.d.ts +7 -0
package/dist/types/src/nanotdf-crypto/exportCryptoKey.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/generateKeyPair.d.ts +10 -0
package/dist/types/src/nanotdf-crypto/generateKeyPair.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/generateRandomNumber.d.ts +5 -0
package/dist/types/src/nanotdf-crypto/generateRandomNumber.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/importRawKey.d.ts +13 -0
package/dist/types/src/nanotdf-crypto/importRawKey.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/index.d.ts +12 -0
package/dist/types/src/nanotdf-crypto/index.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/keyAgreement.d.ts +28 -0
package/dist/types/src/nanotdf-crypto/keyAgreement.d.ts.map +1 -0
package/dist/types/src/nanotdf-crypto/pemPublicToCrypto.d.ts +28 -0
package/dist/types/src/nanotdf-crypto/pemPublicToCrypto.d.ts.map +1 -0
package/dist/types/src/policy/api.d.ts +4 -0
package/dist/types/src/policy/api.d.ts.map +1 -0
package/dist/types/src/policy/attributes.d.ts +95 -0
package/dist/types/src/policy/attributes.d.ts.map +1 -0
package/dist/types/src/policy/granter.d.ts +23 -0
package/dist/types/src/policy/granter.d.ts.map +1 -0
package/dist/types/src/tdf/AttributeObject.d.ts +13 -0
package/dist/types/src/tdf/AttributeObject.d.ts.map +1 -0
package/dist/types/src/tdf/AttributeObjectJwt.d.ts +4 -0
package/dist/types/src/tdf/AttributeObjectJwt.d.ts.map +1 -0
package/dist/types/src/tdf/Crypto.d.ts +37 -0
package/dist/types/src/tdf/Crypto.d.ts.map +1 -0
package/dist/types/src/tdf/EntityObject.d.ts +18 -0
package/dist/types/src/tdf/EntityObject.d.ts.map +1 -0
package/dist/types/src/tdf/NanoTDF/NanoTDF.d.ts +99 -0
package/dist/types/src/tdf/NanoTDF/NanoTDF.d.ts.map +1 -0
package/dist/types/src/tdf/Policy.d.ts +28 -0
package/dist/types/src/tdf/Policy.d.ts.map +1 -0
package/dist/types/src/tdf/PolicyObject.d.ts +11 -0
package/dist/types/src/tdf/PolicyObject.d.ts.map +1 -0
package/dist/types/src/tdf/TypedArray.d.ts +3 -0
package/dist/types/src/tdf/TypedArray.d.ts.map +1 -0
package/dist/types/src/tdf/index.d.ts +7 -0
package/dist/types/src/tdf/index.d.ts.map +1 -0
package/dist/types/src/types/index.d.ts +45 -0
package/dist/types/src/types/index.d.ts.map +1 -0
package/dist/types/src/utils.d.ts +45 -0
package/dist/types/src/utils.d.ts.map +1 -0
package/dist/types/src/version.d.ts +9 -0
package/dist/types/src/version.d.ts.map +1 -0
package/dist/types/tdf3/index.d.ts +16 -0
package/dist/types/tdf3/index.d.ts.map +1 -0
package/dist/types/tdf3/src/assertions.d.ts +63 -0
package/dist/types/tdf3/src/assertions.d.ts.map +1 -0
package/dist/types/tdf3/src/binary.d.ts +38 -0
package/dist/types/tdf3/src/binary.d.ts.map +1 -0
package/dist/types/tdf3/src/ciphers/aes-gcm-cipher.d.ts +18 -0
package/dist/types/tdf3/src/ciphers/aes-gcm-cipher.d.ts.map +1 -0
package/dist/types/tdf3/src/ciphers/algorithms.d.ts +4 -0
package/dist/types/tdf3/src/ciphers/algorithms.d.ts.map +1 -0
package/dist/types/tdf3/src/ciphers/index.d.ts +3 -0
package/dist/types/tdf3/src/ciphers/index.d.ts.map +1 -0
package/dist/types/tdf3/src/ciphers/symmetric-cipher-base.d.ts +14 -0
package/dist/types/tdf3/src/ciphers/symmetric-cipher-base.d.ts.map +1 -0
package/dist/types/tdf3/src/client/DecoratedReadableStream.d.ts +53 -0
package/dist/types/tdf3/src/client/DecoratedReadableStream.d.ts.map +1 -0
package/dist/types/tdf3/src/client/builders.d.ts +436 -0
package/dist/types/tdf3/src/client/builders.d.ts.map +1 -0
package/dist/types/tdf3/src/client/index.d.ts +139 -0
package/dist/types/tdf3/src/client/index.d.ts.map +1 -0
package/dist/types/tdf3/src/client/validation.d.ts +8 -0
package/dist/types/tdf3/src/client/validation.d.ts.map +1 -0
package/dist/types/tdf3/src/crypto/crypto-utils.d.ts +34 -0
package/dist/types/tdf3/src/crypto/crypto-utils.d.ts.map +1 -0
package/dist/types/tdf3/src/crypto/declarations.d.ts +60 -0
package/dist/types/tdf3/src/crypto/declarations.d.ts.map +1 -0
package/dist/types/tdf3/src/crypto/index.d.ts +103 -0
package/dist/types/tdf3/src/crypto/index.d.ts.map +1 -0
package/dist/types/tdf3/src/index.d.ts +5 -0
package/dist/types/tdf3/src/index.d.ts.map +1 -0
package/dist/types/tdf3/src/models/attribute-set.d.ts +65 -0
package/dist/types/tdf3/src/models/attribute-set.d.ts.map +1 -0
package/dist/types/tdf3/src/models/encryption-information.d.ts +49 -0
package/dist/types/tdf3/src/models/encryption-information.d.ts.map +1 -0
package/dist/types/tdf3/src/models/index.d.ts +9 -0
package/dist/types/tdf3/src/models/index.d.ts.map +1 -0
package/dist/types/tdf3/src/models/key-access.d.ts +42 -0
package/dist/types/tdf3/src/models/key-access.d.ts.map +1 -0
package/dist/types/tdf3/src/models/manifest.d.ts +9 -0
package/dist/types/tdf3/src/models/manifest.d.ts.map +1 -0
package/dist/types/tdf3/src/models/payload.d.ts +7 -0
package/dist/types/tdf3/src/models/payload.d.ts.map +1 -0
package/dist/types/tdf3/src/models/policy.d.ts +13 -0
package/dist/types/tdf3/src/models/policy.d.ts.map +1 -0
package/dist/types/tdf3/src/models/upsert-response.d.ts +16 -0
package/dist/types/tdf3/src/models/upsert-response.d.ts.map +1 -0
package/dist/types/tdf3/src/tdf.d.ts +152 -0
package/dist/types/tdf3/src/tdf.d.ts.map +1 -0
