@opentdf/sdk 0.8.0-beta.71 → 0.8.0-beta.74

package/dist/web/src/nanotdf/Client.js

@@ -1,310 +0,0 @@
-import { create, toJsonString } from '@bufbuild/protobuf';
-import { UnsignedRewrapRequest_WithPolicyRequestSchema, UnsignedRewrapRequestSchema, } from '../platform/kas/kas_pb.js';
-import { generateKeyPair, keyAgreement } from '../nanotdf-crypto/index.js';
-import getHkdfSalt from './helpers/getHkdfSalt.js';
-import DefaultParams from './models/DefaultParams.js';
-import { fetchKeyAccessServers, fetchWrappedKey, OriginAllowList, } from '../access.js';
-import { handleRpcRewrapErrorString } from '../../src/access/access-rpc.js';
-import { isAuthProvider, reqSignature } from '../auth/providers.js';
-import { ConfigurationError, DecryptError, TdfError, UnsafeUrlError } from '../errors.js';
-import { cryptoPublicToPem, getRequiredObligationFQNs, pemToCryptoPublicKey, upgradeRewrapResponseV1, validateSecureUrl, getPlatformUrlFromKasEndpoint, } from '../utils.js';
-function toJWSAlg(c) {
-    const { algorithm } = c;
-    switch (algorithm.name) {
-        case 'RSASSA-PKCS1-v1_5':
-        case 'RSA-PSS':
-        case 'RSA-OAEP': {
-            const r = algorithm;
-            switch (r.modulusLength) {
-                case 2048:
-                    return 'RS256';
-                case 3072:
-                    return 'RS384';
-                case 4096:
-                    return 'RS512';
-            }
-            break;
-        }
-        case 'ECDSA':
-        case 'ECDH': {
-            return 'ES256';
-        }
-    }
-    throw new ConfigurationError(`unsupported key algorithm ${JSON.stringify(algorithm)}`);
-}
-async function generateEphemeralKeyPair() {
-    const { publicKey, privateKey } = await generateKeyPair();
-    if (!privateKey || !publicKey) {
-        throw Error('Key pair generation failed');
-    }
-    return { publicKey, privateKey };
-}
-async function generateSignerKeyPair() {
-    return crypto.subtle.generateKey({
-        name: 'RSASSA-PKCS1-v1_5',
-        hash: 'SHA-256',
-        modulusLength: 2048,
-        publicExponent: new Uint8Array([0x01, 0x00, 0x01]),
-    }, true, ['sign', 'verify']);
-}
-/**
- * A Client encapsulates sessions interacting with TDF3 and nanoTDF backends, KAS and any
- * plugin-based sessions like identity and further attribute control. Most importantly, it is responsible
- * for local key and token management, including the ephemeral public/private keypairs
- * used for encrypting and decrypting information.
- *
- * @link https://developer.mozilla.org/en-US/docs/Web/API/CryptoKeyPair
- *
- * @example
- * import { Client, clientAuthProvider, decrypt, encrypt } from '@opentdf/sdk/nanotdf`
- *
- * const OIDC_ENDPOINT = 'http://localhost:65432/auth/';
- * const KAS_URL = 'http://localhost:65432/kas';
- *
- * let client = new Client(
- *    await clientAuthProvider({
- *      clientId: 'tdf-client',
- *      clientSecret: '123-456',
- *      oidcOrigin: OIDC_ENDPOINT,
- *    }),
- *    KAS_URL
- *  );
- *
- * // t=1
- * let nanoTDFEncrypted = await encrypt('some string', client.unwrappedKey);
- * let nanoTDFDecrypted = await decrypt(nanoTDFEncrypted, client.unwrappedKey);
- * nanoTDFDecrypted.toString() // 'some string'
- *
- */
-class Client {
-    /**
-     * Create new NanoTDF Client
-     *
-     * The Ephemeral Key Pair can either be provided or will be generate when fetching the entity object. Once set it
-     * cannot be changed. If a new ephemeral key is desired it a new client should be initialized.
-     * There is no performance impact for creating a new client IFF the ephemeral key pair is provided.
-     */
-    constructor(optsOrOldAuthProvider, kasUrl, ephemeralKeyPair, dpopEnabled = false) {
-        this.dissems = [];
-        this.dataAttributes = [];
-        const enwrapAuthProvider = (a) => {
-            return {
-                updateClientPublicKey: async (signingKey) => {
-                    await a.updateClientPublicKey(signingKey);
-                },
-                withCreds: async (httpReq) => {
-                    const signer = await this.requestSignerKeyPair;
-                    if (!signer) {
-                        throw new ConfigurationError('failed to find or generate signer session key');
-                    }
-                    await a.updateClientPublicKey(signer);
-                    return a.withCreds(httpReq);
-                },
-            };
-        };
-        if (isAuthProvider(optsOrOldAuthProvider)) {
-            this.authProvider = enwrapAuthProvider(optsOrOldAuthProvider);
-            if (!kasUrl) {
