npm - @opentdf/sdk - Versions diffs - 0.2.0-beta.1758 → 0.2.0-beta.1941 - Mend

@opentdf/sdk 0.2.0-beta.1758 → 0.2.0-beta.1941

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (265) hide show

package/README.md +45 -38
package/dist/cjs/src/access.js +47 -11
package/dist/cjs/src/auth/auth.js +5 -5
package/dist/cjs/src/auth/oidc-clientcredentials-provider.js +1 -1
package/dist/cjs/src/auth/oidc-externaljwt-provider.js +1 -1
package/dist/cjs/src/auth/oidc-refreshtoken-provider.js +1 -1
package/dist/cjs/src/auth/oidc.js +1 -1
package/dist/cjs/src/auth/providers.js +1 -1
package/dist/cjs/src/concurrency.js +3 -4
package/dist/cjs/src/encodings/base64.js +4 -4
package/dist/cjs/src/encodings/hex.js +5 -6
package/dist/cjs/src/encodings/index.js +18 -8
package/dist/cjs/src/errors.js +1 -1
package/dist/cjs/src/index.js +28 -318
package/dist/cjs/src/nanoclients.js +285 -0
package/dist/cjs/src/nanoindex.js +47 -0
package/dist/cjs/src/nanotdf/Client.js +18 -8
package/dist/cjs/src/nanotdf/NanoTDF.js +1 -1
package/dist/cjs/src/nanotdf/decrypt.js +2 -2
package/dist/cjs/src/nanotdf/encrypt-dataset.js +2 -2
package/dist/cjs/src/nanotdf/encrypt.js +2 -2
package/dist/cjs/src/nanotdf/helpers/calculateByCurve.js +3 -4
package/dist/cjs/src/nanotdf/helpers/getHkdfSalt.js +2 -2
package/dist/cjs/src/nanotdf/models/Ciphers.js +3 -3
package/dist/cjs/src/nanotdf/models/EcCurves.js +3 -3
package/dist/cjs/src/nanotdf/models/Header.js +1 -1
package/dist/cjs/src/nanotdf/models/Payload.js +1 -1
package/dist/cjs/src/nanotdf/models/Policy/AbstractPolicy.js +1 -1
package/dist/cjs/src/nanotdf/models/Policy/EmbeddedPolicy.js +1 -1
package/dist/cjs/src/nanotdf/models/Policy/PolicyFactory.js +1 -1
package/dist/cjs/src/nanotdf/models/ResourceLocator.js +1 -1
package/dist/cjs/src/nanotdf/models/Signature.js +1 -1
package/dist/cjs/src/nanotdf-crypto/ciphers.js +1 -1
package/dist/cjs/src/nanotdf-crypto/decrypt.js +2 -2
package/dist/cjs/src/nanotdf-crypto/digest.js +2 -2
package/dist/cjs/src/nanotdf-crypto/ecdsaSignature.js +4 -5
package/dist/cjs/src/nanotdf-crypto/encrypt.js +2 -2
package/dist/cjs/src/nanotdf-crypto/exportCryptoKey.js +2 -2
package/dist/cjs/src/nanotdf-crypto/generateKeyPair.js +2 -2
package/dist/cjs/src/nanotdf-crypto/generateRandomNumber.js +2 -2
package/dist/cjs/src/nanotdf-crypto/index.js +21 -13
package/dist/cjs/src/nanotdf-crypto/keyAgreement.js +10 -8
package/dist/cjs/src/nanotdf-crypto/pemPublicToCrypto.js +20 -11
package/dist/cjs/src/opentdf.js +243 -0
package/dist/cjs/src/policy/api.js +2 -3
package/dist/cjs/src/policy/granter.js +3 -4
package/dist/cjs/src/seekable.js +157 -0
package/dist/cjs/src/tdf/AttributeObject.js +2 -4
package/dist/cjs/src/tdf/Policy.js +1 -2
package/dist/cjs/src/utils.js +12 -14
package/dist/cjs/src/version.js +6 -2
package/dist/cjs/tdf3/index.js +27 -15
package/dist/cjs/tdf3/src/assertions.js +25 -11
package/dist/cjs/tdf3/src/binary.js +1 -1
package/dist/cjs/tdf3/src/ciphers/aes-gcm-cipher.js +1 -1
package/dist/cjs/tdf3/src/ciphers/symmetric-cipher-base.js +1 -1
package/dist/cjs/tdf3/src/client/DecoratedReadableStream.js +7 -74
package/dist/cjs/tdf3/src/client/builders.js +26 -22
