@opentdf/sdk 0.8.0-beta.71 → 0.8.0-beta.75

package/dist/cjs/src/nanotdf/models/Policy/RemotePolicy.js

@@ -1,62 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const AbstractPolicy_js_1 = __importDefault(require("./AbstractPolicy.js"));
-const ResourceLocator_js_1 = __importDefault(require("../ResourceLocator.js"));
-const PolicyTypeEnum_js_1 = __importDefault(require("../../enum/PolicyTypeEnum.js"));
-/**
- * Set remote policy body
- *
- * If the policy type is set to use a Remote Policy, then the Resource Locator object described in Section 3.4.1 is
- * used to describe the remote policy.
- */
-class RemotePolicy extends AbstractPolicy_js_1.default {
-    static parse(buff, useEcdsaBinding) {
-        let offset = 0;
-        const resource = ResourceLocator_js_1.default.parse(buff);
-        offset += resource.offset;
-        const { binding, newOffset: bindingOffset } = this.parseBinding(buff, useEcdsaBinding, offset);
-        offset = bindingOffset;
-        return {
-            policy: new RemotePolicy(PolicyTypeEnum_js_1.default.Remote, binding, resource),
-            offset,
-        };
-    }
-    constructor(type, binding, resource) {
-        super(type, binding);
-        this.type = PolicyTypeEnum_js_1.default.Remote;
-        this.type = PolicyTypeEnum_js_1.default.Remote;
-        this.remotePolicy = resource;
-    }
-    /**
-     * Length of policy
-     *
-     * @returns { number } length
-     */
-    getLength() {
-        return (
-        // Type length
-        1 +
-            // Resource locator length
-            this.remotePolicy.length +
-            // Binding length
-            this.binding.length);
-    }
-    /**
-     * Return the content of the policy
-     */
-    toBuffer() {
-        const target = new Uint8Array(this.getLength());
-        target.set([PolicyTypeEnum_js_1.default.Remote], 0);
-        // Write the remote policy location
-        const resourceLocatorAsBuf = this.remotePolicy.toBuffer();
-        target.set(resourceLocatorAsBuf, 1);
-        // Write the binding.
-        target.set(this.binding, resourceLocatorAsBuf.length + 1);
-        return target;
-    }
-}
-exports.default = RemotePolicy;
-//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiUmVtb3RlUG9saWN5LmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vLi4vLi4vLi4vLi4vc3JjL25hbm90ZGYvbW9kZWxzL1BvbGljeS9SZW1vdGVQb2xpY3kudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6Ijs7Ozs7QUFBQSw0RUFBaUQ7QUFDakQsK0VBQW9EO0FBRXBELHFGQUEwRDtBQUUxRDs7Ozs7R0FLRztBQUNILE1BQU0sWUFBYSxTQUFRLDJCQUFjO0lBSXZDLE1BQU0sQ0FBVSxLQUFLLENBQ25CLElBQWdCLEVBQ2hCLGVBQXdCO1FBRXhCLElBQUksTUFBTSxHQUFHLENBQUMsQ0FBQztRQUNmLE1BQU0sUUFBUSxHQUFHLDRCQUFlLENBQUMsS0FBSyxDQUFDLElBQUksQ0FBQyxDQUFDO1FBQzdDLE1BQU0sSUFBSSxRQUFRLENBQUMsTUFBTSxDQUFDO1FBRTFCLE1BQU0sRUFBRSxPQUFPLEVBQUUsU0FBUyxFQUFFLGFBQWEsRUFBRSxHQUFHLElBQUksQ0FBQyxZQUFZLENBQUMsSUFBSSxFQUFFLGVBQWUsRUFBRSxNQUFNLENBQUMsQ0FBQztRQUMvRixNQUFNLEdBQUcsYUFBYSxDQUFDO1FBRXZCLE9BQU87WUFDTCxNQUFNLEVBQUUsSUFBSSxZQUFZLENBQUMsMkJBQWMsQ0FBQyxNQUFNLEVBQUUsT0FBTyxFQUFFLFFBQVEsQ0FBQztZQUNsRSxNQUFNO1NBQ1AsQ0FBQztJQUNKLENBQUM7SUFFRCxZQUFZLElBQW9CLEVBQUUsT0FBbUIsRUFBRSxRQUF5QjtRQUM5RSxLQUFLLENBQUMsSUFBSSxFQUFFLE9BQU8sQ0FBQyxDQUFDO1FBckJMLFNBQUksR0FBbUIsMkJBQWMsQ0FBQyxNQUFNLENBQUM7UUFzQjdELElBQUksQ0FBQyxJQUFJLEdBQUcsMkJBQWMsQ0FBQyxNQUFNLENBQUM7UUFDbEMsSUFBSSxDQUFDLFlBQVksR0FBRyxRQUFRLENBQUM7SUFDL0IsQ0FBQztJQUVEOzs7O09BSUc7SUFDTSxTQUFTO1FBQ2hCLE9BQU87UUFDTCxjQUFjO1FBQ2QsQ0FBQztZQUNELDBCQUEwQjtZQUMxQixJQUFJLENBQUMsWUFBWSxDQUFDLE1BQU07WUFDeEIsaUJBQWlCO1lBQ2pCLElBQUksQ0FBQyxPQUFPLENBQUMsTUFBTSxDQUNwQixDQUFDO0lBQ0osQ0FBQztJQUVEOztPQUVHO0lBQ00sUUFBUTtRQUNmLE1BQU0sTUFBTSxHQUFHLElBQUksVUFBVSxDQUFDLElBQUksQ0FBQyxTQUFTLEVBQUUsQ0FBQyxDQUFDO1FBRWhELE1BQU0sQ0FBQyxHQUFHLENBQUMsQ0FBQywyQkFBYyxDQUFDLE1BQU0sQ0FBQyxFQUFFLENBQUMsQ0FBQyxDQUFDO1FBRXZDLG1DQUFtQztRQUNuQyxNQUFNLG9CQUFvQixHQUFHLElBQUksQ0FBQyxZQUFZLENBQUMsUUFBUSxFQUFFLENBQUM7UUFDMUQsTUFBTSxDQUFDLEdBQUcsQ0FBQyxvQkFBb0IsRUFBRSxDQUFDLENBQUMsQ0FBQztRQUVwQyxxQkFBcUI7UUFDckIsTUFBTSxDQUFDLEdBQUcsQ0FBQyxJQUFJLENBQUMsT0FBTyxFQUFFLG9CQUFvQixDQUFDLE1BQU0sR0FBRyxDQUFDLENBQUMsQ0FBQztRQUUxRCxPQUFPLE1BQU0sQ0FBQztJQUNoQixDQUFDO0NBQ0Y7QUFFRCxrQkFBZSxZQUFZLENBQUMifQ==

