@opentdf/sdk 0.1.0-beta.1718 → 0.2.0-beta.1941

package/dist/types/src/index.d.ts

@@ -1,138 +1,7 @@
-import { Client, NanoTDF } from './nanotdf/index.js';
-import { TypedArray } from './tdf/index.js';
-import { ClientConfig } from './nanotdf/Client.js';
-export { attributeFQNsAsValues } from './policy/api.js';
-export type EncryptOptions = {
-    ecdsaBinding: boolean;
-};
-/**
- * NanoTDF SDK Client
- *
- * @example
- * ```
- * import { clientSecretAuthProvider, NanoTDFClient } from '@opentdf/sdk';
- *
- * const OIDC_ENDPOINT = 'http://localhost:65432/auth/realms/opentdf-demo';
- * const KAS_URL = 'http://localhost:65432/api/kas/';
- *
- * const ciphertext = '...';
- * const client = new NanoTDFClient({
- *   authProvider: await clientSecretAuthProvider({
- *     clientId: 'tdf-client',
- *     clientSecret: '123-456',
- *     oidcOrigin: OIDC_ENDPOINT,
- *   }),
- *   kasEndpoint: KAS_URL
- *  }
- * );
- * client.decrypt(ciphertext)
- *   .then(plaintext => {
- *     console.log('Plaintext', plaintext);
- *   })
- *   .catch(err => {
- *     console.error('Some error occurred', err);
- *   })
- */
-export declare class NanoTDFClient extends Client {
-    /**
-     * Decrypt ciphertext
-     *
-     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
-     *
-     * @param ciphertext Ciphertext to decrypt
-     */
-    decrypt(ciphertext: string | TypedArray | ArrayBuffer): Promise<ArrayBuffer>;
-    /**
-     * Decrypt ciphertext of the legacy TDF, with the older, smaller i.v. calculation.
-     *
-     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
-     *
-     * @param ciphertext Ciphertext to decrypt
-     */
-    decryptLegacyTDF(ciphertext: string | TypedArray | ArrayBuffer): Promise<ArrayBuffer>;
-    /**
-     * Encrypts the given data using the NanoTDF encryption scheme.
-     *
-     * @param {string | TypedArray | ArrayBuffer} data - The data to be encrypted.
-     * @param {EncryptOptions} [options=defaultOptions] - The encryption options (currently unused).
-     * @returns {Promise<ArrayBuffer>} A promise that resolves to the encrypted data as an ArrayBuffer.
-     * @throws {Error} If the initialization vector is not a number.
-     */
-    encrypt(data: string | TypedArray | ArrayBuffer, options?: EncryptOptions): Promise<ArrayBuffer>;
-}
-export type DatasetConfig = ClientConfig & {
-    maxKeyIterations?: number;
-};
-/**
- * NanoTDF Dataset SDK Client
- *
- *
- * @example
- * ```
- * import { clientSecretAuthProvider, NanoTDFDatasetClient } from '@opentdf/sdk';
- *
- * const OIDC_ENDPOINT = 'http://localhost:65432/auth/realms/tdf';
- * const KAS_URL = 'http://localhost:65432/api/kas/';
- *
- * const ciphertext = '...';
- * const client = new NanoTDFDatasetClient({
- *   authProvider: await clientSecretAuthProvider({
- *     clientId: 'tdf-client',
- *     clientSecret: '123-456',
- *     exchange: 'client',
- *     oidcOrigin: OIDC_ENDPOINT,
- *   }),
- *   kasEndpoint: KAS_URL,
- * });
- * const plaintext = client.decrypt(ciphertext);
- * console.log('Plaintext', plaintext);
- * ```
- */
-export declare class NanoTDFDatasetClient extends Client {
-    static readonly NTDF_MAX_KEY_ITERATIONS = 8388606;
-    private maxKeyIteration;
-    private keyIterationCount;
-    private cachedEphemeralKey?;
-    private unwrappedKey?;
-    private symmetricKey?;
-    private cachedHeader?;
-    private ecdsaBinding;
-    /**
-     * Create new NanoTDF Dataset Client
-     *
-     * The Ephemeral Key Pair can either be provided or will be generate when fetching the entity object. Once set it
-     * cannot be changed. If a new ephemeral key is desired it a new client should be initialized.
-     * There is no performance impact for creating a new client IFF the ephemeral key pair is provided.
-     *
-     * @param clientConfig OIDC client credentials
-     * @param kasUrl Key access service URL
-     * @param ephemeralKeyPair (optional) ephemeral key pair to use
-     * @param maxKeyIterations Max iteration to performe without a key rotation
-     */
-    constructor(opts: DatasetConfig);
-    /**
-     * Encrypt data
-     *
-     * Pass a string, TypedArray, or ArrayBuffer data and get a promise which resolves ciphertext
-     *
-     * @param data to decrypt
-     */
-    encrypt(data: string | TypedArray | ArrayBuffer, options?: EncryptOptions): Promise<ArrayBuffer>;
-    /**
-     * Decrypt ciphertext
-     *
-     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
-     *
-     * @param ciphertext Ciphertext to decrypt
-     */
-    decrypt(ciphertext: string | TypedArray | ArrayBuffer): Promise<ArrayBuffer>;
-    rewrapAndDecrypt(nanotdf: NanoTDF): Promise<ArrayBuffer>;
-    generateIV(): Uint8Array;
-}
-/**
- * Authorization for connecting authZ tokens to
- * remote requests.
- */
+export { type AuthProvider, type HttpMethod, HttpRequest, withHeaders } from './auth/auth.js';
 export * as AuthProviders from './auth/providers.js';
-export { version, clientType } from './version.js';
+export { attributeFQNsAsValues } from './policy/api.js';
+export { version, clientType, tdfSpecVersion } from './version.js';
+export * from './opentdf.js';
+export * from './seekable.js';
 //# sourceMappingURL=index.d.ts.map

package/dist/types/src/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,MAAM,EACN,OAAO,EAOR,MAAM,oBAAoB,CAAC;AAE5B,OAAO,EAAE,UAAU,EAA2B,MAAM,gBAAgB,CAAC;AAErE,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAEnD,OAAO,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AAGxD,MAAM,MAAM,cAAc,GAAG;IAC3B,YAAY,EAAE,OAAO,CAAC;CACvB,CAAC;AAOF;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AACH,qBAAa,aAAc,SAAQ,MAAM;IACvC;;;;;;OAMG;IACG,OAAO,CAAC,UAAU,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAyBlF;;;;;;OAMG;IACG,gBAAgB,CAAC,UAAU,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAsB3F;;;;;;;OAOG;IACG,OAAO,CACX,IAAI,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,EACvC,OAAO,CAAC,EAAE,cAAc,GACvB,OAAO,CAAC,WAAW,CAAC;CAyDxB;AAED,MAAM,MAAM,aAAa,GAAG,YAAY,GAAG;IACzC,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,qBAAa,oBAAqB,SAAQ,MAAM;IAG9C,MAAM,CAAC,QAAQ,CAAC,uBAAuB,WAAW;IAElD,OAAO,CAAC,eAAe,CAAS;IAChC,OAAO,CAAC,iBAAiB,CAAS;IAClC,OAAO,CAAC,kBAAkB,CAAC,CAAa;IACxC,OAAO,CAAC,YAAY,CAAC,CAAY;IACjC,OAAO,CAAC,YAAY,CAAC,CAAY;IACjC,OAAO,CAAC,YAAY,CAAC,CAAS;IAC9B,OAAO,CAAC,YAAY,CAAU;IAE9B;;;;;;;;;;;OAWG;gBACS,IAAI,EAAE,aAAa;IAe/B;;;;;;OAMG;IACG,OAAO,CACX,IAAI,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,EACvC,OAAO,CAAC,EAAE,cAAc,GACvB,OAAO,CAAC,WAAW,CAAC;IA+EvB;;;;;;OAMG;IACG,OAAO,CAAC,UAAU,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAuB5E,gBAAgB,CAAC,OAAO,EAAE,OAAO;IAwBvC,UAAU,IAAI,UAAU;CAkCzB;AAED;;;GAGG;AACH,OAAO,KAAK,aAAa,MAAM,qBAAqB,CAAC;AACrD,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,YAAY,EAAE,KAAK,UAAU,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAC9F,OAAO,KAAK,aAAa,MAAM,qBAAqB,CAAC;AACrD,OAAO,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AACxD,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AACnE,cAAc,cAAc,CAAC;AAC7B,cAAc,eAAe,CAAC"}