package/dist/cjs/tdf3/src/client/index.js +88 -61
package/dist/cjs/tdf3/src/client/validation.js +3 -3
package/dist/cjs/tdf3/src/crypto/crypto-utils.js +1 -1
package/dist/cjs/tdf3/src/crypto/index.js +18 -18
package/dist/cjs/tdf3/src/index.js +22 -11
package/dist/cjs/tdf3/src/models/attribute-set.js +1 -1
package/dist/cjs/tdf3/src/models/encryption-information.js +3 -3
package/dist/cjs/tdf3/src/models/key-access.js +67 -35
package/dist/cjs/tdf3/src/models/policy.js +3 -3
package/dist/cjs/tdf3/src/tdf.js +177 -151
package/dist/cjs/tdf3/src/utils/buffer-crc32.js +2 -3
package/dist/cjs/tdf3/src/utils/index.js +30 -28
package/dist/cjs/tdf3/src/utils/keysplit.js +4 -5
package/dist/cjs/tdf3/src/utils/unwrap.js +21 -0
package/dist/cjs/tdf3/src/utils/zip-reader.js +4 -4
package/dist/cjs/tdf3/src/utils/zip-writer.js +4 -4
package/dist/types/src/access.d.ts +3 -0
package/dist/types/src/access.d.ts.map +1 -1
package/dist/types/src/auth/providers.d.ts.map +1 -1
package/dist/types/src/index.d.ts +5 -136
package/dist/types/src/index.d.ts.map +1 -1
package/dist/types/src/nanoclients.d.ts +107 -0
package/dist/types/src/nanoclients.d.ts.map +1 -0
package/dist/types/src/nanoindex.d.ts +5 -0
package/dist/types/src/nanoindex.d.ts.map +1 -0
package/dist/types/src/nanotdf/enum/CipherEnum.d.ts +1 -1
package/dist/types/src/nanotdf/enum/CipherEnum.d.ts.map +1 -1
package/dist/types/src/nanotdf/enum/PolicyTypeEnum.d.ts +1 -1
package/dist/types/src/nanotdf/enum/PolicyTypeEnum.d.ts.map +1 -1
package/dist/types/src/nanotdf/models/DefaultParams.d.ts +1 -1
package/dist/types/src/nanotdf/models/ResourceLocator.d.ts.map +1 -1
package/dist/types/src/nanotdf-crypto/generateKeyPair.d.ts +1 -1
package/dist/types/src/nanotdf-crypto/generateKeyPair.d.ts.map +1 -1
package/dist/types/src/nanotdf-crypto/generateRandomNumber.d.ts +1 -1
package/dist/types/src/nanotdf-crypto/generateRandomNumber.d.ts.map +1 -1
package/dist/types/src/nanotdf-crypto/index.d.ts +2 -3
package/dist/types/src/nanotdf-crypto/index.d.ts.map +1 -1
package/dist/types/src/nanotdf-crypto/keyAgreement.d.ts.map +1 -1
package/dist/types/src/opentdf.d.ts +106 -0
package/dist/types/src/opentdf.d.ts.map +1 -0
package/dist/types/src/seekable.d.ts +39 -0
package/dist/types/src/seekable.d.ts.map +1 -0
package/dist/types/src/tdf/AttributeObject.d.ts +0 -2
package/dist/types/src/tdf/AttributeObject.d.ts.map +1 -1
package/dist/types/src/tdf/NanoTDF/NanoTDF.d.ts +2 -2
package/dist/types/src/tdf/NanoTDF/NanoTDF.d.ts.map +1 -1
package/dist/types/src/tdf/Policy.d.ts.map +1 -1
package/dist/types/src/tdf/PolicyObject.d.ts +0 -1
package/dist/types/src/tdf/PolicyObject.d.ts.map +1 -1
package/dist/types/src/utils.d.ts +0 -1
package/dist/types/src/utils.d.ts.map +1 -1
package/dist/types/src/version.d.ts +4 -0
package/dist/types/src/version.d.ts.map +1 -1
package/dist/types/tdf3/index.d.ts +3 -2
package/dist/types/tdf3/index.d.ts.map +1 -1
package/dist/types/tdf3/src/assertions.d.ts +3 -3
package/dist/types/tdf3/src/assertions.d.ts.map +1 -1
package/dist/types/tdf3/src/client/DecoratedReadableStream.d.ts +1 -13
package/dist/types/tdf3/src/client/DecoratedReadableStream.d.ts.map +1 -1