package/dist/cjs/src/nanotdf/models/ResourceLocator.js

@@ -1,211 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const errors_js_1 = require("../../errors.js");
-const ProtocolEnum_js_1 = __importDefault(require("../enum/ProtocolEnum.js"));
-const ResourceLocatorIdentifierEnum_js_1 = __importDefault(require("../enum/ResourceLocatorIdentifierEnum.js"));
-/**
- *
- * The Resource Locator is a way for the nanotdf to represent references to external resources in as succinct a format
- * as possible.
- *
- * | Section       | Minimum Length (B) | Maximum Length (B) |
- * |---------------|--------------------|--------------------|
- * | Protocol Enum | 1                  | 1                  |
- * | Body Length   | 1                  | 1                  |
- * | Body          | 1                  | 255                |
- * | Identifier    | 0                  | n                  |
- *
- * @link https://github.com/virtru/nanotdf/blob/master/spec/index.md#3312-kas
- * @link https://github.com/virtru/nanotdf/blob/master/spec/index.md#341-resource-locator
- */
-class ResourceLocator {
-    constructor(protocol, lengthOfBody, body, offset, id, idType = ResourceLocatorIdentifierEnum_js_1.default.None) {
-        this.protocol = protocol;
-        this.lengthOfBody = lengthOfBody;
-        this.body = body;
-        this.offset = offset;
-        this.id = id;
-        this.idType = idType;
-    }
-    /**
-     * Construct a new URL or URL + identifier pair, for use with NanoTDF envelopes.
-     * @param url The URL to encrypt; `http` and `https` schemes are supported
-     * @param identifier An optional identifier.
-     *    For KAS URLs, this is usually a public key identifier (kid). Limit 32 characters
-     * @returns a value representing the URL and identifier, if present.
-     *    This method throws an Error if the URL is invalid or of the wrong schema,
-     *    or if the identifier is an unsupported value.
-     */
-    static fromURL(url, identifier) {
-        const [protocolStr, body] = url.split('://');
-        let protocol;
-        // Validate and set protocol identifier byte
-        switch (protocolStr.toLowerCase()) {
-            case 'http':
-                protocol = ProtocolEnum_js_1.default.Http;
-                break;
-            case 'https':
-                protocol = ProtocolEnum_js_1.default.Https;
-                break;
-            default:
-                throw new errors_js_1.ConfigurationError(`resource locator protocol [${protocolStr}] unsupported`);
-        }
-        // Set identifier padded length and protocol identifier byte
-        const identifierType = (() => {
-            if (!identifier) {
-                return ResourceLocatorIdentifierEnum_js_1.default.None;
-            }
-            const identifierLength = new TextEncoder().encode(identifier).length;
-            if (identifierLength <= 2) {
-                return ResourceLocatorIdentifierEnum_js_1.default.TwoBytes;
-            }
-            else if (identifierLength <= 8) {
-                return ResourceLocatorIdentifierEnum_js_1.default.EightBytes;
-            }
-            else if (identifierLength <= 32) {
-                return ResourceLocatorIdentifierEnum_js_1.default.ThirtyTwoBytes;
-            }
-            throw new errors_js_1.ConfigurationError(`unsupported identifier length: ${identifier.length}`);
-        })();
-        // Create buffer to hold protocol, body length, body, and identifier
-        const lengthOfBody = new TextEncoder().encode(body).length;
-        if (lengthOfBody == 0) {
-            throw new errors_js_1.ConfigurationError('url body empty');
-        }
-        const identifierLength = identifierType.valueOf();
-        const offset = ResourceLocator.BODY_OFFSET + lengthOfBody + identifierLength;
-        return new ResourceLocator(protocol, lengthOfBody, body, offset, identifier, identifierType);
-    }
-    static parse(buff) {
-        // Protocol
-        const protocolAndIdentifierType = buff[ResourceLocator.PROTOCOL_OFFSET];
-        // Length of body
-        const lengthOfBody = buff[ResourceLocator.LENGTH_OFFSET];
-        if (lengthOfBody == 0) {
-            throw new errors_js_1.InvalidFileError('url body empty');
-        }
-        // Body as utf8 string
-        const decoder = new TextDecoder();
-        let offset = ResourceLocator.BODY_OFFSET + lengthOfBody;
-        if (offset > buff.length) {
-            throw new errors_js_1.InvalidFileError('url parser: out of bounds error');
-        }
-        const body = decoder.decode(buff.subarray(ResourceLocator.BODY_OFFSET, offset));
-        const protocol = protocolAndIdentifierType & 0xf;
-        switch (protocol) {
-            case ProtocolEnum_js_1.default.Http:
-            case ProtocolEnum_js_1.default.Https:
-                break;
-            default:
-                throw new errors_js_1.InvalidFileError(`url parser: unsupported protocol type [${protocol}]`);
-        }
-        // identifier
-        const identifierTypeNibble = protocolAndIdentifierType & 0xf0;
-        let identifierType = ResourceLocatorIdentifierEnum_js_1.default.None;
-        if (identifierTypeNibble === ResourceLocator.IDENTIFIER_2_BYTE) {
-            identifierType = ResourceLocatorIdentifierEnum_js_1.default.TwoBytes;
-        }
-        else if (identifierTypeNibble === ResourceLocator.IDENTIFIER_8_BYTE) {
-            identifierType = ResourceLocatorIdentifierEnum_js_1.default.EightBytes;
-        }
-        else if (identifierTypeNibble === ResourceLocator.IDENTIFIER_32_BYTE) {
-            identifierType = ResourceLocatorIdentifierEnum_js_1.default.ThirtyTwoBytes;
-        }
-        else if (identifierTypeNibble !== ResourceLocator.IDENTIFIER_0_BYTE) {
-            throw new errors_js_1.InvalidFileError(`url parser: unsupported fragment type [${identifierTypeNibble}]`);
-        }
-        let identifier = undefined;
-        switch (identifierType) {
-            case ResourceLocatorIdentifierEnum_js_1.default.None:
-                // noop
-                break;
-            case ResourceLocatorIdentifierEnum_js_1.default.TwoBytes:
-            case ResourceLocatorIdentifierEnum_js_1.default.EightBytes:
-            case ResourceLocatorIdentifierEnum_js_1.default.ThirtyTwoBytes: {
-                const kidStart = offset;
-                offset = kidStart + identifierType.valueOf();
-                if (offset > buff.length) {
-                    throw new errors_js_1.InvalidFileError('url parser: out of bounds error');
-                }
-                const kidSubarray = buff.subarray(kidStart, offset);
-                // Remove padding (assuming the padding is null bytes, 0x00)
-                const zeroIndex = kidSubarray.indexOf(0);
-                if (zeroIndex >= 0) {
-                    const trimmedSubarray = kidSubarray.subarray(0, zeroIndex);
-                    identifier = decoder.decode(trimmedSubarray);
-                }
-                else {
-                    identifier = decoder.decode(kidSubarray);
-                }
-                break;
-            }
-        }
-        return new ResourceLocator(protocol, lengthOfBody, body, offset, identifier, identifierType);
-    }
-    /**
-     * Length
-     *
-     * @returns { number } Length of resource locator
-     */
-    get length() {
-        return this.offset;
-    }
-    get url() {
-        switch (this.protocol) {
-            case ProtocolEnum_js_1.default.Http:
-                return 'http://' + this.body;
-            case ProtocolEnum_js_1.default.Https:
-                return 'https://' + this.body;
-            default:
-                throw new errors_js_1.ConfigurationError(`resource locator protocol unsupported [${this.protocol}]`);
-        }
-    }
-    /**
-     * Return the contents of the Resource Locator in buffer
-     */
-    toBuffer() {
-        const target = new Uint8Array(ResourceLocator.BODY_OFFSET + this.body.length + this.idType);
-        let idTypeNibble = 0;
-        switch (this.idType) {
-            case ResourceLocatorIdentifierEnum_js_1.default.TwoBytes:
-                idTypeNibble = ResourceLocator.IDENTIFIER_2_BYTE;
-                break;
-            case ResourceLocatorIdentifierEnum_js_1.default.EightBytes:
-                idTypeNibble = ResourceLocator.IDENTIFIER_8_BYTE;
-                break;
-            case ResourceLocatorIdentifierEnum_js_1.default.ThirtyTwoBytes:
-                idTypeNibble = ResourceLocator.IDENTIFIER_32_BYTE;
-                break;
-        }
-        target.set([this.protocol | idTypeNibble], ResourceLocator.PROTOCOL_OFFSET);
-        target.set([this.lengthOfBody], ResourceLocator.LENGTH_OFFSET);
-        target.set(new TextEncoder().encode(this.body), ResourceLocator.BODY_OFFSET);
-        if (this.id) {
-            target.set(new TextEncoder().encode(this.id), ResourceLocator.BODY_OFFSET + this.body.length);
-        }
-        return target;
-    }
-    /**
-     * Get Identifier
-     *
-     * Returns the identifier of the ResourceLocator or an empty string if no identifier is present.
-     * @returns { string } Identifier of the resource locator.
-     */
-    get identifier() {
-        return this.id ?? '';
-    }
-}
-ResourceLocator.PROTOCOL_OFFSET = 0;
-ResourceLocator.PROTOCOL_LENGTH = 1;
-ResourceLocator.LENGTH_OFFSET = 1;
-ResourceLocator.LENGTH_LENGTH = 1;
-ResourceLocator.BODY_OFFSET = 2;
-ResourceLocator.IDENTIFIER_0_BYTE = 0 << 4; // 0
-ResourceLocator.IDENTIFIER_2_BYTE = 1 << 4; // 16
-ResourceLocator.IDENTIFIER_8_BYTE = 2 << 4; // 32
-ResourceLocator.IDENTIFIER_32_BYTE = 3 << 4; // 48
-exports.default = ResourceLocator;
-//# sourceMappingURL=data:application/json;base64,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