-                throw new ConfigurationError('please specify kasEndpoint');
-            }
-            // TODO Disallow http KAS. For now just log as error
-            validateSecureUrl(kasUrl);
-            this.kasUrl = kasUrl;
-            this.dpopEnabled = dpopEnabled;
-            if (ephemeralKeyPair) {
-                this.ephemeralKeyPair = Promise.resolve(ephemeralKeyPair);
-            }
-            else {
-                this.ephemeralKeyPair = generateEphemeralKeyPair();
-            }
-            this.iv = 1;
-        }
-        else {
-            const { allowedKases, fulfillableObligationFQNs = [], ignoreAllowList, authProvider, dpopEnabled, dpopKeys, ephemeralKeyPair, kasEndpoint, platformUrl, } = optsOrOldAuthProvider;
-            this.authProvider = enwrapAuthProvider(authProvider);
-            // TODO Disallow http KAS. For now just log as error
-            validateSecureUrl(kasEndpoint);
-            this.kasUrl = kasEndpoint;
-            this.platformUrl = platformUrl;
-            if (allowedKases?.length || ignoreAllowList) {
-                this.allowedKases = new OriginAllowList(allowedKases || [], ignoreAllowList);
-            }
-            this.fulfillableObligationFQNs = fulfillableObligationFQNs;
-            this.dpopEnabled = !!dpopEnabled;
-            if (dpopKeys) {
-                this.requestSignerKeyPair = dpopKeys;
-            }
-            else {
-                this.requestSignerKeyPair = generateSignerKeyPair();
-            }
-            if (ephemeralKeyPair) {
-                this.ephemeralKeyPair = ephemeralKeyPair;
-            }
-            else {
-                this.ephemeralKeyPair = generateEphemeralKeyPair();
-            }
-            this.iv = 1;
-        }
-    }
-    /**
-     * Add attribute to the TDF file/data
-     *
-     * @param attribute The attribute that decides the access control of the TDF.
-     */
-    addAttribute(attribute) {
-        this.dataAttributes.push(attribute);
-    }
-    /**
-     * Rewrap key
-     *
-     * @important the `fetchEntityObject` method must be called prior to
-     * @param nanoTdfHeader the full header for the nanotdf
-     * @param kasRewrapUrl key access server's rewrap endpoint
-     * @param magicNumberVersion nanotdf container version
-     * @param clientVersion version of the client, as SemVer
-     */
-    async rewrapKey(nanoTdfHeader, kasRewrapUrl, magicNumberVersion, clientVersion) {
-        let allowedKases = this.allowedKases;
-        if (!allowedKases) {
-            allowedKases = await fetchKeyAccessServers(this.platformUrl, this.authProvider);
-        }
-        if (!allowedKases.allows(kasRewrapUrl)) {
-            throw new UnsafeUrlError(`request URL ∉ ${allowedKases.origins};`, kasRewrapUrl);
-        }
-        const ephemeralKeyPair = await this.ephemeralKeyPair;
-        const requestSignerKeyPair = await this.requestSignerKeyPair;
-        // Ensure the ephemeral key pair has been set or generated (see fetchEntityObject)
-        if (!ephemeralKeyPair?.privateKey) {
-            throw new ConfigurationError('Ephemeral key has not been set or generated');
-        }
-        if (!requestSignerKeyPair?.privateKey) {
-            throw new ConfigurationError('Signer key has not been set or generated');
-        }
-        const unsignedRequest = create(UnsignedRewrapRequestSchema, {
-            clientPublicKey: await cryptoPublicToPem(ephemeralKeyPair.publicKey),
-            requests: [
-                create(UnsignedRewrapRequest_WithPolicyRequestSchema, {
-                    keyAccessObjects: [
-                        {
-                            keyAccessObjectId: 'kao-0', // only one kao, no bulk
-                            keyAccessObject: {
-                                header: new Uint8Array(nanoTdfHeader),
-                                kasUrl: '',
-                                protocol: Client.KAS_PROTOCOL,
-                                keyType: Client.KEY_ACCESS_REMOTE,
-                            },
-                        },
-                    ],
-                    algorithm: DefaultParams.defaultECAlgorithm,
-                }),
-            ],
-            keyAccess: {
-                header: new Uint8Array(nanoTdfHeader),
-                kasUrl: '',
-                protocol: Client.KAS_PROTOCOL,
-                keyType: Client.KEY_ACCESS_REMOTE,
-            },
-            algorithm: DefaultParams.defaultECAlgorithm,
-        });
-        const requestBodyStr = toJsonString(UnsignedRewrapRequestSchema, unsignedRequest);