package/dist/types/tdf3/src/templates/default.html.d.ts +8 -0
package/dist/types/tdf3/src/templates/default.html.d.ts.map +1 -0
package/dist/types/tdf3/src/templates/escaper.d.ts +6 -0
package/dist/types/tdf3/src/templates/escaper.d.ts.map +1 -0
package/dist/types/tdf3/src/templates/index.d.ts +3 -0
package/dist/types/tdf3/src/templates/index.d.ts.map +1 -0
package/dist/types/tdf3/src/utils/buffer-crc32.d.ts +2 -0
package/dist/types/tdf3/src/utils/buffer-crc32.d.ts.map +1 -0
package/dist/types/tdf3/src/utils/chunkers.d.ts +29 -0
package/dist/types/tdf3/src/utils/chunkers.d.ts.map +1 -0
package/dist/types/tdf3/src/utils/index.d.ts +36 -0
package/dist/types/tdf3/src/utils/index.d.ts.map +1 -0
package/dist/types/tdf3/src/utils/keysplit.d.ts +19 -0
package/dist/types/tdf3/src/utils/keysplit.d.ts.map +1 -0
package/dist/types/tdf3/src/utils/zip-reader.d.ts +63 -0
package/dist/types/tdf3/src/utils/zip-reader.d.ts.map +1 -0
package/dist/types/tdf3/src/utils/zip-writer.d.ts +35 -0
package/dist/types/tdf3/src/utils/zip-writer.d.ts.map +1 -0
package/dist/types/tdf3/src/version.d.ts +3 -0
package/dist/types/tdf3/src/version.d.ts.map +1 -0
package/dist/web/package.json +3 -0
package/dist/web/src/access.js +147 -0
package/dist/web/src/auth/Eas.js +55 -0
package/dist/web/src/auth/auth.js +71 -0
package/dist/web/src/auth/oidc-clientcredentials-provider.js +22 -0
package/dist/web/src/auth/oidc-externaljwt-provider.js +29 -0
package/dist/web/src/auth/oidc-refreshtoken-provider.js +30 -0
package/dist/web/src/auth/oidc.js +215 -0
package/dist/web/src/auth/providers.js +119 -0
package/dist/web/src/encodings/base64.js +147 -0
package/dist/web/src/encodings/hex.js +63 -0
package/dist/web/src/encodings/index.js +3 -0
package/dist/web/src/errors.js +123 -0
package/dist/web/src/index.js +313 -0
package/dist/web/src/nanotdf/Client.js +268 -0
package/dist/web/src/nanotdf/NanoTDF.js +89 -0
package/dist/web/src/nanotdf/browser-entry.js +14 -0
package/dist/web/src/nanotdf/constants.js +2 -0
package/dist/web/src/nanotdf/decrypt.js +14 -0
package/dist/web/src/nanotdf/encrypt-dataset.js +32 -0
package/dist/web/src/nanotdf/encrypt.js +126 -0
package/dist/web/src/nanotdf/enum/CipherEnum.js +11 -0
package/dist/web/src/nanotdf/enum/CurveNameEnum.js +13 -0
package/dist/web/src/nanotdf/enum/EncodingEnum.js +6 -0
package/dist/web/src/nanotdf/enum/PolicyTypeEnum.js +9 -0
package/dist/web/src/nanotdf/enum/ProtocolEnum.js +8 -0
package/dist/web/src/nanotdf/enum/ResourceLocatorIdentifierEnum.js +9 -0
package/dist/web/src/nanotdf/helpers/calculateByCurve.js +24 -0
package/dist/web/src/nanotdf/helpers/getHkdfSalt.js +8 -0
package/dist/web/src/nanotdf/index.js +11 -0
package/dist/web/src/nanotdf/interfaces/PolicyInterface.js +2 -0
package/dist/web/src/nanotdf/models/Ciphers.js +54 -0
package/dist/web/src/nanotdf/models/DefaultParams.js +22 -0
package/dist/web/src/nanotdf/models/EcCurves.js +32 -0
package/dist/web/src/nanotdf/models/Header.js +250 -0
package/dist/web/src/nanotdf/models/Payload.js +156 -0
package/dist/web/src/nanotdf/models/Policy/AbstractPolicy.js +71 -0
package/dist/web/src/nanotdf/models/Policy/EmbeddedPolicy.js +77 -0
package/dist/web/src/nanotdf/models/Policy/PolicyFactory.js +33 -0
package/dist/web/src/nanotdf/models/Policy/RemotePolicy.js +57 -0
package/dist/web/src/nanotdf/models/ResourceLocator.js +206 -0
package/dist/web/src/nanotdf/models/Signature.js +74 -0
package/dist/web/src/nanotdf-crypto/ciphers.js +14 -0
package/dist/web/src/nanotdf-crypto/decrypt.js +21 -0
package/dist/web/src/nanotdf-crypto/digest.js +4 -0
package/dist/web/src/nanotdf-crypto/ecdsaSignature.js +77 -0
package/dist/web/src/nanotdf-crypto/encrypt.js +21 -0
package/dist/web/src/nanotdf-crypto/enums.js +49 -0
package/dist/web/src/nanotdf-crypto/exportCryptoKey.js +17 -0
package/dist/web/src/nanotdf-crypto/generateKeyPair.js +10 -0
package/dist/web/src/nanotdf-crypto/generateRandomNumber.js +9 -0
package/dist/web/src/nanotdf-crypto/importRawKey.js +15 -0
package/dist/web/src/nanotdf-crypto/index.js +12 -0
package/dist/web/src/nanotdf-crypto/keyAgreement.js +87 -0
package/dist/web/src/nanotdf-crypto/pemPublicToCrypto.js +197 -0
package/dist/web/src/policy/api.js +54 -0
package/dist/web/src/policy/attributes.js +2 -0
package/dist/web/src/policy/granter.js +141 -0
package/dist/web/src/tdf/AttributeObject.js +11 -0
package/dist/web/src/tdf/AttributeObjectJwt.js +2 -0
package/dist/web/src/tdf/Crypto.js +44 -0
package/dist/web/src/tdf/EntityObject.js +2 -0
package/dist/web/src/tdf/NanoTDF/NanoTDF.js +35 -0
package/dist/web/src/tdf/Policy.js +48 -0
package/dist/web/src/tdf/PolicyObject.js +2 -0
package/dist/web/src/tdf/TypedArray.js +2 -0
package/dist/web/src/tdf/index.js +4 -0
package/dist/web/src/types/index.js +2 -0
package/dist/web/src/utils.js +133 -0
package/dist/web/src/version.js +9 -0
package/dist/web/tdf3/index.js +13 -0
package/dist/web/tdf3/src/assertions.js +111 -0
package/dist/web/tdf3/src/binary.js +149 -0
package/dist/web/tdf3/src/ciphers/aes-gcm-cipher.js +52 -0
package/dist/web/tdf3/src/ciphers/algorithms.js +5 -0
package/dist/web/tdf3/src/ciphers/index.js +3 -0
package/dist/web/tdf3/src/ciphers/symmetric-cipher-base.js +18 -0