package/dist/cjs/src/nanotdf/models/Signature.js

@@ -1,77 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-const calculateByCurve_js_1 = require("../helpers/calculateByCurve.js");
-const errors_js_1 = require("../../errors.js");
-/**
- * NanoTDF Signature
- *
- * The signature section is an optional section that contains an ECDSA signature used to cryptographically bind the Header and Payload to a creator of the nanotdf. The key used for signing is the private key of the creator of the nanotdf. The ECC Params used for the signature are described in Section 3.3.1.4.2. The private key used for this signature is distinctly different than the ephemeral private key. This is a persistent key belonging to an individual, entity, or device that creates nanotdfs. The signature is used to authenticate the entire nanotdf and contains both the public key related to the creators private key and the resulting signature. The structure of this section:
- *
- * | Section    | Minimum Length (B) | Maximum Length (B) |
- * |------------|--------------------|--------------------|
- * | Public Key | 33                 | 67                 |
- * | Signature  | 64                 | 132                |
- *
- * @link https://github.com/virtru/nanotdf/blob/master/spec/index.md#333-signature
- */
-class Signature {
-    static parse(header, buff) {
-        let offset = 0;
-        /**
-         * Parse the public key
-         *
-         * This section contains the compressed public key of the private key used to sign the message.
-         */
-        // TODO: Resolve where offset is missing 1 byte
-        const publicKeyLength = (0, calculateByCurve_js_1.lengthOfPublicKey)(header.signatureCurveName) + 1;
-        const publicKey = buff.subarray(offset, offset + publicKeyLength);
-        offset += publicKeyLength;
-        /**
-         * Parse signature
-         *
-         * This section contains the encoded `r` and `s` values of the ECDSA signature.
-         *
-         * ECDSA signatures are big endian encodings of the `r` and `s` values of an ECDSA signature.The length of `r` and `s`
-         * values is determined by the ECC Mode used for the signature. The encoding for the signature is the big endian
-         * encodings of R and S concatenated to each other. For example, `r = 1` and `s = 2` for an ECDSA signature of a
-         * ecp256k1 key would be (line breaks and spaces are added for easier visualization):
-         *
-         * ```
-         * 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
-         * 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01
-         * 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
-         * 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02
-         * ```
-         *
-         * @link https://github.com/virtru/nanotdf/blob/master/spec/index.md#52-ecdsa-signature-encoding
-         */
-        const signatureLength = (0, calculateByCurve_js_1.lengthOfSignature)(header.signatureCurveName);
-        const signature = buff.subarray(offset, offset + signatureLength);
-        offset += signatureLength;
-        return { signature: new Signature(publicKey, signature), offset };
-    }
-    constructor(publicKey, signature) {
-        this.publicKey = publicKey;
-        this.signature = signature;
-    }
-    /**
-     * Length
-     *
-     * @returns { number } Length of signature
-     */
-    get length() {
-        return this.publicKey.length + this.signature.length;
-    }
-    /**
-     * Copy the contents of the signature to buffer
-     */
-    copyToBuffer(target) {
-        if (this.length > target.length) {
-            throw new errors_js_1.ConfigurationError('Invalid buffer size to copy signature');
-        }
-        target.set(this.publicKey, 0);
-        target.set(this.signature, this.publicKey.length);
-    }
-}
-exports.default = Signature;
-//# sourceMappingURL=data:application/json;base64,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