-        const jwtPayload = { requestBody: requestBodyStr };
-        const signedRequestToken = await reqSignature(jwtPayload, requestSignerKeyPair.privateKey, {
-            alg: toJWSAlg(requestSignerKeyPair.publicKey),
-        });
-        // Wrapped
-        const rewrapResp = await fetchWrappedKey(kasRewrapUrl, signedRequestToken, this.authProvider, this.fulfillableObligationFQNs);
-        // Upgrade any V1 responses to V2
-        upgradeRewrapResponseV1(rewrapResp);
-        const result = rewrapResp.responses?.[0]?.results?.[0];
-        if (!result) {
-            // This should not happen - KAS should always return at least one response and one result
-            // or the upgradeRewrapResponseV1 should have created them
-            throw new DecryptError('KAS rewrap response missing expected response or result');
-        }
-        const requiredObligations = getRequiredObligationFQNs(rewrapResp);
-        let entityWrappedKey;
-        switch (result.result.case) {
-            case 'kasWrappedKey': {
-                entityWrappedKey = result.result.value;
-                break;
-            }
-            case 'error': {
-                handleRpcRewrapErrorString(result.result.value, getPlatformUrlFromKasEndpoint(kasRewrapUrl), requiredObligations);
-            }
-            default: {
-                throw new DecryptError('KAS rewrap response missing wrapped key');
-            }
-        }
-        // Extract the iv and ciphertext
-        const ivLength = clientVersion == Client.SDK_INITIAL_RELEASE ? Client.INITIAL_RELEASE_IV_SIZE : Client.IV_SIZE;
-        const iv = entityWrappedKey.subarray(0, ivLength);
-        const encryptedSharedKey = entityWrappedKey.subarray(ivLength);
-        let kasPublicKey;
-        try {
-            // Let us import public key as a cert or public key
-            kasPublicKey = await pemToCryptoPublicKey(rewrapResp.sessionPublicKey);
-        }
-        catch (cause) {
-            throw new ConfigurationError(`internal: [${kasRewrapUrl}] PEM Public Key to crypto public key failed. Is PEM formatted correctly?`, cause);
-        }
-        let hkdfSalt;
-        try {
-            // Get the hkdf salt params
-            hkdfSalt = await getHkdfSalt(magicNumberVersion);
-        }
-        catch (e) {
-            throw new TdfError('salting hkdf failed', e);
-        }
-        const { privateKey } = await this.ephemeralKeyPair;
-        // Get the unwrapping key
-        let unwrappingKey;
-        try {
-            unwrappingKey = await keyAgreement(
-            // Ephemeral private key
-            privateKey, kasPublicKey, hkdfSalt);
-        }
-        catch (e) {
-            if (e.name == 'InvalidAccessError' || e.name == 'OperationError') {
-                throw new DecryptError('unable to solve key agreement', e);
-            }
-            else if (e.name == 'NotSupported') {
-                throw new ConfigurationError('unable to unwrap key from kas', e);
-            }
-            throw new TdfError('unable to reach agreement', e);
-        }
-        const authTagLength = 8 * (encryptedSharedKey.byteLength - 32);
-        let decryptedKey;
-        try {
-            // Decrypt the wrapped key
-            decryptedKey = await crypto.subtle.decrypt({ name: 'AES-GCM', iv, tagLength: authTagLength }, unwrappingKey, encryptedSharedKey);
-        }
-        catch (cause) {
-            throw new DecryptError(`unable to decrypt key. Are you using the right KAS? Is the salt correct?`, cause);
-        }
-        // UnwrappedKey
-        let unwrappedKey;
-        try {
-            unwrappedKey = await crypto.subtle.importKey('raw', decryptedKey, 'AES-GCM', 
-            // @security This allows the key to be used in `exportKey` and `wrapKey`
-            // https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto/exportKey
-            // https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto/wrapKey
-            true, 
-            // Want to use the key to encrypt and decrypt. Signing key will be used later.
-            ['encrypt', 'decrypt']);
-        }
-        catch (cause) {
-            throw new DecryptError('Unable to import raw key.', cause);
-        }
-        return {
-            requiredObligations,
-            unwrappedKey: unwrappedKey,
-        };
-    }
-}
-Client.KEY_ACCESS_REMOTE = 'remote';
-Client.KAS_PROTOCOL = 'kas';
-Client.SDK_INITIAL_RELEASE = '0.0.0';
-Client.INITIAL_RELEASE_IV_SIZE = 3;
-Client.IV_SIZE = 12;
-export default Client;
-//# sourceMappingURL=data:application/json;base64,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