package/dist/web/tdf3/src/client/DecoratedReadableStream.js +107 -0
package/dist/web/tdf3/src/client/builders.js +557 -0
package/dist/web/tdf3/src/client/index.js +423 -0
package/dist/web/tdf3/src/client/validation.js +58 -0
package/dist/web/tdf3/src/crypto/crypto-utils.js +107 -0
package/dist/web/tdf3/src/crypto/declarations.js +5 -0
package/dist/web/tdf3/src/crypto/index.js +296 -0
package/dist/web/tdf3/src/index.js +5 -0
package/dist/web/tdf3/src/models/attribute-set.js +118 -0
package/dist/web/tdf3/src/models/encryption-information.js +86 -0
package/dist/web/tdf3/src/models/index.js +9 -0
package/dist/web/tdf3/src/models/key-access.js +74 -0
package/dist/web/tdf3/src/models/manifest.js +2 -0
package/dist/web/tdf3/src/models/payload.js +2 -0
package/dist/web/tdf3/src/models/policy.js +20 -0
package/dist/web/tdf3/src/models/upsert-response.js +2 -0
package/dist/web/tdf3/src/tdf.js +866 -0
package/dist/web/tdf3/src/templates/default.html.js +96 -0
package/dist/web/tdf3/src/templates/escaper.js +10 -0
package/dist/web/tdf3/src/templates/index.js +3 -0
package/dist/web/tdf3/src/utils/buffer-crc32.js +44 -0
package/dist/web/tdf3/src/utils/chunkers.js +96 -0
package/dist/web/tdf3/src/utils/index.js +248 -0
package/dist/web/tdf3/src/utils/keysplit.js +55 -0
package/dist/web/tdf3/src/utils/zip-reader.js +247 -0
package/dist/web/tdf3/src/utils/zip-writer.js +302 -0
package/dist/web/tdf3/src/version.js +3 -0
package/package.json +126 -0
package/src/access.ts +198 -0
package/src/auth/Eas.ts +79 -0
package/src/auth/auth.ts +141 -0
package/src/auth/oidc-clientcredentials-provider.ts +32 -0
package/src/auth/oidc-externaljwt-provider.ts +41 -0
package/src/auth/oidc-refreshtoken-provider.ts +41 -0
package/src/auth/oidc.ts +307 -0
package/src/auth/providers.ts +139 -0
package/src/encodings/base64.ts +160 -0
package/src/encodings/hex.ts +69 -0
package/src/encodings/index.ts +2 -0
package/src/errors.ts +113 -0
package/src/index.ts +441 -0
package/src/nanotdf/Client.ts +349 -0
package/src/nanotdf/NanoTDF.ts +121 -0
package/src/nanotdf/browser-entry.ts +20 -0
package/src/nanotdf/constants.ts +1 -0
package/src/nanotdf/decrypt.ts +19 -0
package/src/nanotdf/encrypt-dataset.ts +52 -0
package/src/nanotdf/encrypt.ts +197 -0
package/src/nanotdf/enum/CipherEnum.ts +10 -0
package/src/nanotdf/enum/CurveNameEnum.ts +12 -0
package/src/nanotdf/enum/EncodingEnum.ts +5 -0
package/src/nanotdf/enum/PolicyTypeEnum.ts +8 -0
package/src/nanotdf/enum/ProtocolEnum.ts +7 -0
package/src/nanotdf/enum/ResourceLocatorIdentifierEnum.ts +8 -0
package/src/nanotdf/helpers/calculateByCurve.ts +26 -0
package/src/nanotdf/helpers/getHkdfSalt.ts +15 -0
package/src/nanotdf/index.ts +10 -0
package/src/nanotdf/interfaces/PolicyInterface.ts +27 -0
package/src/nanotdf/models/Ciphers.ts +67 -0
package/src/nanotdf/models/DefaultParams.ts +24 -0
package/src/nanotdf/models/EcCurves.ts +40 -0
package/src/nanotdf/models/Header.ts +322 -0
package/src/nanotdf/models/Payload.ts +196 -0
package/src/nanotdf/models/Policy/AbstractPolicy.ts +90 -0
package/src/nanotdf/models/Policy/EmbeddedPolicy.ts +101 -0
package/src/nanotdf/models/Policy/PolicyFactory.ts +48 -0
package/src/nanotdf/models/Policy/RemotePolicy.ts +74 -0
package/src/nanotdf/models/ResourceLocator.ts +212 -0
package/src/nanotdf/models/Signature.ts +85 -0
package/src/nanotdf-crypto/ciphers.ts +13 -0
package/src/nanotdf-crypto/decrypt.ts +30 -0
package/src/nanotdf-crypto/digest.ts +8 -0
package/src/nanotdf-crypto/ecdsaSignature.ts +109 -0
package/src/nanotdf-crypto/encrypt.ts +30 -0
package/src/nanotdf-crypto/enums.ts +47 -0
package/src/nanotdf-crypto/exportCryptoKey.ts +17 -0
package/src/nanotdf-crypto/generateKeyPair.ts +19 -0
package/src/nanotdf-crypto/generateRandomNumber.ts +8 -0
package/src/nanotdf-crypto/importRawKey.ts +19 -0
package/src/nanotdf-crypto/index.ts +11 -0
package/src/nanotdf-crypto/keyAgreement.ts +139 -0
package/src/nanotdf-crypto/pemPublicToCrypto.ts +232 -0
package/src/package-lock.json +6 -0
package/src/package.json +3 -0
package/src/platform/authorization/authorization_connect.d.ts +44 -0
package/src/platform/authorization/authorization_connect.js +44 -0
package/src/platform/authorization/authorization_pb.d.ts +707 -0
package/src/platform/authorization/authorization_pb.js +372 -0
package/src/platform/common/common_pb.d.ts +129 -0
package/src/platform/common/common_pb.js +58 -0
package/src/platform/entityresolution/entity_resolution_connect.d.ts +35 -0
package/src/platform/entityresolution/entity_resolution_connect.js +35 -0
package/src/platform/entityresolution/entity_resolution_pb.d.ts +242 -0
package/src/platform/entityresolution/entity_resolution_pb.js +139 -0
package/src/platform/kas/kas_connect.d.ts +59 -0
package/src/platform/kas/kas_connect.js +59 -0
package/src/platform/kas/kas_pb.d.ts +200 -0
package/src/platform/kas/kas_pb.js +84 -0
package/src/platform/policy/attributes/attributes_connect.d.ts +168 -0
package/src/platform/policy/attributes/attributes_connect.js +168 -0
package/src/platform/policy/attributes/attributes_pb.d.ts +929 -0
package/src/platform/policy/attributes/attributes_pb.js +363 -0
package/src/platform/policy/kasregistry/key_access_server_registry_connect.d.ts +62 -0