package/dist/types/tdf3/src/client/builders.d.ts +43 -37
package/dist/types/tdf3/src/client/builders.d.ts.map +1 -1
package/dist/types/tdf3/src/client/index.d.ts +8 -9
package/dist/types/tdf3/src/client/index.d.ts.map +1 -1
package/dist/types/tdf3/src/client/validation.d.ts +3 -3
package/dist/types/tdf3/src/client/validation.d.ts.map +1 -1
package/dist/types/tdf3/src/crypto/crypto-utils.d.ts.map +1 -1
package/dist/types/tdf3/src/index.d.ts +1 -1
package/dist/types/tdf3/src/index.d.ts.map +1 -1
package/dist/types/tdf3/src/models/key-access.d.ts +63 -15
package/dist/types/tdf3/src/models/key-access.d.ts.map +1 -1
package/dist/types/tdf3/src/models/manifest.d.ts +2 -0
package/dist/types/tdf3/src/models/manifest.d.ts.map +1 -1
package/dist/types/tdf3/src/models/policy.d.ts +0 -1
package/dist/types/tdf3/src/models/policy.d.ts.map +1 -1
package/dist/types/tdf3/src/tdf.d.ts +20 -24
package/dist/types/tdf3/src/tdf.d.ts.map +1 -1
package/dist/types/tdf3/src/utils/index.d.ts +0 -2
package/dist/types/tdf3/src/utils/index.d.ts.map +1 -1
package/dist/types/tdf3/src/utils/unwrap.d.ts +2 -0
package/dist/types/tdf3/src/utils/unwrap.d.ts.map +1 -0
package/dist/types/tdf3/src/utils/zip-reader.d.ts +1 -1
package/dist/types/tdf3/src/utils/zip-reader.d.ts.map +1 -1
package/dist/types/tdf3/src/utils/zip-writer.d.ts +2 -2
package/dist/web/src/access.js +40 -7
package/dist/web/src/auth/auth.js +1 -1
package/dist/web/src/auth/oidc-clientcredentials-provider.js +1 -1
package/dist/web/src/auth/oidc-externaljwt-provider.js +1 -1
package/dist/web/src/auth/oidc-refreshtoken-provider.js +1 -1
package/dist/web/src/auth/oidc.js +1 -1
package/dist/web/src/auth/providers.js +1 -1
package/dist/web/src/concurrency.js +1 -1
package/dist/web/src/encodings/base64.js +1 -1
package/dist/web/src/encodings/hex.js +1 -1
package/dist/web/src/errors.js +1 -1
package/dist/web/src/index.js +6 -310
package/dist/web/src/nanoclients.js +280 -0
package/dist/web/src/nanoindex.js +5 -0
package/dist/web/src/nanotdf/Client.js +1 -1
package/dist/web/src/nanotdf/NanoTDF.js +1 -1
package/dist/web/src/nanotdf/encrypt-dataset.js +1 -1
package/dist/web/src/nanotdf/encrypt.js +1 -1
package/dist/web/src/nanotdf/models/Ciphers.js +1 -1
package/dist/web/src/nanotdf/models/EcCurves.js +1 -1
package/dist/web/src/nanotdf/models/Header.js +1 -1
package/dist/web/src/nanotdf/models/Payload.js +1 -1
package/dist/web/src/nanotdf/models/Policy/AbstractPolicy.js +1 -1
package/dist/web/src/nanotdf/models/Policy/EmbeddedPolicy.js +1 -1
package/dist/web/src/nanotdf/models/Policy/PolicyFactory.js +1 -1
package/dist/web/src/nanotdf/models/ResourceLocator.js +1 -1
package/dist/web/src/nanotdf/models/Signature.js +1 -1
package/dist/web/src/nanotdf-crypto/ciphers.js +1 -1
package/dist/web/src/nanotdf-crypto/ecdsaSignature.js +1 -1
package/dist/web/src/nanotdf-crypto/generateKeyPair.js +2 -2
package/dist/web/src/nanotdf-crypto/generateRandomNumber.js +2 -2
package/dist/web/src/nanotdf-crypto/index.js +3 -4
package/dist/web/src/nanotdf-crypto/keyAgreement.js +9 -6
package/dist/web/src/nanotdf-crypto/pemPublicToCrypto.js +1 -1
package/dist/web/src/opentdf.js +234 -0