package/dist/types/src/nanoclients.d.ts

@@ -0,0 +1,107 @@
+import { Client, NanoTDF } from './nanotdf/index.js';
+import { type TypedArray } from './tdf/TypedArray.js';
+import { ClientConfig } from './nanotdf/Client.js';
+export type EncryptOptions = {
+    ecdsaBinding: boolean;
+};
+/**
+ * NanoTDF SDK Client. Deprecated in favor of OpenTDF.
+ *
+ */
+export declare class NanoTDFClient extends Client {
+    /**
+     * Decrypt ciphertext
+     *
+     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
+     *
+     * @param ciphertext Ciphertext to decrypt
+     */
+    decrypt(ciphertext: string | TypedArray | ArrayBuffer): Promise<ArrayBuffer>;
+    /**
+     * Decrypt ciphertext of the legacy TDF, with the older, smaller i.v. calculation.
+     *
+     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
+     *
+     * @param ciphertext Ciphertext to decrypt
+     */
+    decryptLegacyTDF(ciphertext: string | TypedArray | ArrayBuffer): Promise<ArrayBuffer>;
+    /**
+     * Encrypts the given data using the NanoTDF encryption scheme.
+     *
+     * @param {string | TypedArray | ArrayBuffer} data - The data to be encrypted.
+     * @param {EncryptOptions} [options=defaultOptions] - The encryption options (currently unused).
+     * @returns {Promise<ArrayBuffer>} A promise that resolves to the encrypted data as an ArrayBuffer.
+     * @throws {Error} If the initialization vector is not a number.
+     */
+    encrypt(data: string | TypedArray | ArrayBuffer, options?: EncryptOptions): Promise<ArrayBuffer>;
+}
+export type DatasetConfig = ClientConfig & {
+    maxKeyIterations?: number;
+};
+/**
+ * NanoTDF Dataset SDK Client
+ *
+ *
+ * @example
+ * ```
+ * import { clientSecretAuthProvider, NanoTDFDatasetClient } from '@opentdf/sdk';
+ *
+ * const OIDC_ENDPOINT = 'http://localhost:65432/auth/realms/opentdf';
+ * const KAS_URL = 'http://localhost:65432/api/kas/';
+ *
+ * const ciphertext = '...';
+ * const client = new NanoTDFDatasetClient({
+ *   authProvider: await clientSecretAuthProvider({
+ *     clientId: 'tdf-client',
+ *     clientSecret: '123-456',
+ *     exchange: 'client',
+ *     oidcOrigin: OIDC_ENDPOINT,
+ *   }),
+ *   kasEndpoint: KAS_URL,
+ * });
+ * const plaintext = client.decrypt(ciphertext);
+ * console.log('Plaintext', plaintext);
+ * ```
+ */
+export declare class NanoTDFDatasetClient extends Client {
+    static readonly NTDF_MAX_KEY_ITERATIONS = 8388606;
+    private maxKeyIteration;
+    private keyIterationCount;
+    private cachedEphemeralKey?;
+    private unwrappedKey?;
+    private symmetricKey?;
+    private cachedHeader?;
+    private ecdsaBinding;
+    /**
+     * Create new NanoTDF Dataset Client
+     *
+     * The Ephemeral Key Pair can either be provided or will be generate when fetching the entity object. Once set it
+     * cannot be changed. If a new ephemeral key is desired it a new client should be initialized.
+     * There is no performance impact for creating a new client IFF the ephemeral key pair is provided.
+     *
+     * @param clientConfig OIDC client credentials
+     * @param kasUrl Key access service URL
+     * @param ephemeralKeyPair (optional) ephemeral key pair to use
+     * @param maxKeyIterations Max iteration to performe without a key rotation
+     */
+    constructor(opts: DatasetConfig);
+    /**
+     * Encrypt data
+     *
+     * Pass a string, TypedArray, or ArrayBuffer data and get a promise which resolves ciphertext
+     *
+     * @param data to decrypt
+     */
+    encrypt(data: string | TypedArray | ArrayBuffer, options?: EncryptOptions): Promise<ArrayBuffer>;
+    /**
+     * Decrypt ciphertext
+     *
+     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
+     *
+     * @param ciphertext Ciphertext to decrypt
+     */
+    decrypt(ciphertext: string | TypedArray | ArrayBuffer): Promise<ArrayBuffer>;
+    rewrapAndDecrypt(nanotdf: NanoTDF): Promise<ArrayBuffer>;
+    generateIV(): Uint8Array;
+}
+//# sourceMappingURL=nanoclients.d.ts.map

package/dist/types/src/nanoclients.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"nanoclients.d.ts","sourceRoot":"","sources":["../../../src/nanoclients.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,MAAM,EACN,OAAO,EAOR,MAAM,oBAAoB,CAAC;AAG5B,OAAO,EAAE,KAAK,UAAU,EAAE,MAAM,qBAAqB,CAAC;AAGtD,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAInD,MAAM,MAAM,cAAc,GAAG;IAC3B,YAAY,EAAE,OAAO,CAAC;CACvB,CAAC;AAOF;;;GAGG;AACH,qBAAa,aAAc,SAAQ,MAAM;IACvC;;;;;;OAMG;IACG,OAAO,CAAC,UAAU,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAuBlF;;;;;;OAMG;IACG,gBAAgB,CAAC,UAAU,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAoB3F;;;;;;;OAOG;IACG,OAAO,CACX,IAAI,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,EACvC,OAAO,CAAC,EAAE,cAAc,GACvB,OAAO,CAAC,WAAW,CAAC;CAyDxB;AAED,MAAM,MAAM,aAAa,GAAG,YAAY,GAAG;IACzC,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,qBAAa,oBAAqB,SAAQ,MAAM;IAG9C,MAAM,CAAC,QAAQ,CAAC,uBAAuB,WAAW;IAElD,OAAO,CAAC,eAAe,CAAS;IAChC,OAAO,CAAC,iBAAiB,CAAS;IAClC,OAAO,CAAC,kBAAkB,CAAC,CAAa;IACxC,OAAO,CAAC,YAAY,CAAC,CAAY;IACjC,OAAO,CAAC,YAAY,CAAC,CAAY;IACjC,OAAO,CAAC,YAAY,CAAC,CAAS;IAC9B,OAAO,CAAC,YAAY,CAAU;IAE9B;;;;;;;;;;;OAWG;gBACS,IAAI,EAAE,aAAa;IAe/B;;;;;;OAMG;IACG,OAAO,CACX,IAAI,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,EACvC,OAAO,CAAC,EAAE,cAAc,GACvB,OAAO,CAAC,WAAW,CAAC;IA+EvB;;;;;;OAMG;IACG,OAAO,CAAC,UAAU,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAuB5E,gBAAgB,CAAC,OAAO,EAAE,OAAO;IAsBvC,UAAU,IAAI,UAAU;CAkCzB"}