package/src/platform/policy/kasregistry/key_access_server_registry_connect.js +62 -0
package/src/platform/policy/kasregistry/key_access_server_registry_pb.d.ts +283 -0
package/src/platform/policy/kasregistry/key_access_server_registry_pb.js +113 -0
package/src/platform/policy/namespaces/namespaces_connect.d.ts +62 -0
package/src/platform/policy/namespaces/namespaces_connect.js +62 -0
package/src/platform/policy/namespaces/namespaces_pb.d.ts +270 -0
package/src/platform/policy/namespaces/namespaces_pb.js +110 -0
package/src/platform/policy/objects_pb.d.ts +725 -0
package/src/platform/policy/objects_pb.js +288 -0
package/src/platform/policy/resourcemapping/resource_mapping_connect.d.ts +259 -0
package/src/platform/policy/resourcemapping/resource_mapping_connect.js +259 -0
package/src/platform/policy/resourcemapping/resource_mapping_pb.d.ts +314 -0
package/src/platform/policy/resourcemapping/resource_mapping_pb.js +142 -0
package/src/platform/policy/selectors_pb.d.ts +269 -0
package/src/platform/policy/selectors_pb.js +110 -0
package/src/platform/policy/subjectmapping/subject_mapping_connect.d.ts +118 -0
package/src/platform/policy/subjectmapping/subject_mapping_connect.js +118 -0
package/src/platform/policy/subjectmapping/subject_mapping_pb.d.ts +672 -0
package/src/platform/policy/subjectmapping/subject_mapping_pb.js +260 -0
package/src/platform/wellknownconfiguration/wellknown_configuration_connect.d.ts +26 -0
package/src/platform/wellknownconfiguration/wellknown_configuration_connect.js +26 -0
package/src/platform/wellknownconfiguration/wellknown_configuration_pb.d.ts +75 -0
package/src/platform/wellknownconfiguration/wellknown_configuration_pb.js +35 -0
package/src/policy/api.ts +61 -0
package/src/policy/attributes.ts +117 -0
package/src/policy/granter.ts +181 -0
package/src/tdf/AttributeObject.ts +27 -0
package/src/tdf/AttributeObjectJwt.ts +3 -0
package/src/tdf/Crypto.ts +42 -0
package/src/tdf/EntityObject.ts +18 -0
package/src/tdf/NanoTDF/NanoTDF.ts +120 -0
package/src/tdf/Policy.ts +51 -0
package/src/tdf/PolicyObject.ts +12 -0
package/src/tdf/TypedArray.ts +12 -0
package/src/tdf/index.ts +6 -0
package/src/types/index.ts +55 -0
package/src/utils.ts +149 -0
package/src/version.ts +9 -0
package/tdf3/index.ts +91 -0
package/tdf3/package-lock.json +6 -0
package/tdf3/package.json +3 -0
package/tdf3/src/assertions.ts +191 -0
package/tdf3/src/binary.ts +195 -0
package/tdf3/src/ciphers/aes-gcm-cipher.ts +76 -0
package/tdf3/src/ciphers/algorithms.ts +9 -0
package/tdf3/src/ciphers/index.ts +2 -0
package/tdf3/src/ciphers/symmetric-cipher-base.ts +38 -0
package/tdf3/src/client/DecoratedReadableStream.ts +148 -0
package/tdf3/src/client/builders.ts +701 -0
package/tdf3/src/client/index.ts +637 -0
package/tdf3/src/client/validation.ts +79 -0
package/tdf3/src/crypto/crypto-utils.ts +119 -0
package/tdf3/src/crypto/declarations.ts +89 -0
package/tdf3/src/crypto/index.ts +394 -0
package/tdf3/src/index.ts +4 -0
package/tdf3/src/models/attribute-set.ts +142 -0
package/tdf3/src/models/encryption-information.ts +172 -0
package/tdf3/src/models/index.ts +8 -0
package/tdf3/src/models/key-access.ts +128 -0
package/tdf3/src/models/manifest.ts +9 -0
package/tdf3/src/models/payload.ts +6 -0
package/tdf3/src/models/policy.ts +35 -0
package/tdf3/src/models/upsert-response.ts +17 -0
package/tdf3/src/tdf.ts +1351 -0
package/tdf3/src/templates/default.html.ts +105 -0
package/tdf3/src/templates/escaper.ts +10 -0
package/tdf3/src/templates/index.ts +2 -0
package/tdf3/src/utils/buffer-crc32.ts +46 -0
package/tdf3/src/utils/chunkers.ts +118 -0
package/tdf3/src/utils/index.ts +309 -0
package/tdf3/src/utils/keysplit.ts +63 -0
package/tdf3/src/utils/zip-reader.ts +341 -0
package/tdf3/src/utils/zip-writer.ts +375 -0
package/tdf3/src/version.ts +2 -0
package/tdf3/types.d.ts +14 -0

package/src/platform/policy/subjectmapping/subject_mapping_pb.js ADDED Viewed

@@ -0,0 +1,260 @@
+// @generated by protoc-gen-es v1.9.0 with parameter "target=js+dts,import_extension=none"
+// @generated from file policy/subjectmapping/subject_mapping.proto (package policy.subjectmapping, syntax proto3)
+/* eslint-disable */
+// @ts-nocheck
+import { proto3 } from "@bufbuild/protobuf";
+import { Action, SubjectConditionSet, SubjectMapping, SubjectProperty, SubjectSet } from "../objects_pb";
+import { MetadataMutable, MetadataUpdateEnum } from "../../common/common_pb";
+/**
+ * MatchSubjectMappingsRequest liberally returns a list of SubjectMappings based on the provided SubjectProperties. The SubjectMappings are returned
+ * if there is any single condition found among the structures that matches for one of the provided properties:
+ * 1. The external selector value, external value, and an IN operator
+ * 2. The external selector value, _no_ external value, and a NOT_IN operator
+ *
+ * Without this filtering, if a selector value was something like '.emailAddress' or '.username', every Subject is probably going to relate to that mapping
+ * in some way or another, potentially matching every single attribute in the DB if a policy admin has relied heavily on that field. There is no