package/dist/web/src/policy/api.js +1 -1
package/dist/web/src/policy/granter.js +1 -1
package/dist/web/src/seekable.js +148 -0
package/dist/web/src/tdf/AttributeObject.js +1 -2
package/dist/web/src/tdf/Policy.js +1 -2
package/dist/web/src/utils.js +2 -3
package/dist/web/src/version.js +5 -1
package/dist/web/tdf3/index.js +3 -2
package/dist/web/tdf3/src/assertions.js +21 -6
package/dist/web/tdf3/src/binary.js +1 -1
package/dist/web/tdf3/src/ciphers/aes-gcm-cipher.js +1 -1
package/dist/web/tdf3/src/ciphers/symmetric-cipher-base.js +1 -1
package/dist/web/tdf3/src/client/DecoratedReadableStream.js +4 -68
package/dist/web/tdf3/src/client/builders.js +26 -22
package/dist/web/tdf3/src/client/index.js +69 -52
package/dist/web/tdf3/src/client/validation.js +1 -1
package/dist/web/tdf3/src/crypto/crypto-utils.js +1 -1
package/dist/web/tdf3/src/crypto/index.js +1 -1
package/dist/web/tdf3/src/index.js +2 -2
package/dist/web/tdf3/src/models/attribute-set.js +1 -1
package/dist/web/tdf3/src/models/encryption-information.js +3 -3
package/dist/web/tdf3/src/models/key-access.js +47 -24
package/dist/web/tdf3/src/models/policy.js +1 -1
package/dist/web/tdf3/src/tdf.js +149 -130
package/dist/web/tdf3/src/utils/buffer-crc32.js +1 -1
package/dist/web/tdf3/src/utils/index.js +1 -5
package/dist/web/tdf3/src/utils/keysplit.js +1 -1
package/dist/web/tdf3/src/utils/unwrap.js +18 -0
package/dist/web/tdf3/src/utils/zip-reader.js +1 -1
package/dist/web/tdf3/src/utils/zip-writer.js +1 -1
package/package.json +45 -42
package/src/access.ts +37 -1
package/src/index.ts +5 -435
package/src/nanoclients.ts +405 -0
package/src/nanoindex.ts +4 -0
package/src/nanotdf-crypto/generateKeyPair.ts +1 -1
package/src/nanotdf-crypto/generateRandomNumber.ts +1 -1
package/src/nanotdf-crypto/index.ts +2 -3
package/src/nanotdf-crypto/keyAgreement.ts +14 -7
package/src/opentdf.ts +441 -0
package/{tdf3/src/utils/chunkers.ts → src/seekable.ts} +69 -20
package/src/tdf/AttributeObject.ts +0 -3
package/src/tdf/Policy.ts +0 -1
package/src/tdf/PolicyObject.ts +0 -1
package/src/utils.ts +1 -3
package/src/version.ts +5 -0
package/tdf3/index.ts +14 -2
package/tdf3/src/assertions.ts +33 -8
package/tdf3/src/client/DecoratedReadableStream.ts +2 -78
package/tdf3/src/client/builders.ts +44 -26
package/tdf3/src/client/index.ts +101 -86
package/tdf3/src/index.ts +1 -1
package/tdf3/src/models/encryption-information.ts +2 -2
package/tdf3/src/models/key-access.ts +120 -38
package/tdf3/src/models/manifest.ts +3 -0
package/tdf3/src/models/policy.ts +0 -1
package/tdf3/src/tdf.ts +251 -207
package/tdf3/src/utils/index.ts +0 -5
package/tdf3/src/utils/unwrap.ts +17 -0
package/tdf3/src/utils/zip-reader.ts +1 -1
package/dist/cjs/src/nanotdf-crypto/importRawKey.js +0 -18
package/dist/cjs/tdf3/src/templates/default.html.js +0 -98
package/dist/cjs/tdf3/src/templates/escaper.js +0 -15
package/dist/cjs/tdf3/src/templates/index.js +0 -12
package/dist/cjs/tdf3/src/utils/chunkers.js +0 -114
package/dist/cjs/tdf3/src/version.js +0 -6
package/dist/types/src/nanotdf-crypto/importRawKey.d.ts +0 -13
package/dist/types/src/nanotdf-crypto/importRawKey.d.ts.map +0 -1