package/dist/cjs/src/nanotdf-crypto/exportCryptoKey.js

@@ -1,20 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.default = exportCryptoKey;
-/**
- *
- * Export to PEM format to binary buffer
- * - key    {CryptoKey}     default: "undefined" CryptoKey generated by WebCrypto API
- */
-async function exportCryptoKey(key) {
-    const exportedKey = await crypto.subtle.exportKey('raw', key);
-    const keyBuffer = new Uint8Array(exportedKey);
-    const len = keyBuffer.byteLength;
-    const xPoint = keyBuffer.slice(0, (1 + len) >>> 1); // drop `y`
-    xPoint[0] = 0x2 | (keyBuffer[len - 1] & 0x01); // encode sign of `y` in first bit
-    // Copy to Arraybuffer
-    const compressedPubKeyBuf = new ArrayBuffer(xPoint.byteLength);
-    new Uint8Array(compressedPubKeyBuf).set(new Uint8Array(xPoint));
-    return compressedPubKeyBuf;
-}
-//# sourceMappingURL=data:application/json;base64,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

package/dist/cjs/src/tdf/NanoTDF/NanoTDF.js

@@ -1,38 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.PolicyType = exports.ResourceLocatorProtocol = void 0;
-var CipherType;
-(function (CipherType) {
-    CipherType[CipherType["Aes256Gcm64"] = 0] = "Aes256Gcm64";
-    CipherType[CipherType["Aes256Gcm96"] = 1] = "Aes256Gcm96";
-    CipherType[CipherType["Aes256Gcm104"] = 2] = "Aes256Gcm104";
-    CipherType[CipherType["Aes256Gcm112"] = 3] = "Aes256Gcm112";
-    CipherType[CipherType["Aes256Gcm120"] = 4] = "Aes256Gcm120";
-    CipherType[CipherType["Aes256Gcm128"] = 5] = "Aes256Gcm128";
-})(CipherType || (CipherType = {}));
-/**
- * The Signature ECC Mode is used to determine the length of the signature at the end of a nanotdf. This, in
- * combination with the previous HAS_SIGNATURE section, describe the signature of the nanotdf. The following table
- * describes the valid values and the associated ECC Params.
- */
-var CurveName;
-(function (CurveName) {
-    CurveName[CurveName["Secp256R1"] = 0] = "Secp256R1";
-    CurveName[CurveName["Secp384R1"] = 1] = "Secp384R1";
-    CurveName[CurveName["Secp521R1"] = 2] = "Secp521R1";
-})(CurveName || (CurveName = {}));
-var ResourceLocatorProtocol;
-(function (ResourceLocatorProtocol) {
-    ResourceLocatorProtocol[ResourceLocatorProtocol["Http"] = 0] = "Http";
-    ResourceLocatorProtocol[ResourceLocatorProtocol["Https"] = 1] = "Https";
-    ResourceLocatorProtocol[ResourceLocatorProtocol["Unreserverd"] = 2] = "Unreserverd";
-    ResourceLocatorProtocol[ResourceLocatorProtocol["SharedResourceDirectory"] = 255] = "SharedResourceDirectory";
-})(ResourceLocatorProtocol || (exports.ResourceLocatorProtocol = ResourceLocatorProtocol = {}));
-var PolicyType;
-(function (PolicyType) {
-    PolicyType[PolicyType["Remote"] = 0] = "Remote";
-    PolicyType[PolicyType["EmbeddedText"] = 1] = "EmbeddedText";
-    PolicyType[PolicyType["EmbeddedEncrypted"] = 2] = "EmbeddedEncrypted";
-    PolicyType[PolicyType["EmbeddedEncryptedPKA"] = 3] = "EmbeddedEncryptedPKA";
-})(PolicyType || (exports.PolicyType = PolicyType = {}));
-//# sourceMappingURL=data:application/json;base64,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

package/dist/cjs/src/types/index.js

@@ -1,3 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiaW5kZXguanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi8uLi9zcmMvdHlwZXMvaW5kZXgudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IiJ9