+ * logic applied beyond a single condition within the query to avoid business logic interpreting the supplied conditions beyond the bare minimum
+ * initial filter.
+ *
+ * NOTE: if you have any issues, debug logs are available within the service to help identify why a mapping was or was not returned.
+ *
+ * @generated from message policy.subjectmapping.MatchSubjectMappingsRequest
+ */
+export const MatchSubjectMappingsRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.MatchSubjectMappingsRequest",
+  () => [
+    { no: 1, name: "subject_properties", kind: "message", T: SubjectProperty, repeated: true },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.MatchSubjectMappingsResponse
+ */
+export const MatchSubjectMappingsResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.MatchSubjectMappingsResponse",
+  () => [
+    { no: 1, name: "subject_mappings", kind: "message", T: SubjectMapping, repeated: true },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.GetSubjectMappingRequest
+ */
+export const GetSubjectMappingRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.GetSubjectMappingRequest",
+  () => [
+    { no: 1, name: "id", kind: "scalar", T: 9 /* ScalarType.STRING */ },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.GetSubjectMappingResponse
+ */
+export const GetSubjectMappingResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.GetSubjectMappingResponse",
+  () => [
+    { no: 1, name: "subject_mapping", kind: "message", T: SubjectMapping },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.ListSubjectMappingsRequest
+ */
+export const ListSubjectMappingsRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.ListSubjectMappingsRequest",
+  [],
+);
+/**
+ * @generated from message policy.subjectmapping.ListSubjectMappingsResponse
+ */
+export const ListSubjectMappingsResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.ListSubjectMappingsResponse",
+  () => [
+    { no: 1, name: "subject_mappings", kind: "message", T: SubjectMapping, repeated: true },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.CreateSubjectMappingRequest
+ */
+export const CreateSubjectMappingRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.CreateSubjectMappingRequest",
+  () => [
+    { no: 1, name: "attribute_value_id", kind: "scalar", T: 9 /* ScalarType.STRING */ },
+    { no: 2, name: "actions", kind: "message", T: Action, repeated: true },
+    { no: 3, name: "existing_subject_condition_set_id", kind: "scalar", T: 9 /* ScalarType.STRING */ },
+    { no: 4, name: "new_subject_condition_set", kind: "message", T: SubjectConditionSetCreate },
+    { no: 100, name: "metadata", kind: "message", T: MetadataMutable },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.CreateSubjectMappingResponse
+ */
+export const CreateSubjectMappingResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.CreateSubjectMappingResponse",
+  () => [
+    { no: 1, name: "subject_mapping", kind: "message", T: SubjectMapping },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.UpdateSubjectMappingRequest
+ */
+export const UpdateSubjectMappingRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.UpdateSubjectMappingRequest",
+  () => [
+    { no: 1, name: "id", kind: "scalar", T: 9 /* ScalarType.STRING */ },
+    { no: 2, name: "subject_condition_set_id", kind: "scalar", T: 9 /* ScalarType.STRING */ },
+    { no: 3, name: "actions", kind: "message", T: Action, repeated: true },
+    { no: 100, name: "metadata", kind: "message", T: MetadataMutable },
+    { no: 101, name: "metadata_update_behavior", kind: "enum", T: proto3.getEnumType(MetadataUpdateEnum) },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.UpdateSubjectMappingResponse
+ */
+export const UpdateSubjectMappingResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.UpdateSubjectMappingResponse",
+  () => [
+    { no: 1, name: "subject_mapping", kind: "message", T: SubjectMapping },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.DeleteSubjectMappingRequest
+ */
+export const DeleteSubjectMappingRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.DeleteSubjectMappingRequest",
+  () => [
+    { no: 1, name: "id", kind: "scalar", T: 9 /* ScalarType.STRING */ },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.DeleteSubjectMappingResponse
+ */
+export const DeleteSubjectMappingResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.DeleteSubjectMappingResponse",
+  () => [
+    { no: 1, name: "subject_mapping", kind: "message", T: SubjectMapping },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.GetSubjectConditionSetRequest
+ */
+export const GetSubjectConditionSetRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.GetSubjectConditionSetRequest",
+  () => [
+    { no: 1, name: "id", kind: "scalar", T: 9 /* ScalarType.STRING */ },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.GetSubjectConditionSetResponse
+ */
+export const GetSubjectConditionSetResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.GetSubjectConditionSetResponse",
+  () => [
+    { no: 1, name: "subject_condition_set", kind: "message", T: SubjectConditionSet },
+    { no: 2, name: "associated_subject_mappings", kind: "message", T: SubjectMapping, repeated: true },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.ListSubjectConditionSetsRequest