package/dist/types/src/nanoindex.d.ts

@@ -0,0 +1,5 @@
+export * as AuthProviders from './auth/providers.js';
+export { attributeFQNsAsValues } from './policy/api.js';
+export * from './nanoclients.js';
+export { version, clientType } from './version.js';
+//# sourceMappingURL=nanoindex.d.ts.map

package/dist/types/src/nanoindex.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"nanoindex.d.ts","sourceRoot":"","sources":["../../../src/nanoindex.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,aAAa,MAAM,qBAAqB,CAAC;AACrD,OAAO,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AACxD,cAAc,kBAAkB,CAAC;AACjC,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC"}

package/dist/types/src/nanotdf/Client.d.ts

@@ -1,4 +1,4 @@
-import { type TypedArray } from '../tdf/index.js';
+import { type TypedArray } from '../tdf/TypedArray.js';
 import { KasPublicKeyInfo, OriginAllowList } from '../access.js';
 import { AuthProvider } from '../auth/providers.js';
 export interface ClientConfig {
@@ -69,18 +69,6 @@ export default class Client {
      * @param attribute The attribute that decides the access control of the TDF.
      */
     addAttribute(attribute: string): void;
-    /**
-     * Explicitly get a new Entity Object using the supplied EntityAttributeService.
-     *
-     * This method is expected to be called at least once per encrypt/decrypt cycle. If the entityObject is expired then
-     * this will need to be called again.
-     *
-     * @security the ephemeralKeyPair must be set in the constructor if desired to use here. If this is wished to be changed
-     * then a new client should be initialized.
-     * @performance key pair is generated when the entity object is fetched IFF the ephemeralKeyPair is not set. This will
-     * either be set on the first call or passed in the constructor.
-     */
-    fetchOIDCToken(): Promise<void>;
     /**
      * Rewrap key
      *

package/dist/types/src/nanotdf/Client.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"Client.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf/Client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAKlD,OAAO,EAAmB,gBAAgB,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAClF,OAAO,EAAE,YAAY,EAAgC,MAAM,sBAAsB,CAAC;AAIlF,MAAM,WAAW,YAAY;IAC3B,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,YAAY,EAAE,YAAY,CAAC;IAC3B,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,QAAQ,CAAC,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IAClC,gBAAgB,CAAC,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IAC1C,WAAW,EAAE,MAAM,CAAC;CACrB;AAgDD;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AACH,MAAM,CAAC,OAAO,OAAO,MAAM;IACzB,MAAM,CAAC,QAAQ,CAAC,iBAAiB,YAAY;IAC7C,MAAM,CAAC,QAAQ,CAAC,YAAY,SAAS;IACrC,MAAM,CAAC,QAAQ,CAAC,mBAAmB,WAAW;IAC9C,MAAM,CAAC,QAAQ,CAAC,uBAAuB,KAAK;IAC5C,MAAM,CAAC,QAAQ,CAAC,OAAO,MAAM;IAE7B,YAAY,EAAE,eAAe,CAAC;IAK9B,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC;IACzB,SAAS,CAAC,EAAE,gBAAgB,CAAC;IAC7B,QAAQ,CAAC,YAAY,EAAE,YAAY,CAAC;IACpC,QAAQ,CAAC,WAAW,EAAE,OAAO,CAAC;IAC9B,OAAO,EAAE,MAAM,EAAE,CAAM;IACvB,cAAc,EAAE,MAAM,EAAE,CAAM;IAC9B,SAAS,CAAC,gBAAgB,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IACnD,SAAS,CAAC,oBAAoB,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IACvD,SAAS,CAAC,EAAE,CAAC,EAAE,MAAM,CAAC;IAEtB;;;;;;OAMG;gBAED,qBAAqB,EAAE,YAAY,GAAG,YAAY,EAClD,MAAM,CAAC,EAAE,MAAM,EACf,gBAAgB,CAAC,EAAE,aAAa,EAChC,WAAW,UAAQ;IAkDrB;;;;OAIG;IACH,YAAY,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IAIrC;;;;;;;;;;OAUG;IACG,cAAc,IAAI,OAAO,CAAC,IAAI,CAAC;IASrC;;;;;;;;OAQG;IACG,SAAS,CACb,aAAa,EAAE,UAAU,GAAG,WAAW,EACvC,YAAY,EAAE,MAAM,EACpB,kBAAkB,EAAE,UAAU,GAAG,WAAW,EAC5C,aAAa,EAAE,MAAM,GACpB,OAAO,CAAC,SAAS,CAAC;CA+HtB"}
+{"version":3,"file":"Client.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf/Client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAKvD,OAAO,EAAmB,gBAAgB,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAClF,OAAO,EAAE,YAAY,EAAgC,MAAM,sBAAsB,CAAC;AAIlF,MAAM,WAAW,YAAY;IAC3B,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,YAAY,EAAE,YAAY,CAAC;IAC3B,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,QAAQ,CAAC,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IAClC,gBAAgB,CAAC,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IAC1C,WAAW,EAAE,MAAM,CAAC;CACrB;AAgDD;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AACH,MAAM,CAAC,OAAO,OAAO,MAAM;IACzB,MAAM,CAAC,QAAQ,CAAC,iBAAiB,YAAY;IAC7C,MAAM,CAAC,QAAQ,CAAC,YAAY,SAAS;IACrC,MAAM,CAAC,QAAQ,CAAC,mBAAmB,WAAW;IAC9C,MAAM,CAAC,QAAQ,CAAC,uBAAuB,KAAK;IAC5C,MAAM,CAAC,QAAQ,CAAC,OAAO,MAAM;IAE7B,YAAY,EAAE,eAAe,CAAC;IAK9B,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC;IACzB,SAAS,CAAC,EAAE,gBAAgB,CAAC;IAC7B,QAAQ,CAAC,YAAY,EAAE,YAAY,CAAC;IACpC,QAAQ,CAAC,WAAW,EAAE,OAAO,CAAC;IAC9B,OAAO,EAAE,MAAM,EAAE,CAAM;IACvB,cAAc,EAAE,MAAM,EAAE,CAAM;IAC9B,SAAS,CAAC,gBAAgB,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IACnD,SAAS,CAAC,oBAAoB,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IACvD,SAAS,CAAC,EAAE,CAAC,EAAE,MAAM,CAAC;IAEtB;;;;;;OAMG;gBAED,qBAAqB,EAAE,YAAY,GAAG,YAAY,EAClD,MAAM,CAAC,EAAE,MAAM,EACf,gBAAgB,CAAC,EAAE,aAAa,EAChC,WAAW,UAAQ;IAiErB;;;;OAIG;IACH,YAAY,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IAIrC;;;;;;;;OAQG;IACG,SAAS,CACb,aAAa,EAAE,UAAU,GAAG,WAAW,EACvC,YAAY,EAAE,MAAM,EACpB,kBAAkB,EAAE,UAAU,GAAG,WAAW,EAC5C,aAAa,EAAE,MAAM,GACpB,OAAO,CAAC,SAAS,CAAC;CA6HtB"}