package/dist/types/src/nanoclients.d.ts

@@ -1,106 +0,0 @@
-import { Client, NanoTDF } from './nanotdf/index.js';
-import { type ClientConfig } from './nanotdf/Client.js';
-export type EncryptOptions = {
-    ecdsaBinding: boolean;
-};
-/**
- * NanoTDF SDK Client. Deprecated in favor of OpenTDF.
- *
- */
-export declare class NanoTDFClient extends Client {
-    /**
-     * Decrypt ciphertext
-     *
-     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
-     *
-     * @param ciphertext Ciphertext to decrypt
-     */
-    decrypt(ciphertext: string | ArrayBufferLike): Promise<ArrayBuffer>;
-    /**
-     * Decrypt ciphertext of the legacy TDF, with the older, smaller i.v. calculation.
-     *
-     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
-     *
-     * @param ciphertext Ciphertext to decrypt
-     */
-    decryptLegacyTDF(ciphertext: string | ArrayBufferLike): Promise<ArrayBuffer>;
-    /**
-     * Encrypts the given data using the NanoTDF encryption scheme.
-     *
-     * @param data The data to be encrypted.
-     * @param options The encryption options (currently unused).
-     * @returns A promise that resolves to the encrypted data as an ArrayBuffer.
-     * @throws If the initialization vector is not a number.
-     */
-    encrypt(data: string | ArrayBufferLike, options?: EncryptOptions): Promise<ArrayBuffer>;
-}
-export type DatasetConfig = ClientConfig & {
-    maxKeyIterations?: number;
-};
-/**
- * NanoTDF Dataset SDK Client
- *
- *
- * @example
- * ```
- * import { clientSecretAuthProvider, NanoTDFDatasetClient } from '@opentdf/sdk';
- *
- * const OIDC_ENDPOINT = 'http://localhost:65432/auth/realms/opentdf';
- * const KAS_URL = 'http://localhost:65432/api/kas/';
- *
- * const ciphertext = '...';
- * const client = new NanoTDFDatasetClient({
- *   authProvider: await clientSecretAuthProvider({
- *     clientId: 'tdf-client',
- *     clientSecret: '123-456',
- *     exchange: 'client',
- *     oidcOrigin: OIDC_ENDPOINT,
- *   }),
- *   kasEndpoint: KAS_URL,
- * });
- * const plaintext = client.decrypt(ciphertext);
- * console.log('Plaintext', plaintext);
- * ```
- */
-export declare class NanoTDFDatasetClient extends Client {
-    static readonly NTDF_MAX_KEY_ITERATIONS = 8388606;
-    private maxKeyIteration;
-    private keyIterationCount;
-    private cachedEphemeralKey?;
-    private unwrappedKey?;
-    private symmetricKey?;
-    private cachedHeader?;
-    private ecdsaBinding;
-    /**
-     * Create new NanoTDF Dataset Client
-     *
-     * The Ephemeral Key Pair can either be provided or will be generate when fetching the entity object. Once set it
-     * cannot be changed. If a new ephemeral key is desired it a new client should be initialized.
-     * There is no performance impact for creating a new client IFF the ephemeral key pair is provided.
-     *
-     * @param clientConfig OIDC client credentials
-     * @param kasUrl Key access service URL
-     * @param ephemeralKeyPair (optional) ephemeral key pair to use
-     * @param maxKeyIterations Max iteration to performe without a key rotation
-     */
-    constructor(opts: DatasetConfig);
-    /**
-     * Encrypt data
-     *
-     * Pass a string, TypedArray, or ArrayBuffer data and get a promise which resolves ciphertext
-     *
-     * @param data to decrypt
-     */
-    encrypt(data: string | ArrayBufferLike, options?: EncryptOptions): Promise<ArrayBuffer>;
-    /**
-     * Decrypt ciphertext
-     *
-     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
-     *
-     * @param ciphertext Ciphertext to decrypt
-     */
-    decrypt(ciphertext: string | ArrayBufferLike): Promise<ArrayBuffer>;
-    rewrapAndDecrypt(nanotdf: NanoTDF): Promise<ArrayBuffer>;
-    generateIV(): Uint8Array;
-}
-//# sourceMappingURL=nanoclients.d.ts.map