+ */
+export const ListSubjectConditionSetsRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.ListSubjectConditionSetsRequest",
+  [],
+);
+/**
+ * @generated from message policy.subjectmapping.ListSubjectConditionSetsResponse
+ */
+export const ListSubjectConditionSetsResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.ListSubjectConditionSetsResponse",
+  () => [
+    { no: 1, name: "subject_condition_sets", kind: "message", T: SubjectConditionSet, repeated: true },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.SubjectConditionSetCreate
+ */
+export const SubjectConditionSetCreate = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.SubjectConditionSetCreate",
+  () => [
+    { no: 1, name: "subject_sets", kind: "message", T: SubjectSet, repeated: true },
+    { no: 100, name: "metadata", kind: "message", T: MetadataMutable },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.CreateSubjectConditionSetRequest
+ */
+export const CreateSubjectConditionSetRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.CreateSubjectConditionSetRequest",
+  () => [
+    { no: 1, name: "subject_condition_set", kind: "message", T: SubjectConditionSetCreate },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.CreateSubjectConditionSetResponse
+ */
+export const CreateSubjectConditionSetResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.CreateSubjectConditionSetResponse",
+  () => [
+    { no: 1, name: "subject_condition_set", kind: "message", T: SubjectConditionSet },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.UpdateSubjectConditionSetRequest
+ */
+export const UpdateSubjectConditionSetRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.UpdateSubjectConditionSetRequest",
+  () => [
+    { no: 1, name: "id", kind: "scalar", T: 9 /* ScalarType.STRING */ },
+    { no: 2, name: "subject_sets", kind: "message", T: SubjectSet, repeated: true },
+    { no: 100, name: "metadata", kind: "message", T: MetadataMutable },
+    { no: 101, name: "metadata_update_behavior", kind: "enum", T: proto3.getEnumType(MetadataUpdateEnum) },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.UpdateSubjectConditionSetResponse
+ */
+export const UpdateSubjectConditionSetResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.UpdateSubjectConditionSetResponse",
+  () => [
+    { no: 1, name: "subject_condition_set", kind: "message", T: SubjectConditionSet },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.DeleteSubjectConditionSetRequest
+ */
+export const DeleteSubjectConditionSetRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.DeleteSubjectConditionSetRequest",
+  () => [
+    { no: 1, name: "id", kind: "scalar", T: 9 /* ScalarType.STRING */ },
+  ],
+);
+/**
+ * @generated from message policy.subjectmapping.DeleteSubjectConditionSetResponse
+ */
+export const DeleteSubjectConditionSetResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "policy.subjectmapping.DeleteSubjectConditionSetResponse",
+  () => [
+    { no: 1, name: "subject_condition_set", kind: "message", T: SubjectConditionSet },
+  ],
+);

package/src/platform/wellknownconfiguration/wellknown_configuration_connect.d.ts ADDED Viewed

@@ -0,0 +1,26 @@
+// @generated by protoc-gen-connect-es v1.4.0 with parameter "target=js+dts,import_extension=none"
+// @generated from file wellknownconfiguration/wellknown_configuration.proto (package wellknownconfiguration, syntax proto3)
+/* eslint-disable */
+// @ts-nocheck
+import { GetWellKnownConfigurationRequest, GetWellKnownConfigurationResponse } from "./wellknown_configuration_pb";
+import { MethodKind } from "@bufbuild/protobuf";
+/**
+ * @generated from service wellknownconfiguration.WellKnownService
+ */
+export declare const WellKnownService: {
+  readonly typeName: "wellknownconfiguration.WellKnownService",
+  readonly methods: {
+    /**
+     * @generated from rpc wellknownconfiguration.WellKnownService.GetWellKnownConfiguration
+     */
+    readonly getWellKnownConfiguration: {
+      readonly name: "GetWellKnownConfiguration",
+      readonly I: typeof GetWellKnownConfigurationRequest,
+      readonly O: typeof GetWellKnownConfigurationResponse,
+      readonly kind: MethodKind.Unary,
+    },
+  }
+};

package/src/platform/wellknownconfiguration/wellknown_configuration_connect.js ADDED Viewed

@@ -0,0 +1,26 @@
+// @generated by protoc-gen-connect-es v1.4.0 with parameter "target=js+dts,import_extension=none"
+// @generated from file wellknownconfiguration/wellknown_configuration.proto (package wellknownconfiguration, syntax proto3)
+/* eslint-disable */
+// @ts-nocheck
+import { GetWellKnownConfigurationRequest, GetWellKnownConfigurationResponse } from "./wellknown_configuration_pb";
+import { MethodKind } from "@bufbuild/protobuf";
+/**
+ * @generated from service wellknownconfiguration.WellKnownService
+ */
+export const WellKnownService = {
+  typeName: "wellknownconfiguration.WellKnownService",
+  methods: {
+    /**
+     * @generated from rpc wellknownconfiguration.WellKnownService.GetWellKnownConfiguration
+     */
+    getWellKnownConfiguration: {
+      name: "GetWellKnownConfiguration",