package/dist/types/src/nanotdf/NanoTDF.d.ts

@@ -1,4 +1,4 @@
-import { TypedArray } from '../tdf/index.js';
+import { TypedArray } from '../tdf/TypedArray.js';
 import Header from './models/Header.js';
 import Payload from './models/Payload.js';
 import Signature from './models/Signature.js';

package/dist/types/src/nanotdf/NanoTDF.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"NanoTDF.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf/NanoTDF.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAE7C,OAAO,MAAM,MAAM,oBAAoB,CAAC;AACxC,OAAO,OAAO,MAAM,qBAAqB,CAAC;AAC1C,OAAO,SAAS,MAAM,uBAAuB,CAAC;AAC9C,OAAO,YAAY,MAAM,wBAAwB,CAAC;AAKlD,MAAM,CAAC,OAAO,OAAO,OAAO;IAE1B,MAAM,CAAC,SAAS,EAAE,OAAO,YAAY,CAAgB;IACrD,MAAM,CAAC,MAAM,gBAAU;IACvB,MAAM,CAAC,OAAO,iBAAW;IACzB,MAAM,CAAC,SAAS,mBAAa;IAEtB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,OAAO,CAAC;IAGjB,SAAS,CAAC,EAAE,SAAS,CAAC;IAE7B,MAAM,CAAC,IAAI,CACT,OAAO,EAAE,UAAU,GAAG,WAAW,GAAG,MAAM,EAC1C,QAAQ,CAAC,EAAE,YAAY,EACvB,SAAS,UAAQ,GAChB,OAAO;gBAkDE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,SAAS,CAAC,EAAE,SAAS;IAMnE;;OAEG;IACH,QAAQ,IAAI,WAAW;IA2BvB;;OAEG;IACH,QAAQ,IAAI,MAAM;CAInB"}
+{"version":3,"file":"NanoTDF.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf/NanoTDF.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAElD,OAAO,MAAM,MAAM,oBAAoB,CAAC;AACxC,OAAO,OAAO,MAAM,qBAAqB,CAAC;AAC1C,OAAO,SAAS,MAAM,uBAAuB,CAAC;AAC9C,OAAO,YAAY,MAAM,wBAAwB,CAAC;AAKlD,MAAM,CAAC,OAAO,OAAO,OAAO;IAE1B,MAAM,CAAC,SAAS,EAAE,OAAO,YAAY,CAAgB;IACrD,MAAM,CAAC,MAAM,gBAAU;IACvB,MAAM,CAAC,OAAO,iBAAW;IACzB,MAAM,CAAC,SAAS,mBAAa;IAEtB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,OAAO,CAAC;IAGjB,SAAS,CAAC,EAAE,SAAS,CAAC;IAE7B,MAAM,CAAC,IAAI,CACT,OAAO,EAAE,UAAU,GAAG,WAAW,GAAG,MAAM,EAC1C,QAAQ,CAAC,EAAE,YAAY,EACvB,SAAS,UAAQ,GAChB,OAAO;gBAkDE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,SAAS,CAAC,EAAE,SAAS;IAMnE;;OAEG;IACH,QAAQ,IAAI,WAAW;IA2BvB;;OAEG;IACH,QAAQ,IAAI,MAAM;CAInB"}

package/dist/types/src/nanotdf/encrypt-dataset.d.ts

@@ -1,5 +1,5 @@
 import Header from './models/Header.js';
-import TypedArray from '../tdf/TypedArray.js';
+import { TypedArray } from '../tdf/TypedArray.js';
 /**
  * Encrypt the plain data into nanotdf buffer
  *

package/dist/types/src/nanotdf/encrypt-dataset.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"encrypt-dataset.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf/encrypt-dataset.ts"],"names":[],"mappings":"AACA,OAAO,MAAM,MAAM,oBAAoB,CAAC;AAIxC,OAAO,UAAU,MAAM,sBAAsB,CAAC;AAG9C;;;;;;;GAOG;AACH,wBAA8B,cAAc,CAC1C,YAAY,EAAE,SAAS,EACvB,MAAM,EAAE,MAAM,EACd,EAAE,EAAE,UAAU,EACd,IAAI,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,GACtC,OAAO,CAAC,WAAW,CAAC,CA8BtB"}
+{"version":3,"file":"encrypt-dataset.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf/encrypt-dataset.ts"],"names":[],"mappings":"AACA,OAAO,MAAM,MAAM,oBAAoB,CAAC;AAIxC,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAGlD;;;;;;;GAOG;AACH,wBAA8B,cAAc,CAC1C,YAAY,EAAE,SAAS,EACvB,MAAM,EAAE,MAAM,EACd,EAAE,EAAE,UAAU,EACd,IAAI,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,GACtC,OAAO,CAAC,WAAW,CAAC,CA8BtB"}

package/dist/types/src/nanotdf/encrypt.d.ts

@@ -1,4 +1,4 @@
-import { TypedArray } from '../tdf/index.js';
+import { TypedArray } from '../tdf/TypedArray.js';
 import { KasPublicKeyInfo } from '../access.js';
 /**
  * Encrypt the plain data into nanotdf buffer

package/dist/types/src/nanotdf/encrypt.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"encrypt.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf/encrypt.ts"],"names":[],"mappings":"AAQA,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAU7C,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAIhD;;;;;;;;;GASG;AACH,wBAA8B,OAAO,CACnC,MAAM,EAAE,MAAM,EACd,OAAO,EAAE,gBAAgB,EACzB,gBAAgB,EAAE,aAAa,EAC/B,EAAE,EAAE,UAAU,EACd,IAAI,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,EACvC,YAAY,GAAE,OAAoC,GACjD,OAAO,CAAC,WAAW,CAAC,CAsGtB"}
+{"version":3,"file":"encrypt.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf/encrypt.ts"],"names":[],"mappings":"AAQA,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAUlD,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAIhD;;;;;;;;;GASG;AACH,wBAA8B,OAAO,CACnC,MAAM,EAAE,MAAM,EACd,OAAO,EAAE,gBAAgB,EACzB,gBAAgB,EAAE,aAAa,EAC/B,EAAE,EAAE,UAAU,EACd,IAAI,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,EACvC,YAAY,GAAE,OAAoC,GACjD,OAAO,CAAC,WAAW,CAAC,CAsGtB"}