package/dist/types/src/nanoclients.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"nanoclients.d.ts","sourceRoot":"","sources":["../../../src/nanoclients.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,MAAM,EACN,OAAO,EAOR,MAAM,oBAAoB,CAAC;AAI5B,OAAO,EAAE,KAAK,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAKxD,MAAM,MAAM,cAAc,GAAG;IAC3B,YAAY,EAAE,OAAO,CAAC;CACvB,CAAC;AAOF;;;GAGG;AACH,qBAAa,aAAc,SAAQ,MAAM;IACvC;;;;;;OAMG;IACG,OAAO,CAAC,UAAU,EAAE,MAAM,GAAG,eAAe,GAAG,OAAO,CAAC,WAAW,CAAC;IAuBzE;;;;;;OAMG;IACG,gBAAgB,CAAC,UAAU,EAAE,MAAM,GAAG,eAAe,GAAG,OAAO,CAAC,WAAW,CAAC;IAoBlF;;;;;;;OAOG;IACG,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,eAAe,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,OAAO,CAAC,WAAW,CAAC;CA6D9F;AAED,MAAM,MAAM,aAAa,GAAG,YAAY,GAAG;IACzC,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,qBAAa,oBAAqB,SAAQ,MAAM;IAG9C,MAAM,CAAC,QAAQ,CAAC,uBAAuB,WAAW;IAElD,OAAO,CAAC,eAAe,CAAS;IAChC,OAAO,CAAC,iBAAiB,CAAS;IAClC,OAAO,CAAC,kBAAkB,CAAC,CAAa;IACxC,OAAO,CAAC,YAAY,CAAC,CAAY;IACjC,OAAO,CAAC,YAAY,CAAC,CAAY;IACjC,OAAO,CAAC,YAAY,CAAC,CAAS;IAC9B,OAAO,CAAC,YAAY,CAAU;IAE9B;;;;;;;;;;;OAWG;gBACS,IAAI,EAAE,aAAa;IAe/B;;;;;;OAMG;IACG,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,eAAe,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,OAAO,CAAC,WAAW,CAAC;IAmF7F;;;;;;OAMG;IACG,OAAO,CAAC,UAAU,EAAE,MAAM,GAAG,eAAe,GAAG,OAAO,CAAC,WAAW,CAAC;IAuBnE,gBAAgB,CAAC,OAAO,EAAE,OAAO;IAsBvC,UAAU,IAAI,UAAU;CAkCzB"}

package/dist/types/src/nanoindex.d.ts

@@ -1,5 +0,0 @@
-export * as AuthProviders from './auth/providers.js';
-export { attributeFQNsAsValues } from './policy/api.js';
-export * from './nanoclients.js';
-export { version, clientType } from './version.js';
-//# sourceMappingURL=nanoindex.d.ts.map

package/dist/types/src/nanoindex.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"nanoindex.d.ts","sourceRoot":"","sources":["../../../src/nanoindex.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,aAAa,MAAM,qBAAqB,CAAC;AACrD,OAAO,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AACxD,cAAc,kBAAkB,CAAC;AACjC,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC"}

package/dist/types/src/nanotdf/Client.d.ts

@@ -1,91 +0,0 @@
-import { KasPublicKeyInfo, OriginAllowList } from '../access.js';
-import { AuthProvider } from '../auth/providers.js';
-export interface ClientConfig {
-    allowedKases?: string[];
-    fulfillableObligationFQNs?: string[];
-    ignoreAllowList?: boolean;
-    authProvider: AuthProvider;
-    dpopEnabled?: boolean;
-    dpopKeys?: Promise<CryptoKeyPair>;
-    ephemeralKeyPair?: Promise<CryptoKeyPair>;
-    kasEndpoint: string;
-    platformUrl: string;
-}
-type RewrapKeyResult = {
-    unwrappedKey: CryptoKey;
-    requiredObligations: string[];
-};
-/**
- * A Client encapsulates sessions interacting with TDF3 and nanoTDF backends, KAS and any
- * plugin-based sessions like identity and further attribute control. Most importantly, it is responsible
- * for local key and token management, including the ephemeral public/private keypairs
- * used for encrypting and decrypting information.
- *
- * @link https://developer.mozilla.org/en-US/docs/Web/API/CryptoKeyPair
- *
- * @example
- * import { Client, clientAuthProvider, decrypt, encrypt } from '@opentdf/sdk/nanotdf`
- *
- * const OIDC_ENDPOINT = 'http://localhost:65432/auth/';
- * const KAS_URL = 'http://localhost:65432/kas';
- *
- * let client = new Client(
- *    await clientAuthProvider({
- *      clientId: 'tdf-client',
- *      clientSecret: '123-456',
- *      oidcOrigin: OIDC_ENDPOINT,
- *    }),
- *    KAS_URL
- *  );
- *
- * // t=1
- * let nanoTDFEncrypted = await encrypt('some string', client.unwrappedKey);
- * let nanoTDFDecrypted = await decrypt(nanoTDFEncrypted, client.unwrappedKey);
- * nanoTDFDecrypted.toString() // 'some string'
- *
- */
-export default class Client {
-    static readonly KEY_ACCESS_REMOTE = "remote";
-    static readonly KAS_PROTOCOL = "kas";
-    static readonly SDK_INITIAL_RELEASE = "0.0.0";
-    static readonly INITIAL_RELEASE_IV_SIZE = 3;
-    static readonly IV_SIZE = 12;
-    allowedKases?: OriginAllowList;
-    readonly fulfillableObligationFQNs: string[];
-    protected kasUrl: string;
-    readonly platformUrl: string;
-    kasPubKey?: KasPublicKeyInfo;
-    readonly authProvider: AuthProvider;
-    readonly dpopEnabled: boolean;
-    dissems: string[];
-    dataAttributes: string[];
-    protected ephemeralKeyPair: Promise<CryptoKeyPair>;
-    protected requestSignerKeyPair: Promise<CryptoKeyPair>;
-    protected iv?: number;
-    /**
-     * Create new NanoTDF Client
-     *
-     * The Ephemeral Key Pair can either be provided or will be generate when fetching the entity object. Once set it
-     * cannot be changed. If a new ephemeral key is desired it a new client should be initialized.
-     * There is no performance impact for creating a new client IFF the ephemeral key pair is provided.
-     */
-    constructor(optsOrOldAuthProvider: AuthProvider | ClientConfig, kasUrl?: string, ephemeralKeyPair?: CryptoKeyPair, dpopEnabled?: boolean);
-    /**
-     * Add attribute to the TDF file/data
-     *
-     * @param attribute The attribute that decides the access control of the TDF.
-     */
-    addAttribute(attribute: string): void;
-    /**
-     * Rewrap key
-     *
-     * @important the `fetchEntityObject` method must be called prior to
-     * @param nanoTdfHeader the full header for the nanotdf
-     * @param kasRewrapUrl key access server's rewrap endpoint
-     * @param magicNumberVersion nanotdf container version
-     * @param clientVersion version of the client, as SemVer
-     */
-    rewrapKey(nanoTdfHeader: ArrayBufferLike, kasRewrapUrl: string, magicNumberVersion: ArrayBufferLike, clientVersion: string): Promise<RewrapKeyResult>;
-}
-export {};
-//# sourceMappingURL=Client.d.ts.map