package/dist/web/src/nanotdf/NanoTDF.js

@@ -1,89 +0,0 @@
-import { base64 } from '../encodings/index.js';
-import Header from './models/Header.js';
-import Payload from './models/Payload.js';
-import Signature from './models/Signature.js';
-import EncodingEnum from './enum/EncodingEnum.js';
-import { ConfigurationError, InvalidFileError } from '../errors.js';
-// Defaults when none set during encryption
-class NanoTDF {
-    static from(content, encoding, legacyTDF = false) {
-        // If we don't assign an empty array buffer then TS reports buffer as unassigned
-        let buffer;
-        if (typeof content === 'string') {
-            if (!encoding || encoding === EncodingEnum.Base64) {
-                buffer = base64.decodeArrayBuffer(content);
-            }
-            else {
-                throw new ConfigurationError(`Unsupported encoding: ${encoding}`);
-            }
-        }
-        // Handle Uint8Array types
-        else if (ArrayBuffer.isView(content) || content instanceof ArrayBuffer) {
-            buffer = content;
-        }
-        else {
-            throw new ConfigurationError(`unsupported content type`);
-        }
-        const dataView = new Uint8Array(buffer);
-        let offset = 0;
-        // Header
-        const { header, offset: headerOffset } = Header.parse(dataView.subarray(offset));
-        offset += headerOffset;
-        // Payload
-        const { payload, offset: payloadOffset } = Payload.parse(header, dataView.subarray(offset), legacyTDF);
-        offset += payloadOffset;
-        // Signature
-        const { signature, offset: signatureOffset } = Signature.parse(header, dataView.subarray(offset));
-        offset += signatureOffset;
-        // Singature checking
-        if (!header.hasSignature && signature.length > 0) {
-            throw new InvalidFileError("Found signature when there shouldn't be one");
-        }
-        if (header.hasSignature && signature.length === 0) {
-            throw new InvalidFileError('Could not find signature');
-        }
-        return new NanoTDF(header, payload, signature);
-    }
-    constructor(header, payload, signature) {
-        this.header = header;
-        this.payload = payload;
-        this.signature = signature;
-    }
-    /**
-     * Return the content of nano tdf as binary buffer
-     */
-    toBuffer() {
-        let offset = 0;
-        const lengthOfSignature = this.signature && this.signature.length ? this.signature.length : 0;
-        const lengthOfTDF = this.header.length + this.payload.length + lengthOfSignature;
-        const buffer = new ArrayBuffer(lengthOfTDF);
-        // Write the header
-        const headerBufferView = new Uint8Array(buffer, 0, this.header.length);
-        this.header.copyToBuffer(headerBufferView);
-        offset += headerBufferView.length;
-        // Write the payload
-        const payloadBufferView = new Uint8Array(buffer, offset, this.payload.length);
-        this.payload.copyToBuffer(payloadBufferView);
-        offset += payloadBufferView.length;
-        // Write the signature
-        if (this.header.hasSignature && this.signature) {
-            const signatureBufferView = new Uint8Array(buffer, offset, lengthOfSignature);
-            this.signature.copyToBuffer(signatureBufferView);
-        }
-        return buffer;
-    }
-    /**
-     * Return the content of nano tdf as base64 string
-     */
-    toBase64() {
-        const arrayBuffer = this.toBuffer();
-        return base64.encodeArrayBuffer(arrayBuffer);
-    }
-}
-// Add encodings to the NanoTDF class for easy access
-NanoTDF.Encodings = EncodingEnum;
-NanoTDF.Header = Header;
-NanoTDF.Payload = Payload;
-NanoTDF.Signature = Signature;
-export default NanoTDF;
-//# sourceMappingURL=data:application/json;base64,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