+      I: GetWellKnownConfigurationRequest,
+      O: GetWellKnownConfigurationResponse,
+      kind: MethodKind.Unary,
+    },
+  }
+};

package/src/platform/wellknownconfiguration/wellknown_configuration_pb.d.ts ADDED Viewed

@@ -0,0 +1,75 @@
+// @generated by protoc-gen-es v1.9.0 with parameter "target=js+dts,import_extension=none"
+// @generated from file wellknownconfiguration/wellknown_configuration.proto (package wellknownconfiguration, syntax proto3)
+/* eslint-disable */
+// @ts-nocheck
+import type { BinaryReadOptions, FieldList, JsonReadOptions, JsonValue, PartialMessage, PlainMessage, Struct } from "@bufbuild/protobuf";
+import { Message, proto3 } from "@bufbuild/protobuf";
+/**
+ * @generated from message wellknownconfiguration.WellKnownConfig
+ */
+export declare class WellKnownConfig extends Message<WellKnownConfig> {
+  /**
+   * @generated from field: map<string, google.protobuf.Struct> configuration = 1;
+   */
+  configuration: { [key: string]: Struct };
+  constructor(data?: PartialMessage<WellKnownConfig>);
+  static readonly runtime: typeof proto3;
+  static readonly typeName = "wellknownconfiguration.WellKnownConfig";
+  static readonly fields: FieldList;
+  static fromBinary(bytes: Uint8Array, options?: Partial<BinaryReadOptions>): WellKnownConfig;
+  static fromJson(jsonValue: JsonValue, options?: Partial<JsonReadOptions>): WellKnownConfig;
+  static fromJsonString(jsonString: string, options?: Partial<JsonReadOptions>): WellKnownConfig;
+  static equals(a: WellKnownConfig | PlainMessage<WellKnownConfig> | undefined, b: WellKnownConfig | PlainMessage<WellKnownConfig> | undefined): boolean;
+}
+/**
+ * @generated from message wellknownconfiguration.GetWellKnownConfigurationRequest
+ */
+export declare class GetWellKnownConfigurationRequest extends Message<GetWellKnownConfigurationRequest> {
+  constructor(data?: PartialMessage<GetWellKnownConfigurationRequest>);
+  static readonly runtime: typeof proto3;
+  static readonly typeName = "wellknownconfiguration.GetWellKnownConfigurationRequest";
+  static readonly fields: FieldList;
+  static fromBinary(bytes: Uint8Array, options?: Partial<BinaryReadOptions>): GetWellKnownConfigurationRequest;
+  static fromJson(jsonValue: JsonValue, options?: Partial<JsonReadOptions>): GetWellKnownConfigurationRequest;
+  static fromJsonString(jsonString: string, options?: Partial<JsonReadOptions>): GetWellKnownConfigurationRequest;
+  static equals(a: GetWellKnownConfigurationRequest | PlainMessage<GetWellKnownConfigurationRequest> | undefined, b: GetWellKnownConfigurationRequest | PlainMessage<GetWellKnownConfigurationRequest> | undefined): boolean;
+}
+/**
+ * @generated from message wellknownconfiguration.GetWellKnownConfigurationResponse
+ */
+export declare class GetWellKnownConfigurationResponse extends Message<GetWellKnownConfigurationResponse> {
+  /**
+   * @generated from field: google.protobuf.Struct configuration = 1;
+   */
+  configuration?: Struct;
+  constructor(data?: PartialMessage<GetWellKnownConfigurationResponse>);
+  static readonly runtime: typeof proto3;
+  static readonly typeName = "wellknownconfiguration.GetWellKnownConfigurationResponse";
+  static readonly fields: FieldList;
+  static fromBinary(bytes: Uint8Array, options?: Partial<BinaryReadOptions>): GetWellKnownConfigurationResponse;
+  static fromJson(jsonValue: JsonValue, options?: Partial<JsonReadOptions>): GetWellKnownConfigurationResponse;
+  static fromJsonString(jsonString: string, options?: Partial<JsonReadOptions>): GetWellKnownConfigurationResponse;
+  static equals(a: GetWellKnownConfigurationResponse | PlainMessage<GetWellKnownConfigurationResponse> | undefined, b: GetWellKnownConfigurationResponse | PlainMessage<GetWellKnownConfigurationResponse> | undefined): boolean;
+}

package/src/platform/wellknownconfiguration/wellknown_configuration_pb.js ADDED Viewed

@@ -0,0 +1,35 @@
+// @generated by protoc-gen-es v1.9.0 with parameter "target=js+dts,import_extension=none"
+// @generated from file wellknownconfiguration/wellknown_configuration.proto (package wellknownconfiguration, syntax proto3)
+/* eslint-disable */
+// @ts-nocheck
+import { proto3, Struct } from "@bufbuild/protobuf";
+/**
+ * @generated from message wellknownconfiguration.WellKnownConfig
+ */
+export const WellKnownConfig = /*@__PURE__*/ proto3.makeMessageType(
+  "wellknownconfiguration.WellKnownConfig",
+  () => [
+    { no: 1, name: "configuration", kind: "map", K: 9 /* ScalarType.STRING */, V: {kind: "message", T: Struct} },
+  ],
+);
+/**
+ * @generated from message wellknownconfiguration.GetWellKnownConfigurationRequest
+ */
+export const GetWellKnownConfigurationRequest = /*@__PURE__*/ proto3.makeMessageType(
+  "wellknownconfiguration.GetWellKnownConfigurationRequest",
+  [],
+);
+/**
+ * @generated from message wellknownconfiguration.GetWellKnownConfigurationResponse
+ */
+export const GetWellKnownConfigurationResponse = /*@__PURE__*/ proto3.makeMessageType(
+  "wellknownconfiguration.GetWellKnownConfigurationResponse",
+  () => [
+    { no: 1, name: "configuration", kind: "message", T: Struct },
+  ],
+);

package/src/policy/api.ts ADDED Viewed