package/dist/types/tdf3/src/templates/default.html.d.ts +0 -8
package/dist/types/tdf3/src/templates/default.html.d.ts.map +0 -1
package/dist/types/tdf3/src/templates/escaper.d.ts +0 -6
package/dist/types/tdf3/src/templates/escaper.d.ts.map +0 -1
package/dist/types/tdf3/src/templates/index.d.ts +0 -3
package/dist/types/tdf3/src/templates/index.d.ts.map +0 -1
package/dist/types/tdf3/src/utils/chunkers.d.ts +0 -29
package/dist/types/tdf3/src/utils/chunkers.d.ts.map +0 -1
package/dist/types/tdf3/src/version.d.ts +0 -3
package/dist/types/tdf3/src/version.d.ts.map +0 -1
package/dist/web/src/nanotdf-crypto/importRawKey.js +0 -15
package/dist/web/tdf3/src/templates/default.html.js +0 -96
package/dist/web/tdf3/src/templates/escaper.js +0 -10
package/dist/web/tdf3/src/templates/index.js +0 -3
package/dist/web/tdf3/src/utils/chunkers.js +0 -107
package/dist/web/tdf3/src/version.js +0 -3
package/src/nanotdf-crypto/importRawKey.ts +0 -19
package/tdf3/src/templates/default.html.ts +0 -105
package/tdf3/src/templates/escaper.ts +0 -10
package/tdf3/src/templates/index.ts +0 -2
package/tdf3/src/version.ts +0 -2

package/tdf3/src/assertions.ts CHANGED Viewed

@@ -3,7 +3,7 @@ import { type KeyLike, SignJWT, jwtVerify } from 'jose';
 import { base64, hex } from '../../src/encodings/index.js';
 import { ConfigurationError, IntegrityError, InvalidFileError } from '../../src/errors.js';
-export type AssertionKeyAlg = 'RS256' | 'HS256';
+export type AssertionKeyAlg = 'ES256' | 'RS256' | 'HS256';
 export type AssertionType = 'handling' | 'other';
 export type Scope = 'tdo' | 'payload';
 export type AppliesToState = 'encrypted' | 'unencrypted';
@@ -110,8 +110,9 @@ export function isAssertionConfig(obj: unknown): obj is AssertionConfig {
  */
 export async function verify(
   thiz: Assertion,
-  aggregateHash: string,
-  key: AssertionKey
+  aggregateHash: Uint8Array,
+  key: AssertionKey,
+  isLegacyTDF: boolean
 ): Promise<void> {
   let payload: AssertionPayload;
   try {
@@ -126,14 +127,25 @@ export async function verify(
   // Get the hash of the assertion
   const hashOfAssertion = await hash(thiz);
-  const combinedHash = aggregateHash + hashOfAssertion;
-  const encodedHash = base64.encode(combinedHash);
   // check if assertionHash is same as hashOfAssertion
   if (hashOfAssertion !== assertionHash) {
     throw new IntegrityError('Assertion hash mismatch');
   }
+  let encodedHash: string;
+  if (isLegacyTDF) {
+    const aggregateHashAsStr = new TextDecoder('utf-8').decode(aggregateHash);
+    const combinedHash = aggregateHashAsStr + hashOfAssertion;
+    encodedHash = base64.encode(combinedHash);
+  } else {
+    const combinedHash = concatenateUint8Arrays(
+      aggregateHash,
+      new Uint8Array(hex.decodeArrayBuffer(assertionHash))
+    );
+    encodedHash = base64.encodeArrayBuffer(combinedHash);
+  }
   // check if assertionSig is same as encodedHash
   if (assertionSig !== encodedHash) {
     throw new IntegrityError('Failed integrity check on assertion signature');
@@ -144,7 +156,7 @@ export async function verify(
  * Creates an Assertion object with the specified properties.