package/dist/web/src/nanotdf/browser-entry.js

@@ -1,14 +0,0 @@
-/* globals window */
-/**
- * This file is used for:
- *
- * - es5 browser version of nanoTDF and add it to the window as NanoTDF
- *
- * This is not used for:
- *
- * - es6 web development (use node modules)
- * - node applications
- */
-import NanoTDF from './NanoTDF.js';
-window.NanoTDF = NanoTDF;
-//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiYnJvd3Nlci1lbnRyeS5qcyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbIi4uLy4uLy4uLy4uL3NyYy9uYW5vdGRmL2Jyb3dzZXItZW50cnkudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IkFBQUEsb0JBQW9CO0FBQ3BCOzs7Ozs7Ozs7R0FTRztBQUNILE9BQU8sT0FBTyxNQUFNLGNBQWMsQ0FBQztBQVFuQyxNQUFNLENBQUMsT0FBTyxHQUFHLE9BQU8sQ0FBQyJ9

package/dist/web/src/nanotdf/constants.js

@@ -1,2 +0,0 @@
-export const GMAC_BINDING_LEN = 8;
-//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiY29uc3RhbnRzLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vLi4vLi4vc3JjL25hbm90ZGYvY29uc3RhbnRzLnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiJBQUFBLE1BQU0sQ0FBQyxNQUFNLGdCQUFnQixHQUFHLENBQUMsQ0FBQyJ9

package/dist/web/src/nanotdf/decrypt.js

@@ -1,14 +0,0 @@
-import { decrypt as cryptoDecrypt } from '../nanotdf-crypto/index.js';
-/**
- * Decrypt nanotdf with a crypto key
- *
- * @param key Crypto key used to decrypt nanotdf
- * @param nanotdf NanoTDF to decrypt
- */
-export default async function decrypt(key, nanotdf) {
-    // console.log(`Decrypting for content: ${nanotdf}`, nanotdf.header.authTagLength);
-    return await cryptoDecrypt(key, nanotdf.payload.ciphertextWithAuthTag, nanotdf.payload.iv, 
-    // Auth tag length in bits
-    nanotdf.header.authTagLength);
-}
-//# sourceMappingURL=data:application/json;base64,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

package/dist/web/src/nanotdf/encrypt-dataset.js

@@ -1,32 +0,0 @@
-import NanoTDF from './NanoTDF.js';
-import DefaultParams from './models/DefaultParams.js';
-import Payload from './models/Payload.js';
-import { getBitLength as authTagLengthForCipher } from './models/Ciphers.js';
-import encrypt from '../nanotdf-crypto/encrypt.js';
-/**
- * Encrypt the plain data into nanotdf buffer
- *
- * @param symmetricKey Key to encrypt the payload
- * @param header NanoTDF header
- * @param iv IV to be used for encrypting the payload
- * @param data The data to be encrypted
- */
-export default async function encryptDataset(symmetricKey, header, iv, data) {
-    // Auth tag length for policy and payload
-    const authTagLengthInBytes = authTagLengthForCipher(DefaultParams.symmetricCipher) / 8;
-    // Encrypt the payload
-    let payloadAsBuffer;
-    if (typeof data === 'string') {
-        payloadAsBuffer = new TextEncoder().encode(data);
-    }
-    else {
-        payloadAsBuffer = data;
-    }
-    const encryptedPayload = await encrypt(symmetricKey, new Uint8Array(payloadAsBuffer), iv, authTagLengthInBytes * 8);
-    // Create payload
-    const payload = new Payload(iv.slice(-3), new Uint8Array(encryptedPayload.slice(0, -authTagLengthInBytes)), new Uint8Array(encryptedPayload.slice(-authTagLengthInBytes)));
-    // Create a nanotdf.
-    const nanoTDF = new NanoTDF(header, payload);
-    return nanoTDF.toBuffer();
-}
-//# sourceMappingURL=data:application/json;base64,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