package/dist/types/src/nanotdf/enum/CipherEnum.d.ts

@@ -1,5 +1,5 @@
 declare enum CipherEnum {
-    AES_256_GCM_64 = 0,
+    AES_256_GCM_64 = 0,// Default cipher
     AES_256_GCM_96 = 1,
     AES_256_GCM_104 = 2,
     AES_256_GCM_112 = 3,

package/dist/types/src/nanotdf/enum/CipherEnum.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"CipherEnum.d.ts","sourceRoot":"","sources":["../../../../../src/nanotdf/enum/CipherEnum.ts"],"names":[],"mappings":"AAAA,aAAK,UAAU;IACb,cAAc,IAAA;IACd,cAAc,IAAA;IACd,eAAe,IAAA;IACf,eAAe,IAAA;IACf,eAAe,IAAA;IACf,eAAe,IAAA;CAChB;AAED,eAAe,UAAU,CAAC"}
+{"version":3,"file":"CipherEnum.d.ts","sourceRoot":"","sources":["../../../../../src/nanotdf/enum/CipherEnum.ts"],"names":[],"mappings":"AAAA,aAAK,UAAU;IACb,cAAc,IAAA,CAAE,iBAAiB;IACjC,cAAc,IAAA;IACd,eAAe,IAAA;IACf,eAAe,IAAA;IACf,eAAe,IAAA;IACf,eAAe,IAAA;CAChB;AAED,eAAe,UAAU,CAAC"}

package/dist/types/src/nanotdf/enum/PolicyTypeEnum.d.ts

@@ -1,7 +1,7 @@
 declare enum PolicyType {
     Remote = 0,
     EmbeddedText = 1,
-    EmbeddedEncrypted = 2,
+    EmbeddedEncrypted = 2,// Default policy
     EmbeddedEncryptedPKA = 3
 }
 export default PolicyType;

package/dist/types/src/nanotdf/enum/PolicyTypeEnum.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"PolicyTypeEnum.d.ts","sourceRoot":"","sources":["../../../../../src/nanotdf/enum/PolicyTypeEnum.ts"],"names":[],"mappings":"AAAA,aAAK,UAAU;IACb,MAAM,IAAA;IACN,YAAY,IAAA;IACZ,iBAAiB,IAAA;IACjB,oBAAoB,IAAA;CACrB;AAED,eAAe,UAAU,CAAC"}
+{"version":3,"file":"PolicyTypeEnum.d.ts","sourceRoot":"","sources":["../../../../../src/nanotdf/enum/PolicyTypeEnum.ts"],"names":[],"mappings":"AAAA,aAAK,UAAU;IACb,MAAM,IAAA;IACN,YAAY,IAAA;IACZ,iBAAiB,IAAA,CAAE,iBAAiB;IACpC,oBAAoB,IAAA;CACrB;AAED,eAAe,UAAU,CAAC"}

package/dist/types/src/nanotdf/helpers/getHkdfSalt.d.ts

@@ -1,4 +1,4 @@
-import { TypedArray } from '../../tdf/index.js';
+import { TypedArray } from '../../tdf/TypedArray.js';
 import { enums } from '../../nanotdf-crypto/index.js';
 interface HkdfSalt {
     hkdfSalt: ArrayBuffer;

package/dist/types/src/nanotdf/helpers/getHkdfSalt.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"getHkdfSalt.d.ts","sourceRoot":"","sources":["../../../../../src/nanotdf/helpers/getHkdfSalt.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAEhD,OAAO,EAAU,KAAK,EAAE,MAAM,+BAA+B,CAAC;AAE9D,UAAU,QAAQ;IAChB,QAAQ,EAAE,WAAW,CAAC;IACtB,QAAQ,EAAE,KAAK,CAAC,QAAQ,CAAC;CAC1B;AAED,wBAA8B,WAAW,CAAC,MAAM,EAAE,UAAU,GAAG,WAAW,GAAG,OAAO,CAAC,QAAQ,CAAC,CAK7F"}
+{"version":3,"file":"getHkdfSalt.d.ts","sourceRoot":"","sources":["../../../../../src/nanotdf/helpers/getHkdfSalt.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,yBAAyB,CAAC;AAErD,OAAO,EAAU,KAAK,EAAE,MAAM,+BAA+B,CAAC;AAE9D,UAAU,QAAQ;IAChB,QAAQ,EAAE,WAAW,CAAC;IACtB,QAAQ,EAAE,KAAK,CAAC,QAAQ,CAAC;CAC1B;AAED,wBAA8B,WAAW,CAAC,MAAM,EAAE,UAAU,GAAG,WAAW,GAAG,OAAO,CAAC,QAAQ,CAAC,CAK7F"}

package/dist/types/src/nanotdf/models/DefaultParams.d.ts

@@ -9,7 +9,7 @@ import PolicyTypeEnum from '../enum/PolicyTypeEnum.js';
 declare const DefaultParams: {
     ecdsaBinding: boolean;
     ephemeralCurveName: CurveNameEnum;
-    magicNumberVersion: Uint8Array;
+    magicNumberVersion: Uint8Array<ArrayBufferLike>;
     offlineMode: boolean;
     policyType: PolicyTypeEnum;
     signature: boolean;