@@ -0,0 +1,61 @@
+import { NetworkError, ServiceError } from '../errors.js';
+import { AuthProvider } from '../auth/auth.js';
+import { rstrip } from '../utils.js';
+import { GetAttributeValuesByFqnsResponse, Value } from './attributes.js';
+export async function attributeFQNsAsValues(
+  kasUrl: string,
+  authProvider: AuthProvider,
+  ...fqns: string[]
+): Promise<Value[]> {
+  const avs = new URLSearchParams();
+  for (const fqn of fqns) {
+    avs.append('fqns', fqn);
+  }
+  avs.append('withValue.withKeyAccessGrants', 'true');
+  avs.append('withValue.withAttribute.withKeyAccessGrants', 'true');
+  const uNoSlash = rstrip(kasUrl, '/');
+  const uNoKas = uNoSlash.endsWith('/kas') ? uNoSlash.slice(0, -4) : uNoSlash;
+  const url = `${uNoKas}/attributes/*/fqn?${avs}`;
+  const req = await authProvider.withCreds({
+    url,
+    headers: {},
+    method: 'GET',
+  });
+  let response: Response;
+  try {
+    response = await fetch(req.url, {
+      mode: 'cors',
+      credentials: 'same-origin',
+      headers: req.headers,
+      redirect: 'follow',
+      referrerPolicy: 'no-referrer',
+    });
+  } catch (e) {
+    throw new NetworkError(`network error [${req.method} ${req.url}]`, e);
+  }
+  if (!response.ok) {
+    throw new ServiceError(`${req.method} ${req.url} => ${response.status} ${response.statusText}`);
+  }
+  let resp: GetAttributeValuesByFqnsResponse;
+  try {
+    resp = (await response.json()) as GetAttributeValuesByFqnsResponse;
+  } catch (e) {
+    throw new ServiceError(`response parse error [${req.method} ${req.url}]`, e);
+  }
+  const values: Value[] = [];
+  for (const [fqn, av] of Object.entries(resp.fqnAttributeValues)) {
+    if (!av.value) {
+      console.log(`Missing value definition for [${fqn}]; is this a valid attribute?`);
+      continue;
+    }
+    if (av.attribute && !av.value.attribute) {
+      av.value.attribute = av.attribute;
+    }
+    values.push(av.value);
+  }
+  return values;
+}

package/src/policy/attributes.ts ADDED Viewed

@@ -0,0 +1,117 @@
+export type Metadata = {
+  /**
+   * created_at set by server (entity who created will recorded in an audit event)
+   * Format: date-time
+   */
+  createdAt?: string;
+  /**
+   * updated_at set by server (entity who updated will recorded in an audit event)
+   * Format: date-time
+   */
+  updatedAt?: string;
+  /** optional short description */
+  labels?: Record<string, string>;
+};
+export type KasPublicKeyAlgorithm =
+  | 'KAS_PUBLIC_KEY_ALG_ENUM_UNSPECIFIED'
+  | 'KAS_PUBLIC_KEY_ALG_ENUM_RSA_2048'
+  | 'KAS_PUBLIC_KEY_ALG_ENUM_EC_SECP256R1';
+export type KasPublicKey = {
+  /** x509 ASN.1 content in PEM envelope, usually */
+  pem: string;
+  /** A unique string identifier for this key */
+  kid: string;
+  /**
+   * @description A known algorithm type with any additional parameters encoded.
+   * To start, these may be `rsa:2048` for encrypting ZTDF files and
+   * `ec:secp256r1` for nanoTDF, but more formats may be added as needed.
+   */
+  alg: KasPublicKeyAlgorithm;
+};
+export type KasPublicKeySet = {
+  keys: KasPublicKey[];
+};
+export type PublicKey = {
+  /** kas public key url - optional since can also be retrieved via public key */
+  remote?: string;
+  /** public key; PEM of RSA public key; prefer `cached` */
+  local?: string;
+  /** public key with additional information. Current preferred version */
+  cached?: KasPublicKeySet;
+};
+export type KeyAccessServer = {
+  id?: string;
+  /** Address of a KAS instance */
+  uri: string;
+  publicKey?: PublicKey;
+  metadata?: Metadata;
+};
+export type Namespace = {
+  /** uuid */
+  id?: string;
+  /** used to partition Attribute Definitions, support by namespace AuthN and enable federation */
+  name?: string;
+  fqn: string;
+  /** active by default until explicitly deactivated */
+  active?: boolean;
+  metadata?: Metadata;
+  grants?: KeyAccessServer[];
+};
+export type AttributeRuleType =
+  | 'ATTRIBUTE_RULE_TYPE_ENUM_UNSPECIFIED'
+  | 'ATTRIBUTE_RULE_TYPE_ENUM_ALL_OF'
+  | 'ATTRIBUTE_RULE_TYPE_ENUM_ANY_OF'
+  | 'ATTRIBUTE_RULE_TYPE_ENUM_HIERARCHY';
+export type Attribute = {
+  /** UUID */
+  id?: string;
+  namespace?: Namespace;
+  /** attribute name */
+  name?: string;
+  /** attribute rule enum */
+  rule?: AttributeRuleType;
+  values?: Value[];
+  grants?: KeyAccessServer[];
+  fqn: string;
+  /** active by default until explicitly deactivated */
+  active?: boolean;
+  /** Common metadata */
+  metadata?: Metadata;
+};
+// This is not currently needed by the client, but may be returned.
+// Setting it to unknown to allow it to be ignored for now.
+export type SubjectMapping = unknown;
+export type Value = {
+  id?: string;
+  attribute?: Attribute;
+  value?: string;
+  /** list of key access servers */
+  grants?: KeyAccessServer[];
+  fqn: string;
+  /** active by default until explicitly deactivated */
+  active?: boolean;
+  subjectMappings?: SubjectMapping[];
+  /** Common metadata */
+  metadata?: Metadata;
+};
+export type AttributeAndValue = {
+  attribute: Attribute;
+  value: Value;
+};
+export type GetAttributeValuesByFqnsResponse = {
+  fqnAttributeValues: Record<string, AttributeAndValue>;
+};