package/dist/types/src/nanotdf/Client.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"Client.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf/Client.ts"],"names":[],"mappings":"AAQA,OAAO,EAGL,gBAAgB,EAChB,eAAe,EAChB,MAAM,cAAc,CAAC;AAEtB,OAAO,EAAE,YAAY,EAAgC,MAAM,sBAAsB,CAAC;AAWlF,MAAM,WAAW,YAAY;IAC3B,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,yBAAyB,CAAC,EAAE,MAAM,EAAE,CAAC;IACrC,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,YAAY,EAAE,YAAY,CAAC;IAC3B,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,QAAQ,CAAC,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IAClC,gBAAgB,CAAC,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IAC1C,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,KAAK,eAAe,GAAG;IACrB,YAAY,EAAE,SAAS,CAAC;IACxB,mBAAmB,EAAE,MAAM,EAAE,CAAC;CAC/B,CAAC;AAgDF;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AACH,MAAM,CAAC,OAAO,OAAO,MAAM;IACzB,MAAM,CAAC,QAAQ,CAAC,iBAAiB,YAAY;IAC7C,MAAM,CAAC,QAAQ,CAAC,YAAY,SAAS;IACrC,MAAM,CAAC,QAAQ,CAAC,mBAAmB,WAAW;IAC9C,MAAM,CAAC,QAAQ,CAAC,uBAAuB,KAAK;IAC5C,MAAM,CAAC,QAAQ,CAAC,OAAO,MAAM;IAE7B,YAAY,CAAC,EAAE,eAAe,CAAC;IAC/B,QAAQ,CAAC,yBAAyB,EAAE,MAAM,EAAE,CAAC;IAK7C,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,SAAS,CAAC,EAAE,gBAAgB,CAAC;IAC7B,QAAQ,CAAC,YAAY,EAAE,YAAY,CAAC;IACpC,QAAQ,CAAC,WAAW,EAAE,OAAO,CAAC;IAC9B,OAAO,EAAE,MAAM,EAAE,CAAM;IACvB,cAAc,EAAE,MAAM,EAAE,CAAM;IAC9B,SAAS,CAAC,gBAAgB,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IACnD,SAAS,CAAC,oBAAoB,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IACvD,SAAS,CAAC,EAAE,CAAC,EAAE,MAAM,CAAC;IAEtB;;;;;;OAMG;gBAED,qBAAqB,EAAE,YAAY,GAAG,YAAY,EAClD,MAAM,CAAC,EAAE,MAAM,EACf,gBAAgB,CAAC,EAAE,aAAa,EAChC,WAAW,UAAQ;IAsErB;;;;OAIG;IACH,YAAY,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IAIrC;;;;;;;;OAQG;IACG,SAAS,CACb,aAAa,EAAE,eAAe,EAC9B,YAAY,EAAE,MAAM,EACpB,kBAAkB,EAAE,eAAe,EACnC,aAAa,EAAE,MAAM,GACpB,OAAO,CAAC,eAAe,CAAC;CAkL5B"}