package/dist/types/src/nanotdf/models/ResourceLocator.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"ResourceLocator.d.ts","sourceRoot":"","sources":["../../../../../src/nanotdf/models/ResourceLocator.ts"],"names":[],"mappings":"AACA,OAAO,YAAY,MAAM,yBAAyB,CAAC;AACnD,OAAO,6BAA6B,MAAM,0CAA0C,CAAC;AAErF;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,OAAO,OAAO,eAAe;IAYhC,QAAQ,CAAC,QAAQ,EAAE,YAAY;IAC/B,QAAQ,CAAC,YAAY,EAAE,MAAM;IAC7B,QAAQ,CAAC,IAAI,EAAE,MAAM;IACrB,QAAQ,CAAC,MAAM,EAAE,MAAM;IACvB,QAAQ,CAAC,EAAE,CAAC;IACZ,QAAQ,CAAC,MAAM,EAAE,6BAA6B;IAhBhD,MAAM,CAAC,QAAQ,CAAC,eAAe,KAAK;IACpC,MAAM,CAAC,QAAQ,CAAC,eAAe,KAAK;IACpC,MAAM,CAAC,QAAQ,CAAC,aAAa,KAAK;IAClC,MAAM,CAAC,QAAQ,CAAC,aAAa,KAAK;IAClC,MAAM,CAAC,QAAQ,CAAC,WAAW,KAAK;IAChC,MAAM,CAAC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAU;IACnD,MAAM,CAAC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAU;IACnD,MAAM,CAAC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAU;IACnD,MAAM,CAAC,QAAQ,CAAC,kBAAkB,EAAE,MAAM,CAAU;gBAGzC,QAAQ,EAAE,YAAY,EACtB,YAAY,EAAE,MAAM,EACpB,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,EACd,EAAE,CAAC,oBAAQ,EACX,MAAM,GAAE,6BAAkE;IAGrF;;;;;;;;OAQG;IACH,MAAM,CAAC,OAAO,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,GAAG,eAAe;IA2CjE,MAAM,CAAC,KAAK,CAAC,IAAI,EAAE,UAAU;IAiE7B;;;;OAIG;IACH,IAAI,MAAM,IAAI,MAAM,CAEnB;IAED,IAAI,GAAG,IAAI,MAAM,GAAG,KAAK,CASxB;IAED;;OAEG;IACH,QAAQ,IAAI,UAAU;IAuBtB;;;;;OAKG;IACH,IAAI,UAAU,IAAI,MAAM,CAEvB;CACF"}
+{"version":3,"file":"ResourceLocator.d.ts","sourceRoot":"","sources":["../../../../../src/nanotdf/models/ResourceLocator.ts"],"names":[],"mappings":"AACA,OAAO,YAAY,MAAM,yBAAyB,CAAC;AACnD,OAAO,6BAA6B,MAAM,0CAA0C,CAAC;AAErF;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,OAAO,OAAO,eAAe;IAYhC,QAAQ,CAAC,QAAQ,EAAE,YAAY;IAC/B,QAAQ,CAAC,YAAY,EAAE,MAAM;IAC7B,QAAQ,CAAC,IAAI,EAAE,MAAM;IACrB,QAAQ,CAAC,MAAM,EAAE,MAAM;IACvB,QAAQ,CAAC,EAAE,CAAC,EAAE,MAAM;IACpB,QAAQ,CAAC,MAAM,EAAE,6BAA6B;IAhBhD,MAAM,CAAC,QAAQ,CAAC,eAAe,KAAK;IACpC,MAAM,CAAC,QAAQ,CAAC,eAAe,KAAK;IACpC,MAAM,CAAC,QAAQ,CAAC,aAAa,KAAK;IAClC,MAAM,CAAC,QAAQ,CAAC,aAAa,KAAK;IAClC,MAAM,CAAC,QAAQ,CAAC,WAAW,KAAK;IAChC,MAAM,CAAC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAU;IACnD,MAAM,CAAC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAU;IACnD,MAAM,CAAC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAU;IACnD,MAAM,CAAC,QAAQ,CAAC,kBAAkB,EAAE,MAAM,CAAU;gBAGzC,QAAQ,EAAE,YAAY,EACtB,YAAY,EAAE,MAAM,EACpB,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,EACd,EAAE,CAAC,EAAE,MAAM,YAAA,EACX,MAAM,GAAE,6BAAkE;IAGrF;;;;;;;;OAQG;IACH,MAAM,CAAC,OAAO,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,GAAG,eAAe;IA2CjE,MAAM,CAAC,KAAK,CAAC,IAAI,EAAE,UAAU;IAiE7B;;;;OAIG;IACH,IAAI,MAAM,IAAI,MAAM,CAEnB;IAED,IAAI,GAAG,IAAI,MAAM,GAAG,KAAK,CASxB;IAED;;OAEG;IACH,QAAQ,IAAI,UAAU;IAuBtB;;;;;OAKG;IACH,IAAI,UAAU,IAAI,MAAM,CAEvB;CACF"}

package/dist/types/src/nanotdf-crypto/digest.d.ts

@@ -1,3 +1,3 @@
-import { TypedArray } from '../tdf/index.js';
+import { TypedArray } from '../tdf/TypedArray.js';
 export default function digest(hashType: AlgorithmIdentifier, data: TypedArray | ArrayBuffer): Promise<ArrayBuffer>;
 //# sourceMappingURL=digest.d.ts.map

package/dist/types/src/nanotdf-crypto/digest.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"digest.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/digest.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAE7C,MAAM,CAAC,OAAO,UAAU,MAAM,CAC5B,QAAQ,EAAE,mBAAmB,EAC7B,IAAI,EAAE,UAAU,GAAG,WAAW,GAC7B,OAAO,CAAC,WAAW,CAAC,CAEtB"}
+{"version":3,"file":"digest.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/digest.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAElD,MAAM,CAAC,OAAO,UAAU,MAAM,CAC5B,QAAQ,EAAE,mBAAmB,EAC7B,IAAI,EAAE,UAAU,GAAG,WAAW,GAC7B,OAAO,CAAC,WAAW,CAAC,CAEtB"}

package/dist/types/src/nanotdf-crypto/generateKeyPair.d.ts

@@ -5,6 +5,6 @@ interface GenerateKeyPairOptions {
     keyUsages: Array<KeyUsageType>;
     isExtractable: boolean;
 }
-export default function generateKeyPair({ type: name, curve: namedCurve, keyUsages, isExtractable }?: GenerateKeyPairOptions): Promise<CryptoKeyPair | never>;
+export declare function generateKeyPair({ type: name, curve: namedCurve, keyUsages, isExtractable }?: GenerateKeyPairOptions): Promise<CryptoKeyPair | never>;
 export {};
 //# sourceMappingURL=generateKeyPair.d.ts.map

package/dist/types/src/nanotdf-crypto/generateKeyPair.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"generateKeyPair.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/generateKeyPair.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAErE,UAAU,sBAAsB;IAC9B,IAAI,EAAE,aAAa,CAAC,IAAI,GAAG,aAAa,CAAC,KAAK,CAAC;IAC/C,KAAK,EAAE,UAAU,CAAC;IAClB,SAAS,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;IAC/B,aAAa,EAAE,OAAO,CAAC;CACxB;AAED,wBAA8B,eAAe,CAC3C,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,aAAa,EAAE,GAAE,sBAK5D,GACA,OAAO,CAAC,aAAa,GAAG,KAAK,CAAC,CAEhC"}
+{"version":3,"file":"generateKeyPair.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/generateKeyPair.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAErE,UAAU,sBAAsB;IAC9B,IAAI,EAAE,aAAa,CAAC,IAAI,GAAG,aAAa,CAAC,KAAK,CAAC;IAC/C,KAAK,EAAE,UAAU,CAAC;IAClB,SAAS,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;IAC/B,aAAa,EAAE,OAAO,CAAC;CACxB;AAED,wBAAsB,eAAe,CACnC,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,aAAa,EAAE,GAAE,sBAK5D,GACA,OAAO,CAAC,aAAa,GAAG,KAAK,CAAC,CAEhC"}

package/dist/types/src/nanotdf-crypto/generateRandomNumber.d.ts

@@ -1,5 +1,5 @@
 /**
  * Generate a random number of given length
  */
-export default function generateRandomNumber(length: number): Uint8Array;
+export declare function generateRandomNumber(length: number): Uint8Array;
 //# sourceMappingURL=generateRandomNumber.d.ts.map

package/dist/types/src/nanotdf-crypto/generateRandomNumber.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"generateRandomNumber.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/generateRandomNumber.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,CAAC,OAAO,UAAU,oBAAoB,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,CAIvE"}
+{"version":3,"file":"generateRandomNumber.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/generateRandomNumber.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,CAI/D"}

package/dist/types/src/nanotdf-crypto/index.d.ts

@@ -2,11 +2,10 @@ export { Ciphers } from './ciphers.js';
 export { default as decrypt } from './decrypt.js';
 export { default as digest } from './digest.js';
 export { default as encrypt } from './encrypt.js';
-export { default as generateKeyPair } from './generateKeyPair.js';
-export { default as importRawKey } from './importRawKey.js';
+export { generateKeyPair } from './generateKeyPair.js';
 export { keyAgreement } from './keyAgreement.js';
 export { default as exportCryptoKey } from './exportCryptoKey.js';
-export { default as generateRandomNumber } from './generateRandomNumber.js';
+export { generateRandomNumber } from './generateRandomNumber.js';
 export { pemPublicToCrypto, pemCertToCrypto } from './pemPublicToCrypto.js';
 export * as enums from './enums.js';
 //# sourceMappingURL=index.d.ts.map