  */
 export async function CreateAssertion(
-  aggregateHash: string,
+  aggregateHash: Uint8Array,
   assertionConfig: AssertionConfig
 ): Promise<Assertion> {
   if (!assertionConfig.signingKey) {
@@ -162,8 +174,11 @@ export async function CreateAssertion(
   };
   const assertionHash = await hash(a);
-  const combinedHash = aggregateHash + assertionHash;
-  const encodedHash = base64.encode(combinedHash);
+  const combinedHash = concatenateUint8Arrays(
+    aggregateHash,
+    new Uint8Array(hex.decodeArrayBuffer(assertionHash))
+  );
+  const encodedHash = base64.encodeArrayBuffer(combinedHash);
   return await sign(a, assertionHash, encodedHash, assertionConfig.signingKey);
 }
@@ -189,3 +204,13 @@ export type AssertionVerificationKeys = {
   DefaultKey?: AssertionKey;
   Keys: Record<string, AssertionKey>;
 };
+function concatenateUint8Arrays(array1: Uint8Array, array2: Uint8Array): Uint8Array {
+  const combinedLength = array1.length + array2.length;
+  const combinedArray = new Uint8Array(combinedLength);
+  combinedArray.set(array1, 0);
+  combinedArray.set(array2, array1.length);
+  return combinedArray;
+}

package/tdf3/src/client/DecoratedReadableStream.ts CHANGED Viewed

@@ -1,11 +1,5 @@
-import { EventEmitter } from 'eventemitter3';
-import streamSaver from 'streamsaver';
-import { fileSave } from 'browser-fs-access';
-import { isFirefox } from '../../../src/utils.js';
 import { type Metadata } from '../tdf.js';
 import { type Manifest } from '../models/index.js';
-import { ConfigurationError } from '../../../src/errors.js';
 export async function streamToBuffer(stream: ReadableStream<Uint8Array>): Promise<Uint8Array> {
   const accumulator = await new Response(stream).arrayBuffer();
@@ -24,9 +18,6 @@ export class DecoratedReadableStream {
   tdfSize: number;
   fileSize: number | undefined;
   stream: ReadableStream<Uint8Array>;
-  ee: EventEmitter;
-  on: EventEmitter['on'];
-  emit: EventEmitter['emit'];
   metadata?: Metadata;
   manifest: Manifest;
   fileStreamServiceWorker?: string;
@@ -42,23 +33,10 @@ export class DecoratedReadableStream {
     this.stream = new ReadableStream(underlyingSource, {
       highWaterMark: 1,
     }) as ReadableStream<Uint8Array>;
-    this.ee = new EventEmitter();
-    this.on = (...args) => this.ee.on(...args);
-    this.emit = (...args) => this.ee.emit(...args);
   }
   async getMetadata() {
-    return new Promise((resolve, reject) => {
-      if (this.metadata) {
-        resolve(this.metadata);
-      } else {
-        this.on('error', reject);
-        this.on('rewrap', (rewrapResponse: Metadata) => {
-          this.metadata = rewrapResponse;
-          resolve(rewrapResponse);
-        });
-      }
-    });
+    return this.metadata;
   }
   /**
@@ -82,66 +60,12 @@ export class DecoratedReadableStream {
   async toString(): Promise<string> {
     return new Response(this.stream).text();
   }
-  /**
-   * Dump the stream content to a local file. This will consume the stream.
-   *
-   * @param filepath The path of the local file to write plaintext to.
-   * @param encoding The charset encoding to use. Defaults to utf-8.