package/dist/web/src/nanotdf/encrypt.js

@@ -1,126 +0,0 @@
-import NanoTDF from './NanoTDF.js';
-import Header from './models/Header.js';
-import ResourceLocator from './models/ResourceLocator.js';
-import DefaultParams from './models/DefaultParams.js';
-import EmbeddedPolicy from './models/Policy/EmbeddedPolicy.js';
-import Payload from './models/Payload.js';
-import getHkdfSalt from './helpers/getHkdfSalt.js';
-import { getBitLength as authTagLengthForCipher } from './models/Ciphers.js';
-import { GMAC_BINDING_LEN } from './constants.js';
-import { AlgorithmName, KeyFormat, KeyUsageType } from './../nanotdf-crypto/enums.js';
-import { encrypt as cryptoEncrypt, keyAgreement, digest, exportCryptoKey, } from '../nanotdf-crypto/index.js';
-import { computeECDSASig, extractRSValuesFromSignature } from '../nanotdf-crypto/ecdsaSignature.js';
-import { ConfigurationError } from '../errors.js';
-/**
- * Encrypt the plain data into nanotdf buffer
- *
- * @param policy Policy that will added to the nanotdf
- * @param kasInfo KAS url and public key data
- * @param ephemeralKeyPair SDK ephemeral key pair to generate symmetric key
- * @param iv
- * @param data The data to be encrypted
- * @param ecdsaBinding Flag to enable ECDSA binding
- */
-export default async function encrypt(policy, kasInfo, ephemeralKeyPair, iv, data, ecdsaBinding = DefaultParams.ecdsaBinding) {
-    // Generate a symmetric key.
-    if (!ephemeralKeyPair.privateKey) {
-        throw new ConfigurationError('incomplete ephemeral key');
-    }
-    const symmetricKey = await keyAgreement(ephemeralKeyPair.privateKey, await kasInfo.key, 
-    // Get the hkdf salt params
-    await getHkdfSalt(DefaultParams.magicNumberVersion));
-    // Construct the kas locator
-    const kasResourceLocator = ResourceLocator.fromURL(kasInfo.url, kasInfo.kid);
-    // Auth tag length for policy and payload
-    const authTagLengthInBytes = authTagLengthForCipher(DefaultParams.symmetricCipher) / 8;
-    // Encrypt the policy
-    const policyIV = new Uint8Array(iv.length).fill(0);
-    const policyAsBuffer = new TextEncoder().encode(policy);
-    const encryptedPolicy = await cryptoEncrypt(symmetricKey, policyAsBuffer, policyIV, authTagLengthInBytes * 8);
-    let policyBinding;
-    // Calculate the policy binding.
-    if (ecdsaBinding) {
-        const curveName = await getCurveNameFromPrivateKey(ephemeralKeyPair.privateKey);
-        const ecdsaPrivateKey = await convertECDHToECDSA(ephemeralKeyPair.privateKey, curveName);
-        const ecdsaSignature = await computeECDSASig(ecdsaPrivateKey, new Uint8Array(encryptedPolicy));
-        const { r, s } = extractRSValuesFromSignature(new Uint8Array(ecdsaSignature));
-        const rLength = r.length;
-        const sLength = s.length;
-        policyBinding = new Uint8Array(1 + rLength + 1 + sLength);
-        // Set the lengths and values of r and s in policyBinding
-        policyBinding[0] = rLength;
-        policyBinding.set(r, 1);
-        policyBinding[1 + rLength] = sLength;
-        policyBinding.set(s, 1 + rLength + 1);
-    }
-    else {
-        const signature = await digest('SHA-256', new Uint8Array(encryptedPolicy));
-        policyBinding = new Uint8Array(signature.slice(-GMAC_BINDING_LEN));
-    }
-    // Create embedded policy
-    const embeddedPolicy = new EmbeddedPolicy(DefaultParams.policyType, policyBinding, new Uint8Array(encryptedPolicy));
-    if (!ephemeralKeyPair.publicKey) {
-        throw new ConfigurationError('incomplete ephemeral key');
-    }
-    // Create a header
-    const pubKeyAsArrayBuffer = await exportCryptoKey(ephemeralKeyPair.publicKey);
-    const header = new Header(DefaultParams.magicNumberVersion, kasResourceLocator, ecdsaBinding, DefaultParams.signatureCurveName, DefaultParams.signature, DefaultParams.signatureCurveName, DefaultParams.symmetricCipher, embeddedPolicy, new Uint8Array(pubKeyAsArrayBuffer));
-    // Encrypt the payload
-    let payloadAsBuffer;
-    if (typeof data === 'string') {
-        payloadAsBuffer = new TextEncoder().encode(data);
-    }
-    else {
-        payloadAsBuffer = data;
-    }
-    const encryptedPayload = await cryptoEncrypt(symmetricKey, new Uint8Array(payloadAsBuffer), iv, authTagLengthInBytes * 8);
-    // Create payload
-    const payload = new Payload(iv.slice(-3), new Uint8Array(encryptedPayload.slice(0, -authTagLengthInBytes)), new Uint8Array(encryptedPayload.slice(-authTagLengthInBytes)));
-    // Create a nanotdf.
-    const nanoTDF = new NanoTDF(header, payload);
-    return nanoTDF.toBuffer();
-}
-/**
- * Retrieves the curve name from a given ECDH private key.
- *
- * This function exports the provided ECDH private key in JWK format and extracts
- * the curve name from the 'crv' property of the JWK.
- *
- * @param {CryptoKey} privateKey - The ECDH private key from which to retrieve the curve name.
- * @returns {Promise<string>} - A promise that resolves to the curve name.
- *
- * @throws {Error} - Throws an error if the curve name is undefined.
- *
- */
-async function getCurveNameFromPrivateKey(privateKey) {
-    // Export the private key
-    const keyData = await crypto.subtle.exportKey('jwk', privateKey);
-    // The curve name is stored in the 'crv' property of the JWK
-    if (!keyData.crv) {
-        throw new ConfigurationError('curve name is undefined (bad private key)');
-    }
-    return keyData.crv;
-}
-/**
- * Converts an ECDH private key to an ECDSA private key.
- *
- * This function exports the given ECDH private key in PKCS#8 format and then
- * imports it as an ECDSA private key using the specified curve name.
- *
- * @param {CryptoKey} key - The ECDH private key to be converted.
- * @param {string} curveName - The name of the elliptic curve to be used for the ECDSA key.
- * @returns {Promise<CryptoKey>} - A promise that resolves to the converted ECDSA private key.
- *
- * @throws {Error} - Throws an error if the key export or import fails.
- */
-async function convertECDHToECDSA(key, curveName) {
-    // Export the ECDH private key
-    const ecdhPrivateKey = await crypto.subtle.exportKey('pkcs8', key);
-    // Import the ECDH private key as an ECDSA private key
-    const ecdsaPrivateKey = await crypto.subtle.importKey(KeyFormat.Pkcs8, ecdhPrivateKey, {
-        name: AlgorithmName.ECDSA,
-        namedCurve: curveName,
-    }, true, [KeyUsageType.Sign]);
-    return ecdsaPrivateKey;
-}
-//# sourceMappingURL=data:application/json;base64,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