package/dist/types/src/nanotdf-crypto/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AACvC,OAAO,EAAE,OAAO,IAAI,OAAO,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,OAAO,IAAI,MAAM,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,EAAE,OAAO,IAAI,OAAO,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,OAAO,IAAI,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAClE,OAAO,EAAE,OAAO,IAAI,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAC5D,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AACjD,OAAO,EAAE,OAAO,IAAI,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAClE,OAAO,EAAE,OAAO,IAAI,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AAC5E,OAAO,EAAE,iBAAiB,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAC5E,OAAO,KAAK,KAAK,MAAM,YAAY,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AACvC,OAAO,EAAE,OAAO,IAAI,OAAO,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,OAAO,IAAI,MAAM,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,EAAE,OAAO,IAAI,OAAO,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AACjD,OAAO,EAAE,OAAO,IAAI,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAClE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AACjE,OAAO,EAAE,iBAAiB,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAC5E,OAAO,KAAK,KAAK,MAAM,YAAY,CAAC"}

package/dist/types/src/nanotdf-crypto/keyAgreement.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"keyAgreement.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/keyAgreement.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AA2BH,UAAU,mBAAmB;IAC3B,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,uBAAuB,CAAC;IAClC,QAAQ,EAAE,UAAU,CAAC;IACrB,QAAQ,EAAE,UAAU,GAAG,WAAW,CAAC;IACnC,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,QAAQ,EAAE,CAAC;IACtB,aAAa,EAAE,OAAO,CAAC;CACxB;AAED;;;;;;GAMG;AACH,wBAAsB,YAAY,CAChC,UAAU,EAAE,SAAS,EACrB,SAAS,EAAE,SAAS,EACpB,OAAO,GAAE,OAAO,CAAC,mBAAmB,CAcnC,GACA,OAAO,CAAC,SAAS,CAAC,CAoEpB"}
+{"version":3,"file":"keyAgreement.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/keyAgreement.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AA4BH,UAAU,mBAAmB;IAC3B,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,uBAAuB,CAAC;IAClC,QAAQ,EAAE,UAAU,CAAC;IACrB,QAAQ,EAAE,UAAU,GAAG,WAAW,CAAC;IACnC,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,QAAQ,EAAE,CAAC;IACtB,aAAa,EAAE,OAAO,CAAC;CACxB;AAED;;;;;;GAMG;AACH,wBAAsB,YAAY,CAChC,UAAU,EAAE,SAAS,EACrB,SAAS,EAAE,SAAS,EACpB,OAAO,GAAE,OAAO,CAAC,mBAAmB,CAcnC,GACA,OAAO,CAAC,SAAS,CAAC,CA0EpB"}

package/dist/types/src/opentdf.d.ts

@@ -0,0 +1,106 @@
+import { type AuthProvider } from './auth/providers.js';
+export { Client as TDF3Client } from '../tdf3/src/client/index.js';
+import Header from './nanotdf/models/Header.js';
+import { type Source } from './seekable.js';
+import { AssertionConfig, AssertionVerificationKeys } from '../tdf3/src/assertions.js';
+import { type KasPublicKeyAlgorithm, isPublicKeyAlgorithm } from './access.js';
+import { type Manifest } from '../tdf3/src/models/manifest.js';
+export { type KasPublicKeyAlgorithm, isPublicKeyAlgorithm };
+export type Keys = {
+    [keyID: string]: CryptoKey | CryptoKeyPair;
+};
+export type CreateOptions = {
+    autoconfigure?: boolean;
+    attributes?: string[];
+    byteLimit?: number;
+    defaultKASEndpoint?: string;
+    signers?: Keys;
+    source: Source;
+};
+export type CreateNanoTDFOptions = CreateOptions & {
+    bindingType?: 'ecdsa' | 'gmac';
+    ecdsaBindingKeyID?: string;
+    signingKeyID?: string;
+};
+export type CreateNanoTDFCollectionOptions = CreateNanoTDFOptions & {
+    maxKeyIterations?: number;
+};
+export type Metadata = object;
+export type MimeType = `${string}/${string}`;
+export type SplitStep = {
+    kas: string;
+    sid?: string;
+};
+export type CreateZTDFOptions = CreateOptions & {
+    assertionConfigs?: AssertionConfig[];
+    metadata?: Metadata;
+    mimeType?: MimeType;
+    splitPlan?: SplitStep[];
+    windowSize?: number;
+    wrappingKeyAlgorithm?: KasPublicKeyAlgorithm;
+};
+export type ReadOptions = {
+    source: Source;
+    allowedKASEndpoints?: string[];
+    ignoreAllowlist?: boolean;
+    assertionVerificationKeys?: AssertionVerificationKeys;
+    noVerify?: boolean;
+    concurrencyLimit?: number;
+    wrappingKeyAlgorithm?: KasPublicKeyAlgorithm;
+};
+export type OpenTDFOptions = {
+    policyEndpoint?: string;
+    authProvider: AuthProvider;
+    defaultCreateOptions?: Omit<CreateOptions, 'source'>;
+    defaultReadOptions?: Omit<ReadOptions, 'source'>;
+    disableDPoP?: boolean;
+    dpopKeys?: Promise<CryptoKeyPair>;
+    rewrapCacheOptions?: RewrapCacheOptions;
+};
+export type DecoratedStream = ReadableStream<Uint8Array> & {
+    metadata?: Promise<unknown>;
+    manifest?: Promise<Manifest>;
+    header?: Header;
+};
+export type RewrapCacheOptions = {
+    bypass?: boolean;
+    maxAge?: number;
+    pollInterval?: number;
+};
+export declare class RewrapCache {
+    private cache?;
+    private closer?;
+    constructor(opts?: RewrapCacheOptions);
+    get(key: Uint8Array): CryptoKey | undefined;
+    set(key: Uint8Array, value: CryptoKey): void;
+    close(): void;
+}
+export declare class OpenTDF {
+    readonly policyEndpoint: string;
+    readonly authProvider: AuthProvider;
+    readonly dpopEnabled: boolean;
+    defaultCreateOptions: Omit<CreateOptions, 'source'>;
+    defaultReadOptions: Omit<ReadOptions, 'source'>;
+    readonly dpopKeys: Promise<CryptoKeyPair>;
+    private readonly rewrapCache;
+    private tdf3Client;
+    constructor({ authProvider, dpopKeys, defaultCreateOptions, defaultReadOptions, disableDPoP, policyEndpoint, rewrapCacheOptions, }: OpenTDFOptions);
+    createNanoTDF(opts: CreateNanoTDFOptions): Promise<DecoratedStream>;
+    /**
+     * Creates a new collection object, which can be used to encrypt a series of data with the same policy.
+     * @returns
+     */
+    createNanoTDFCollection(opts: CreateNanoTDFCollectionOptions): Promise<NanoTDFCollection>;
+    createZTDF(opts: CreateZTDFOptions): Promise<DecoratedStream>;
+    /**
+     * Decrypts a nanotdf object. Optionally, stores the collection header and its DEK.
+     * @param ciphertext
+     */
+    read(opts: ReadOptions): Promise<DecoratedStream>;
+    close(): void;
+}
+export type NanoTDFCollection = {
+    encrypt: (source: Source) => Promise<ReadableStream<Uint8Array>>;
+    close: () => Promise<void>;
+};
+//# sourceMappingURL=opentdf.d.ts.map