-   */
-  async toFile(
-    filepath = 'download.tdf',
-    options?: BufferEncoding | DecoratedReadableStreamSinkOptions
-  ): Promise<void> {
-    if (options && typeof options === 'string') {
-      throw new ConfigurationError('unsupported operation: Cannot set encoding in browser');
-    }
-    if (isFirefox()) {
-      await fileSave(new Response(this.stream), {
-        fileName: filepath,
-        extensions: [`.${filepath.split('.').pop()}`],
-      });
-      return;
-    }
-    if (this.fileStreamServiceWorker) {
-      streamSaver.mitm = this.fileStreamServiceWorker;
-    }
-    const fileStream = streamSaver.createWriteStream(filepath, {
-      writableStrategy: { highWaterMark: 1 },
-      readableStrategy: { highWaterMark: 1 },
-    });
-    if (WritableStream) {
-      return this.stream.pipeTo(fileStream, options);
-    }
-    // Write (pipe) manually
-    const reader = this.stream.getReader();
-    const writer = fileStream.getWriter();
-    const pump = async (): Promise<void> => {
-      const res = await reader.read();
-      if (res.done) {
-        return await writer.close();
-      } else {
-        await writer.write(res.value);
-        return pump();
-      }
-    };
-    return pump();
-    // const pump = (): Promise<void> =>
-    //   reader.read().then((res) => (res.done ? writer.close() : writer.write(res.value).then(pump)));
-    // pump();
-  }
 }
 export function isDecoratedReadableStream(s: unknown): s is DecoratedReadableStream {
   return (
+    typeof (s as DecoratedReadableStream)?.stream !== 'undefined' &&
     typeof (s as DecoratedReadableStream)?.toBuffer !== 'undefined' &&
-    typeof (s as DecoratedReadableStream)?.toFile !== 'undefined' &&
     typeof (s as DecoratedReadableStream)?.toString !== 'undefined'
   );
 }

package/tdf3/src/client/builders.ts CHANGED Viewed

@@ -6,9 +6,10 @@ import { Binary } from '../binary.js';
 import { ConfigurationError } from '../../../src/errors.js';
 import { PemKeyPair } from '../crypto/declarations.js';
 import { DecoratedReadableStream } from './DecoratedReadableStream.js';
-import { type Chunker } from '../utils/chunkers.js';
+import { type Chunker } from '../../../src/seekable.js';
 import { AssertionConfig, AssertionVerificationKeys } from '../assertions.js';
 import { Value } from '../../../src/policy/attributes.js';
+import { KasPublicKeyAlgorithm, OriginAllowList } from '../../../src/access.js';
 export const DEFAULT_SEGMENT_SIZE: number = 1024 * 1024;
 export type Scope = {
@@ -34,16 +35,14 @@ export type SplitStep = {
 };
 export type EncryptParams = {
+  byteLimit?: number;
   source: ReadableStream<Uint8Array>;
   opts?: { keypair: PemKeyPair };
   autoconfigure?: boolean;
   scope?: Scope;
   metadata?: Metadata;
   keypair?: CryptoKeyPair;
-  // Deprecated: Only offline more is currently supported
-  offline?: boolean;
   windowSize?: number;
-  asHtml?: boolean;
   getPolicyId?: () => Scope['policyId'];
   mimeType?: string;
   payloadKey?: Binary;
@@ -51,10 +50,18 @@ export type EncryptParams = {
   splitPlan?: SplitStep[];
   streamMiddleware?: EncryptStreamMiddleware;
   assertionConfigs?: AssertionConfig[];
+  defaultKASEndpoint?: string;
+  // Preferred wrapping key algorithm. Used when KID resolution is not available.
+  wrappingKeyAlgorithm?: KasPublicKeyAlgorithm;
+  // Unsupported
+  asHtml?: boolean;
+  // Unsupported
+  offline?: boolean;
 };
 // 'Readonly<EncryptParams>': scope, metadata, offline, windowSize, asHtml
 // deep copy is expensive, could be faster is Immer used, but to keep SDK work
 // stable we can just make this object readonly
 function freeze<Type>(obj: Type): Readonly<Type> {
@@ -75,9 +82,7 @@ class EncryptParamsBuilder {
         attributes: [],
       },
       keypair: undefined,
-      offline: false,
       windowSize: DEFAULT_SEGMENT_SIZE,
-      asHtml: false,
       assertionConfigs: [],
     }
   ) {
@@ -93,6 +98,11 @@ class EncryptParamsBuilder {
    * @param {Readable} readStream - a Readable Stream to encrypt.