package/dist/web/src/nanotdf/enum/CipherEnum.js

@@ -1,11 +0,0 @@
-var CipherEnum;
-(function (CipherEnum) {
-    CipherEnum[CipherEnum["AES_256_GCM_64"] = 0] = "AES_256_GCM_64";
-    CipherEnum[CipherEnum["AES_256_GCM_96"] = 1] = "AES_256_GCM_96";
-    CipherEnum[CipherEnum["AES_256_GCM_104"] = 2] = "AES_256_GCM_104";
-    CipherEnum[CipherEnum["AES_256_GCM_112"] = 3] = "AES_256_GCM_112";
-    CipherEnum[CipherEnum["AES_256_GCM_120"] = 4] = "AES_256_GCM_120";
-    CipherEnum[CipherEnum["AES_256_GCM_128"] = 5] = "AES_256_GCM_128";
-})(CipherEnum || (CipherEnum = {}));
-export default CipherEnum;
-//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiQ2lwaGVyRW51bS5qcyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbIi4uLy4uLy4uLy4uLy4uL3NyYy9uYW5vdGRmL2VudW0vQ2lwaGVyRW51bS50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiQUFBQSxJQUFLLFVBT0o7QUFQRCxXQUFLLFVBQVU7SUFDYiwrREFBYyxDQUFBO0lBQ2QsK0RBQWMsQ0FBQTtJQUNkLGlFQUFlLENBQUE7SUFDZixpRUFBZSxDQUFBO0lBQ2YsaUVBQWUsQ0FBQTtJQUNmLGlFQUFlLENBQUE7QUFDakIsQ0FBQyxFQVBJLFVBQVUsS0FBVixVQUFVLFFBT2Q7QUFFRCxlQUFlLFVBQVUsQ0FBQyJ9