package/dist/types/src/opentdf.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"opentdf.d.ts","sourceRoot":"","sources":["../../../src/opentdf.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAGxD,OAAO,EAAE,MAAM,IAAI,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAInE,OAAO,MAAM,MAAM,4BAA4B,CAAC;AAChD,OAAO,EAA8B,KAAK,MAAM,EAAE,MAAM,eAAe,CAAC;AAExE,OAAO,EAAE,eAAe,EAAE,yBAAyB,EAAE,MAAM,2BAA2B,CAAC;AACvF,OAAO,EAAE,KAAK,qBAAqB,EAAmB,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAChG,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,gCAAgC,CAAC;AAE/D,OAAO,EAAE,KAAK,qBAAqB,EAAE,oBAAoB,EAAE,CAAC;AAE5D,MAAM,MAAM,IAAI,GAAG;IACjB,CAAC,KAAK,EAAE,MAAM,GAAG,SAAS,GAAG,aAAa,CAAC;CAC5C,CAAC;AAIF,MAAM,MAAM,aAAa,GAAG;IAE1B,aAAa,CAAC,EAAE,OAAO,CAAC;IAGxB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IAItB,SAAS,CAAC,EAAE,MAAM,CAAC;IAGnB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAG5B,OAAO,CAAC,EAAE,IAAI,CAAC;IAGf,MAAM,EAAE,MAAM,CAAC;CAChB,CAAC;AAEF,MAAM,MAAM,oBAAoB,GAAG,aAAa,GAAG;IACjD,WAAW,CAAC,EAAE,OAAO,GAAG,MAAM,CAAC;IAI/B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAM3B,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF,MAAM,MAAM,8BAA8B,GAAG,oBAAoB,GAAG;IAElE,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B,CAAC;AAGF,MAAM,MAAM,QAAQ,GAAG,MAAM,CAAC;AAG9B,MAAM,MAAM,QAAQ,GAAG,GAAG,MAAM,IAAI,MAAM,EAAE,CAAC;AAG7C,MAAM,MAAM,SAAS,GAAG;IAEtB,GAAG,EAAE,MAAM,CAAC;IAIZ,GAAG,CAAC,EAAE,MAAM,CAAC;CACd,CAAC;AAGF,MAAM,MAAM,iBAAiB,GAAG,aAAa,GAAG;IAE9C,gBAAgB,CAAC,EAAE,eAAe,EAAE,CAAC;IAGrC,QAAQ,CAAC,EAAE,QAAQ,CAAC;IAGpB,QAAQ,CAAC,EAAE,QAAQ,CAAC;IAGpB,SAAS,CAAC,EAAE,SAAS,EAAE,CAAC;IAIxB,UAAU,CAAC,EAAE,MAAM,CAAC;IAGpB,oBAAoB,CAAC,EAAE,qBAAqB,CAAC;CAC9C,CAAC;AAGF,MAAM,MAAM,WAAW,GAAG;IAExB,MAAM,EAAE,MAAM,CAAC;IAEf,mBAAmB,CAAC,EAAE,MAAM,EAAE,CAAC;IAE/B,eAAe,CAAC,EAAE,OAAO,CAAC;IAE1B,yBAAyB,CAAC,EAAE,yBAAyB,CAAC;IAEtD,QAAQ,CAAC,EAAE,OAAO,CAAC;IAGnB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAG1B,oBAAoB,CAAC,EAAE,qBAAqB,CAAC;CAC9C,CAAC;AAGF,MAAM,MAAM,cAAc,GAAG;IAE3B,cAAc,CAAC,EAAE,MAAM,CAAC;IAGxB,YAAY,EAAE,YAAY,CAAC;IAG3B,oBAAoB,CAAC,EAAE,IAAI,CAAC,aAAa,EAAE,QAAQ,CAAC,CAAC;IAGrD,kBAAkB,CAAC,EAAE,IAAI,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;IAGjD,WAAW,CAAC,EAAE,OAAO,CAAC;IAKtB,QAAQ,CAAC,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IAGlC,kBAAkB,CAAC,EAAE,kBAAkB,CAAC;CACzC,CAAC;AAEF,MAAM,MAAM,eAAe,GAAG,cAAc,CAAC,UAAU,CAAC,GAAG;IAEzD,QAAQ,CAAC,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC;IAC5B,QAAQ,CAAC,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC;IAE7B,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB,CAAC;AAGF,MAAM,MAAM,kBAAkB,GAAG;IAE/B,MAAM,CAAC,EAAE,OAAO,CAAC;IAGjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAGhB,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB,CAAC;AAYF,qBAAa,WAAW;IACtB,OAAO,CAAC,KAAK,CAAC,CAAgE;IAC9E,OAAO,CAAC,MAAM,CAAC,CAAiC;gBACpC,IAAI,CAAC,EAAE,kBAAkB;IAoBrC,GAAG,CAAC,GAAG,EAAE,UAAU,GAAG,SAAS,GAAG,SAAS;IAY3C,GAAG,CAAC,GAAG,EAAE,UAAU,EAAE,KAAK,EAAE,SAAS;IAOrC,KAAK;CAON;AAGD,qBAAa,OAAO;IAElB,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAC;IAChC,QAAQ,CAAC,YAAY,EAAE,YAAY,CAAC;IACpC,QAAQ,CAAC,WAAW,EAAE,OAAO,CAAC;IAC9B,oBAAoB,EAAE,IAAI,CAAC,aAAa,EAAE,QAAQ,CAAC,CAAC;IACpD,kBAAkB,EAAE,IAAI,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;IAChD,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IAG1C,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAc;IAC1C,OAAO,CAAC,UAAU,CAAa;gBAEnB,EACV,YAAY,EACZ,QAAQ,EACR,oBAAoB,EACpB,kBAAkB,EAClB,WAAW,EACX,cAAc,EACd,kBAAkB,GACnB,EAAE,cAAc;IA2BX,aAAa,CAAC,IAAI,EAAE,oBAAoB,GAAG,OAAO,CAAC,eAAe,CAAC;IAUzE;;;OAGG;IACG,uBAAuB,CAAC,IAAI,EAAE,8BAA8B,GAAG,OAAO,CAAC,iBAAiB,CAAC;IAKzF,UAAU,CAAC,IAAI,EAAE,iBAAiB,GAAG,OAAO,CAAC,eAAe,CAAC;IAuBnE;;;OAGG;IACG,IAAI,CAAC,IAAI,EAAE,WAAW,GAAG,OAAO,CAAC,eAAe,CAAC;IAuDvD,KAAK;CAGN;AAcD,MAAM,MAAM,iBAAiB,GAAG;IAC9B,OAAO,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK,OAAO,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC,CAAC;IACjE,KAAK,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;CAC5B,CAAC"}