    */
   setStreamSource(readStream: ReadableStream<Uint8Array>) {
+    if (!readStream?.getReader) {
+      throw new ConfigurationError(
+        `Source must be a WebReadableStream. Run node streams through stream.Readable.toWeb()`
+      );
+    }
     this._params.source = readStream;
   }
@@ -117,6 +127,9 @@ class EncryptParamsBuilder {
    * @param {string} string - a string to encrypt.
    */
   setStringSource(string: string) {
+    if (!(string && typeof string === 'string')) {
+      throw new ConfigurationError('StringSource must be a string');
+    }
     const stream = new ReadableStream({
       pull(controller) {
         controller.enqueue(new TextEncoder().encode(string));
@@ -382,37 +395,24 @@ class EncryptParamsBuilder {
   }
   /**
-   * Whether the encrypted data should be formatted using html. This allows authorized users to
-   * double click and read using the Virtru Secure Reader, at the cost of reduced space efficiency.
-   * <br/><br/>
-   * This is enabled by default.
-   * @return {boolean} true if the encrypted data will be in html format.
+   * @deprecated This feature is not supported
    */
   hasHtmlFormat(): boolean {
-    return !!this._params.asHtml;
+    return false;
   }
   /**
-   * Specify that the encrypted data should be formatted using html. This allows authorized users to
-   * double click and read using the Virtru Secure Reader, at the cost of reduced space efficiency.
-   * <br/><br/>
-   * This is enabled by default.
+   * @deprecated This feature is not supported
    */
   setHtmlFormat() {
-    this._params.asHtml = true;
+    throw new ConfigurationError('HTML format is not supported');
   }
   /**
-   * Specify that the encrypted data should be formatted using html. This allows authorized users to
-   * double click and read using the Virtru Secure Reader, at the cost of reduced space efficiency.
-   * Returns this object for method chaining.
-   * <br/><br/>
-   * This is enabled by default.
-   * @return {EncryptParamsBuilder} - this object.
+   * @deprecated This feature is not supported
    */
   withHtmlFormat(): EncryptParamsBuilder {
-    this.setHtmlFormat();
-    return this;
+    throw new ConfigurationError('HTML format is not supported');
   }
   /**
@@ -514,11 +514,13 @@ export type DecryptSource =
 export type DecryptParams = {
   source: DecryptSource;
+  allowList?: OriginAllowList;
   keyMiddleware?: DecryptKeyMiddleware;
   streamMiddleware?: DecryptStreamMiddleware;
   assertionVerificationKeys?: AssertionVerificationKeys;
   concurrencyLimit?: number;
   noVerifyAssertions?: boolean;
+  wrappingKeyAlgorithm?: KasPublicKeyAlgorithm;
 };
 /**
@@ -637,6 +639,9 @@ class DecryptParamsBuilder {
    * @param source (node) the path of the local file to decrypt, or the Blob (browser/node)
    */
   setFileSource(source: Blob) {
+    if (!(source instanceof Blob)) {
+      throw new ConfigurationError('File source must be a Blob');
+    }
     this._params.source = { type: 'file-browser', location: source };
   }
@@ -680,6 +685,19 @@ class DecryptParamsBuilder {
     return this;
   }
+  /**
+   * Sets the assertion verification keys for the decryption parameters.
+   *
+   * @param {AssertionVerificationKeys} assertionVerificationKeys - An array of assertion configurations to be set.
+   * @returns {DecryptParamsBuilder} The current instance of the EncryptParamsBuilder for method chaining.
+   */
+  withAssertionVerificationKeys(
+    assertionVerificationKeys: AssertionVerificationKeys
+  ): DecryptParamsBuilder {
+    this._params.assertionVerificationKeys = assertionVerificationKeys;
+    return this;
+  }
   _deepCopy(_params: DecryptParams) {
     return freeze({ ..._params });
   }